[ubuntu/vivid-proposed] ruby2.0 2.0.0.484+really457-3ubuntu3 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Thu Nov 20 18:47:16 UTC 2014
ruby2.0 (2.0.0.484+really457-3ubuntu3) vivid; urgency=medium
* SECURITY UPDATE: denial of service via XML expansion
- debian/patches/CVE-2014-8090.patch: add REXML::Document#document
to rexml/document.rb, add warning to rexml/entity.rb, added tests to
test/rexml/test_document.rb.
- CVE-2014-8090
Date: Wed, 19 Nov 2014 08:48:21 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/ruby2.0/2.0.0.484+really457-3ubuntu3
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Wed, 19 Nov 2014 08:48:21 -0500
Source: ruby2.0
Binary: ruby2.0 libruby2.0 ruby2.0-dev ruby2.0-doc
Architecture: source
Version: 2.0.0.484+really457-3ubuntu3
Distribution: vivid
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
libruby2.0 - Libraries necessary to run Ruby 2.0
ruby2.0 - Interpreter of object-oriented scripting language Ruby
ruby2.0-dev - Header files for compiling extension modules for the Ruby 2.0
ruby2.0-doc - Documentation for Ruby 2.0
Changes:
ruby2.0 (2.0.0.484+really457-3ubuntu3) vivid; urgency=medium
.
* SECURITY UPDATE: denial of service via XML expansion
- debian/patches/CVE-2014-8090.patch: add REXML::Document#document
to rexml/document.rb, add warning to rexml/entity.rb, added tests to
test/rexml/test_document.rb.
- CVE-2014-8090
Checksums-Sha1:
a60835f66805213c28d9da594ec2b085e77bf1f5 2481 ruby2.0_2.0.0.484+really457-3ubuntu3.dsc
9b5f60746bd71bab8b163b520a11eb987381a67e 79552 ruby2.0_2.0.0.484+really457-3ubuntu3.debian.tar.xz
Checksums-Sha256:
150d792203c3add06e3899114d799fda5b0976955f0e018203a5114b8e79bf48 2481 ruby2.0_2.0.0.484+really457-3ubuntu3.dsc
3ff9e7eddf73c0ddcb9a9b234f00f36da3414d78f6152fb83a84a8a3f009a99b 79552 ruby2.0_2.0.0.484+really457-3ubuntu3.debian.tar.xz
Files:
453ac6b7a7b99cd9433eeec36c5286d3 2481 ruby extra ruby2.0_2.0.0.484+really457-3ubuntu3.dsc
487765f647a1bdc02bf76ab230b90ad2 79552 ruby extra ruby2.0_2.0.0.484+really457-3ubuntu3.debian.tar.xz
Original-Maintainer: Antonio Terceiro <terceiro at debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=yzmS
-----END PGP SIGNATURE-----
More information about the Vivid-changes
mailing list