Format: 1.8 Date: Tue, 21 Feb 2012 16:28:51 -0600 Source: ruby1.8 Binary: ruby1.8 libruby1.8 libruby1.8-dbg ruby1.8-dev libdbm-ruby1.8 libgdbm-ruby1.8 libreadline-ruby1.8 libtcltk-ruby1.8 libopenssl-ruby1.8 ruby1.8-examples ruby1.8-elisp ri1.8 rdoc1.8 irb1.8 Architecture: sparc Version: 1.8.7.249-2ubuntu0.1 Distribution: lucid Urgency: low Maintainer: Ubuntu/sparc Build Daemon Changed-By: Tyler Hicks Description: irb1.8 - Interactive Ruby (for Ruby 1.8) libdbm-ruby1.8 - DBM interface for Ruby 1.8 libgdbm-ruby1.8 - GDBM interface for Ruby 1.8 libopenssl-ruby1.8 - OpenSSL interface for Ruby 1.8 libreadline-ruby1.8 - Readline interface for Ruby 1.8 libruby1.8 - Libraries necessary to run Ruby 1.8 libruby1.8-dbg - Debugging symbols for Ruby 1.8 libtcltk-ruby1.8 - Tcl/Tk interface for Ruby 1.8 rdoc1.8 - Generate documentation from Ruby source files (for Ruby 1.8) ri1.8 - Ruby Interactive reference (for Ruby 1.8) ruby1.8 - Interpreter of object-oriented scripting language Ruby 1.8 ruby1.8-dev - Header files for compiling extension modules for the Ruby 1.8 ruby1.8-elisp - ruby-mode for Emacsen ruby1.8-examples - Examples for Ruby 1.8 Changes: ruby1.8 (1.8.7.249-2ubuntu0.1) lucid-security; urgency=low . * SECURITY UPDATE: Cross-site scripting via HTTP error responses - debian/patches/CVE-2010-0541.patch: Use the ISO-8859-1 character set for HTTP error responses. Based on upstream patch. - CVE-2010-0541 * SECURITY UPDATE: Arbitrary code execution and denial of service - debian/patches/CVE-2011-0188.patch: Remove cast to prevent memory corruption during allocation. Based on upstream patch. - CVE-2011-0188 * SECURITY UPDATE: Arbitrary file deletion due to symlink race - debian/patches/CVE-2011-1004.patch: Unlink the symlink rather than recursively removing everything underneath the symlink destination. Based on upstream patch. - CVE-2011-1004 * SECURITY UPDATE: Safe level bypass - debian/patches/CVE-2011-1005.patch: Remove incorrect string taint in exception handling methods. Based on upstream patch. - CVE-2011-1005 * SECURITY UPDATE: Predictable random number generation - debian/patches/CVE-2011-2686.patch: Reseed the random number generator each time a child process is created. Based on upstream patch. - CVE-2011-2686 * SECURITY UPDATE: Predicatable random number generation - debian/patches/CVE-2011-2705.patch: Reseed the random number generator with the pid number and the current time to prevent predictable random numbers in the case of pid number rollover. Based on upstream patch. - CVE-2011-2705 * SECURITY UPDATE: Denial of service via crafted hash table keys - debian/patches/CVE-2011-4815.patch: Add randomness to the key hashing algorithm to prevent predictable results when inserting objects into a hash table. Based on upstream patch. - CVE-2011-4815 Checksums-Sha1: 912c559266a6f722dfccaeec4e37ffe051e4245b 24180 ruby1.8_1.8.7.249-2ubuntu0.1_sparc.deb 09cb14abe62087890fb31356142c767224906649 1498132 libruby1.8_1.8.7.249-2ubuntu0.1_sparc.deb cf3fd18bab5ce27b583fd5b77621c3a23ab4a75f 1160584 libruby1.8-dbg_1.8.7.249-2ubuntu0.1_sparc.deb 6585c3d81baf5b5388d254c7fc1211ebacaca71f 616100 ruby1.8-dev_1.8.7.249-2ubuntu0.1_sparc.deb 04e2bdb905fb23c518f651c5881a54191eb59290 11556 libdbm-ruby1.8_1.8.7.249-2ubuntu0.1_sparc.deb ac5a804b9a1d0bb295b1cc987840048224d0458b 10706 libgdbm-ruby1.8_1.8.7.249-2ubuntu0.1_sparc.deb d7fcf7ee127a2e2fd6e736eff5f8c8447b59cc87 10586 libreadline-ruby1.8_1.8.7.249-2ubuntu0.1_sparc.deb c6d8610ad3e1f35d52fc0451463cba1c177547f4 1736192 libtcltk-ruby1.8_1.8.7.249-2ubuntu0.1_sparc.deb 1f4c7e68dfcf705f38f7f4acae5174357d5344f2 129282 libopenssl-ruby1.8_1.8.7.249-2ubuntu0.1_sparc.deb Checksums-Sha256: 87cec405ba603302c28b1c685f94f31f3dff1cbee782e58ec0deaf4479bfff99 24180 ruby1.8_1.8.7.249-2ubuntu0.1_sparc.deb 25fbfeb4d18b7d4aa0e4452b747263d67d6251afa0966c160603d55fb49940d0 1498132 libruby1.8_1.8.7.249-2ubuntu0.1_sparc.deb c3f16055b00153877ee28feeb8e959798aaf332f16961b15e73333b6fd8ad2f8 1160584 libruby1.8-dbg_1.8.7.249-2ubuntu0.1_sparc.deb d7813682dec82e675753f85a54ae5b6f34efba369eb37b354538bf2aa4cade15 616100 ruby1.8-dev_1.8.7.249-2ubuntu0.1_sparc.deb 8ad736b3efd9fcabb969064dfcbd48b8206403a01ed306845a9b462f673f736b 11556 libdbm-ruby1.8_1.8.7.249-2ubuntu0.1_sparc.deb 1bd601fd3b1f1d0aac3a2cfe3ddb140076bf85e583bda103447a821fae0d99b9 10706 libgdbm-ruby1.8_1.8.7.249-2ubuntu0.1_sparc.deb d072c66e40bd87b4f3872f59f0df8242c485f1b629ad493746466bc0f6bd3373 10586 libreadline-ruby1.8_1.8.7.249-2ubuntu0.1_sparc.deb 994e4065add713d5595ca90c9bf02245ce8519b87b1462a5a0f12c9a97e1c770 1736192 libtcltk-ruby1.8_1.8.7.249-2ubuntu0.1_sparc.deb 43394cadd3e80dd70b3ddd9dcfcabf20ddf79ac7e552af7a8dc7616a67f2d0e6 129282 libopenssl-ruby1.8_1.8.7.249-2ubuntu0.1_sparc.deb Files: 145613ceb5e0b554932c07113a87fd5f 24180 ruby optional ruby1.8_1.8.7.249-2ubuntu0.1_sparc.deb 2fefe2bf7edd5a20df3e40327037f258 1498132 ruby optional libruby1.8_1.8.7.249-2ubuntu0.1_sparc.deb bf007fd3ed182613ba2a27431ca947d2 1160584 debug extra libruby1.8-dbg_1.8.7.249-2ubuntu0.1_sparc.deb f48b1b7d42936b5734b2bb990b0597c0 616100 ruby optional ruby1.8-dev_1.8.7.249-2ubuntu0.1_sparc.deb 35a268f9c8a30264652a8d28815dfe64 11556 ruby optional libdbm-ruby1.8_1.8.7.249-2ubuntu0.1_sparc.deb 4e9392afe30df5ca800d6a7faab1a308 10706 ruby optional libgdbm-ruby1.8_1.8.7.249-2ubuntu0.1_sparc.deb 3d70d8f4b717ad95576121335cfb357a 10586 ruby optional libreadline-ruby1.8_1.8.7.249-2ubuntu0.1_sparc.deb 3b069f4a49d560a6086897691e10a529 1736192 ruby optional libtcltk-ruby1.8_1.8.7.249-2ubuntu0.1_sparc.deb 37131a804c8f7455c76062fb6d6bbe19 129282 ruby optional libopenssl-ruby1.8_1.8.7.249-2ubuntu0.1_sparc.deb Original-Maintainer: akira yamada