[ubuntu/jaunty-security] ruby1.9, ruby1.9 (delayed) 1.9.0.2-9ubuntu1.2 (Accepted)

Ubuntu Installer archive at ubuntu.com
Tue Feb 16 14:03:52 GMT 2010 

ruby1.9 (1.9.0.2-9ubuntu1.2) jaunty-security; urgency=low

  * SECURITY UPDATE: arbitrary code execution via string operations
    - debian/patches/933_security_CVE-2009-4124.dpatch: calculate lengths
      properly in string.c, add test in test/ruby/test_string.rb.
    - CVE-2009-4124
  * SECURITY UPDATE: incorrect log file sanitation in WEBrick (LP: #509392)
    - debian/patches/934_security_CVE-2009-4492.dpatch: properly escape in
      lib/webrick/{accesslog.rb,httprequest.rb,httpstatus.rb,httputils.rb},
      add test to test/webrick/test_cgi.rb.
    - CVE-2009-4492

Date: Thu, 11 Feb 2010 16:37:11 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/jaunty/+source/ruby1.9/1.9.0.2-9ubuntu1.2
-------------- next part --------------
Format: 1.8
Date: Thu, 11 Feb 2010 16:37:11 -0500
Source: ruby1.9
Binary: ruby1.9 libruby1.9 libruby1.9-dbg ruby1.9-dev libdbm-ruby1.9 libgdbm-ruby1.9 libreadline-ruby1.9 libtcltk-ruby1.9 libopenssl-ruby1.9 ruby1.9-examples ruby1.9-elisp ri1.9 rdoc1.9 irb1.9
Architecture: source
Version: 1.9.0.2-9ubuntu1.2
Distribution: jaunty-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 irb1.9     - Interactive Ruby (for Ruby 1.9)
 libdbm-ruby1.9 - DBM interface for Ruby 1.9
 libgdbm-ruby1.9 - GDBM interface for Ruby 1.9
 libopenssl-ruby1.9 - OpenSSL interface for Ruby 1.9
 libreadline-ruby1.9 - Readline interface for Ruby 1.9
 libruby1.9 - Libraries necessary to run Ruby 1.9
 libruby1.9-dbg - Debugging symbols for Ruby 1.9
 libtcltk-ruby1.9 - Tcl/Tk interface for Ruby 1.9
 rdoc1.9    - Generate documentation from Ruby source files (for Ruby 1.9)
 ri1.9      - Ruby Interactive reference (for Ruby 1.9)
 ruby1.9    - Interpreter of object-oriented scripting language Ruby 1.9
 ruby1.9-dev - Header files for compiling extension modules for the Ruby 1.9
 ruby1.9-elisp - ruby-mode for Emacsen
 ruby1.9-examples - Examples for Ruby 1.9
Launchpad-Bugs-Fixed: 509392
Changes: 
 ruby1.9 (1.9.0.2-9ubuntu1.2) jaunty-security; urgency=low
 .
   * SECURITY UPDATE: arbitrary code execution via string operations
     - debian/patches/933_security_CVE-2009-4124.dpatch: calculate lengths
       properly in string.c, add test in test/ruby/test_string.rb.
     - CVE-2009-4124
   * SECURITY UPDATE: incorrect log file sanitation in WEBrick (LP: #509392)
     - debian/patches/934_security_CVE-2009-4492.dpatch: properly escape in
       lib/webrick/{accesslog.rb,httprequest.rb,httpstatus.rb,httputils.rb},
       add test to test/webrick/test_cgi.rb.
     - CVE-2009-4492
Checksums-Sha1: 
 2902b35bf4feceb41502034fd0caca132850b6d9 1772 ruby1.9_1.9.0.2-9ubuntu1.2.dsc
 4785834023f3680767ddb244156e14de01a931c6 56611 ruby1.9_1.9.0.2-9ubuntu1.2.diff.gz
Checksums-Sha256: 
 fe17f2709a37c680ad62b3d8c52c4e647f11cd013b1ba5592013078e20013f86 1772 ruby1.9_1.9.0.2-9ubuntu1.2.dsc
 7256913e88949a57581ee31e4edd154459781cd860bca687eb31526bc425de0e 56611 ruby1.9_1.9.0.2-9ubuntu1.2.diff.gz
Files: 
 2c19730c2b99484cbe3aa0339ff385df 1772 interpreters optional ruby1.9_1.9.0.2-9ubuntu1.2.dsc
 ca9a43b5c365ac7d58208743a6e04da1 56611 interpreters optional ruby1.9_1.9.0.2-9ubuntu1.2.diff.gz
Original-Maintainer: akira yamada <akira at debian.org>

More information about the Jaunty-changes mailing list