rpms/ruby
7
0
Fork 0
Code Issues Pull Requests Releases Activity
721 Commits 45 Branches 84 Tags 4.2 MiB
c10s
Commit Graph

97 Commits

Author SHA1 Message Date
Jarek Prokop
9cc2902e69 Upgrade to Ruby 3.3.5. 
Fix DoS vulnerability in rexml.
(CVE-2024-39908)
(CVE-2024-41946)
(CVE-2024-43398)

Fix REXML DoS when parsing an XML having many specific characters such as
whitespace character, >] and ]>.
(CVE-2024-41123)

Upgrade by merging Fedora changes up to commit:
b7e197fb88

Exclude:
- Generate RPM dependencies with RPM 4.20 API
  6bed1e3bd5
We don't have new enough RPM.

Resolves: RHEL-59035
Resolves: RHEL-57047
Resolves: RHEL-57059
Resolves: RHEL-57070
Resolves: RHEL-52802
 2024-09-17 17:42:49 +02:00
Jun Aruga
d143dbbbc6 Upgrade to Ruby 3.3.1. 
* Upgrade to Ruby 3.3.1.
  Resolves: RHEL-33975
* Fix buffer overread vulnerability in StringIO.
  Resolves: RHEL-34124
* Fix RCE vulnerability with .rdoc_options in RDoc.
  Resolves: RHEL-34116
* Fix arbitrary memory address read vulnerability with Regex search.
  Resolves: RHEL-33866

* Ruby bundled NKF, add appropriate `bundled` provide and test
* License review and clarification

This commit was merged and adjusted from Fedora rawhie latest commit
<ff5301a5f3>.

```
$ git remote add fedora https://src.fedoraproject.org/rpms/ruby.git
$ git fetch fedora
$ git merge --squash fedora/rawhide
```
 2024-05-10 12:04:59 +02:00
Vít Ondruch
05a6c9c8f3 Upgrade to Ruby 3.3.0. 
Resolves: rhbz#2255918
 2024-01-02 18:52:33 +01:00
Vít Ondruch
9e39fd242a Upgrade to Ruby 3.2.2. 
Resolves: rhbz#2183284
 2023-03-31 15:27:47 +02:00
Vít Ondruch
59f62d6bc9 Upgrade to Ruby 3.2.1. 
Resolves: rhbz#2168292
 2023-02-10 10:45:13 +01:00
Vít Ondruch
f2899ee090 Upgrade to Ruby 3.2.0. 
For details of the evolution please check `private-ruby-3.2` branch.
 2023-01-02 18:09:09 +01:00
Vít Ondruch
649a6e3083 Upgrade to Ruby 3.1.3. 2022-11-28 12:20:25 +01:00
Vít Ondruch
09d0e79c2b Upgrade to Ruby 3.1.2. 2022-04-14 13:50:23 +02:00
Vít Ondruch
74983bcd56 Upgrade to Ruby 3.1.1. 2022-03-15 13:26:14 +01:00
Vít Ondruch
b0ce095f6d Upgrade to Ruby 3.1.0. 
For details of the evolution please check `private-ruby-3.1` branch.
 2022-01-26 09:54:13 +01:00
Vít Ondruch
d584a5bfb3 Upgrade to Ruby 3.0.3. 2021-11-25 17:46:48 +01:00
Jarek Prokop
63065e7db7 Upgrade to Ruby 3.0.2. 
- Fix command injection vulnerability in RDoc.
  Resolves: CVE-2021-31799
- Fix FTP PASV command response can cause Net::FTP to connect to arbitrary host.
  Resolves: CVE-2021-31810
- Fix StartTLS stripping vulnerability in Net::IMAP.
  Resolves: CVE-2021-32066
- Fix dependencies of gems with explicit source installed from a different
  source.
  Resolves: CVE-2020-36327
 2021-07-15 14:02:23 +02:00
Vít Ondruch
9e656cf658 Upgrade to Ruby 3.0.1. 2021-04-06 12:57:56 +02:00
Vít Ondruch
f11a9b4fe3 Upgrade to Ruby 3.0.0. 
* Extract RSS and REXML into separate subpackages, because they were moved from
  default gems to bundled gems.

* Obsolete Net::Telnet and XMLRPC packages, because they were dropped from Ruby.

The detailed changelog leading to this release is preserved in
private-ruby-3.0 branch.
 2021-01-04 16:42:55 +01:00
Vít Ondruch
8b746d13cf Upgrade to Ruby 2.7.2. 2020-10-13 16:22:15 +02:00
Vít Ondruch
f2d727806b Upgrade to Ruby 2.7.1. 2020-04-01 21:06:53 +02:00
Vít Ondruch
3696d7be37 Upgrade to Ruby 2.7.0. 
This is SRPM import. The evolution of this commit is preserved in
private-ruby-2.7 branch.
 2020-01-15 16:26:13 +01:00
Slava Kardakov
04b63f48ea Update to Ruby 2.6.5. 2019-10-08 21:47:31 +02:00
Pavel Valena
050a503e16 Update to Ruby 2.6.4. 2019-09-03 11:39:53 +02:00
Pavel Valena
1cc2a497d3 Update sources file. 2019-05-14 18:39:59 +02:00
Vít Ondruch
f4c0ae4dea Upgrade to Ruby 2.6.2. 2019-03-14 17:53:29 +01:00
Vít Ondruch
17f23f30d6 Upgrade to Ruby 2.6.1. 2019-01-31 12:42:56 +01:00
Vít Ondruch
0c8cdc456b Upgrade to Ruby 2.6.0. 2019-01-17 08:31:01 +01:00
Jun Aruga
32488add5b Update to Ruby 2.5.3. 2018-10-22 12:12:21 +02:00
Pavel Valena
793a1c3612 Update to Ruby 2.5.1. 2018-04-10 09:51:17 +02:00
Vít Ondruch
c2db65dbc7 Upgrade to Ruby 2.5.0. 2018-01-03 12:07:19 +01:00
Pavel Valena
535c42e96c Update to Ruby 2.4.2. 
Patch10 and Patch11 subsumed.
 2017-09-19 16:19:16 +02:00
Vít Ondruch
5c42276905 Update to Ruby 2.4.1. 2017-04-03 16:11:07 +02:00
Vít Ondruch
3130f89edd Upgrade to Ruby 2.4.0. 
Move gemified xmlrpc into subpackage.
Move gemified openssl into subpackage.
Tk is removed from stdlib.
Extend 'gem_' macros for pre-release version support.
 2017-01-09 15:58:21 +01:00
Vít Ondruch
d14e3f780f Update to Ruby 2.3.3. 2016-11-22 13:49:04 +01:00
Vít Ondruch
0a64e4b921 Update to Ruby 2.3.2. 2016-11-18 16:59:26 +01:00
Vít Ondruch
f2347fa378 Update to Ruby 2.3.1. 2016-04-29 23:19:03 +02:00
Vít Ondruch
4c12d4e704 Upgrade to Ruby 2.3.0. 2016-01-05 11:00:48 +01:00
Vít Ondruch
e467536081 Update to Ruby 2.2.4. 2015-12-21 13:08:17 +01:00
Vít Ondruch
b945bce4cb Update to Ruby 2.2.3. 2015-09-01 14:25:32 +02:00
Josef Stribny
05eb8b6a78 Update to Ruby 2.2.2 2015-04-14 09:51:46 +02:00
Vít Ondruch
1af12992cf Update to Ruby 2.2.1. 2015-03-04 11:49:19 +01:00
Vít Ondruch
9195984ef3 Upgrade to Ruby 2.2.0. 
- Explicitly list RubyGems directories to avoid accidentaly packaged content.
- Split test-unit and power_assert gems into separate sub-packages.
- Drop libdb dependency in favor of gdbm.
 2015-01-15 10:14:24 +01:00
Vít Ondruch
1610d07dcd Update to Ruby 2.1.5. 2014-11-28 17:02:55 +01:00
Vít Ondruch
61fd310e63 Update to Ruby 2.1.4. 2014-10-29 15:22:34 +01:00
Josef Stribny
d09c32278d Update to Ruby 2.1.2 2014-05-20 13:24:29 +02:00
Vít Ondruch
a7c9cd0323 Import Ruby 2.1 sources. 2014-04-08 13:32:43 +02:00
Vít Ondruch
eac4c415ba Update to Ruby 2.0.0-p353. 
- Allow MD5 in OpenSSL for tests.
- Fix heap overflow in floating point parsing (CVE-2013-4164).
 2013-11-27 16:07:24 +01:00
Vít Ondruch
26512adf37 Update to Ruby 2.0.0-p247 (rhbz#979605). 
Fix CVE-2013-4073.
Fix for wrong makefiles created by mkmf (rhbz#921650).
 2013-07-01 12:03:01 +02:00
Vít Ondruch
e1890f92f2 Update to Ruby 2.0.0-p195 (rhbz#917374). 
Fix object taint bypassing in DL and Fiddle (CVE-2013-2065).
 2013-05-20 15:56:24 +02:00
Vít Ondruch
eba90976c0 Update to Ruby 2.0.0-p0. 2013-02-25 12:46:22 +01:00
Vít Ondruch
eedc10e71b Add missing patch. 2013-02-22 15:28:37 +01:00
Mamoru TASAKA
51a6d3593c Update to 1.9.3 p385 2013-02-11 15:55:43 +09:00
Mamoru Tasaka
957db76127 Update to 1.9.3 p374 
- Fix provided variables in pkgconfig (bug 789532:
  Vít Ondruch <vondruch@redhat.com>)
 2013-01-20 01:44:27 +09:00
Mamoru Tasaka
a8441ce179 Update to 1.9.3.362 2013-01-02 16:07:42 +09:00