[ubuntu/jammy-security] ruby3.0 3.0.2-7ubuntu2.3 (Accepted)
Leonidas S. Barbosa
leo.barbosa at canonical.com
Mon Jan 23 15:18:06 UTC 2023
ruby3.0 (3.0.2-7ubuntu2.3) jammy-security; urgency=medium
* SECURITY UPDATE: HTTP response splitting
- debian/patches/CVE-2021-33621*.patch: adds regex to lib/cgi/core.rb and
lib/cgi/cookie.rb along with tests to check http response headers and
cookie fields for invalid characters.
- debian/patches/fix_tzdata-2022.patch: fix for tzdata-2022g tests
in test/ruby/test_time_tz.rb.
- CVE-2021-33621
ruby3.0 (3.0.2-7ubuntu2.2) jammy; urgency=medium
* d/p/fix-length-calc-for-Array#slice.patch: Add patch to
fix length calculation for Array#slice!. (LP: #1982703)
Date: 2023-01-20 11:17:09.269822+00:00
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
https://launchpad.net/ubuntu/+source/ruby3.0/3.0.2-7ubuntu2.3
-------------- next part --------------
Sorry, changesfile not available.
More information about the jammy-changes
mailing list