ruby1.8 1.8.7.249-2ubuntu0.1 source package in Ubuntu

Changelog

ruby1.8 (1.8.7.249-2ubuntu0.1) lucid-security; urgency=low

  * SECURITY UPDATE: Cross-site scripting via HTTP error responses
    - debian/patches/CVE-2010-0541.patch: Use the ISO-8859-1 character
      set for HTTP error responses. Based on upstream patch.
    - CVE-2010-0541
  * SECURITY UPDATE: Arbitrary code execution and denial of service
    - debian/patches/CVE-2011-0188.patch: Remove cast to prevent memory
      corruption during allocation. Based on upstream patch.
    - CVE-2011-0188
  * SECURITY UPDATE: Arbitrary file deletion due to symlink race
    - debian/patches/CVE-2011-1004.patch: Unlink the symlink rather
      than recursively removing everything underneath the symlink
      destination. Based on upstream patch.
    - CVE-2011-1004
  * SECURITY UPDATE: Safe level bypass
    - debian/patches/CVE-2011-1005.patch: Remove incorrect string taint
      in exception handling methods. Based on upstream patch.
    - CVE-2011-1005
  * SECURITY UPDATE: Predictable random number generation
    - debian/patches/CVE-2011-2686.patch: Reseed the random number
      generator each time a child process is created. Based on upstream
      patch.
    - CVE-2011-2686
  * SECURITY UPDATE: Predicatable random number generation
    - debian/patches/CVE-2011-2705.patch: Reseed the random number
      generator with the pid number and the current time to prevent
      predictable random numbers in the case of pid number rollover. Based on
      upstream patch.
    - CVE-2011-2705
  * SECURITY UPDATE: Denial of service via crafted hash table keys
    - debian/patches/CVE-2011-4815.patch: Add randomness to the key hashing
      algorithm to prevent predictable results when inserting objects into a
      hash table. Based on upstream patch.
    - CVE-2011-4815
 -- Tyler Hicks <email address hidden>   Tue, 21 Feb 2012 16:28:51 -0600

Upload details

Uploaded by:
Tyler Hicks on 2012-02-22
Uploaded to:
Lucid
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
ruby
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
ruby1.8_1.8.7.249.orig.tar.gz 4.6 MiB a969f5ec00f096f01650bfa594bc408f2e5cfc3de21b533ab62b4f29eb8ca653
ruby1.8_1.8.7.249-2ubuntu0.1.diff.gz 51.4 KiB ea450ea5d89a6c2bde311ddbeb5e5e061d691a981b2543bb0c9675dd880675df
ruby1.8_1.8.7.249-2ubuntu0.1.dsc 2.3 KiB 867e47c646861f430f0896f4f5f477cc5cd19d1c0c51f9d9b9c23e3670d333cf

View changes file

Binary packages built by this source

irb1.8: No summary available for irb1.8 in ubuntu lucid.

No description available for irb1.8 in ubuntu lucid.

libdbm-ruby1.8: No summary available for libdbm-ruby1.8 in ubuntu lucid.

No description available for libdbm-ruby1.8 in ubuntu lucid.

libgdbm-ruby1.8: No summary available for libgdbm-ruby1.8 in ubuntu lucid.

No description available for libgdbm-ruby1.8 in ubuntu lucid.

libopenssl-ruby1.8: No summary available for libopenssl-ruby1.8 in ubuntu lucid.

No description available for libopenssl-ruby1.8 in ubuntu lucid.

libreadline-ruby1.8: No summary available for libreadline-ruby1.8 in ubuntu lucid.

No description available for libreadline-ruby1.8 in ubuntu lucid.

libruby1.8: No summary available for libruby1.8 in ubuntu lucid.

No description available for libruby1.8 in ubuntu lucid.

libruby1.8-dbg: No summary available for libruby1.8-dbg in ubuntu lucid.

No description available for libruby1.8-dbg in ubuntu lucid.

libtcltk-ruby1.8: No summary available for libtcltk-ruby1.8 in ubuntu lucid.

No description available for libtcltk-ruby1.8 in ubuntu lucid.

rdoc1.8: No summary available for rdoc1.8 in ubuntu lucid.

No description available for rdoc1.8 in ubuntu lucid.

ri1.8: No summary available for ri1.8 in ubuntu lucid.

No description available for ri1.8 in ubuntu lucid.

ruby1.8: No summary available for ruby1.8 in ubuntu lucid.

No description available for ruby1.8 in ubuntu lucid.

ruby1.8-dev: No summary available for ruby1.8-dev in ubuntu lucid.

No description available for ruby1.8-dev in ubuntu lucid.

ruby1.8-elisp: No summary available for ruby1.8-elisp in ubuntu lucid.

No description available for ruby1.8-elisp in ubuntu lucid.

ruby1.8-examples: No summary available for ruby1.8-examples in ubuntu lucid.

No description available for ruby1.8-examples in ubuntu lucid.