-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Wed, 26 Jul 2006 11:15:57 +0000
Source: ruby1.8
Binary: libtcltk-ruby1.8 libruby1.8-dbg rdoc1.8 libgdbm-ruby1.8 ruby1.8-dev ruby1.8-elisp ruby1.8-examples libdbm-ruby1.8 irb1.8 ruby1.8 libreadline-ruby1.8 libopenssl-ruby1.8 libruby1.8 ri1.8
Architecture: amd64
Version: 1.8.4-1ubuntu1.1
Distribution: dapper-security
Urgency: low
Maintainer: Ubuntu/amd64 Build Daemon <buildd@king.buildd>
Changed-By: Martin Pitt <martin.pitt@ubuntu.com>
Description: 
 libdbm-ruby1.8 - DBM interface for Ruby 1.8
 libgdbm-ruby1.8 - GDBM interface for Ruby 1.8
 libopenssl-ruby1.8 - OpenSSL interface for Ruby 1.8
 libreadline-ruby1.8 - Readline interface for Ruby 1.8
 libruby1.8 - Libraries necessary to run Ruby 1.8
 libruby1.8-dbg - Debugging libraries for Ruby 1.8
 libtcltk-ruby1.8 - Tcl/Tk interface for Ruby 1.8
 ruby1.8    - Interpreter of object-oriented scripting language Ruby 1.8
 ruby1.8-dev - Header files for compiling extension modules for the Ruby 1.8
Changes: 
 ruby1.8 (1.8.4-1ubuntu1.1) dapper-security; urgency=low
 .
   * SECURITY UPDATE: Safe level bypass.
   * Add debian/patches/100_CVE-2006-3694.patch:
     - eval.c, alias(): preserve current safe level
       http://www.ruby-lang.org/cgi-bin/cvsweb.cgi/ruby/eval.c?cvsroot=src&r1=1.616.2.166&r2=1.616.2.167
       (only relevant part)
     - re.c: do not modify untainted levels in safe levels > 3
       http://www.ruby-lang.org/cgi-bin/cvsweb.cgi/ruby/re.c?cvsroot=src&r1=1.114.2.17&r2=1.114.2.18
       (only last hunk is relevant)
     - dir.c: should not close untainted dir stream
       http://www.ruby-lang.org/cgi-bin/cvsweb.cgi/ruby/dir.c?cvsroot=src&r1=1.92.2.32&r2=1.92.2.33
     - CVE-2006-3694
Files: 
 a29fe02de47d5923318b748ecab83be0 188540 interpreters optional ruby1.8_1.8.4-1ubuntu1.1_amd64.deb
 3353284413f1f0f56f2f0455a1c925eb 1505950 libs optional libruby1.8_1.8.4-1ubuntu1.1_amd64.deb
 5a5251d20c12df84cce66e8ef4c2a1c8 1041130 libdevel extra libruby1.8-dbg_1.8.4-1ubuntu1.1_amd64.deb
 171aa258d057bfe0c90327aa0bb855ec 717180 devel optional ruby1.8-dev_1.8.4-1ubuntu1.1_amd64.deb
 d1976e52894322ac1f8b266457b93418 168972 interpreters optional libdbm-ruby1.8_1.8.4-1ubuntu1.1_amd64.deb
 d475a684b9b6948c8239ee3e0c951d0b 170176 interpreters optional libgdbm-ruby1.8_1.8.4-1ubuntu1.1_amd64.deb
 b072ab3ac1766c64d039b32dbe6d7b3e 169606 interpreters optional libreadline-ruby1.8_1.8.4-1ubuntu1.1_amd64.deb
 5dfe44c01d05ef1967c044b4b52f377b 1797610 interpreters optional libtcltk-ruby1.8_1.8.4-1ubuntu1.1_amd64.deb
 d90ae0ccd4af8429269784d6b650c4ad 273622 interpreters optional libopenssl-ruby1.8_1.8.4-1ubuntu1.1_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)

iD8DBQFEx6kd0N0xjzyQZEIRAmEKAJ9G6nzLUU8jML2GgxnzWNOE9VyotQCginqH
tY2xJ6qYMUbXvN2pb0lZ3X8=
=7tuY
-----END PGP SIGNATURE-----