Changelog for ruby2.4-rubygem-minitar-0.7-10.4.x86_64.rpm :

* Thu Nov 22 2018 Stephan Kulow - updated to version 0.7 see installed History.md [#]# 0.7 / 2018-02-19
* Fixed issue [#28][] with a modified version of PR [#29][] covering the security policy and position for Minitar. Thanks so much to ooooooo\\_q for the report and an initial patch. Additional information was added as [#30][].
* dearblue contributed PR [#33][] providing a fix for Minitar::Reader when the IO-like object does not have a `#pos` method.
* Kevin McDermott contributed PR [#34][] so that an InvalidTarStream is raised if the tar header is not valid, preventing incorrect streaming of files from a non-tarfile. This is a minor breaking change, so the version has been bumped accordingly.
* Kazuyoshi Kato contributed PR [#26][] providing support for the GNU tar long filename extension.
* Addressed a potential DOS with negative size fields in tar headers ([#31][]). This has been handled in two ways: the size field in a tar header is interpreted as a strict octal value and the Minitar reader will raise an InvalidTarStream if the size ends up being negative anyway.
* Tue May 23 2017 bgeukenAATTsuse.com- Remove patch for CVE-2016-10173 This vulneribility has been fixed by upstream with v0.6.1: https://github.com/halostatue/minitar/commit/30e62689b614938dc96b4f2cb8e033e72f650670
* Tue Feb 14 2017 cooloAATTsuse.com- updated to version 0.6.1 ChangeLog removed upstream
* Fri Jan 27 2017 jmassaguerplaAATTsuse.com- fix CVE-2016-10173 (bsc#1021740): rubygem-minitar, rubygem-archive-tar-minitar: directory traversal vulnerability bsc_1021740.patch: contains the fix
* Thu Oct 23 2014 tboergerAATTsuse.com- Initial packaging of 0.5.4