[ubuntu/mantic-proposed] ruby3.1 3.1.2-7ubuntu2 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Sat Sep 23 13:55:29 UTC 2023 

ruby3.1 (3.1.2-7ubuntu2) mantic; urgency=medium

  * SECURITY UPDATE: ReDoS
    - debian/patches/CVE-2023-36617.patch: changes regex behaviour
      in lib/url/rfc2396_parser.rb, lib/uri/rfc3986_parser.rb.
    - CVE-2023-36617

Date: Fri, 22 Sep 2023 14:23:46 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/ruby3.1/3.1.2-7ubuntu2
-------------- next part --------------
Format: 1.8
Date: Fri, 22 Sep 2023 14:23:46 -0400
Source: ruby3.1
Built-For-Profiles: noudeb
Architecture: source
Version: 3.1.2-7ubuntu2
Distribution: mantic
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Changes:
 ruby3.1 (3.1.2-7ubuntu2) mantic; urgency=medium
 .
   * SECURITY UPDATE: ReDoS
     - debian/patches/CVE-2023-36617.patch: changes regex behaviour
       in lib/url/rfc2396_parser.rb, lib/uri/rfc3986_parser.rb.
     - CVE-2023-36617
Checksums-Sha1:
 bb29d1b4d79f881e685b5ed23a309bb87ed8510c 2670 ruby3.1_3.1.2-7ubuntu2.dsc
 8adfda7b254e933c4fa095f3163181bd2efa6c49 78648 ruby3.1_3.1.2-7ubuntu2.debian.tar.xz
 eb2166a195b9f1cce73dfdce6b4ea570ee0c344e 7515 ruby3.1_3.1.2-7ubuntu2_source.buildinfo
Checksums-Sha256:
 52922662f5a7ee81c16d06f8b084c87bcb281c7af2b1a62888043eeda7035abb 2670 ruby3.1_3.1.2-7ubuntu2.dsc
 c4b9ef950075643a45f872ffa9a76c07791be1df36b372ed756a109ef0532f91 78648 ruby3.1_3.1.2-7ubuntu2.debian.tar.xz
 3a2fba5a9a2fb2736872e16a27d8b8baaf8d80dea4ee8abbce5adc3bfe2cda83 7515 ruby3.1_3.1.2-7ubuntu2_source.buildinfo
Files:
 7a8b0e25d5527d3810cf8032e7b0be0a 2670 ruby optional ruby3.1_3.1.2-7ubuntu2.dsc
 1999187aaa7fb7663a8186442a8c2cd7 78648 ruby optional ruby3.1_3.1.2-7ubuntu2.debian.tar.xz
 749ea6af9e29021c9761699919596c6b 7515 ruby optional ruby3.1_3.1.2-7ubuntu2_source.buildinfo
Original-Maintainer: Debian Ruby Team <pkg-ruby-extras-maintainers at lists.alioth.debian.org>

More information about the mantic-changes mailing list