Publishing details

Created on 2022-03-22 by Ubuntu Archive Auto-Sync
Published on 2022-03-22

Changelog

ruby3.0 (3.0.2-7ubuntu2) jammy; urgency=medium

  * SECURITY UPDATE: Buffer overrun
    - debian/patches/CVE-2021-41816.patch: fix integer overflow making
      sure use of the check in rb_alloc_tmp_buffer2 in
      ext/cgi/escape/escape.c.
    - CVE-2021-41816
  * SECURITY UPDATE: ReDoS vulnerability
    - debian/patches/CVE-2021-41817-*.patch: add length limit option
      for methods that parses date strings and mimic prev behaviour
      in  ext/date/date_core.c, test/date/test_date_parse.rb.
    - CVE-2021-41817
  * SECURITY UPDATE: Mishandles sec prefixes in cookie names
    - debian/patches/CVE-2021-41819.patch: when parsing cookies, only
      decode the values in lib/cgi/cookie.rb, test/cgi/test_cgi_cookie.rb.
    - CVE-2021-41819

 -- Leonidas Da Silva Barbosa <email address hidden>  Thu, 17 Mar 2022 13:09:20 -0300

Available diffs

diff from 3.0.2-7 (in Debian) to 3.0.2-7ubuntu2 (7.1 KiB)
diff from 3.0.2-7ubuntu1 to 3.0.2-7ubuntu2 (6.4 KiB)

Builds

Built packages

libruby3.0 Libraries necessary to run Ruby 3.0

libruby3.0-dbgsym debug symbols for libruby3.0

ruby3.0 Interpreter of object-oriented scripting language Ruby

ruby3.0-dbgsym debug symbols for ruby3.0

ruby3.0-dev Header files for compiling extension modules for the Ruby 3.0

ruby3.0-doc Documentation for Ruby 3.0

Package files

libruby3.0-dbgsym_3.0.2-7ubuntu2_amd64.ddeb (8.2 MiB)
libruby3.0-dbgsym_3.0.2-7ubuntu2_arm64.ddeb (8.1 MiB)
libruby3.0-dbgsym_3.0.2-7ubuntu2_armhf.ddeb (8.0 MiB)
libruby3.0-dbgsym_3.0.2-7ubuntu2_i386.ddeb (7.4 MiB)
libruby3.0-dbgsym_3.0.2-7ubuntu2_ppc64el.ddeb (9.7 MiB)
libruby3.0-dbgsym_3.0.2-7ubuntu2_riscv64.ddeb (7.4 MiB)
libruby3.0-dbgsym_3.0.2-7ubuntu2_s390x.ddeb (8.1 MiB)
libruby3.0_3.0.2-7ubuntu2_amd64.deb (4.9 MiB)
libruby3.0_3.0.2-7ubuntu2_arm64.deb (4.8 MiB)
libruby3.0_3.0.2-7ubuntu2_armhf.deb (4.7 MiB)
libruby3.0_3.0.2-7ubuntu2_i386.deb (5.0 MiB)
libruby3.0_3.0.2-7ubuntu2_ppc64el.deb (5.3 MiB)
libruby3.0_3.0.2-7ubuntu2_riscv64.deb (4.7 MiB)
libruby3.0_3.0.2-7ubuntu2_s390x.deb (4.8 MiB)
ruby3.0-dbgsym_3.0.2-7ubuntu2_amd64.ddeb (3.6 KiB)
ruby3.0-dbgsym_3.0.2-7ubuntu2_arm64.ddeb (3.7 KiB)
ruby3.0-dbgsym_3.0.2-7ubuntu2_armhf.ddeb (3.8 KiB)
ruby3.0-dbgsym_3.0.2-7ubuntu2_i386.ddeb (3.4 KiB)
ruby3.0-dbgsym_3.0.2-7ubuntu2_ppc64el.ddeb (3.7 KiB)
ruby3.0-dbgsym_3.0.2-7ubuntu2_riscv64.ddeb (3.8 KiB)
ruby3.0-dbgsym_3.0.2-7ubuntu2_s390x.ddeb (3.5 KiB)
ruby3.0-dev_3.0.2-7ubuntu2_amd64.deb (236.1 KiB)
ruby3.0-dev_3.0.2-7ubuntu2_arm64.deb (239.2 KiB)
ruby3.0-dev_3.0.2-7ubuntu2_armhf.deb (236.5 KiB)
ruby3.0-dev_3.0.2-7ubuntu2_i386.deb (236.2 KiB)
ruby3.0-dev_3.0.2-7ubuntu2_ppc64el.deb (238.4 KiB)
ruby3.0-dev_3.0.2-7ubuntu2_riscv64.deb (235.8 KiB)
ruby3.0-dev_3.0.2-7ubuntu2_s390x.deb (237.7 KiB)
ruby3.0-doc_3.0.2-7ubuntu2_all.deb (1.8 MiB)
ruby3.0_3.0.2-7ubuntu2.debian.tar.xz (215.6 KiB)
ruby3.0_3.0.2-7ubuntu2.dsc (2.5 KiB)
ruby3.0_3.0.2-7ubuntu2_amd64.deb (49.0 KiB)
ruby3.0_3.0.2-7ubuntu2_arm64.deb (49.0 KiB)
ruby3.0_3.0.2-7ubuntu2_armhf.deb (48.8 KiB)
ruby3.0_3.0.2-7ubuntu2_i386.deb (49.0 KiB)
ruby3.0_3.0.2-7ubuntu2_ppc64el.deb (48.8 KiB)
ruby3.0_3.0.2-7ubuntu2_riscv64.deb (48.8 KiB)
ruby3.0_3.0.2-7ubuntu2_s390x.deb (48.9 KiB)
ruby3.0_3.0.2.orig.tar.xz (12.1 MiB)