Commit Graph

230 Commits

Author SHA1 Message Date
Tomáš Mráz
df30244770 - rebuild with new openssl
- BN_rand_range functions are now constified
2009-01-26 14:15:26 +00:00
Tomáš Mráz
e861f3d739 - rebuild with new openssl 2009-01-17 20:59:44 +00:00
Akira TAGOH
7aa361802f - CVE-2008-3790: DoS vulnerability in the REXML module. 2008-10-08 13:30:47 +00:00
Akira TAGOH
3f68db5077 - New upstream release.
- Security fixes.
- CVE-2008-3655: Ruby does not properly restrict access to critical
    variables and methods at various safe levels.
- CVE-2008-3656: DoS vulnerability in WEBrick.
- CVE-2008-3657: Lack of taintness check in dl.
- CVE-2008-1447: DNS spoofing vulnerability in resolv.rb.
- CVE-2008-3443: Memory allocation failure in Ruby regex engine.
- Remove the unnecessary backported patches.
2008-08-23 08:58:47 +00:00
Tom Callaway
de2fc9b103 rebuild against db4 4.7 2008-07-10 16:00:48 +00:00
Akira TAGOH
8e0c100d5f *** empty log message *** 2008-07-01 08:12:02 +00:00
Akira TAGOH
1c83e9e839 - Backported from upstream SVN to fix a segfault issue with Array#fill. 2008-07-01 08:01:35 +00:00
Akira TAGOH
2061c5bdb3 - Backported from upstream SVN to fix a segfault issue. (#452825)
- Backported from upstream SVN to fix an integer overflow in rb_ary_fill.
2008-06-30 02:37:44 +00:00
Akira TAGOH
3c9cf6c1bd - Fix a segfault issue. (#452810) 2008-06-25 08:32:24 +00:00
Akira TAGOH
9f5e44d23c - New upstream release.
- Security fixes. (#452295)
- CVE-2008-1891: WEBrick CGI source disclosure.
- CVE-2008-2662: Integer overflow in rb_str_buf_append().
- CVE-2008-2663: Integer overflow in rb_ary_store().
- CVE-2008-2664: Unsafe use of alloca in rb_str_format().
- CVE-2008-2725: Integer overflow in rb_ary_splice().
- CVE-2008-2726: Integer overflow in rb_ary_splice().
- ruby-1.8.6.111-CVE-2007-5162.patch: removed.
- Build ruby-mode package for all archtectures.
2008-06-24 03:32:31 +00:00
Akira TAGOH
a4b170df84 clean up 2008-05-27 02:36:04 +00:00
Akira TAGOH
67dd6cda0e *** empty log message *** 2008-03-10 05:27:02 +00:00
Akira TAGOH
0af4ee55b7 - Security fix for CVE-2008-1145.
- Improve a spec file. (#226381)
- Correct License tag.
- Fix a timestamp issue.
- Own a arch-specific directory.
2008-03-10 04:28:30 +00:00
Jesse Keating
6c3566ac87 - Autorebuild for GCC 4.3 2008-02-20 03:41:02 +00:00
Akira TAGOH
16b62022c6 add a patch to build on gcc-4.3 2008-02-19 02:54:55 +00:00
Akira TAGOH
e2d02a3483 - Rebuild for gcc-4.3. 2008-02-12 10:12:29 +00:00
Akira TAGOH
ab8b6162b9 - Revert the change of libruby-static.a. (#428384) 2008-01-15 02:35:10 +00:00
Akira TAGOH
117d8ed552 - Fix an unnecessary replacement for shebang. (#426835) 2008-01-11 00:43:43 +00:00
Akira TAGOH
871224e7e4 - Rebuild. 2008-01-04 03:04:40 +00:00
Akira TAGOH
3646e24c14 - Clean up again. 2007-12-28 02:42:45 +00:00
Akira TAGOH
81fc3c36d5 - Clean up the spec file.
- Remove ruby-man-1.4.6 stuff. this is entirely the out-dated document.
    this could be replaced by ri.
- Disable the static library building.
2007-12-21 12:30:55 +00:00
Jesse Keating
b4cc79c19e - Rebuild for openssl bump 2007-12-04 22:45:03 +00:00
Akira TAGOH
37698a63cd - Fix the dead link. 2007-10-31 07:35:06 +00:00
Akira TAGOH
ab1c353515 - New upstream release.
- ruby-1.8.6.111-CVE-2007-5162.patch: Update a bit with backporting the
    changes at trunk to enable the fix without any modifications on the
    users' scripts. Note that Net::HTTP#enable_post_connection_check isn't
    available anymore. If you want to disable this post-check, you should
    give OpenSSL::SSL::VERIFY_NONE to Net::HTTP#verify_mode= instead of.
2007-10-29 12:32:50 +00:00
Bill Nottingham
283e1d64fa makefile update to properly grab makefile.common 2007-10-15 19:21:20 +00:00
Akira TAGOH
db165b8a66 *** empty log message *** 2007-10-15 11:48:04 +00:00
Akira TAGOH
cc412b274d - Enable pthread support for ppc too. (#201452)
- Fix unexpected dependencies appears in ruby-libs. (#253325)
2007-10-15 11:46:24 +00:00
Akira TAGOH
0a1f03043b *** empty log message *** 2007-10-10 02:38:06 +00:00
Akira TAGOH
0ce3eec117 - New upstream release.
- ruby-r12567.patch: removed.
- ruby-1.8.6-CVE-2007-5162.patch: security fix for Net::HTTP that is
    insufficient verification of SSL certificate.
2007-10-10 01:05:17 +00:00
Akira TAGOH
443bb961d5 - Rebuild 2007-08-23 13:22:32 +00:00
Akira TAGOH
d90f4cb168 - Update License tag. 2007-08-10 06:23:11 +00:00
Akira TAGOH
9b0a2c686b - ruby-r12567.patch: backport patch from upstream svn to get rid of the
unnecessary declarations. (#245446)
2007-06-25 03:35:51 +00:00
Akira TAGOH
1d08690b25 *** empty log message *** 2007-06-20 15:09:24 +00:00
Akira TAGOH
a479a6b5f9 - New upstream release.
- Fix Etc::getgrgid to get the correct gid as requested. (#236647)
2007-06-20 13:14:04 +00:00
Akira TAGOH
5bb64d01e8 - Fix search path breakage. (#234029) 2007-03-28 14:08:33 +00:00
Akira TAGOH
0ccd24ad48 - New upstream release.
- clean up a spec file.
2007-03-15 13:26:32 +00:00
Akira TAGOH
18a656782c *** empty log message *** 2007-02-13 10:37:48 +00:00
Akira TAGOH
6b5254289b Fue Feb 13 2007 Akira TAGOH <tagoh@redhat.com> - 1.8.5.12-2
- Rebuild
2007-02-13 10:37:16 +00:00
Akira TAGOH
5e0f0e1ccd - New upstream release. sources 5 Feb 2007 10:36:34 -0000
d7d12dd9124c9b7d55cdbbee313e3931 ruby-1.8.5-p12.tar.gz
2007-02-05 10:36:36 +00:00
Akira TAGOH
33bfb390b9 - rebuild 2007-02-05 04:59:56 +00:00
Akira TAGOH
f069eea3e8 - security fix release. 2006-12-11 04:23:10 +00:00
Akira TAGOH
44c8f2bd54 - security fix release.
- ruby-1.8.5-cgi-CVE-2006-5467.patch: fix a CGI multipart parsing bug that
    causes the denial of service. (#212396)
2006-10-27 13:51:47 +00:00
Jesse Keating
978382f446 bump for gcc bug 2006-10-01 21:18:33 +00:00
Akira TAGOH
3feca6f653 - fixed rbconfig.rb to refer to DESTDIR for sitearchdir. (#207311) 2006-09-26 09:39:59 +00:00
Akira TAGOH
25b45e3e66 - ruby-1.8.5-hash-memory-leak.patch: backported from CVS to fix a memory
leak on Hash. [ruby-talk:211233]
2006-09-05 07:37:24 +00:00
Akira TAGOH
65c9d6e045 *** empty log message *** 2006-08-29 12:53:41 +00:00
Akira TAGOH
8f19dd2c88 *** empty log message *** 2006-08-28 14:55:58 +00:00
Akira TAGOH
e323e92339 *** empty log message *** 2006-08-28 14:29:49 +00:00
Akira TAGOH
c968017a94 *** empty log message *** 2006-08-28 14:15:32 +00:00
Akira TAGOH
45d9b3a63b *** empty log message *** 2006-08-28 13:47:56 +00:00