[ubuntu/precise-updates] ruby1.9.1 1.9.3.0-1ubuntu2.10 (Accepted)
Ubuntu Archive Robot
cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Thu Nov 20 16:58:58 UTC 2014
ruby1.9.1 (1.9.3.0-1ubuntu2.10) precise-security; urgency=medium
* SECURITY UPDATE: denial of service via XML expansion
- debian/patches/CVE-2014-8090.patch: add REXML::Document#document
to lib/rexml/document.rb, add warning to lib/rexml/entity.rb, added
tests to test/rexml/test_document.rb.
- CVE-2014-8090
Date: 2014-11-19 21:20:12.625536+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/ruby1.9.1/1.9.3.0-1ubuntu2.10
-------------- next part --------------
Sorry, changesfile not available.
More information about the Precise-changes
mailing list