[ubuntu/questing-updates] ruby3.3 3.3.8-2ubuntu2.1 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Tue Mar 31 19:58:41 UTC 2026
ruby3.3 (3.3.8-2ubuntu2.1) questing-security; urgency=medium
* SECURITY UPDATE: credential leak in URI gem
- debian/patches/CVE-2025-61594*.patch: adds an authority accessor and
totally clears user info after the setting any of authority info in
lib/uri/generic.rb.
- CVE-2025-61594
Date: 2026-03-26 08:32:00.147128+00:00
Changed-By: Ian Constantin <ian.constantin at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/ruby3.3/3.3.8-2ubuntu2.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Questing-changes
mailing list