-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Wed, 26 Jul 2006 11:15:57 +0000
Source: ruby1.8
Binary: libtcltk-ruby1.8 libruby1.8-dbg rdoc1.8 libgdbm-ruby1.8 ruby1.8-dev ruby1.8-elisp ruby1.8-examples libdbm-ruby1.8 irb1.8 ruby1.8 libreadline-ruby1.8 libopenssl-ruby1.8 libruby1.8 ri1.8
Architecture: i386 all
Version: 1.8.4-1ubuntu1.1
Distribution: dapper-security
Urgency: low
Maintainer: Ubuntu/i386 Build Daemon <buildd@terranova.buildd>
Changed-By: Martin Pitt <martin.pitt@ubuntu.com>
Description: 
 irb1.8     - Interactive Ruby (for Ruby 1.8)
 libdbm-ruby1.8 - DBM interface for Ruby 1.8
 libgdbm-ruby1.8 - GDBM interface for Ruby 1.8
 libopenssl-ruby1.8 - OpenSSL interface for Ruby 1.8
 libreadline-ruby1.8 - Readline interface for Ruby 1.8
 libruby1.8 - Libraries necessary to run Ruby 1.8
 libruby1.8-dbg - Debugging libraries for Ruby 1.8
 libtcltk-ruby1.8 - Tcl/Tk interface for Ruby 1.8
 rdoc1.8    - Generate documentation from Ruby source files (for Ruby 1.8)
 ri1.8      - Ruby Interactive reference (for Ruby 1.8)
 ruby1.8    - Interpreter of object-oriented scripting language Ruby 1.8
 ruby1.8-dev - Header files for compiling extension modules for the Ruby 1.8
 ruby1.8-elisp - ruby-mode for Emacsen
 ruby1.8-examples - Examples for Ruby 1.8
Changes: 
 ruby1.8 (1.8.4-1ubuntu1.1) dapper-security; urgency=low
 .
   * SECURITY UPDATE: Safe level bypass.
   * Add debian/patches/100_CVE-2006-3694.patch:
     - eval.c, alias(): preserve current safe level
       http://www.ruby-lang.org/cgi-bin/cvsweb.cgi/ruby/eval.c?cvsroot=src&r1=1.616.2.166&r2=1.616.2.167
       (only relevant part)
     - re.c: do not modify untainted levels in safe levels > 3
       http://www.ruby-lang.org/cgi-bin/cvsweb.cgi/ruby/re.c?cvsroot=src&r1=1.114.2.17&r2=1.114.2.18
       (only last hunk is relevant)
     - dir.c: should not close untainted dir stream
       http://www.ruby-lang.org/cgi-bin/cvsweb.cgi/ruby/dir.c?cvsroot=src&r1=1.92.2.32&r2=1.92.2.33
     - CVE-2006-3694
Files: 
 52e9dc0c58ae7646d498fd9145636e25 188314 interpreters optional ruby1.8_1.8.4-1ubuntu1.1_i386.deb
 6045dc03a6f16ea8c3da8e94829f828a 1419778 libs optional libruby1.8_1.8.4-1ubuntu1.1_i386.deb
 6206d32ae4e76d15d8ae51ba162c77e7 870548 libdevel extra libruby1.8-dbg_1.8.4-1ubuntu1.1_i386.deb
 e3a0775b7040a8678cb09e336bc1ffc4 662090 devel optional ruby1.8-dev_1.8.4-1ubuntu1.1_i386.deb
 0cee92f2dc40ae02b9d889b42f0c30fb 168186 interpreters optional libdbm-ruby1.8_1.8.4-1ubuntu1.1_i386.deb
 1e5c28c097d5a22fe16168e42aeb0d4e 168732 interpreters optional libgdbm-ruby1.8_1.8.4-1ubuntu1.1_i386.deb
 69b295695e121006db7d900edfb1f76d 168590 interpreters optional libreadline-ruby1.8_1.8.4-1ubuntu1.1_i386.deb
 eccfbee428895a6dbee16d067c570517 1789438 interpreters optional libtcltk-ruby1.8_1.8.4-1ubuntu1.1_i386.deb
 3dea0e3bc55915c7ffeff6ec29fb192f 258056 interpreters optional libopenssl-ruby1.8_1.8.4-1ubuntu1.1_i386.deb
 a442acf3ac6c8470126a3fb7d8df71b8 213562 interpreters optional ruby1.8-examples_1.8.4-1ubuntu1.1_all.deb
 3766c6aea3123964b7d328268de9b0be 181308 interpreters optional ruby1.8-elisp_1.8.4-1ubuntu1.1_all.deb
 fa73f477428a1f07622b58cdb8c8684a 756584 interpreters optional ri1.8_1.8.4-1ubuntu1.1_all.deb
 6bcbc5ad1b716eb0544e50fd31d4868b 271408 doc optional rdoc1.8_1.8.4-1ubuntu1.1_all.deb
 98084139044f8fdc262438d76999296d 206542 interpreters optional irb1.8_1.8.4-1ubuntu1.1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)

iD8DBQFEx6jx0N0xjzyQZEIRAuvWAJ41b1DBGEcKssNdP3XGUNhVKZBlTwCghJ+2
S16tVrsYxVfEjlEf2NcS/IU=
=cdHM
-----END PGP SIGNATURE-----