SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for ruby3.0-3.0.7-1.31.i586.rpm :

* Tue Apr 23 2024 Marcus Rueckert - Update to 3.0.7 (boo#1221851 boo#1221852 boo#1223314) https://www.ruby-lang.org/en/news/2024/04/23/ruby-3-0-7-released/ https://www.ruby-lang.org/en/news/2024/04/23/arbitrary-memory-address-read-regexp-cve-2024-27282/ https://www.ruby-lang.org/en/news/2024/03/21/rce-rdoc-cve-2024-27281/ https://www.ruby-lang.org/en/news/2024/03/21/buffer-overread-cve-2024-27280/ https://github.com/ruby/ruby/releases/tag/v3_0_7
* Thu Mar 30 2023 Marcus Rueckert - update to 3.0.6 (boo#1209891 CVE-2023-28755 boo#1209967 CVE-2023-28756) https://www.ruby-lang.org/en/news/2023/03/30/redos-in-time-cve-2023-28756/ https://www.ruby-lang.org/en/news/2023/03/28/redos-in-uri-cve-2023-28755/ https://www.ruby-lang.org/en/news/2023/03/30/ruby-3-0-6-released/- drop ruby-3.1.3-remove-timezone-test.patch solved differently upstream
* Sun Dec 25 2022 Marcus Rueckert - BuildRequire hostname for the testsuite
* Sun Dec 25 2022 Marcus Rueckert - Backport ruby-3.1.3-remove-timezone-test.patch
* Sun Dec 25 2022 Marcus Rueckert - Merge testing fixes from 3.1 to 2.7 to fix the testsuite flavor
* Thu Nov 24 2022 Marcus Rueckert - update to 3.0.5 (boo#1205726 CVE-2021-33621) https://www.ruby-lang.org/en/news/2022/11/22/http-response-splitting-in-cgi-cve-2021-33621/ https://www.ruby-lang.org/en/news/2022/11/24/ruby-3-0-5-released/- new release requires gcc-c++
* Wed Apr 13 2022 Marcus Rueckert - use rb_soname instead of hard coding the ruby package name
* Wed Apr 13 2022 Marcus Rueckert - add buildignore for ruby and ruby-common so we do not pull gem2rpm for the testsuite
* Wed Apr 13 2022 Marcus Rueckert - update to 3.0.4 (boo#1198441 boo#1198440) https://www.ruby-lang.org/en/news/2022/04/12/ruby-3-0-4-released/ - CVE-2022-28738: Double free in Regexp compilation - CVE-2022-28739: Buffer overrun in String-to-Float conversion
* Tue Mar 29 2022 Dirk Müller - move tests into separate testsuite _multibuild:
* reduces buildrequires on main package (procps which is behind systemd:mini)
* reduces depth of distro rebuild chain- exclude more tests that require network- make test failures fatal, they pass now- light subset of spec-cleaner cleanups- prefer %%global over %%define, they get evaluated at parse time
* Sun Feb 06 2022 Marcus Rueckert - Build ruby with jemalloc for sle 15 up
* Thu Nov 25 2021 Marcus Rueckert - update to 3.0.3 (boo#1193081 boo#1193080 boo#1193035) https://www.ruby-lang.org/en/news/2021/11/24/ruby-3-0-3-released/ - CVE-2021-41817: Regular Expression Denial of Service Vulnerability of Date Parsing Methods - CVE-2021-41816: Buffer Overrun in CGI.escape_html - CVE-2021-41819: Cookie Prefix Spoofing in CGI::Cookie.parse
* Wed Nov 10 2021 Marcus Rueckert - provide the correct rubygems version
* Sat Nov 06 2021 Klaus Kämpf - update to 3.0.2 https://www.ruby-lang.org/en/news/2021/07/07/ruby-3-0-2-released/
* CVE-2021-31810: Trusting FTP PASV responses vulnerability in Net::FTP
* CVE-2021-32066: A StartTLS stripping vulnerability in Net::IMAP
* CVE-2021-31799: A command injection vulnerability in RDoc
* Tue Aug 24 2021 Stephan Kulow - Do not create links for /etc/alternatives at all but rely on rpm\'s %ghosts being creating at runtime in %post This aligns ruby3.0 with ruby2.7 and ruby-common
* Thu Jul 08 2021 Stephan Kulow - Fix links in /etc/alternatives not to point to itself
* Tue Apr 13 2021 Marcus Rueckert - update to ruby 3.0.1 (boo#1184644) https://www.ruby-lang.org/en/news/2021/04/05/ruby-3-0-1-released/ - CVE-2021-28965: XML round-trip vulnerability in REXML Complete list of changes at https://github.com/ruby/ruby/compare/v3_0_0...v3_0_1- drop https://github.com/rubygems/rubygems/pull/4317.patch included in update
* Mon Jan 25 2021 Marcus Rueckert - add https://github.com/rubygems/rubygems/pull/4317.patch make sure the gem plugins path does not contain the buildroot
  
ICM