Changelog for
ruby3.2-doc-3.2.5-lp156.1.3.x86_64.rpm :
* Tue Sep 03 2024 Marcus Rueckert
- Update to 3.2.5 This release include many bug-fixes. And we updated the version of bundled gem rexml to include the following security fix. CVE-2024-39908 : DoS in REXML. https://github.com/ruby/ruby/releases/tag/v3_2_5- drop fix-gvl-save-restore.patch included in update
* Wed Jun 05 2024 José Gómez - Add Provides for yjit-enabled builds.
* Sun May 19 2024 José Gómez - Backport for fix segfault caused by stack pointers not saved/restored properly when yielding execution from Ruby to C. https://bugs.ruby-lang.org/issues/20493 https://github.com/ruby/ruby/pull/10797 Adds fix-gvl-save-restore.patch
* Tue Apr 23 2024 Marcus Rueckert - Update to 3.2.4 (boo#1221851 boo#1221852 boo#1223314) https://www.ruby-lang.org/en/news/2024/04/23/ruby-3-2-4-released/ https://www.ruby-lang.org/en/news/2024/04/23/arbitrary-memory-address-read-regexp-cve-2024-27282/ https://www.ruby-lang.org/en/news/2024/03/21/rce-rdoc-cve-2024-27281/ https://www.ruby-lang.org/en/news/2024/03/21/buffer-overread-cve-2024-27280/ https://github.com/ruby/ruby/releases/tag/v3_2_4
* Fri Dec 22 2023 Guillaume GARDET - Fix PAC/BTI on aarch64: - Upstream patch: https://github.com/ruby/ruby/pull/9306
* 9306.patch - Add additionnal flags: cflags, cppflags and ASFLAGS
* Thu Dec 21 2023 Otto Hollmann - Omit test_session_reuse_but_expire if OpenSSL 3.2.0 Add Omit-test_session_reuse_but_expire-if-OpenSSL-3.2.0.patch
* Tue Nov 07 2023 Dominique Leuenberger - Fix build with RPM 4.19: unnumbered patches are no longer supported.
* Sat Nov 04 2023 Marcus Rueckert - add Provides that we can differentiate between between jemalloc enabled and non enabled ruby
* Thu Mar 30 2023 Marcus Rueckert - update to 3.2.2 (boo#1209891 CVE-2023-28755 boo#1209967 CVE-2023-28756) https://www.ruby-lang.org/en/news/2023/03/30/redos-in-time-cve-2023-28756/ https://www.ruby-lang.org/en/news/2023/03/28/redos-in-uri-cve-2023-28755/ https://www.ruby-lang.org/en/news/2023/03/30/ruby-3-2-2-released/- drop ruby-3.1.3-remove-timezone-test.patch solved differently upstream
* Wed Feb 08 2023 Marcus Rueckert - Update to 3.2.1 https://www.ruby-lang.org/en/news/2023/02/08/ruby-3-2-1-released/
* Mon Jan 09 2023 Marcus Rueckert - Fix Source url (3.1 vs 3.2)
* Tue Dec 27 2022 Marcus Rueckert - Set the correct ABI version
* Sun Dec 25 2022 Marcus Rueckert - Update to 3.2.0 https://www.ruby-lang.org/en/news/2022/12/25/ruby-3-2-0-released/- Drop ruby-3.1.3-remove-timezone-test.patch: Fix included in update- Refreshed use-pie.patch
* Thu Dec 22 2022 Marcus Rueckert - Added ruby-3.1.3-remove-timezone-test.patch: Disable tests that rely on singapore\'s old TZ data
* Tue Dec 06 2022 Marcus Rueckert - disable yjit
* Tue Dec 06 2022 Marcus Rueckert - disable readline/reline tests as they require system ruby
* Tue Dec 06 2022 Marcus Rueckert - rust edition 2021 is supported since 1.56.0. Change buildrequires accordingly
* Tue Dec 06 2022 Marcus Rueckert - Update to 3.2.0~rc1 https://www.ruby-lang.org/en/news/2022/12/06/ruby-3-2-0-rc1-released/
* Mon Dec 05 2022 Andreas Schwab - Update rb_arch_short macro
* Fri Dec 02 2022 Marcus Rueckert - Use the correct ABI version in the macros
* Thu Nov 24 2022 Marcus Rueckert - remove the bundled gems workaround
* Thu Nov 17 2022 Marcus Rueckert - bump ruby-common dependency to the version with the ruby 3.2 fixes
* Thu Nov 17 2022 Marcus Rueckert - bump version in the macro files to 3.2
* Fri Nov 11 2022 Marcus Rueckert - limit yjit to x86_64 and aarch64 as those are the only to platforms it supports
* Fri Nov 11 2022 Marcus Rueckert - enable yjit so we can test it before the final release and see if we want to leave it on in the package.
* Fri Nov 11 2022 Marcus Rueckert - Branch off ruby 3.2 package with preview 3
* Tue May 03 2022 Marcus Rueckert - turn off jemalloc again until we figure out how to do the dlopen on libruby properly like vim and yast do
* Fri Apr 29 2022 Martin Liška - Do not depend on binutils-gold as it will be removed in the future as it\'s obsoleted. Use lld instead of it for clang build.
* Wed Apr 13 2022 Marcus Rueckert - use rb_soname instead of hard coding the ruby package name
* Wed Apr 13 2022 Marcus Rueckert - add buildignore for ruby and ruby-common so we do not pull gem2rpm for the testsuite
* Wed Apr 13 2022 Marcus Rueckert - Update to 3.1.2 (boo#1198441 boo#1198440) https://www.ruby-lang.org/en/news/2022/04/12/ruby-3-1-2-released/ - CVE-2022-28738: Double free in Regexp compilation - CVE-2022-28739: Buffer overrun in String-to-Float conversion
* Tue Mar 29 2022 Dirk Müller - move tests into separate testsuite _multibuild:
* reduces buildrequires on main package (procps which is behind systemd:mini)
* reduces depth of distro rebuild chain- exclude more tests that require network- make test failures fatal, they pass now- light subset of spec-cleaner cleanups- prefer %%global over %%define, they get evaluated at parse time
* Tue Mar 08 2022 Dirk Müller - use valgrind for more supported platforms- run tests in parallel for better build times- set PATH for test to just built ruby interpreter- skip network tests, they hang on timeouts, slowing down the build- remove exceptions for armv7 testing, these are all fixed
* Tue Feb 22 2022 Marcus Rueckert - Update to 3.1.1 https://www.ruby-lang.org/en/news/2022/02/18/ruby-3-1-1-released/- drop 77fe1fca0abb56f7f07725c0a3803d53a315c853.patch: included in update
* Sun Feb 06 2022 Marcus Rueckert - Build ruby with jemalloc for sle 15 up
* Wed Feb 02 2022 Marcus Rueckert - Added https://github.com/ruby/ipaddr/commit/77fe1fca0abb56f7f07725c0a3803d53a315c853.patch Fix vagrant with ruby 3.1
* Sun Dec 26 2021 Marcus Rueckert - renable LTO- apply workaround from https://bugs.ruby-lang.org/issues/18373#note-8
* Sun Dec 26 2021 Marcus Rueckert - Update to 3.1.0 https://www.ruby-lang.org/en/news/2021/12/25/ruby-3-1-0-released/- disable LTO for now as it makes debugging the mkmf/rbinstall problem easier
* Tue Dec 14 2021 Stephan Kulow - Initial 3.1 preview - currently failing, hoping for the next preview
* Thu Nov 25 2021 Marcus Rueckert - update to 3.0.3 (boo#1193081 boo#1193080 boo#1193035) https://www.ruby-lang.org/en/news/2021/11/24/ruby-3-0-3-released/ - CVE-2021-41817: Regular Expression Denial of Service Vulnerability of Date Parsing Methods - CVE-2021-41816: Buffer Overrun in CGI.escape_html - CVE-2021-41819: Cookie Prefix Spoofing in CGI::Cookie.parse
* Wed Nov 10 2021 Marcus Rueckert - provide the correct rubygems version
* Sat Nov 06 2021 Klaus Kämpf - update to 3.0.2 https://www.ruby-lang.org/en/news/2021/07/07/ruby-3-0-2-released/
* CVE-2021-31810: Trusting FTP PASV responses vulnerability in Net::FTP
* CVE-2021-32066: A StartTLS stripping vulnerability in Net::IMAP
* CVE-2021-31799: A command injection vulnerability in RDoc
* Tue Aug 24 2021 Stephan Kulow - Do not create links for /etc/alternatives at all but rely on rpm\'s %ghosts being creating at runtime in %post This aligns ruby3.0 with ruby2.7 and ruby-common
* Thu Jul 08 2021 Stephan Kulow - Fix links in /etc/alternatives not to point to itself
* Tue Apr 13 2021 Marcus Rueckert - update to ruby 3.0.1 (boo#1184644) https://www.ruby-lang.org/en/news/2021/04/05/ruby-3-0-1-released/ - CVE-2021-28965: XML round-trip vulnerability in REXML Complete list of changes at https://github.com/ruby/ruby/compare/v3_0_0...v3_0_1- drop https://github.com/rubygems/rubygems/pull/4317.patch included in update
* Mon Jan 25 2021 Marcus Rueckert - add https://github.com/rubygems/rubygems/pull/4317.patch make sure the gem plugins path does not contain the buildroot
* Fri Dec 25 2020 Marcus Rueckert - update to ruby 3.0.0 https://www.ruby-lang.org/en/news/2020/12/25/ruby-3-0-0-released/
* Fri Dec 25 2020 Marcus Rueckert - Update to ruby 3.0.0~rc1 https://www.ruby-lang.org/en/news/2020/12/20/ruby-3-0-0-rc1-released/
* Wed Dec 09 2020 Marcus Rueckert - Update to ruby 3.0.0~preview2 https://www.ruby-lang.org/en/news/2020/12/08/ruby-3-0-0-preview2-released/- 3972.patch
* Tue Oct 27 2020 Marcus Rueckert - fix typo in the ruby macros file
* Tue Oct 27 2020 Marcus Rueckert - no longer luse the url for the 3972.patch, as the code in the PR was rebased and no longer applies to the code in preview 1.
* Sun Oct 25 2020 Marcus Rueckert - fix the macros to actually use 3.0.0
* Mon Sep 28 2020 Marcus Rueckert - added https://patch-diff.githubusercontent.com/raw/rubygems/rubygems/pull/3972.patch to fix regression in rubygems buildroot support https://github.com/rubygems/rubygems/issues/3971
* Mon Sep 28 2020 Marcus Rueckert - Update to 3.0.0~preview1 https://www.ruby-lang.org/en/news/2020/09/25/ruby-3-0-0-preview1-released/
* Tue Apr 28 2020 Marcus Rueckert - make sure that update-alternative weight for the default distribution is always greater than our normal weight
* Tue Apr 28 2020 Marcus Rueckert - make the update-alternative weight based on the ruby version
* Tue Apr 14 2020 Bernhard Wiedemann - Add ruby2.7-drop-build-date.patch (boo#1047218)
* Tue Apr 07 2020 Marcus Rueckert - Update to 2.7.1 (boo#1167244 boo#1168938) - CVE-2020-10663: Unsafe Object Creation Vulnerability in JSON (Additional fix) - CVE-2020-10933: Heap exposure vulnerability in the socket library https://github.com/ruby/ruby/compare/v2_7_0...v2_7_1
* Tue Feb 18 2020 Stefan Brüns - Apply fixes/changes from ruby2.6 package lost in ruby2.7 switch:
* Fix mangling of shebangs, do not replace shell invocations with ruby, correcly replace \"/usr/bin/env ruby\". (bnc#1156797)
* Cleanup spec file: + Drop support for obsolete distro versions + use license macro, remove defattr
* Use valgrind-client-headers instead of full valgrind-devel package where available, reducing build package footprint.
* Remove unused libX11-devel BuildRequires.
* Sat Dec 28 2019 Marcus Rueckert - update to final release of 2.7.0 http://www.ruby-lang.org/en/news/2019/12/25/ruby-2-7-0-released/- update the use-pie.patch to apply cleanly again
* Tue Jul 09 2019 Marcus Rueckert - fix running tests (boo#1140844) just passing the DISABLED_TESTS variable is wrong. probably a relict from calling the test scripts directly. use TESTOPTS now.
* Sun Jun 23 2019 Marcus Rueckert - add gmp to the buildrequires
* Sat Jun 22 2019 Marcus Rueckert - starting package with 2.7.0-preview1