ruby2.5 2.5.1-5ubuntu4.3 source package in Ubuntu

Changelog

ruby2.5 (2.5.1-5ubuntu4.3) cosmic-security; urgency=medium

  * SECURITY UPDATE: Delete directory using symlink when decompressing tar,
    Escape sequence injection vulnerability in gem owner, Escape sequence
    injection vulnerability in API response handling, Arbitrary code exec,
    Escape sequence injection vulnerability in errors
    - debian/patches/CVE-2019-8320-25.patch: fix in
      lib/rubygems/command_manager.rb,
      lib/rubygems/commands/owner_command.rb,
      lib/rubygems/gemcutter_utilities.rb,
      lib/rubygems/installer.rb,
      lib/rubygems/package.rb,
      test/rubygems/test_gem_installer.rb,
      test/rubygems/test_gem_package.rb,
      test/rubygems/test_gem_text.rb.
    - CVE-2019-8320
    - CVE-2019-8321
    - CVE-2019-8322
    - CVE-2019-8323
    - CVE-2019-8324
    - CVE-2019-8325

 -- <email address hidden> (Leonidas S. Barbosa)  Tue, 02 Apr 2019 13:31:23 -0300

Upload details

Uploaded by:
Leonidas S. Barbosa on 2019-04-02
Uploaded to:
Cosmic
Original maintainer:
Ubuntu Developers
Architectures:
any all
Section:
ruby
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Cosmic updates on 2019-04-11 main misc
Cosmic security on 2019-04-11 main misc

Downloads

File Size SHA-256 Checksum
ruby2.5_2.5.1.orig.tar.gz 14.9 MiB d690140ba5b91b23d990dad9170fca8ef8e9e5ac8b62f1eb7a84ecf1edce2ed3
ruby2.5_2.5.1-5ubuntu4.3.debian.tar.xz 127.8 KiB 2882861ecc71ade306ec56e04120090da160e39b63a2d7d12ce7609d3aa7fa2c
ruby2.5_2.5.1-5ubuntu4.3.dsc 2.5 KiB 79f169abf098ca86a2de6c473292478d6dd7ada26ded8a48fc7e877f027222cc

View changes file

Binary packages built by this source

libruby2.5: Libraries necessary to run Ruby 2.5

 Ruby is the interpreted scripting language for quick and easy
 object-oriented programming. It has many features to process text
 files and to do system management tasks (as in perl). It is simple,
 straight-forward, and extensible.
 .
 This package includes the 'libruby-2.5' library, necessary to run Ruby 2.5.
 (API version 2.5.0)

libruby2.5-dbgsym: debug symbols for libruby2.5
ruby2.5: Interpreter of object-oriented scripting language Ruby

 Ruby is the interpreted scripting language for quick and easy
 object-oriented programming. It has many features to process text
 files and to do system management tasks (as in perl). It is simple,
 straight-forward, and extensible.
 .
 In the name of this package, `2.5' indicates the Ruby library compatibility
 version. This package currently provides the `2.5.x' branch of Ruby.

ruby2.5-dbgsym: debug symbols for ruby2.5
ruby2.5-dev: Header files for compiling extension modules for the Ruby 2.5

 Ruby is the interpreted scripting language for quick and easy
 object-oriented programming. It has many features to process text
 files and to do system management tasks (as in perl). It is simple,
 straight-forward, and extensible.
 .
 This package contains the header files and the mkmf library, necessary
 to make extension library for Ruby 2.5. It is also required to build
 many gems.

ruby2.5-doc: Documentation for Ruby 2.5

 Ruby is the interpreted scripting language for quick and easy
 object-oriented programming. It has many features to process text
 files and to do system management tasks (as in perl). It is simple,
 straight-forward, and extensible.
 .
 This package contains the autogenerated documentation for Ruby 2.5.