Format: 1.8 Date: Mon, 25 Nov 2019 12:24:34 -0300 Source: ruby2.3 Binary: ruby2.3 libruby2.3 libruby2.3-dbg ruby2.3-dev ruby2.3-doc ruby2.3-tcltk Architecture: arm64 Version: 2.3.1-2~ubuntu16.04.14 Distribution: xenial Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Leonidas S. Barbosa Description: libruby2.3 - Libraries necessary to run Ruby 2.3 libruby2.3-dbg - Debugging symbols for libruby2.3 ruby2.3 - Interpreter of object-oriented scripting language Ruby ruby2.3-dev - Header files for compiling extension modules for the Ruby 2.3 ruby2.3-doc - Documentation for Ruby 2.3 ruby2.3-tcltk - Ruby/Tk for Ruby 2.3 Changes: ruby2.3 (2.3.1-2~ubuntu16.04.14) xenial-security; urgency=medium . * SECURITY UPDATE: NULL injection vulnerability - debian/patches/CVE-2019-15845.patch: ensure that pattern does not contain a NULL character in dir.c, test/ruby/test_fnmatch.rb. - CVE-2019-15845 * SECURITY UPDATE: Denial of service vulnerability - debian/patches/CVE-2019-16201.patch: fix in lib/webrick/httpauth/digestauth.rb, test/webrick/test_httpauth.rb. - CVE-2019-16201.patch * SECURITY UPDATE: HTTP response splitting in WEBrick - debian/patches/CVE-2019-16254.patch: prevent response splitting and header injection in lib/webrick/httpresponse.rb, test/webrick/test_httpresponse.rb. - CVE-2019-16254 * SECURITY UPDATE: Code injection - debian/patches/CVE-2019-16255.patch: prevent unknown command in lib/shell/command-processor.rb, test/shell/test_command_processor.rb. - CVE-2019-16255 Checksums-Sha1: dc648f824745379c71d061f840ae885359b23aa3 3242210 libruby2.3-dbg_2.3.1-2~ubuntu16.04.14_arm64.deb a8a1baf46e541a6055191f694586bf1ceb702d63 1002 libruby2.3-dbgsym_2.3.1-2~ubuntu16.04.14_arm64.ddeb b52c3d798113c9774b122fc476567c75b97c4729 2706804 libruby2.3_2.3.1-2~ubuntu16.04.14_arm64.deb 541dd396cb8cafe7d98cc350323d82bca2aea1d5 1032 ruby2.3-dbgsym_2.3.1-2~ubuntu16.04.14_arm64.ddeb 06eef701f1f4213711b794256e2720c20bb5efe8 1030 ruby2.3-dev-dbgsym_2.3.1-2~ubuntu16.04.14_arm64.ddeb 6ffe7b8bc1cc8b96c14487aeb3089a8888f999c6 888246 ruby2.3-dev_2.3.1-2~ubuntu16.04.14_arm64.deb ca9471ec8f20d5b7f2a78d21ec517429cf4e9372 998 ruby2.3-tcltk-dbgsym_2.3.1-2~ubuntu16.04.14_arm64.ddeb 4a5478d6f8600d0de2228d22b1c2ca1208e09855 267962 ruby2.3-tcltk_2.3.1-2~ubuntu16.04.14_arm64.deb 250f13023770ffb1d28ff25a13b5877393f4bf7c 40926 ruby2.3_2.3.1-2~ubuntu16.04.14_arm64.deb Checksums-Sha256: 091418884966d31bc529e0aa6ff8129c100c606223077302c3d590944c5e6bfc 3242210 libruby2.3-dbg_2.3.1-2~ubuntu16.04.14_arm64.deb 58f0197cbe01a9c3651d5077adfee89230381ff82f565c7b94339f76791b6d30 1002 libruby2.3-dbgsym_2.3.1-2~ubuntu16.04.14_arm64.ddeb 1b422f190d45e64cdbcdd8301f329f17225bcdea66f5e08e66663cc83a942a98 2706804 libruby2.3_2.3.1-2~ubuntu16.04.14_arm64.deb b08e0161728809a26b00b141a6c52e66add180ce17871f2a2d5d409f9464ea14 1032 ruby2.3-dbgsym_2.3.1-2~ubuntu16.04.14_arm64.ddeb bc3126f37b648855ddceb3f1ea658e2b1b0cd6541a01e90824c21a7d1d7ef8d9 1030 ruby2.3-dev-dbgsym_2.3.1-2~ubuntu16.04.14_arm64.ddeb 1c3006bc9b4dfffc41c7ff184621d9b6b9e5b30f5ba901434ad38cc46fcbc264 888246 ruby2.3-dev_2.3.1-2~ubuntu16.04.14_arm64.deb aac89b43e4436976a75d2c71e11a8a649017d7c534e614ec938c3665439e3908 998 ruby2.3-tcltk-dbgsym_2.3.1-2~ubuntu16.04.14_arm64.ddeb 07ac0dbd7a88be3606fef7008b6d306267af96dc2e3f49b3ccdf3d49a40857e3 267962 ruby2.3-tcltk_2.3.1-2~ubuntu16.04.14_arm64.deb d44dae083a682fb3045128d6a974ecd88ba25a9f5291cf8a77c1aa5816792b01 40926 ruby2.3_2.3.1-2~ubuntu16.04.14_arm64.deb Files: ab6d251a62def945e844786eda8d6991 3242210 debug optional libruby2.3-dbg_2.3.1-2~ubuntu16.04.14_arm64.deb 822720cd781f3239031e0999a98de3cd 1002 libs extra libruby2.3-dbgsym_2.3.1-2~ubuntu16.04.14_arm64.ddeb 88ebbe263b52f2214feae9a8376685f4 2706804 libs optional libruby2.3_2.3.1-2~ubuntu16.04.14_arm64.deb e3d48b9d638208eafeaf3522b95785ac 1032 ruby extra ruby2.3-dbgsym_2.3.1-2~ubuntu16.04.14_arm64.ddeb d21db0140fed9f8c3c09ccab42542b51 1030 ruby extra ruby2.3-dev-dbgsym_2.3.1-2~ubuntu16.04.14_arm64.ddeb 95de19b2c266ebc8f3fa093f6b388265 888246 ruby optional ruby2.3-dev_2.3.1-2~ubuntu16.04.14_arm64.deb 4f5bd9bf59172c2f1c33886801cf52ef 998 ruby extra ruby2.3-tcltk-dbgsym_2.3.1-2~ubuntu16.04.14_arm64.ddeb 18b0dcee468d6ca490d6d53d314b7997 267962 ruby optional ruby2.3-tcltk_2.3.1-2~ubuntu16.04.14_arm64.deb 36895b906c0eb6290905be91babba3f0 40926 ruby optional ruby2.3_2.3.1-2~ubuntu16.04.14_arm64.deb Original-Maintainer: Antonio Terceiro