projects / ruby2.3.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(merge: 4a43f3b b6236ee)
ruby2.3 (2.3.3-1+deb9u4) stretch-security; urgency=high
authorSalvatore Bonaccorso <carnil@debian.org>
Sun, 28 Oct 2018 20:49:57 +0000 (20:49 +0000)
committerSalvatore Bonaccorso <carnil@debian.org>
Sun, 28 Oct 2018 20:49:57 +0000 (20:49 +0000)
commit387c1fc55ae91ad90739a5c7b4c29f5b3527de62
treef6e84f3fa80f9e46fd9233278bf09add8f264ec0tree | snapshot
parent4a43f3bf316265e37a004e4e49743f2d5f79af16commit | diff
parentb6236ee330a1c2f9e911e543dfcbfaf849e090a2commit | diff
ruby2.3 (2.3.3-1+deb9u4) stretch-security; urgency=high

  * Non-maintainer upload by the Security Team.
  * OpenSSL::X509::Name equality check does not work correctly
    (CVE-2018-16395)
  * pack.c: avoid returning uninitialized String
  * Tainted flags are not propagated in Array#pack and String#unpack with some
    directives (CVE-2018-16396)

[dgit import unpatched ruby2.3 2.3.3-1+deb9u4]
40 files changed:
debian/README.porting | | blob
debian/README.source | | blob
debian/TODO | | blob
debian/changelog | | blob
debian/compat | | blob
debian/control | | blob
debian/copyright | | blob
debian/deleted_on_clean.txt | | blob
debian/docs | | blob
debian/gbp.conf | | blob
debian/libruby.stp | | blob
debian/libruby2.3.install | | blob
debian/libruby2.3.lintian-overrides | | blob
debian/libruby2.3.symbols | | blob
debian/manpages/gem2.3.1 | | blob
debian/manpages/gem2.3.rd | | blob
debian/manpages/rdoc2.3.1 | | blob
debian/manpages/rdoc2.3.rd | | blob
debian/manpages/testrb2.3.1 | | blob
debian/manpages/testrb2.3.rd | | blob
debian/missing-sources/jquery.js | | blob
debian/newruby | | blob
debian/patches/debian-changes | | blob
debian/patches/series | | blob
debian/quick-build.sh | | blob
debian/ruby2.3-dev.install | | blob
debian/ruby2.3.install | | blob
debian/ruby2.3.lintian-overrides | | blob
debian/ruby2.3.manpages | | blob
debian/rules | | blob
debian/sanity_check | | blob
debian/source/format | | blob
debian/split-tk-out.rb | | blob
debian/tests/bundled-gems | | blob
debian/tests/control | | blob
debian/tests/known-failures.txt | | blob
debian/tests/run-all | | blob
debian/upstream-changes | | blob
debian/upstream-changes.blacklist | | blob
debian/watch | | blob
Unnamed repository; edit this file 'description' to name the repository.