SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for ruby2.5-rubygem-rubyzip-1.3-1.3.0-150400.3.5.x86_64.rpm :

* Wed Nov 13 2019 dcermakAATTsuse.com- Update to version 1.3 This fixes CVE-2019-16892 Security - Add `validate_entry_sizes` option so that callers can trust an entry\'s reported size when using `extract` [#403](https://github.com/rubyzip/rubyzip/pull/403) - This option defaults to `false` for backward compatibility in this release, but you are strongly encouraged to set it to `true`. It will default to `true` in rubyzip 2.0. New Feature - Add `add_stored` method to simplify adding entries without compression [#366](https://github.com/rubyzip/rubyzip/pull/366) Tooling / Documentation - Add more gem metadata links [#402](https://github.com/rubyzip/rubyzip/pull/402)
* Tue Nov 12 2019 kastlAATTb1-systems.de- used latest template for gem2rpm.yml- add license to gem2rpm.yml to correctly get BSD-2-Clause
* Tue Nov 12 2019 mschnitzerAATTsuse.com- updated to version 1.2.4
* Do not rewrite zip files opened with `open_buffer` that have not changed [#360](https://github.com/rubyzip/rubyzip/pull/360) Tooling / Documentation
* Update `example_recursive.rb` in README [#397](https://github.com/rubyzip/rubyzip/pull/397)
* Hold CI at `trusty` for now, automatically pick the latest ruby patch version, use rbx-4 and hold jruby at 9.1 [#399](https://github.com/rubyzip/rubyzip/pull/399)
* Mon Jul 08 2019 mschnitzerAATTsuse.com- updated to version 1.2.3
* Allow tilde in zip entry names [#391](https://github.com/rubyzip/rubyzip/pull/391) (fixes regression in 1.2.2 from [#376](https://github.com/rubyzip/rubyzip/pull/376))
* Support frozen string literals in more files [#390](https://github.com/rubyzip/rubyzip/pull/390)
* Require `pathname` explicitly [#388](https://github.com/rubyzip/rubyzip/pull/388) (fixes regression in 1.2.2 from [#376](https://github.com/rubyzip/rubyzip/pull/376)) Tooling / Documentation:
* CI updates [#392](https://github.com/rubyzip/rubyzip/pull/392), [#394](https://github.com/rubyzip/rubyzip/pull/394) - Bump supported ruby versions and add 2.6 - JRuby failures are no longer ignored (reverts [#375](https://github.com/rubyzip/rubyzip/pull/375) / part of [#371](https://github.com/rubyzip/rubyzip/pull/371))
* Add changelog entry that was missing for last release [#387](https://github.com/rubyzip/rubyzip/pull/387)
* Comment cleanup [#385](https://github.com/rubyzip/rubyzip/pull/385)
* Wed Sep 05 2018 cooloAATTsuse.com- updated to version 1.2.2 Fixes CVE-2018-1000544 symlink and absolute path traversal (bsc#1099280). See https://github.com/rubyzip/rubyzip/pull/387 for full changelog.
* Thu Feb 09 2017 cooloAATTsuse.com- updated to version 1.2.1 Fixes bsc#1027050 CVE-2017-5946
* Sat Feb 20 2016 cooloAATTsuse.com- updated to version 1.2.0 no changelog found
* Tue Feb 10 2015 cooloAATTsuse.com- updated to version 1.1.7
* Mon Oct 13 2014 adrianAATTsuse.de- adapt to new rubygem packaging style
* Sun May 18 2014 cooloAATTsuse.com- updated to version 1.1.3, no changelog
  
ICM