Ubuntu
ruby2.3 package

ruby2.3 2.3.3-1ubuntu1.2 source package in Ubuntu

Changelog

ruby2.3 (2.3.3-1ubuntu1.2) artful-security; urgency=medium

  * SECURITY UPDATE: possible command injection attacks through
    kernel#open
    - debian/patches/CVE-2017-17790.patch: fix uses of Kernel#open in
      lib/resolv.rb.
    - CVE-2017-17790
  * SECURITY UPDATE: possibly execute arbitrary commands via a crafted user name
    - debian/patches/CVE-2017-10784.patch: sanitize any type of logs in
      lib/webrick/httpstatus.rb, lib/webrick/log.rb and test/webrick/test_httpauth.rb.
    - CVE-2017-10784
  * SECURITY UPDATE: denial of service via a crafted string
    - debian/patches/CVE-2017-14033.patch: fix in ext/openssl/ossl_asn1.c.
    - CVE-2017-14033
  * SECURITY UPDATE: Arbitrary memory expose during a JSON.generate call
    - debian/patches/CVE-2017-14064.patch: fix this in
      ext/json/ext/generator/generator.c and ext/json/ext/generator/generator.h.

 -- <email address hidden> (Leonidas S. Barbosa)  Tue, 09 Jan 2018 11:41:26 -0300

Upload details

Uploaded by:
Leonidas S. Barbosa
Uploaded to:
Artful
Original maintainer:
Ubuntu Developers
Architectures:
any all
Section:
ruby
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
ruby2.3_2.3.3.orig.tar.xz 8.0 MiB 799796bb740832c7257f45089fdbd9cd57686cac033f88d0b078063b6d3d77ad
ruby2.3_2.3.3-1ubuntu1.2.debian.tar.xz 99.8 KiB 4e7be514d6098ac54aeb0549a2bb4f00e9f3c14ee6e6c8651019d4e9063f0b9f
ruby2.3_2.3.3-1ubuntu1.2.dsc 2.5 KiB e70266763b4978f0d065cb1a4bb10586c7adc68ad6fd9b8925fc5d95f09d2c55

View changes file

Binary packages built by this source

libruby2.3: No summary available for libruby2.3 in ubuntu artful.

No description available for libruby2.3 in ubuntu artful.

libruby2.3-dbgsym: No summary available for libruby2.3-dbgsym in ubuntu artful.

No description available for libruby2.3-dbgsym in ubuntu artful.

ruby2.3: No summary available for ruby2.3 in ubuntu artful.

No description available for ruby2.3 in ubuntu artful.

ruby2.3-dbgsym: No summary available for ruby2.3-dbgsym in ubuntu artful.

No description available for ruby2.3-dbgsym in ubuntu artful.

ruby2.3-dev: No summary available for ruby2.3-dev in ubuntu artful.

No description available for ruby2.3-dev in ubuntu artful.

ruby2.3-doc: No summary available for ruby2.3-doc in ubuntu artful.

No description available for ruby2.3-doc in ubuntu artful.

ruby2.3-tcltk: No summary available for ruby2.3-tcltk in ubuntu artful.

No description available for ruby2.3-tcltk in ubuntu artful.

ruby2.3-tcltk-dbgsym: No summary available for ruby2.3-tcltk-dbgsym in ubuntu artful.

No description available for ruby2.3-tcltk-dbgsym in ubuntu artful.