ruby2.0 2.0.0.484-1ubuntu2.10 source package in Ubuntu
Changelog
ruby2.0 (2.0.0.484-1ubuntu2.10) trusty-security; urgency=medium
* SECURITY UPDATE: DoS vulnerability in query command
- debian/patches/CVE-2017-0901-0902.patch
patch extracted from debian Wheezy.
- CVE-2017-0901
- CVE-2017-0902
* SECURITY UPDATE: Remote code execution
- debian/patches/CVE-2017-0903.patch: fix in lib/rubygems.rb,
lib/rubygems/config_file.rb, lib/rubygems/safe_yaml.rb,
lib/rubygems/specification.rb.
- CVE-2017-0903
* SECURITY UPDATE: possibly execute arbitrary commands via a crafted user name
- debian/patches/CVE-2017-10784.patch: sanitize any type of logs in
lib/webrick/httpstatus.rb, lib/webrick/log.rb and test/webrick/test_httpauth.rb.
- CVE-2017-10784
* SECURITY UPDATE: Arbitrary memory expose during a JSON.generate call
- debian/patches/CVE-2017-14064.patch: fix this in
ext/json/ext/generator/generator.c and ext/json/ext/generator/generator.h.
- CVE-2017-14064
* SECURITY UPDATE: Malicious format string - buffer overrun
- debian/patches/CVE-2017-0898.patch: fix in sprintf.c,
test/ruby/test_sprintf.rb.
- CVE-2017-0898
* SECURITY UPDATE: Response splitting attack
- debian/patches/CVE-2017-17742*.patch: fix in webrick/httpresponse.rb,
- CVE-2017-17742
* SECURITY UPDATE: Deserialization untrusted data
- debian/patches/CVE-2018-1000074.patch fix in
lib/rubygems/commands/owner_command.rb,
- CVE-2018-1000074
* SECURITY UPDATE: Denial of service
- debian/patches/CVE-2018-8777*.patch: fix in lib/webrick/httpresponse.rb,
lib/webrick/httpservlet/filehandler.rb,
- CVE-2018-8777
-- <email address hidden> (Leonidas S. Barbosa) Mon, 11 Jun 2018 12:03:55 -0300
Upload details
- Uploaded by:
- Leonidas S. Barbosa
- Uploaded to:
- Trusty
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- ruby
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| ruby2.0_2.0.0.484.orig.tar.xz | 6.7 MiB | 9184719e59df0f61aa29dace2879ce516293ac82812c8686e3e9f49cbf0b5d50 |
| ruby2.0_2.0.0.484-1ubuntu2.10.debian.tar.gz | 127.5 KiB | 8b30d56ccd221e07c7f952bd7c4ce7cd95ef341a347902d6a3c3d100ad70ae89 |
| ruby2.0_2.0.0.484-1ubuntu2.10.dsc | 2.4 KiB | 10ac977ca2010e654ee76dda825ca1a5d7ec8e87270ecec553eacf4f58d654d7 |
Available diffs
Binary packages built by this source
- libruby2.0: Libraries necessary to run Ruby 2.0
Ruby is the interpreted scripting language for quick and easy
object-oriented programming. It has many features to process text
files and to do system management tasks (as in perl). It is simple,
straight-forward, and extensible.
.
This package includes the 'libruby-2.0' library, necessary to run Ruby 2.0.
(API version 2.0.0)
- libruby2.0-dbgsym: debug symbols for package libruby2.0
Ruby is the interpreted scripting language for quick and easy
object-oriented programming. It has many features to process text
files and to do system management tasks (as in perl). It is simple,
straight-forward, and extensible.
.
This package includes the 'libruby-2.0' library, necessary to run Ruby 2.0.
(API version 2.0.0)
- ruby2.0: Interpreter of object-oriented scripting language Ruby
Ruby is the interpreted scripting language for quick and easy
object-oriented programming. It has many features to process text
files and to do system management tasks (as in perl). It is simple,
straight-forward, and extensible.
.
In the name of this package, `2.0' indicates the Ruby library compatibility
version. This package currently provides the `2.0.x' branch of Ruby.
- ruby2.0-dbgsym: debug symbols for package ruby2.0
Ruby is the interpreted scripting language for quick and easy
object-oriented programming. It has many features to process text
files and to do system management tasks (as in perl). It is simple,
straight-forward, and extensible.
.
In the name of this package, `2.0' indicates the Ruby library compatibility
version. This package currently provides the `2.0.x' branch of Ruby.
- ruby2.0-dev: Header files for compiling extension modules for the Ruby 2.0
Ruby is the interpreted scripting language for quick and easy
object-oriented programming. It has many features to process text
files and to do system management tasks (as in perl). It is simple,
straight-forward, and extensible.
.
This package contains the header files and the mkmf library, necessary
to make extension library for Ruby 2.0. It is also required to build
many gems.
- ruby2.0-doc: Documentation for Ruby 2.0
Ruby is the interpreted scripting language for quick and easy
object-oriented programming. It has many features to process text
files and to do system management tasks (as in perl). It is simple,
straight-forward, and extensible.
.
This package contains the autogenerated documentation for Ruby 2.0.
- ruby2.0-tcltk: Ruby/Tk for Ruby 2.0
Ruby is the interpreted scripting language for quick and easy
object-oriented programming. It has many features to process text
files and to do system management tasks (as in perl). It is simple,
straight-forward, and extensible.
.
This package provides Ruby/Tk, Ruby bindings for the Tk graphical user
interface toolkit.
- ruby2.0-tcltk-dbgsym: debug symbols for package ruby2.0-tcltk
Ruby is the interpreted scripting language for quick and easy
object-oriented programming. It has many features to process text
files and to do system management tasks (as in perl). It is simple,
straight-forward, and extensible.
.
This package provides Ruby/Tk, Ruby bindings for the Tk graphical user
interface toolkit.
