ruby1.8 1.8.7.72-1 source package in Ubuntu
Changelog
ruby1.8 (1.8.7.72-1) unstable; urgency=high
* New upstream release.
- many patches in 1.8.7.22-4 were simply backported from upstream SVN, and
are integrated into that release. We drop those:
+ 103_array_c_r17472_to_r17756.dpatch
+ 810_ruby187p22_fixes.dpatch
+ 811_multiple_vuln_200808.dpatch
- Fixes the following security issues: (Closes: #494401)
* Several vulnerabilities in safe level
* DoS vulnerability in WEBrick
* Lack of taintness check in dl
* DNS spoofing vulnerability in resolv.rb (CVE-2008-1447)
* Applied debian/patches/168_rexml_dos.dpatch:
Fix CVE-2008-3790 (REXML expansion DOS). Closes: #496808.
ruby1.8 (1.8.7.22-4) unstable; urgency=high
* applied debian/patches/811_multiple_vuln_200808:
fixed multiple vulnerabilities issued at
<http://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby/>
and
<http://www.ruby-lang.org/en/news/2008/08/11/ruby-1-8-7-p72-and-1-8-6-p287-released/>.
- v_1_8_7_32 - untrace_var is permitted at safe level 4
- v_1_8_7_35 - $PROGRAM_NAME may be modified at safe level 4
- v_1_8_7_33 - Insecure methods may be called at safe level 1-3
- v_1_8_7_44 - Syslog operations are permitted at safe level 4
- v_1_8_7_69 - DoS vulnerability in WEBrick
- v_1_8_7_72 - Lack of taintness check in dl
- v_1_8_7_71 - DNS spoofing vulnerability in resolv.rb
ruby1.8 (1.8.7.22-3) unstable; urgency=medium
* applied debian/patches/810_ruby187p22_fixes.dpatch:
fixed incompatibilities and degreades about Ruby 1.8.7 and 1.8.7-p22.
- v1_8_7_23: incompatibility about class methods.
- v1_8_7_46: cgi.rb shouldn't reject filenames which include spaces.
- v1_8_7_39: self concat of string issue
- v1_8_7_47: respond_to? issue
- v1_8_7_51: Float#to_i gives incorrect sign in x86_64_linux
<http://rubyforge.org/tracker/index.php?func=detail&aid=14102&group_id=426&atid=1698>
- v1_8_7_54: [ruby-core:17491] [Ruby 1.8.7 - Bug #213] (Open) Different
ERB behavior across versions
- v1_8_7_58: IPAddr.new("192.168.1.1").to_range raise an exception
[ruby-dev:35091]
- v1_8_7_59: Zlib::GzipWriter#mtime= sets wrong mtime for Time on 1.8
- v1_8_7_60: XMLRPC::Client#do_rpc should require webrick/cookie.
<http://rubyforge.org/tracker/index.php?func=detail&aid=21139&group_id=426&atid=1698>
ruby1.8 (1.8.7.22-2) unstable; urgency=low
* applied debian/patches/103_array_c_r17472_to_r17756.dpatch:
- fixed an integer overflow bug.
-- Lucas Nussbaum <email address hidden> Sat, 20 Sep 2008 02:35:37 +0100
Upload details
- Uploaded by:
- Lucas Nussbaum
- Uploaded to:
- Intrepid
- Original maintainer:
- akira yamada
- Architectures:
- any
- Section:
- interpreters
- Urgency:
- Very Urgent
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| ruby1.8_1.8.7.72.orig.tar.gz | 4.6 MiB | e15ca005076f5d6f91fc856fdfbd071698a4cadac3c6e25855899dba1f6fc5ef |
| ruby1.8_1.8.7.72-1.diff.gz | 47.2 KiB | adbe6a3ef05bd830ff77eb04667fa4c13bc04337a6936770290cb988e2bddec4 |
| ruby1.8_1.8.7.72-1.dsc | 1.6 KiB | 54ec31abc5e586fbb070e467981ba534aeb93c99009e41ccb3e4722c57ba75c2 |
Available diffs
- diff from 1.8.7.22-1 to 1.8.7.72-1 (34.4 KiB)
Binary packages built by this source
- irb1.8: No summary available for irb1.8 in ubuntu jaunty.
No description available for irb1.8 in ubuntu jaunty.
- libdbm-ruby1.8: No summary available for libdbm-ruby1.8 in ubuntu jaunty.
No description available for libdbm-ruby1.8 in ubuntu jaunty.
- libgdbm-ruby1.8: No summary available for libgdbm-ruby1.8 in ubuntu jaunty.
No description available for libgdbm-ruby1.8 in ubuntu jaunty.
- libopenssl-ruby1.8: No summary available for libopenssl-ruby1.8 in ubuntu jaunty.
No description available for libopenssl-ruby1.8 in ubuntu jaunty.
- libreadline-ruby1.8: No summary available for libreadline-ruby1.8 in ubuntu jaunty.
No description available for libreadline-ruby1.8 in ubuntu jaunty.
- libruby1.8: No summary available for libruby1.8 in ubuntu jaunty.
No description available for libruby1.8 in ubuntu jaunty.
- libruby1.8-dbg: No summary available for libruby1.8-dbg in ubuntu jaunty.
No description available for libruby1.8-dbg in ubuntu jaunty.
- libtcltk-ruby1.8: No summary available for libtcltk-ruby1.8 in ubuntu intrepid.
No description available for libtcltk-ruby1.8 in ubuntu intrepid.
- rdoc1.8: No summary available for rdoc1.8 in ubuntu intrepid.
No description available for rdoc1.8 in ubuntu intrepid.
- ri1.8: No summary available for ri1.8 in ubuntu jaunty.
No description available for ri1.8 in ubuntu jaunty.
- ruby1.8: No summary available for ruby1.8 in ubuntu intrepid.
No description available for ruby1.8 in ubuntu intrepid.
- ruby1.8-dev: No summary available for ruby1.8-dev in ubuntu jaunty.
No description available for ruby1.8-dev in ubuntu jaunty.
- ruby1.8-elisp: No summary available for ruby1.8-elisp in ubuntu jaunty.
No description available for ruby1.8-elisp in ubuntu jaunty.
- ruby1.8-examples: No summary available for ruby1.8-examples in ubuntu intrepid.
No description available for ruby1.8-examples in ubuntu intrepid.
