Superseded
by ruby1.8 - 1:1.8.7.376-1bbox5~ubuntu12.04.1~ppa1
Published
Changelog
ruby1.8 (1:1.8.7.376-1bbox4~ubuntu12.04.1~ppa1) precise; urgency=medium
* No-change backport to precise
ruby1.8 (1:1.8.7.376-1bbox4) xenial; urgency=medium
* Backport float fix for test_range
ruby1.8 (1:1.8.7.376-1bbox3) xenial; urgency=medium
* Support precise in zlib patch
ruby1.8 (1:1.8.7.376-1bbox2) xenial; urgency=medium
* Fixup check stamp
ruby1.8 (1:1.8.7.376-1bbox1) xenial; urgency=medium
* Update to latest upstream - patchlevel 376
* Refresh remaining patches
* Replace hardcoded MD5 by sha256 to prevent SSL server failure in FIPS mode
* Fix regression introduced by CVE-2013-4073
* OpenSSL 1.0.1 requires longer RSA key.
* Fix build against OpenSSL with enabled ECC curves.
* Exclude failing OpenSSL tests
* Fix REXML billion laughs attack
* DNS Resolv broken when resolv.conf has option ndots > 1
* Prevent Resolv::DNS from returning truncated dns replies
* Switch to 3.0 quilt format
* Add rubygems extraction
* Use framework rules for testing
* Update rules to support tarball rubygem component
* Move gem from new location
* Add rubygem component tarball
* OpenSSL-cipher-test-does-not-allow-wrap-mode
* Disable CGI tests if interpreter missing
* Disable SOAP tests due to missing interpreter
* Enable full tests
ruby1.8 (1:1.8.7.375-1bbox1~xenial2) xenial; urgency=low
* Fix compiling with newer zlib
ruby1.8 (1:1.8.7.375-2bbox2~lucid1) lucid; urgency=medium
* Fix for CVE-2015-1855, backported by <email address hidden>
ruby1.8 (1:1.8.7.375-1bbox2~trusty1) trusty; urgency=high
* Fix a problem with the patch for CVE-2013-4164.
* Fix building on Raring and Saucy
* Bumped patch level to 375
* Fix building for trusty
ruby1.8 (1:1.8.7.374-1bbox2~lucid1) lucid; urgency=high
* Fix for security bug CVE-2013-4164.
ruby1.8 (1:1.8.7.374-1bbox1~lucid1) lucid; urgency=high
* New upstream release, ruby 1.8.7-p374
* Fixes security bugs CVE-2013-4073 and CVE-2013-1821
ruby1.8 (1:1.8.7.371-1bbox1) lucid; urgency=high
* New upstream release, ruby 1.8.7-p371 (CVE-2012-4466)
ruby1.8 (1:1.8.7.370-1bbox2) lucid; urgency=low
* New upstream release, ruby 1.8.7-p370
* Removed 110703_CVE-2011-0188.patch (now upstream)
* Updated 120302_ruby_ee.patch
ruby1.8 (1.8.7.358-4) unstable; urgency=low
* debian/rules: avoid running DRB tests, since they crash and leave runaway
processes that make buildds hang forever. With this, I expect that we
don't need to set timeouts for the test suite at all (Closes: #674942).
* Added patch by Steven Chamberlain to make ruby1.8-dev depend on gcc-4.6,
since Ruby will hard code that as the compiler for building C extensions.
Any C extension will FTBFS if gcc-4.6 is not installed (Closes: #675347).
ruby1.8 (1.8.7.358-3) unstable; urgency=low
* Guard test suit run with a explicit timeout to avoid FTBFS on kfreebsd-*
due to a timeout after 150 minutes of inactivity (Closes: #673594). For
now, the timeout is 1 hour, which should be enough time to run the test
suite on other architectures, and is less than the 150 minutes tolerated
by kfreebsd-*. Thanks to Steven Chamberlain.
* Force compilation with gcc-4.6. This avoids segfaults when ruby1.8 is
compiled with gcc-4.7 (See #674541).
* debian/patches/use-ldflags.patch: patch by Simon Ruderich to make Ruby
use any existing LDFLAGS environment variable. This should make ruby1.8 be
properly built with hardening (Closes: #667957).
ruby1.8 (1.8.7.358-2) unstable; urgency=low
* Marking 2 symbols as specific to 64-bit architectures. This should fix the
build on all non-64-bit architectures.
ruby1.8 (1.8.7.358-1) unstable; urgency=low
* New upstream release
+ Fixes vulnerability against algorithmic complexity attacks on hashes.
This fixes CVE-2011-4815 and Closes: #658072
+ Fixes vulnerability in OpenSSL (CVE-2011-3389)
* Added myself to Uploaders.
* Remove -V from the dh_makeshlibs call; use a symbols file for libruby1.8
instead. This way we don't force the latest version as a dependency for
packages that link to libruby1.8. (Closes: #636975).
* Enable hardened build flags with a patch by Moritz Muehlenhoff - thanks!
(Closes: #667957)
* Suggests ruby-switch (Closes: #654311)
ruby1.8 (1:1.8.7.358-1bbox3) lucid; urgency=low
* Add libgoogle-perftools-dev as dep for ruby1.8-dev
* Increase epoch to override distro version
ruby1.8 (1.8.7.358-1bbox2) lucid; urgency=low
* Launchpad build fixes
ruby1.8 (1.8.7.358-1bbox1) lucid; urgency=low
* New upstream release
* New upstream Ruby Enterprise Edition 2012.02
ruby1.8 (1:1.8.7.352-2bbox2) lucid; urgency=low
* Ignore .pc directory when building source package, to fix launchpad
build problem.
ruby1.8 (1:1.8.7.352-2bbox1) lucid; urgency=low
* Ruby Enterprise Edition 2012.01 support
-- Neil Wilson <email address hidden> Thu, 27 Apr 2017 16:53:47 +0000