Ubuntu

“ruby1.8” 1.8.7.302-2ubuntu0.1 source package in Ubuntu

Changelog

ruby1.8 (1.8.7.302-2ubuntu0.1) natty-security; urgency=low

  * SECURITY UPDATE: Arbitrary code execution and denial of service
    - debian/patches/CVE-2011-0188.patch: Remove cast to prevent memory
      corruption during allocation. Based on upstream patch.
    - CVE-2011-0188
  * SECURITY UPDATE: Arbitrary file deletion due to symlink race
    - debian/patches/CVE-2011-1004.patch: Unlink the symlink rather
      than recursively removing everything underneath the symlink
      destination. Based on upstream patch.
    - CVE-2011-1004
  * SECURITY UPDATE: Safe level bypass
    - debian/patches/CVE-2011-1005.patch: Remove incorrect string taint
      in exception handling methods. Based on upstream patch.
    - CVE-2011-1005
  * SECURITY UPDATE: Predictable random number generation
    - debian/patches/CVE-2011-2686.patch: Reseed the random number
      generator each time a child process is created. Based on upstream
      patch.
    - CVE-2011-2686
  * SECURITY UPDATE: Predicatable random number generation
    - debian/patches/CVE-2011-2705.patch: Reseed the random number
      generator with the pid number and the current time to prevent
      predictable random numbers in the case of pid number rollover. Based on
      upstream patch.
    - CVE-2011-2705
  * SECURITY UPDATE: Denial of service via crafted hash table keys
    - debian/patches/CVE-2011-4815.patch: Add randomness to the key hashing
      algorithm to prevent predictable results when inserting objects into a
      hash table. Based on upstream patch.
    - CVE-2011-4815
 -- Tyler Hicks <email address hidden>   Tue, 21 Feb 2012 16:28:51 -0600

Upload details

Uploaded by:
Tyler Hicks on 2012-02-22
Uploaded to:
Natty
Original maintainer:
Ubuntu Developers
Component:
main
Architectures:
any
Section:
ruby
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size MD5 Checksum
ruby1.8_1.8.7.302.orig.tar.gz 4.6 MiB f446550dfde0d8162a6ed8d5a38b3ac2
ruby1.8_1.8.7.302-2ubuntu0.1.diff.gz 51.7 KiB c36d0196330021d8be346a3adfc3baeb
ruby1.8_1.8.7.302-2ubuntu0.1.dsc 2.2 KiB 01d3fb473da80e386333174007cd506f

Binary packages built by this source

libruby1.8: No summary available for libruby1.8 in ubuntu natty.

No description available for libruby1.8 in ubuntu natty.

libruby1.8-dbg: No summary available for libruby1.8-dbg in ubuntu natty.

No description available for libruby1.8-dbg in ubuntu natty.

libtcltk-ruby1.8: No summary available for libtcltk-ruby1.8 in ubuntu natty.

No description available for libtcltk-ruby1.8 in ubuntu natty.

ri1.8: No summary available for ri1.8 in ubuntu natty.

No description available for ri1.8 in ubuntu natty.

ruby1.8: No summary available for ruby1.8 in ubuntu natty.

No description available for ruby1.8 in ubuntu natty.

ruby1.8-dev: No summary available for ruby1.8-dev in ubuntu natty.

No description available for ruby1.8-dev in ubuntu natty.

ruby1.8-elisp: No summary available for ruby1.8-elisp in ubuntu natty.

No description available for ruby1.8-elisp in ubuntu natty.

ruby1.8-examples: No summary available for ruby1.8-examples in ubuntu natty.

No description available for ruby1.8-examples in ubuntu natty.