Changelog for
rubygem-rack-1.1.6-16.1.x86_64.rpm :
Thu Feb 28 13:00:00 2013 lijewski.stefanAATTgmail.com
- update to 1.1.6 (bnc#802794)
* Fix CVE-2013-0263, timing attack against Rack::Session::Cookie
Tue Feb 5 13:00:00 2013 lijewski.stefanAATTgmail.com
- update to version 1.1.5 (bnc#798452)
* [SEC] Rack::Auth::AbstractRequest no longer symbolizes
arbitrary strings
- Changes from 1.1.4
* Add warnings when users do not provide a session secret
- Changes from 1.1.3
* Security fix. http://www.ocert.org/advisories/ocert-2011-003.html
Further information here: http://jruby.org/2011/12/27/jruby-1-6-5-1
Fri Nov 4 13:00:00 2011 mrueckertAATTsuse.com
- update to version 1.1.2
* Security fix in Rack::Auth::Digest::MD5: when authenticator
returned nil, permission was granted on empty password.
Fri Jun 11 14:00:00 2010 mrueckertAATTsuse.de
- use rubygems_requires macro
Fri May 28 14:00:00 2010 mrueckertAATTsuse.de
- new rails 2.3 branch requires 1.1 finally. drop 1.0
Thu Feb 25 13:00:00 2010 mrueckertAATTsuse.de
- ugly hack: added back rack 1.0.1 to the package. rails 2.3 still
needs it
Wed Feb 24 13:00:00 2010 mrueckertAATTsuse.de
- update to version 1.1.0
* Moved Auth::OpenID to rack-contrib.
* SPEC change that relaxes Lint slightly to allow subclasses of the
required types
* SPEC change to document rack.input binary mode in greator detail
* SPEC define optional rack.logger specification
* File servers support X-Cascade header
* Imported Config middleware
* Imported ETag middleware
* Imported Runtime middleware
* Imported Sendfile middleware
* New Logger and NullLogger middlewares
* Added mime type for .ogv and .manifest.
* Don\'t squeeze PATH_INFO slashes
* Use Content-Type to determine POST params parsing
* Update Rack::Utils::HTTP_STATUS_CODES hash
* Add status code lookup utility
* Response should call #to_i on the status
* Add Request#user_agent
* Request#host knows about forwared host
* Return an empty string for Request#host if HTTP_HOST and
SERVER_NAME are both missing
* Allow MockRequest to accept hash params
* Optimizations to HeaderHash
* Refactored rackup into Rack::Server
* Added Utils.build_nested_query to complement Utils.parse_nested_query
* Added Utils::Multipart.build_multipart to complement
Utils::Multipart.parse_multipart
* Extracted set and delete cookie helpers into Utils so they can be
used outside Response
* Extract parse_query and parse_multipart in Request so subclasses
can change their behavior
* Enforce binary encoding in RewindableInput
* Set correct external_encoding for handlers that don\'t use RewindableInput
Tue Dec 1 13:00:00 2009 chrisAATTcomputersalat.de
- update to version 1.0.1
* Bump remainder of rack.versions.
* Support the pure Ruby FCGI implementation.
* Fix for form names containing \"=\": split first then unescape components
* Fixes the handling of the filename parameter with semicolons in names.
* Add anchor to nested params parsing regexp to prevent stack overflows
* Use more compatible gzip write api instead of \"<<\".
* Make sure that Reloader doesn\'t break when executed via ruby -e
* Make sure WEBrick respects the :Host option
* Many Ruby 1.9 fixes.
Fri Aug 7 14:00:00 2009 dmacvicarAATTnovell.com
- update to version 1.0.0
* Rack::VERSION has been pushed to [1,0].
* Header values must be Strings now, split on \"\
\".
* rack.input must be rewindable and support reading into a buffer,
wrap with Rack::RewindableInput if it isn\'t.
* Content-Length can be missing, in this case chunked transfer
encoding is used.
* Bodies can now additionally respond to #to_path with a filename to
be served.
* String bodies are deprecated and will not work with Ruby 1.9, use an
Array with a single String instead.
* rack.session is now specified.
* Use Rack::Lint to find out in which ways this possibly broke your
applications and middleware.
* SPEC changes, see above.
* New middleware Rack::Lock.
* New middleware Rack::ContentType.
* Rack::Reloader has been rewritten.
* Major update to Rack::Auth::OpenID.
* Support for nested parameter parsing in Rack::Response.
* Support for redirects in Rack::Response.
* HttpOnly cookie support in Rack::Response.
* The Rakefile has been rewritten.
* Many bugfixes and small improvements.
Mon Jan 12 13:00:00 2009 mrueckertAATTsuse.de
- update to version 0.9.1
* Fix directory traversal exploits in Rack::File and
Rack::Directory.
- additional changes from 0.9.0
* Rack is now managed by the Rack Core Team.
* Rack::Lint is stricter and follows the HTTP RFCs more closely.
* Added ConditionalGet middleware.
* Added ContentLength middleware.
* Added Deflater middleware.
* Added Head middleware.
* Added MethodOverride middleware.
* Rack::Mime now provides popular MIME-types and their extension.
* Mongrel Header now streams.
* Added Thin handler.
* Official support for swiftiplied Mongrel.
* Secure cookies.
* Made HeaderHash case-preserving.
* Many bugfixes and small improvements.