Format: 1.8 Date: Tue, 09 Jan 2018 11:43:22 -0300 Source: ruby2.3 Binary: ruby2.3 libruby2.3 libruby2.3-dbg ruby2.3-dev ruby2.3-doc ruby2.3-tcltk Architecture: s390x Version: 2.3.1-2~16.04.5 Distribution: xenial Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Leonidas S. Barbosa Description: libruby2.3 - Libraries necessary to run Ruby 2.3 libruby2.3-dbg - Debugging symbols for libruby2.3 ruby2.3 - Interpreter of object-oriented scripting language Ruby ruby2.3-dev - Header files for compiling extension modules for the Ruby 2.3 ruby2.3-doc - Documentation for Ruby 2.3 ruby2.3-tcltk - Ruby/Tk for Ruby 2.3 Changes: ruby2.3 (2.3.1-2~16.04.5) xenial-security; urgency=medium . * SECURITY UPDATE: possible command injection attacks through kernel#open - debian/patches/CVE-2017-17790.patch: fix uses of Kernel#open in lib/resolv.rb. - CVE-2017-17790 * SECURITY UPDATE: possibly execute arbitrary commands via a crafted user name - debian/patches/CVE-2017-10784.patch: sanitize any type of logs in lib/webrick/httpstatus.rb, lib/webrick/log.rb and test/webrick/test_httpauth.rb. - CVE-2017-10784 * SECURITY UPDATE: denial of service via a crafted string - debian/patches/CVE-2017-14033.patch: fix in ext/openssl/ossl_asn1.c. - CVE-2017-14033 * SECURITY UPDATE: Arbitrary memory expose during a JSON.generate call - debian/patches/CVE-2017-14064.patch: fix this in ext/json/ext/generator/generator.c and ext/json/ext/generator/generator.h. Checksums-Sha1: a090387af9aca64d322d5e08bf6b58a74d433894 2995310 libruby2.3-dbg_2.3.1-2~16.04.5_s390x.deb ad253d1de4ff1d41cc56a2f62ab00a8be54a0601 952 libruby2.3-dbgsym_2.3.1-2~16.04.5_s390x.ddeb 9ed50e2d893fe045fef988c40d58c04fae41a529 2887198 libruby2.3_2.3.1-2~16.04.5_s390x.deb 2e8a124364b24b797769da1053c8e7052d2c1147 980 ruby2.3-dbgsym_2.3.1-2~16.04.5_s390x.ddeb d1a60a3b2ebfddc098c3fd8c64f6a0fabbd9691d 978 ruby2.3-dev-dbgsym_2.3.1-2~16.04.5_s390x.ddeb ea891f0639b4b03f1f600e6c5c23dcc8946b1b7e 992684 ruby2.3-dev_2.3.1-2~16.04.5_s390x.deb 2d35f9c9570a344f0bd2a129e9366ed6bcaf6df2 948 ruby2.3-tcltk-dbgsym_2.3.1-2~16.04.5_s390x.ddeb 6ad724146e22dd91115de97c110c9ba0016da0c3 273008 ruby2.3-tcltk_2.3.1-2~16.04.5_s390x.deb 3a769f25e4b63c2cc57efeb909259443e3082d85 40932 ruby2.3_2.3.1-2~16.04.5_s390x.deb Checksums-Sha256: 8af3f0b050716ac68a524eb30d7b325b2459b3550d7d8deb4bb82529d1be854e 2995310 libruby2.3-dbg_2.3.1-2~16.04.5_s390x.deb b86cafca31dcbbc6081073477c7008f3904889e454a26511500d287816993717 952 libruby2.3-dbgsym_2.3.1-2~16.04.5_s390x.ddeb 39846395ff3c7511a54e8c673af74d799feb429a17a82b8123cc98375c4acefe 2887198 libruby2.3_2.3.1-2~16.04.5_s390x.deb 912568db750776c2931a66c651f273ce3af5d0132bbbf7d4f00e4cac962888c1 980 ruby2.3-dbgsym_2.3.1-2~16.04.5_s390x.ddeb 9dc9b3c4015ca7d45e2cc829bad500b4c12950300abf3720d0130b02dd040ad8 978 ruby2.3-dev-dbgsym_2.3.1-2~16.04.5_s390x.ddeb 754ea42c495fae6d0a31f03f3d2dd3da61e8358e94a9302e36121dfdbd5fb5b1 992684 ruby2.3-dev_2.3.1-2~16.04.5_s390x.deb fbca9708e8c7b2807010496b3563195d3c041c3e62093fb3ef6d7ef1f318a05d 948 ruby2.3-tcltk-dbgsym_2.3.1-2~16.04.5_s390x.ddeb 1f35752fa044974d7ecc6e517ceb64f61bfd7c16e64c29014b5d00e96ee3c54e 273008 ruby2.3-tcltk_2.3.1-2~16.04.5_s390x.deb 851c9b7f49cf9f84e7e8ca15abcfeac6efbee248061a961878ccd5e2abb98f05 40932 ruby2.3_2.3.1-2~16.04.5_s390x.deb Files: 0b4933feaeeca9a8f03ca92712081196 2995310 debug optional libruby2.3-dbg_2.3.1-2~16.04.5_s390x.deb 6b4140ea6a652d68ccb74496975b128f 952 libs extra libruby2.3-dbgsym_2.3.1-2~16.04.5_s390x.ddeb ee8c176bcdf0e481b79c24ccbf4c2037 2887198 libs optional libruby2.3_2.3.1-2~16.04.5_s390x.deb a2fb9c1ac9a8967dc03872953ed3d8a4 980 ruby extra ruby2.3-dbgsym_2.3.1-2~16.04.5_s390x.ddeb 4bf6014e29cb1d02ed2235fc5c9ced3d 978 ruby extra ruby2.3-dev-dbgsym_2.3.1-2~16.04.5_s390x.ddeb 0c4ffa9b2a4669cae95a985501a541fe 992684 ruby optional ruby2.3-dev_2.3.1-2~16.04.5_s390x.deb 91ce78ae5170c7adbae3747c50794610 948 ruby extra ruby2.3-tcltk-dbgsym_2.3.1-2~16.04.5_s390x.ddeb e9525b545dba275959a9357527165fbe 273008 ruby optional ruby2.3-tcltk_2.3.1-2~16.04.5_s390x.deb 1baa692df6914f05af38f91d4acdc90a 40932 ruby optional ruby2.3_2.3.1-2~16.04.5_s390x.deb