rpms/ruby
7
0
Fork 0
Code Issues Pull Requests Releases Activity
9 Commits 44 Branches 83 Tags 4.2 MiB
1ccfb03ab8
Commit Graph

4 Commits

Author SHA1 Message Date
Jarek Prokop
1ccfb03ab8 Upgrade to Ruby 3.3.5. 
Fix DoS vulnerability in rexml.
(CVE-2024-39908)
(CVE-2024-41946)
(CVE-2024-43398)

Fix REXML DoS when parsing an XML having many specific characters such as
whitespace character, >] and ]>.
(CVE-2024-41123)

Upgrade by merging Fedora changes up to commit:
b7e197fb88

Exclude:
- Generate RPM dependencies with RPM 4.20 API
  6bed1e3bd5
We don't have new enough RPM.

Resolves: RHEL-55409
Resolves: RHEL-57049
Resolves: RHEL-52783
Resolves: RHEL-57054
Resolves: RHEL-57069
 2024-09-05 09:49:16 +02:00
Jarek Prokop
44e781b1f4 Upgrade to Ruby 3.3.1. 
Fix buffer overread vulnerability in StringIO.
  (CVE-2024-27280)
Fix RCE vulnerability with .rdoc_options in RDoc.
  (CVE-2024-27281)
Fix Arbitrary memory address read vulnerability with Regex search.
  (CVE-2024-27282)

Ruby bundled NKF, add appropriate `bundled` provide and test
License review and clarification

Upgrade by merging Fedora changes up to commit:
ff5301a5f3

Resolves: RHEL-37446
Resolves: RHEL-37448
Resolves: RHEL-37449
Resolves: RHEL-37447
 2024-05-20 19:51:11 +02:00
Jarek Prokop
4f8991cc06 Upgrade to Ruby 3.3.0. 
Imported from Fedora @ 3008410

Resolves: RHEL-17090
 2024-01-29 16:23:30 +01:00
James Antill
26e228c90c Import rpm: 9f96feb53d9feecfcd393c1874263a48edf03dea 2022-08-08 14:06:45 -04:00