ruby2.3 2.3.3-1ubuntu1.3 source package in Ubuntu

Changelog

ruby2.3 (2.3.3-1ubuntu1.3) artful-security; urgency=medium

  * SECURITY UPDATE: fails to validade specification names
    - debian/patches/CVE-2017-0901-0902.patch:  fix this.
    - CVE-2017-0901
  * SECURITY UPDATE: vulnerable to a DNS hijacking
    - debian/patches/CVE-2017-0901-0902.patch fix this.
    - CVE-2017-0902
  * SECURITY UPDATE: possible remote code execution
    - debian/patches/CVE-2017-0903.patch: whitelist classes
      and symbols that are in Gem spec YAML in lib/rubygems.rb,
      lib/rubygens/config_file.rb, lib/rubygems/package.rb,
      lib/rubygems/package/old.rb, lib/rubygems/safe_yaml.rb,
      lib/rubygems/specification.rb.
    - CVE-2017-0903

 -- <email address hidden> (Leonidas S. Barbosa)  Tue, 30 Jan 2018 15:00:37 -0300

Upload details

Uploaded by:
Leonidas S. Barbosa on 2018-01-30
Uploaded to:
Artful
Original maintainer:
Ubuntu Developers
Architectures:
any all
Section:
ruby
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
ruby2.3_2.3.3.orig.tar.xz 8.0 MiB 799796bb740832c7257f45089fdbd9cd57686cac033f88d0b078063b6d3d77ad
ruby2.3_2.3.3-1ubuntu1.3.debian.tar.xz 103.7 KiB 42686fb545fb6193a5da18b413bffd0bacecbfc73fb7ce2e88b9e08423781a31
ruby2.3_2.3.3-1ubuntu1.3.dsc 2.5 KiB ee8c26cdb61fc851286ba3464bfb017b610769f95459fb0d91182dd356b2810b

View changes file

Binary packages built by this source

libruby2.3: Libraries necessary to run Ruby 2.3

 Ruby is the interpreted scripting language for quick and easy
 object-oriented programming. It has many features to process text
 files and to do system management tasks (as in perl). It is simple,
 straight-forward, and extensible.
 .
 This package includes the 'libruby-2.3' library, necessary to run Ruby 2.3.
 (API version 2.3.0)

libruby2.3-dbgsym: Debug symbols for libruby2.3
ruby2.3: Interpreter of object-oriented scripting language Ruby

 Ruby is the interpreted scripting language for quick and easy
 object-oriented programming. It has many features to process text
 files and to do system management tasks (as in perl). It is simple,
 straight-forward, and extensible.
 .
 In the name of this package, `2.3' indicates the Ruby library compatibility
 version. This package currently provides the `2.3.x' branch of Ruby.

ruby2.3-dbgsym: Debug symbols for ruby2.3
ruby2.3-dev: Header files for compiling extension modules for the Ruby 2.3

 Ruby is the interpreted scripting language for quick and easy
 object-oriented programming. It has many features to process text
 files and to do system management tasks (as in perl). It is simple,
 straight-forward, and extensible.
 .
 This package contains the header files and the mkmf library, necessary
 to make extension library for Ruby 2.3. It is also required to build
 many gems.

ruby2.3-doc: Documentation for Ruby 2.3

 Ruby is the interpreted scripting language for quick and easy
 object-oriented programming. It has many features to process text
 files and to do system management tasks (as in perl). It is simple,
 straight-forward, and extensible.
 .
 This package contains the autogenerated documentation for Ruby 2.3.

ruby2.3-tcltk: Ruby/Tk for Ruby 2.3

 Ruby is the interpreted scripting language for quick and easy
 object-oriented programming. It has many features to process text
 files and to do system management tasks (as in perl). It is simple,
 straight-forward, and extensible.
 .
 This package provides Ruby/Tk, Ruby bindings for the Tk graphical user
 interface toolkit.

ruby2.3-tcltk-dbgsym: Debug symbols for ruby2.3-tcltk