[ubuntu/intrepid] ruby1.9 1.9.0.2-7 (Accepted)

Ubuntu Installer archive at ubuntu.com
Tue Oct 14 16:02:56 BST 2008 

ruby1.9 (1.9.0.2-7) unstable; urgency=low

  * debian/rules: Fixed a FTBFS on hurd-i386: failure of 
    cat /proc/cpuinfo no more stops the build process.
    (Closes: #497737)

ruby1.9 (1.9.0.2-6) unstable; urgency=low

  * Added patches under debian/patches which were backported from the
    upstream and fixed multiple vulnerabilities: 
    - 301_dns_spoofing_r18424.dpatch: fixed DNS spoofing vulnerability 
      in resolv.rb. (CVE-2008-1447)
    - 302_r18220_webrick_DoS.dpatch: fixed DoS vulnerability in WEBrick.
    - 303_r17726_syslog_safeleve4.dpatch: syslog operations should be 
      protected from $SAFE level 4.
    - 304_r17577_trace_var_safeleve4.dpatch: rb_f_trace_var should not
      be allowed at safe level 4.
    - 305_r18496_dl_tain.dpatch: dl doesn't check taintness, so it could 
      allow attackers to call dangerous functions.
    - 306_r17586_methods_called_safelevel13.dpatch: Insecure methods may 
      be called at safe level 1-3.
      (Closes: #494402)
    - 307_r19033_rexml_DoS.dpatch: fixed DoS vulnerability in REXML.
      (CVE-2008-3790) (Closes: #497610)

Date: Tue,  14 Oct 2008 16:02:08 +0100
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: akira yamada <akira at debian.org>
Origin: Debian/unstable
https://launchpad.net/ubuntu/intrepid/+source/ruby1.9/1.9.0.2-7
-------------- next part --------------
Origin: Debian/unstable
Format: 1.7
Date: Tue,  14 Oct 2008 16:02:08 +0100
Source: ruby1.9
Binary: ruby1.9, libruby1.9, libruby1.9-dbg, ruby1.9-dev, libdbm-ruby1.9, libgdbm-ruby1.9, libreadline-ruby1.9, libtcltk-ruby1.9, libopenssl-ruby1.9, ruby1.9-examples, ruby1.9-elisp, ri1.9, rdoc1.9, irb1.9
Architecture: source
Version: 1.9.0.2-7
Distribution: intrepid
Urgency: low
Maintainer: akira yamada <akira at debian.org>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description: 
 ruby1.9    - Interpreter of object-oriented scripting language Ruby 1.9
Closes: 494402 497610 497737
Changes: 
 ruby1.9 (1.9.0.2-7) unstable; urgency=low
 .
   * debian/rules: Fixed a FTBFS on hurd-i386: failure of 
     cat /proc/cpuinfo no more stops the build process.
     (Closes: #497737)
 .
 ruby1.9 (1.9.0.2-6) unstable; urgency=low
 .
   * Added patches under debian/patches which were backported from the
     upstream and fixed multiple vulnerabilities: 
     - 301_dns_spoofing_r18424.dpatch: fixed DNS spoofing vulnerability 
       in resolv.rb. (CVE-2008-1447)
     - 302_r18220_webrick_DoS.dpatch: fixed DoS vulnerability in WEBrick.
     - 303_r17726_syslog_safeleve4.dpatch: syslog operations should be 
       protected from $SAFE level 4.
     - 304_r17577_trace_var_safeleve4.dpatch: rb_f_trace_var should not
       be allowed at safe level 4.
     - 305_r18496_dl_tain.dpatch: dl doesn't check taintness, so it could 
       allow attackers to call dangerous functions.
     - 306_r17586_methods_called_safelevel13.dpatch: Insecure methods may 
       be called at safe level 1-3.
       (Closes: #494402)
     - 307_r19033_rexml_DoS.dpatch: fixed DoS vulnerability in REXML.
       (CVE-2008-3790) (Closes: #497610)
Files: 
 79bf66d1be36b5d7d1abebf3225a1334 1651 interpreters optional ruby1.9_1.9.0.2-7.dsc
 6332a9c250e61f35cbab4eeb991ed230 49111 interpreters optional ruby1.9_1.9.0.2-7.diff.gz

More information about the Intrepid-changes mailing list