ruby2.7 2.7.0-5ubuntu1.13 source package in Ubuntu
Changelog
ruby2.7 (2.7.0-5ubuntu1.13) focal-security; urgency=medium
* SECURITY UPDATE: code execution in RDoc
- debian/patches/CVE-2024-27281-pre1.patch: add Psych.safe_load_file to
ext/psych/lib/psych.rb, test/psych/test_exception.rb,
test/psych/test_psych.rb.
- debian/patches/CVE-2024-27281-1.patch: filter marshalled objects in
lib/rdoc/store.rb.
- debian/patches/CVE-2024-27281-2.patch: use safe_load and
safe_load_file for .rdoc_options in lib/rdoc/rdoc.rb,
test/rdoc/test_rdoc_options.rb.
- debian/patches/CVE-2024-27281-3.patch: fix NoMethodError for
start_with in lib/rdoc/store.rb.
- CVE-2024-27281
* SECURITY UPDATE: heap data extraction via regex
- debian/patches/CVE-2024-27282.patch: fix Use-After-Free issue for
Regexp in regexec.c.
- CVE-2024-27282
* debian/patches/update_test_certs.patch: update test certs in
test/net/fixtures/* to fix FTBFS.
-- Marc Deslauriers <email address hidden> Fri, 14 Jun 2024 08:11:45 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Focal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- ruby
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| ruby2.7_2.7.0.orig.tar.xz | 10.2 MiB | 317ea23716234b1ca393f3509afa115b98b6a873f6724faffdcaeb04bd6f2935 |
| ruby2.7_2.7.0-5ubuntu1.13.debian.tar.xz | 139.9 KiB | 0b6be546aff01f3f796b101324a8e27ba8fa94c65c8b03119df290c0f7d17104 |
| ruby2.7_2.7.0-5ubuntu1.13.dsc | 2.5 KiB | c8741b57f75dd6740ce86010cd5c1a1f6a749f07d6aa5077c1d34be12b44e3be |
Available diffs
Binary packages built by this source
- libruby2.7: Libraries necessary to run Ruby 2.7
Ruby is the interpreted scripting language for quick and easy
object-oriented programming. It has many features to process text
files and to do system management tasks (as in perl). It is simple,
straight-forward, and extensible.
.
This package includes the 'libruby-2.7' library, necessary to run Ruby 2.7.
(API version 2.7.0)
- libruby2.7-dbgsym: debug symbols for libruby2.7
- ruby2.7: Interpreter of object-oriented scripting language Ruby
Ruby is the interpreted scripting language for quick and easy
object-oriented programming. It has many features to process text
files and to do system management tasks (as in perl). It is simple,
straight-forward, and extensible.
.
In the name of this package, `2.7' indicates the Ruby library compatibility
version. This package currently provides the `2.7.x' branch of Ruby.
- ruby2.7-dbgsym: debug symbols for ruby2.7
- ruby2.7-dev: Header files for compiling extension modules for the Ruby 2.7
Ruby is the interpreted scripting language for quick and easy
object-oriented programming. It has many features to process text
files and to do system management tasks (as in perl). It is simple,
straight-forward, and extensible.
.
This package contains the header files and the mkmf library, necessary
to make extension library for Ruby 2.7. It is also required to build
many gems.
- ruby2.7-doc: Documentation for Ruby 2.7
Ruby is the interpreted scripting language for quick and easy
object-oriented programming. It has many features to process text
files and to do system management tasks (as in perl). It is simple,
straight-forward, and extensible.
.
This package contains the autogenerated documentation for Ruby 2.7.
