[ubuntu/karmic-security] ruby1.9, ruby1.9 (delayed) 1.9.0.5-1ubuntu1.2 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Tue Feb 16 14:03:35 GMT 2010
- Previous message: [ubuntu/karmic-security] flashplugin-nonfree, flashplugin-nonfree_10.0.45.2ubuntu0.9.10.1_amd64_translations.tar.gz, flashplugin-nonfree_10.0.45.2ubuntu0.9.10.1_i386_translations.tar.gz, flashplugin-nonfree_10.0.45.2ubuntu0.9.10.1_lpia_translations.tar.gz (delayed) 10.0.45.2ubuntu0.9.10.1 (Accepted)
- Next message: [ubuntu/karmic-security] squid_2.7.STABLE6-2ubuntu2.1_sparc_translations.tar.gz (delayed), squid_2.7.STABLE6-2ubuntu2.1_armel_translations.tar.gz, squid_2.7.STABLE6-2ubuntu2.1_lpia_translations.tar.gz, squid, squid_2.7.STABLE6-2ubuntu2.1_i386_translations.tar.gz, squid_2.7.STABLE6-2ubuntu2.1_powerpc_translations.tar.gz, squid_2.7.STABLE6-2ubuntu2.1_ia64_translations.tar.gz, squid_2.7.STABLE6-2ubuntu2.1_amd64_translations.tar.gz 2.7.STABLE6-2ubuntu2.1 (Accepted)
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
ruby1.9 (1.9.0.5-1ubuntu1.2) karmic-security; urgency=low
* SECURITY UPDATE: arbitrary code execution via string operations
- debian/patches/932_CVE-2009-4124.dpatch: calculate lengths properly
in string.c, add test in test/ruby/test_string.rb.
- CVE-2009-4124
* SECURITY UPDATE: incorrect log file sanitation in WEBrick (LP: #509392)
- debian/patches/933_CVE-2009-4492.dpatch: properly escape in
lib/webrick/{accesslog.rb,httprequest.rb,httpstatus.rb,httputils.rb},
add test to test/webrick/test_cgi.rb.
- CVE-2009-4492
* SECURITY UPDATE: denial of service in BigDecimal library via string
argument that represents a large number (LP: #385436)
- debian/patches/934_CVE-2009-1904.dpatch: handle large numbers
properly in ext/bigdecimal/bigdecimal.c.
- CVE-2009-1904
Date: Fri, 12 Feb 2010 09:16:22 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/karmic/+source/ruby1.9/1.9.0.5-1ubuntu1.2
-------------- next part --------------
Format: 1.8
Date: Fri, 12 Feb 2010 09:16:22 -0500
Source: ruby1.9
Binary: ruby1.9 libruby1.9 libruby1.9-dbg ruby1.9-dev libdbm-ruby1.9 libgdbm-ruby1.9 libreadline-ruby1.9 libtcltk-ruby1.9 libopenssl-ruby1.9 ruby1.9-examples ruby1.9-elisp ri1.9 rdoc1.9 irb1.9
Architecture: source
Version: 1.9.0.5-1ubuntu1.2
Distribution: karmic-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
irb1.9 - Interactive Ruby (for Ruby 1.9)
libdbm-ruby1.9 - DBM interface for Ruby 1.9
libgdbm-ruby1.9 - GDBM interface for Ruby 1.9
libopenssl-ruby1.9 - OpenSSL interface for Ruby 1.9
libreadline-ruby1.9 - Readline interface for Ruby 1.9
libruby1.9 - Libraries necessary to run Ruby 1.9
libruby1.9-dbg - Debugging symbols for Ruby 1.9
libtcltk-ruby1.9 - Tcl/Tk interface for Ruby 1.9
rdoc1.9 - Generate documentation from Ruby source files (for Ruby 1.9)
ri1.9 - Ruby Interactive reference (for Ruby 1.9)
ruby1.9 - Interpreter of object-oriented scripting language Ruby 1.9
ruby1.9-dev - Header files for compiling extension modules for the Ruby 1.9
ruby1.9-elisp - ruby-mode for Emacsen
ruby1.9-examples - Examples for Ruby 1.9
Changes:
ruby1.9 (1.9.0.5-1ubuntu1.2) karmic-security; urgency=low
.
* SECURITY UPDATE: arbitrary code execution via string operations
- debian/patches/932_CVE-2009-4124.dpatch: calculate lengths properly
in string.c, add test in test/ruby/test_string.rb.
- CVE-2009-4124
* SECURITY UPDATE: incorrect log file sanitation in WEBrick (LP: #509392)
- debian/patches/933_CVE-2009-4492.dpatch: properly escape in
lib/webrick/{accesslog.rb,httprequest.rb,httpstatus.rb,httputils.rb},
add test to test/webrick/test_cgi.rb.
- CVE-2009-4492
* SECURITY UPDATE: denial of service in BigDecimal library via string
argument that represents a large number (LP: #385436)
- debian/patches/934_CVE-2009-1904.dpatch: handle large numbers
properly in ext/bigdecimal/bigdecimal.c.
- CVE-2009-1904
Checksums-Sha1:
2a903b5e2ef1d8208573bcaea0829cd283f74857 1750 ruby1.9_1.9.0.5-1ubuntu1.2.dsc
054c7d8d4150e73ec63a2177ac03f69b6523a595 60599 ruby1.9_1.9.0.5-1ubuntu1.2.diff.gz
Checksums-Sha256:
cff444fc16a707c5ecbe2f655c6902135cfc06c77eec018862c6be1ee5266799 1750 ruby1.9_1.9.0.5-1ubuntu1.2.dsc
014494b27344ea2f608db9394409586ab02de32217a0c0da20411d48a6a08bdf 60599 ruby1.9_1.9.0.5-1ubuntu1.2.diff.gz
Files:
6597f3990aa7c5ab50275e3ca4f2049b 1750 ruby optional ruby1.9_1.9.0.5-1ubuntu1.2.dsc
948379d375bb367145dc0f1a4456f852 60599 ruby optional ruby1.9_1.9.0.5-1ubuntu1.2.diff.gz
Launchpad-Bugs-Fixed: 385436 509392
Original-Maintainer: akira yamada <akira at debian.org>
- Previous message: [ubuntu/karmic-security] flashplugin-nonfree, flashplugin-nonfree_10.0.45.2ubuntu0.9.10.1_amd64_translations.tar.gz, flashplugin-nonfree_10.0.45.2ubuntu0.9.10.1_i386_translations.tar.gz, flashplugin-nonfree_10.0.45.2ubuntu0.9.10.1_lpia_translations.tar.gz (delayed) 10.0.45.2ubuntu0.9.10.1 (Accepted)
- Next message: [ubuntu/karmic-security] squid_2.7.STABLE6-2ubuntu2.1_sparc_translations.tar.gz (delayed), squid_2.7.STABLE6-2ubuntu2.1_armel_translations.tar.gz, squid_2.7.STABLE6-2ubuntu2.1_lpia_translations.tar.gz, squid, squid_2.7.STABLE6-2ubuntu2.1_i386_translations.tar.gz, squid_2.7.STABLE6-2ubuntu2.1_powerpc_translations.tar.gz, squid_2.7.STABLE6-2ubuntu2.1_ia64_translations.tar.gz, squid_2.7.STABLE6-2ubuntu2.1_amd64_translations.tar.gz 2.7.STABLE6-2ubuntu2.1 (Accepted)
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the Karmic-changes
mailing list