Ubuntu

“rubygems” 1.8.15-1ubuntu0.1 source package in The Precise Pangolin

Publishing history

1.8.15-1ubuntu0.1
PUBLISHED: Precise pocket Updates in component main and section ruby
  • Published on 2012-09-26
  • Copied from ubuntu precise in Private PPA for Ubuntu Security Team by Ubuntu Archive Robot
1.8.15-1ubuntu0.1
PUBLISHED: Precise pocket Security in component main and section ruby
  • Published on 2012-09-26
  • Copied from ubuntu precise in Private PPA for Ubuntu Security Team by Tyler Hicks

Changelog

rubygems (1.8.15-1ubuntu0.1) precise-security; urgency=low

  * SECURITY UPDATE: Add proper handling of SSL connections
    - debian/patches/CVE-2012-2125-2126.patch: Perform certificate
      verification and disallow HTTP->HTTPS redirection. Based on upstream
      patch.
    - CVE-2012-2125
    - CVE-2012-2126
  * debian/control: Add ca-certificates to rubygems depends for certificate
    verification
 -- Tyler Hicks <email address hidden>   Wed, 19 Sep 2012 00:25:16 -0700