Ubuntu
ruby2.1 package

ruby2.1 2.1.2-2ubuntu2 source package in Ubuntu

Changelog

ruby2.1 (2.1.2-2ubuntu2) vivid; urgency=medium

  * SECURITY UPDATE: denial of service via buffer overrun in encodes
    function
    - debian/patches/CVE-2014x-4975.patch: properly calculate buffer size
      in pack.c, added test to test/ruby/test_pack.rb.
    - CVE-2014-4975
  * SECURITY UPDATE: denial of service via XML expansion
    - debian/patches/CVE-2014-8080.patch: limit expansions in
      lib/rexml/entity.rb, added tests to test/rexml/test_document.rb,
      test/rexml/test_entity.rb.
    - CVE-2014-8080
 -- Marc Deslauriers <email address hidden>   Tue, 04 Nov 2014 14:50:11 -0500

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Vivid
Original maintainer:
Ubuntu Developers
Architectures:
any all
Section:
misc
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
ruby2.1_2.1.2.orig.tar.gz 11.6 MiB fc2fd4db363f386d4e4cc32f9074b13229be821e73e1479462f84e95e2274705
ruby2.1_2.1.2-2ubuntu2.debian.tar.xz 79.6 KiB a18ab0a7d5b884d886d9915b5134c499ad4963a1a78d56efc9e4a6486e10766b
ruby2.1_2.1.2-2ubuntu2.dsc 2.4 KiB 21a42810e14058da7bcc62a6c5bfed45226bc024da82fd4f4449b2110d618f15

Available diffs

View changes file

Binary packages built by this source

libruby2.1: No summary available for libruby2.1 in ubuntu vivid.

No description available for libruby2.1 in ubuntu vivid.

ruby2.1: No summary available for ruby2.1 in ubuntu vivid.

No description available for ruby2.1 in ubuntu vivid.

ruby2.1-dev: No summary available for ruby2.1-dev in ubuntu vivid.

No description available for ruby2.1-dev in ubuntu vivid.

ruby2.1-doc: No summary available for ruby2.1-doc in ubuntu vivid.

No description available for ruby2.1-doc in ubuntu vivid.