rpms/ruby
6
0
Fork 0
Code Issues Pull Requests Releases Activity
9 Commits 48 Branches 103 Tags 2.8 MiB
0cac7598cf
Commit Graph

7 Commits

Author SHA1 Message Date
Jarek Prokop
0cac7598cf Upgrade to Ruby 3.1.7. 
Fix DoS vulnerability in REXML. (CVE-2024-39908)
Fix DoS vulnerability in REXML. (CVE-2024-43398)

Resolves: RHEL-55408
Resolves: RHEL-57051
Resolves: RHEL-56002
 2025-04-04 11:03:04 +02:00
Jun Aruga
578b78b080 Upgrade to Ruby 3.1.5. 
* Upgrade to Ruby 3.1.5.
  Resolves: RHEL-35748
* Fix buffer overread vulnerability in StringIO.
  Resolves: RHEL-35749
* Fix RCE vulnerability with .rdoc_options in RDoc.
  Resolves: RHEL-35750
* Fix arbitrary memory address read vulnerability with Regex search.
  Resolves: RHEL-35751

Fix fiddle build with libffi versions 3.1 or older.
 2024-05-09 17:00:36 +02:00
Jarek Prokop
82a19c4144 Upgrade to Ruby 3.1.4 
Fix HTTP response splitting in CGI.
Fix ReDos vulnerability in URI.
Fix ReDos vulnerability in Time.
Make RDoc soft dependency in IRB.

Rebased from latest Ruby 3.1 present in Fedora 37, commit:
4048f893da1d56ed65667e7f15405224653c83e2

Resolves: RHEL-5584
Resolves: CVE-2021-33621
Resolves: CVE-2023-28755
Resolves: CVE-2023-36617
Resolves: CVE-2023-28756
Resolves: RHEL-5615
 2024-03-05 14:35:37 +01:00
James Antill
217213228d Import rpm: 9f96feb53d9feecfcd393c1874263a48edf03dea 2023-02-23 23:52:01 -05:00
James Antill
e9f815579c Import rpm: 9f96feb53d9feecfcd393c1874263a48edf03dea 2023-02-23 13:20:23 -05:00
James Antill
dc811d3013 Convert from sha1 to sha512. 2022-08-31 16:10:59 -04:00
James Antill
26e228c90c Import rpm: 9f96feb53d9feecfcd393c1874263a48edf03dea 2022-08-08 14:06:45 -04:00