lp:ubuntu/intrepid-security/ruby1.9
- Get this branch:
- bzr branch lp:ubuntu/intrepid-security/ruby1.9
Branch merges
Branch information
- Owner:
- Ubuntu branches
- Status:
- Development
Recent revisions
- 23. By Marc Deslauriers
-
* SECURITY UPDATE: arbitrary code execution via string operations
- debian/patches/ 922_security_ CVE-2009- 4124.dpatch: calculate lengths
properly in string.c, add test in test/ruby/test_string. rb.
- CVE-2009-4124
* SECURITY UPDATE: incorrect log file sanitation in WEBrick (LP: #509392)
- debian/patches/ 923_security_ CVE-2009- 4492.dpatch: properly escape in
lib/webrick/ {accesslog. rb,httprequest. rb,httpstatus. rb,httputils. rb},
add test to test/webrick/test_cgi. rb.
- CVE-2009-4492 - 22. By Marc Deslauriers
-
* SECURITY UPDATE: certificate spoofing via invalid return value check
in OCSP_basic_verify
- debian/patches/ 920_security_ CVE-2009- 0642.dpatch: also check for -1
return code in ext/openssl/ossl_ocsp. c.
- CVE-2009-0642
* SECURITY UPDATE: denial of service in BigDecimal library via string
argument that represents a large number (LP: #385436)
- debian/patches/ 921_security_ CVE-2009- 1904.dpatch: handle large
numbers properly in ext/bigdecimal/bigdecimal. c.
- CVE-2009-1904 - 21. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service in regular expression engine via
multiple long requests to a Ruby socket
- debian/patches/ 308_regexp_ segv: avoid segmentation fault in
Regexp#inspect
- CVE-2008-3443
* debian/patches/ 307_r19033_ rexml_DoS. dpatch: updated to fix a
regression (debian bug #502535) - 19. By daigo
-
debian/rules: Fixed a FTBFS on hurd-i386: failure of
cat /proc/cpuinfo no more stops the build process.
(Closes: #497737) - 18. By daigo
-
[ Lucas Nussbaum ]
* Because of make's dependency handling on phony targets after the addition
of the watch in 1.9.0.1-4, parse.o was rebuilt three times during the
build process. Build it only once, which should reduce the build time
significantly.[ Daigo Moriwaki ]
* RubyGems did not work completely due to a gem_relude mechanism . This
issue has been fixed. (Closes: #492206)
- debian/patches/ 201_gem_ prelude. dpatch
- debian/rules - 17. By Jamie Strandboge
-
* Merge from debian unstable, remaining changes:
- debian/control: for ruby1.9, moved rdoc1.9 suggestion to depends.
(LP: #228345)
- Modify Maintainer value to match the DebianMaintainerField
specification. - 16. By Stephan RĂ¼gamer
-
* Merge from debian unstable, remaining changes:
- Robustify check for target_os, fixing build failure on lpia.
* debian/control:
- ruby1.9 pkg: moved rdoc1.9 suggestion to depends. (LP: #228345) - 15. By Stephan RĂ¼gamer
-
* Merge from debian unstable, remaining changes:
- Robustify check for target_os, fixing build failure on lpia. - 14. By Matthias Klose
-
* Sync from Debian; remaining changes:
- Add -g to CFLAGS.
* Fixes build failure on ia64.
* Fixes build failure with gcc-4.2 on lpia.
* Robustify check for target_os, fixing build failure on lpia.
* Set Ubuntu maintainer address.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/karmic/ruby1.9