Commit Graph

116 Commits

Author SHA1 Message Date
Bill Nottingham
c22bcde976 Fix typo that causes a failure to update the common directory. (releng
#2781)
2009-11-26 01:30:25 +00:00
Akira TAGOH
34dea7491f - CVE-2008-3790: DoS vulnerability in the REXML module. 2008-10-08 13:56:55 +00:00
Akira TAGOH
72862efc8e - New upstream release.
- Security fixes.
- CVE-2008-3655: Ruby does not properly restrict access to critical
    variables and methods at various safe levels.
- CVE-2008-3656: DoS vulnerability in WEBrick.
- CVE-2008-3657: Lack of taintness check in dl.
- CVE-2008-1447: DNS spoofing vulnerability in resolv.rb.
- CVE-2008-3443: Memory allocation failure in Ruby regex engine.
- Remove the unnecessary backported patches.
2008-08-23 09:12:42 +00:00
Akira TAGOH
6ebbfce19f - Backported from upstream SVN to fix a segfault issue with Array#fill. 2008-07-01 08:47:11 +00:00
Akira TAGOH
11e1fc9cd2 - Backported from upstream SVN to fix a segfault issue. (#452825)
- Backported from upstream SVN to fix an integer overflow in rb_ary_fill.
2008-06-30 03:46:12 +00:00
Akira TAGOH
b358caa3b8 - Fix a segfault issue. (#452798) 2008-06-25 07:52:10 +00:00
Akira TAGOH
762e6cbf33 - New upstream release.
- Security fixes. (#452293)
- CVE-2008-1891: WEBrick CGI source disclosure.
- CVE-2008-2662: Integer overflow in rb_str_buf_append().
- CVE-2008-2663: Integer overflow in rb_ary_store().
- CVE-2008-2664: Unsafe use of alloca in rb_str_format().
- CVE-2008-2725: Integer overflow in rb_ary_splice().
- CVE-2008-2726: Integer overflow in rb_ary_splice().
- ruby-1.8.6.111-CVE-2007-5162.patch: removed.
2008-06-24 02:23:53 +00:00
Akira TAGOH
847867517b - Security fix for CVE-2008-1145.
- Improve a spec file. (#226381)
- Correct License tag.
- Fix a timestamp issue.
- Own a arch-specific directory.
2008-03-10 07:32:01 +00:00
Akira TAGOH
0b98fe29b3 - New upstream release.
- ruby-1.8.6.111-CVE-2007-5162.patch: Update a bit with backporting the
    changes at trunk to enable the fix without any modifications on the
    users' scripts. Note that Net::HTTP#enable_post_connection_check isn't
    available anymore. If you want to disable this post-check, you should
    give OpenSSL::SSL::VERIFY_NONE to Net::HTTP#verify_mode= instead of.
2007-10-29 12:53:12 +00:00
Jesse Keating
a3252d2101 Initialize branch F-8 for ruby 2007-10-20 10:58:07 +00:00
Bill Nottingham
283e1d64fa makefile update to properly grab makefile.common 2007-10-15 19:21:20 +00:00
Akira TAGOH
db165b8a66 *** empty log message *** 2007-10-15 11:48:04 +00:00
Akira TAGOH
cc412b274d - Enable pthread support for ppc too. (#201452)
- Fix unexpected dependencies appears in ruby-libs. (#253325)
2007-10-15 11:46:24 +00:00
Akira TAGOH
0a1f03043b *** empty log message *** 2007-10-10 02:38:06 +00:00
Akira TAGOH
0ce3eec117 - New upstream release.
- ruby-r12567.patch: removed.
- ruby-1.8.6-CVE-2007-5162.patch: security fix for Net::HTTP that is
    insufficient verification of SSL certificate.
2007-10-10 01:05:17 +00:00
Akira TAGOH
443bb961d5 - Rebuild 2007-08-23 13:22:32 +00:00
Akira TAGOH
d90f4cb168 - Update License tag. 2007-08-10 06:23:11 +00:00
Akira TAGOH
9b0a2c686b - ruby-r12567.patch: backport patch from upstream svn to get rid of the
unnecessary declarations. (#245446)
2007-06-25 03:35:51 +00:00
Akira TAGOH
1d08690b25 *** empty log message *** 2007-06-20 15:09:24 +00:00
Akira TAGOH
a479a6b5f9 - New upstream release.
- Fix Etc::getgrgid to get the correct gid as requested. (#236647)
2007-06-20 13:14:04 +00:00
Akira TAGOH
5bb64d01e8 - Fix search path breakage. (#234029) 2007-03-28 14:08:33 +00:00
Akira TAGOH
0ccd24ad48 - New upstream release.
- clean up a spec file.
2007-03-15 13:26:32 +00:00
Akira TAGOH
18a656782c *** empty log message *** 2007-02-13 10:37:48 +00:00
Akira TAGOH
6b5254289b Fue Feb 13 2007 Akira TAGOH <tagoh@redhat.com> - 1.8.5.12-2
- Rebuild
2007-02-13 10:37:16 +00:00
Akira TAGOH
5e0f0e1ccd - New upstream release. sources 5 Feb 2007 10:36:34 -0000
d7d12dd9124c9b7d55cdbbee313e3931 ruby-1.8.5-p12.tar.gz
2007-02-05 10:36:36 +00:00
Akira TAGOH
33bfb390b9 - rebuild 2007-02-05 04:59:56 +00:00
Akira TAGOH
f069eea3e8 - security fix release. 2006-12-11 04:23:10 +00:00
Akira TAGOH
44c8f2bd54 - security fix release.
- ruby-1.8.5-cgi-CVE-2006-5467.patch: fix a CGI multipart parsing bug that
    causes the denial of service. (#212396)
2006-10-27 13:51:47 +00:00
Jesse Keating
978382f446 bump for gcc bug 2006-10-01 21:18:33 +00:00
Akira TAGOH
3feca6f653 - fixed rbconfig.rb to refer to DESTDIR for sitearchdir. (#207311) 2006-09-26 09:39:59 +00:00
Akira TAGOH
25b45e3e66 - ruby-1.8.5-hash-memory-leak.patch: backported from CVS to fix a memory
leak on Hash. [ruby-talk:211233]
2006-09-05 07:37:24 +00:00
Akira TAGOH
65c9d6e045 *** empty log message *** 2006-08-29 12:53:41 +00:00
Akira TAGOH
8f19dd2c88 *** empty log message *** 2006-08-28 14:55:58 +00:00
Akira TAGOH
e323e92339 *** empty log message *** 2006-08-28 14:29:49 +00:00
Akira TAGOH
c968017a94 *** empty log message *** 2006-08-28 14:15:32 +00:00
Akira TAGOH
45d9b3a63b *** empty log message *** 2006-08-28 13:47:56 +00:00
Akira TAGOH
96db45ddea trivial fix to build successfully 2006-08-28 12:19:07 +00:00
Akira TAGOH
e7cc3ee268 *** empty log message *** 2006-08-28 11:08:12 +00:00
Akira TAGOH
868af58cd2 *** empty log message *** 2006-08-28 09:04:06 +00:00
Akira TAGOH
fdc551e3d9 *** empty log message *** 2006-08-28 08:51:29 +00:00
Akira TAGOH
f3840b136a - New upstream release.
- removed the unnecessary patches:
- ruby-1.8.4-no-eaccess.patch
- ruby-1.8.4-64bit-pack.patch
- ruby-1.8.4-fix-insecure-dir-operation.patch
- ruby-1.8.4-fix-insecure-regexp-modification.patch
- ruby-1.8.4-fix-alias-safe-level.patch
2006-08-28 08:50:07 +00:00
Akira TAGOH
00982fe892 - owns sitearchdir. (#201208) 2006-08-07 09:29:13 +00:00
Akira TAGOH
ee34bfa2d4 *** empty log message *** 2006-07-21 11:15:22 +00:00
Akira TAGOH
f0df5e45d5 - security fixes.
- ruby-1.8.4-fix-insecure-dir-operation.patch:
- ruby-1.8.4-fix-insecure-regexp-modification.patch: fixed the insecure
    operations in the certain safe-level restrictions. (#199538)
- ruby-1.8.4-fix-alias-safe-level.patch: fixed to not bypass the certain
    safe-level restrictions. (#199543)
2006-07-20 11:06:45 +00:00
Jesse Keating
f388649560 bumped for rebuild 2006-07-12 08:02:58 +00:00
Akira TAGOH
45072799c0 correct bug# 2006-06-19 08:57:21 +00:00
Akira TAGOH
289c2c88cb - fixed the wrong file list again. moved tcltk library into ruby-tcltk.
(#194537)
2006-06-19 07:19:06 +00:00
Akira TAGOH
34e0f2caac fixed a typo. 2006-06-08 08:02:17 +00:00
Akira TAGOH
7ef51c14da - ruby-deprecated-sitelib-search-path.patch: correct the order of search
path.
2006-06-08 07:53:37 +00:00
Akira TAGOH
ddb078ee02 *** empty log message *** 2006-06-07 07:47:23 +00:00