ruby2.0 2.0.0.484+really457-3ubuntu2 source package in Ubuntu
Changelog
ruby2.0 (2.0.0.484+really457-3ubuntu2) vivid; urgency=medium
* SECURITY UPDATE: denial of service via buffer overrun in encodes
function
- debian/patches/CVE-2014x-4975.patch: properly calculate buffer size
in pack.c, added test to test/ruby/test_pack.rb.
- CVE-2014-4975
* SECURITY UPDATE: denial of service via XML expansion
- debian/patches/CVE-2014-8080.patch: limit expansions in
lib/rexml/entity.rb, added tests to test/rexml/test_document.rb,
test/rexml/test_entity.rb.
- CVE-2014-8080
-- Marc Deslauriers <email address hidden> Tue, 04 Nov 2014 14:49:17 -0500
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Vivid
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- misc
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| ruby2.0_2.0.0.484+really457.orig.tar.xz | 6.7 MiB | 3ba1891621ca2b246600ea64c867e8ca25dde3ff5bb2a77c8e43572802a07e62 |
| ruby2.0_2.0.0.484+really457-3ubuntu2.debian.tar.xz | 77.1 KiB | 3880e392741390745e3553b7fed26905d66174c388effe280c17a1fb8a34704d |
| ruby2.0_2.0.0.484+really457-3ubuntu2.dsc | 2.4 KiB | 5bacf39ba1103a14bc5bf7910180239487d7f4c91018e4a3a990e84937093c25 |
Available diffs
Binary packages built by this source
- libruby2.0: No summary available for libruby2.0 in ubuntu vivid.
No description available for libruby2.0 in ubuntu vivid.
- ruby2.0: No summary available for ruby2.0 in ubuntu vivid.
No description available for ruby2.0 in ubuntu vivid.
- ruby2.0-dev: No summary available for ruby2.0-dev in ubuntu vivid.
No description available for ruby2.0-dev in ubuntu vivid.
- ruby2.0-doc: No summary available for ruby2.0-doc in ubuntu vivid.
No description available for ruby2.0-doc in ubuntu vivid.
