Format: 1.8 Date: Mon, 25 Nov 2019 12:24:34 -0300 Source: ruby2.3 Binary: ruby2.3 libruby2.3 libruby2.3-dbg ruby2.3-dev ruby2.3-doc ruby2.3-tcltk Architecture: i386 Version: 2.3.1-2~ubuntu16.04.14 Distribution: xenial Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Leonidas S. Barbosa Description: libruby2.3 - Libraries necessary to run Ruby 2.3 libruby2.3-dbg - Debugging symbols for libruby2.3 ruby2.3 - Interpreter of object-oriented scripting language Ruby ruby2.3-dev - Header files for compiling extension modules for the Ruby 2.3 ruby2.3-doc - Documentation for Ruby 2.3 ruby2.3-tcltk - Ruby/Tk for Ruby 2.3 Changes: ruby2.3 (2.3.1-2~ubuntu16.04.14) xenial-security; urgency=medium . * SECURITY UPDATE: NULL injection vulnerability - debian/patches/CVE-2019-15845.patch: ensure that pattern does not contain a NULL character in dir.c, test/ruby/test_fnmatch.rb. - CVE-2019-15845 * SECURITY UPDATE: Denial of service vulnerability - debian/patches/CVE-2019-16201.patch: fix in lib/webrick/httpauth/digestauth.rb, test/webrick/test_httpauth.rb. - CVE-2019-16201.patch * SECURITY UPDATE: HTTP response splitting in WEBrick - debian/patches/CVE-2019-16254.patch: prevent response splitting and header injection in lib/webrick/httpresponse.rb, test/webrick/test_httpresponse.rb. - CVE-2019-16254 * SECURITY UPDATE: Code injection - debian/patches/CVE-2019-16255.patch: prevent unknown command in lib/shell/command-processor.rb, test/shell/test_command_processor.rb. - CVE-2019-16255 Checksums-Sha1: 2f031fca8cbac99e0b74f5ec770c7d1528b91346 2828830 libruby2.3-dbg_2.3.1-2~ubuntu16.04.14_i386.deb e6a172883462235f9c988d57b8252f719874daa1 1002 libruby2.3-dbgsym_2.3.1-2~ubuntu16.04.14_i386.ddeb 6f852efcd9c1c3725757a914a1c2f64b058221e3 3060442 libruby2.3_2.3.1-2~ubuntu16.04.14_i386.deb 4cc1b21da8742c7051f501fd52c1ca7b47714561 1028 ruby2.3-dbgsym_2.3.1-2~ubuntu16.04.14_i386.ddeb 88ddccffa493962af6fbcbe219bf5df3fe5bc1ef 1022 ruby2.3-dev-dbgsym_2.3.1-2~ubuntu16.04.14_i386.ddeb 0190cd8dc7f30f12d58d610326b628284b9c1a48 1126882 ruby2.3-dev_2.3.1-2~ubuntu16.04.14_i386.deb e221727c4d51d80abcc9ca633331a5a70d0d4ff6 996 ruby2.3-tcltk-dbgsym_2.3.1-2~ubuntu16.04.14_i386.ddeb deaeebac5b027c65d2aa89c189505a9e134a5b56 281528 ruby2.3-tcltk_2.3.1-2~ubuntu16.04.14_i386.deb 6c669b907f91b5261fca3116b82a3551bf4e985d 40872 ruby2.3_2.3.1-2~ubuntu16.04.14_i386.deb Checksums-Sha256: 517b36759f4105df0823d6392d39d8b52bce810165ed37bfecd7c1c336f5bff7 2828830 libruby2.3-dbg_2.3.1-2~ubuntu16.04.14_i386.deb 21906e11a74fe0f211bcd47f8b4290ed76677d83bf5a28a81b4557150c02527d 1002 libruby2.3-dbgsym_2.3.1-2~ubuntu16.04.14_i386.ddeb 411cb81f17859c2a639531a60ca435a06107966f46b3d217d1fc6716735385ca 3060442 libruby2.3_2.3.1-2~ubuntu16.04.14_i386.deb 3684c1cbf35d1ead4df4c15329da077fdf698329a7820d79e989d0b954cee947 1028 ruby2.3-dbgsym_2.3.1-2~ubuntu16.04.14_i386.ddeb a07b73331f2c50ad0c86e6ae48b100e39817947810c3d31874c505a124b18b23 1022 ruby2.3-dev-dbgsym_2.3.1-2~ubuntu16.04.14_i386.ddeb d37e38074e658cc42331091a3c4288ff881730fa2656b84858fcf8131861a862 1126882 ruby2.3-dev_2.3.1-2~ubuntu16.04.14_i386.deb 9bbce9b32eda33915f9ed38a2ab0cf5ff99b9b448a35b607fc0d1085cfaf46fc 996 ruby2.3-tcltk-dbgsym_2.3.1-2~ubuntu16.04.14_i386.ddeb 13b53667f497200cf51ed23ed37a5c76697f341852caae2a097b4763b697b7d6 281528 ruby2.3-tcltk_2.3.1-2~ubuntu16.04.14_i386.deb 85eef0e8d92456314c19d650ce93a8385f993769ae1f0f164a3929e13143a085 40872 ruby2.3_2.3.1-2~ubuntu16.04.14_i386.deb Files: 75b081a234aa8130cc6e541835e7c211 2828830 debug optional libruby2.3-dbg_2.3.1-2~ubuntu16.04.14_i386.deb be2adf5890ccf215dd5254b181c618c5 1002 libs extra libruby2.3-dbgsym_2.3.1-2~ubuntu16.04.14_i386.ddeb a2b94192004b82d11e8cc870781ff74f 3060442 libs optional libruby2.3_2.3.1-2~ubuntu16.04.14_i386.deb 0a65be7dc0d7fe2aaa275ec6465b6f19 1028 ruby extra ruby2.3-dbgsym_2.3.1-2~ubuntu16.04.14_i386.ddeb 0c9e3995604ab64893168c8e37313333 1022 ruby extra ruby2.3-dev-dbgsym_2.3.1-2~ubuntu16.04.14_i386.ddeb a1f813d2dafa6d5b37e08712ed749048 1126882 ruby optional ruby2.3-dev_2.3.1-2~ubuntu16.04.14_i386.deb bbbe5c67de65db7072b7c7f14b0ee582 996 ruby extra ruby2.3-tcltk-dbgsym_2.3.1-2~ubuntu16.04.14_i386.ddeb 76a87ee6797ecb76f357ace007f015f2 281528 ruby optional ruby2.3-tcltk_2.3.1-2~ubuntu16.04.14_i386.deb cf1ff1cf57d774cea777698c7cf65923 40872 ruby optional ruby2.3_2.3.1-2~ubuntu16.04.14_i386.deb Original-Maintainer: Antonio Terceiro