[ubuntu/vivid-proposed] ruby2.1 2.1.2-2ubuntu3 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Thu Nov 20 18:47:19 UTC 2014
ruby2.1 (2.1.2-2ubuntu3) vivid; urgency=medium
* SECURITY UPDATE: denial of service via XML expansion
- debian/patches/CVE-2014-8090.patch: add REXML::Document#document
to rexml/document.rb, add warning to rexml/entity.rb, added tests to
test/rexml/test_document.rb.
- CVE-2014-8090
Date: Wed, 19 Nov 2014 08:23:15 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/ruby2.1/2.1.2-2ubuntu3
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Wed, 19 Nov 2014 08:23:15 -0500
Source: ruby2.1
Binary: ruby2.1 libruby2.1 ruby2.1-dev ruby2.1-doc
Architecture: source
Version: 2.1.2-2ubuntu3
Distribution: vivid
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
libruby2.1 - Libraries necessary to run Ruby 2.1
ruby2.1 - Interpreter of object-oriented scripting language Ruby
ruby2.1-dev - Header files for compiling extension modules for the Ruby 2.1
ruby2.1-doc - Documentation for Ruby 2.1
Changes:
ruby2.1 (2.1.2-2ubuntu3) vivid; urgency=medium
.
* SECURITY UPDATE: denial of service via XML expansion
- debian/patches/CVE-2014-8090.patch: add REXML::Document#document
to rexml/document.rb, add warning to rexml/entity.rb, added tests to
test/rexml/test_document.rb.
- CVE-2014-8090
Checksums-Sha1:
e94e855ffff813b819cc20785100352845508261 2452 ruby2.1_2.1.2-2ubuntu3.dsc
47237177aac63ae3e118a16183e5940658f0cb68 82144 ruby2.1_2.1.2-2ubuntu3.debian.tar.xz
Checksums-Sha256:
1d0df74759ab5bf53ec6e46119ee1dfcfa65e6f723fccc53daf5871e293be2cf 2452 ruby2.1_2.1.2-2ubuntu3.dsc
818e5620b6bf2fd0a9ff89762b583400a9acf8af98ed708c4a831cce75e1bb64 82144 ruby2.1_2.1.2-2ubuntu3.debian.tar.xz
Files:
3db7dc74989b8701acac1e93c977dd75 2452 ruby extra ruby2.1_2.1.2-2ubuntu3.dsc
d1410628e80f55e2f32209160b479903 82144 ruby extra ruby2.1_2.1.2-2ubuntu3.debian.tar.xz
Original-Maintainer: Antonio Terceiro <terceiro at debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=6WLe
-----END PGP SIGNATURE-----
More information about the Vivid-changes
mailing list