Akira TAGOH
7aa361802f
- CVE-2008-3790: DoS vulnerability in the REXML module.
2008-10-08 13:30:47 +00:00
Akira TAGOH
3f68db5077
- New upstream release.
...
- Security fixes.
- CVE-2008-3655: Ruby does not properly restrict access to critical
variables and methods at various safe levels.
- CVE-2008-3656: DoS vulnerability in WEBrick.
- CVE-2008-3657: Lack of taintness check in dl.
- CVE-2008-1447: DNS spoofing vulnerability in resolv.rb.
- CVE-2008-3443: Memory allocation failure in Ruby regex engine.
- Remove the unnecessary backported patches.
2008-08-23 08:58:47 +00:00
Tom Callaway
de2fc9b103
rebuild against db4 4.7
2008-07-10 16:00:48 +00:00
Akira TAGOH
8e0c100d5f
*** empty log message ***
2008-07-01 08:12:02 +00:00
Akira TAGOH
1c83e9e839
- Backported from upstream SVN to fix a segfault issue with Array#fill.
2008-07-01 08:01:35 +00:00
Akira TAGOH
2061c5bdb3
- Backported from upstream SVN to fix a segfault issue. ( #452825 )
...
- Backported from upstream SVN to fix an integer overflow in rb_ary_fill.
2008-06-30 02:37:44 +00:00
Akira TAGOH
3c9cf6c1bd
- Fix a segfault issue. ( #452810 )
2008-06-25 08:32:24 +00:00
Akira TAGOH
9f5e44d23c
- New upstream release.
...
- Security fixes. (#452295 )
- CVE-2008-1891: WEBrick CGI source disclosure.
- CVE-2008-2662: Integer overflow in rb_str_buf_append().
- CVE-2008-2663: Integer overflow in rb_ary_store().
- CVE-2008-2664: Unsafe use of alloca in rb_str_format().
- CVE-2008-2725: Integer overflow in rb_ary_splice().
- CVE-2008-2726: Integer overflow in rb_ary_splice().
- ruby-1.8.6.111-CVE-2007-5162.patch: removed.
- Build ruby-mode package for all archtectures.
2008-06-24 03:32:31 +00:00
Akira TAGOH
67dd6cda0e
*** empty log message ***
2008-03-10 05:27:02 +00:00
Akira TAGOH
0af4ee55b7
- Security fix for CVE-2008-1145.
...
- Improve a spec file. (#226381 )
- Correct License tag.
- Fix a timestamp issue.
- Own a arch-specific directory.
2008-03-10 04:28:30 +00:00
Jesse Keating
6c3566ac87
- Autorebuild for GCC 4.3
2008-02-20 03:41:02 +00:00
Akira TAGOH
16b62022c6
add a patch to build on gcc-4.3
2008-02-19 02:54:55 +00:00
Akira TAGOH
e2d02a3483
- Rebuild for gcc-4.3.
2008-02-12 10:12:29 +00:00
Akira TAGOH
ab8b6162b9
- Revert the change of libruby-static.a. ( #428384 )
2008-01-15 02:35:10 +00:00
Akira TAGOH
117d8ed552
- Fix an unnecessary replacement for shebang. ( #426835 )
2008-01-11 00:43:43 +00:00
Akira TAGOH
871224e7e4
- Rebuild.
2008-01-04 03:04:40 +00:00
Akira TAGOH
3646e24c14
- Clean up again.
2007-12-28 02:42:45 +00:00
Akira TAGOH
81fc3c36d5
- Clean up the spec file.
...
- Remove ruby-man-1.4.6 stuff. this is entirely the out-dated document.
this could be replaced by ri.
- Disable the static library building.
2007-12-21 12:30:55 +00:00
Jesse Keating
b4cc79c19e
- Rebuild for openssl bump
2007-12-04 22:45:03 +00:00
Akira TAGOH
37698a63cd
- Fix the dead link.
2007-10-31 07:35:06 +00:00
Akira TAGOH
ab1c353515
- New upstream release.
...
- ruby-1.8.6.111-CVE-2007-5162.patch: Update a bit with backporting the
changes at trunk to enable the fix without any modifications on the
users' scripts. Note that Net::HTTP#enable_post_connection_check isn't
available anymore. If you want to disable this post-check, you should
give OpenSSL::SSL::VERIFY_NONE to Net::HTTP#verify_mode= instead of.
2007-10-29 12:32:50 +00:00
Akira TAGOH
db165b8a66
*** empty log message ***
2007-10-15 11:48:04 +00:00
Akira TAGOH
cc412b274d
- Enable pthread support for ppc too. ( #201452 )
...
- Fix unexpected dependencies appears in ruby-libs. (#253325 )
2007-10-15 11:46:24 +00:00
Akira TAGOH
0ce3eec117
- New upstream release.
...
- ruby-r12567.patch: removed.
- ruby-1.8.6-CVE-2007-5162.patch: security fix for Net::HTTP that is
insufficient verification of SSL certificate.
2007-10-10 01:05:17 +00:00
Akira TAGOH
443bb961d5
- Rebuild
2007-08-23 13:22:32 +00:00
Akira TAGOH
d90f4cb168
- Update License tag.
2007-08-10 06:23:11 +00:00
Akira TAGOH
9b0a2c686b
- ruby-r12567.patch: backport patch from upstream svn to get rid of the
...
unnecessary declarations. (#245446 )
2007-06-25 03:35:51 +00:00
Akira TAGOH
1d08690b25
*** empty log message ***
2007-06-20 15:09:24 +00:00
Akira TAGOH
a479a6b5f9
- New upstream release.
...
- Fix Etc::getgrgid to get the correct gid as requested. (#236647 )
2007-06-20 13:14:04 +00:00
Akira TAGOH
5bb64d01e8
- Fix search path breakage. ( #234029 )
2007-03-28 14:08:33 +00:00
Akira TAGOH
0ccd24ad48
- New upstream release.
...
- clean up a spec file.
2007-03-15 13:26:32 +00:00
Akira TAGOH
18a656782c
*** empty log message ***
2007-02-13 10:37:48 +00:00
Akira TAGOH
6b5254289b
Fue Feb 13 2007 Akira TAGOH <tagoh@redhat.com> - 1.8.5.12-2
...
- Rebuild
2007-02-13 10:37:16 +00:00
Akira TAGOH
5e0f0e1ccd
- New upstream release. sources 5 Feb 2007 10:36:34 -0000
...
d7d12dd9124c9b7d55cdbbee313e3931 ruby-1.8.5-p12.tar.gz
2007-02-05 10:36:36 +00:00
Akira TAGOH
33bfb390b9
- rebuild
2007-02-05 04:59:56 +00:00
Akira TAGOH
f069eea3e8
- security fix release.
2006-12-11 04:23:10 +00:00
Akira TAGOH
44c8f2bd54
- security fix release.
...
- ruby-1.8.5-cgi-CVE-2006-5467.patch: fix a CGI multipart parsing bug that
causes the denial of service. (#212396 )
2006-10-27 13:51:47 +00:00
Jesse Keating
978382f446
bump for gcc bug
2006-10-01 21:18:33 +00:00
Akira TAGOH
3feca6f653
- fixed rbconfig.rb to refer to DESTDIR for sitearchdir. ( #207311 )
2006-09-26 09:39:59 +00:00
Akira TAGOH
25b45e3e66
- ruby-1.8.5-hash-memory-leak.patch: backported from CVS to fix a memory
...
leak on Hash. [ruby-talk:211233]
2006-09-05 07:37:24 +00:00
Akira TAGOH
65c9d6e045
*** empty log message ***
2006-08-29 12:53:41 +00:00
Akira TAGOH
8f19dd2c88
*** empty log message ***
2006-08-28 14:55:58 +00:00
Akira TAGOH
e323e92339
*** empty log message ***
2006-08-28 14:29:49 +00:00
Akira TAGOH
c968017a94
*** empty log message ***
2006-08-28 14:15:32 +00:00
Akira TAGOH
45d9b3a63b
*** empty log message ***
2006-08-28 13:47:56 +00:00
Akira TAGOH
96db45ddea
trivial fix to build successfully
2006-08-28 12:19:07 +00:00
Akira TAGOH
e7cc3ee268
*** empty log message ***
2006-08-28 11:08:12 +00:00
Akira TAGOH
868af58cd2
*** empty log message ***
2006-08-28 09:04:06 +00:00
Akira TAGOH
fdc551e3d9
*** empty log message ***
2006-08-28 08:51:29 +00:00
Akira TAGOH
f3840b136a
- New upstream release.
...
- removed the unnecessary patches:
- ruby-1.8.4-no-eaccess.patch
- ruby-1.8.4-64bit-pack.patch
- ruby-1.8.4-fix-insecure-dir-operation.patch
- ruby-1.8.4-fix-insecure-regexp-modification.patch
- ruby-1.8.4-fix-alias-safe-level.patch
2006-08-28 08:50:07 +00:00