Hello community, here is the log from the commit of package rubygem-extlib for openSUSE:Factory checked in at 2013-03-21 22:14:45 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/rubygem-extlib (Old) and /work/SRC/openSUSE:Factory/.rubygem-extlib.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "rubygem-extlib", Maintainer is "[email protected]" Changes: -------- --- /work/SRC/openSUSE:Factory/rubygem-extlib/rubygem-extlib.changes 2012-06-07 15:40:15.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.rubygem-extlib.new/rubygem-extlib.changes 2013-03-21 22:14:47.000000000 +0100 @@ -1,0 +2,12 @@ +Fri Jan 18 15:52:59 UTC 2013 - [email protected] + +- Update to version 0.9.16 +- Fixes a remote code execution vulnerability similar to CVE-2013-0156 + (https://groups.google.com/forum/?fromgroups=#!topic/rubyonrails-security + /61bkgvnSGTQ ) +- Upstream provides no changelog - changes extracted from the github history: + + Removed symbol coercion from the XML parser + + Removed yaml coercion from the XML parser + + Upgraded jeweler gem dependency + +------------------------------------------------------------------- Old: ---- extlib-0.9.15.gem New: ---- extlib-0.9.16.gem ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ rubygem-extlib.spec ++++++ --- /var/tmp/diff_new_pack.2ArrKU/_old 2013-03-21 22:14:49.000000000 +0100 +++ /var/tmp/diff_new_pack.2ArrKU/_new 2013-03-21 22:14:49.000000000 +0100 @@ -1,7 +1,7 @@ # # spec file for package rubygem-extlib # -# Copyright (c) 2012 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -15,14 +15,13 @@ # Please submit bugfixes or comments via http://bugs.opensuse.org/ # + Name: rubygem-extlib -Version: 0.9.15 +Version: 0.9.16 Release: 0 %define mod_name extlib %define mod_full_name %{mod_name}-%{version} # -Group: Development/Languages/Ruby -License: Ruby # BuildRoot: %{_tmppath}/%{name}-%{version}-build BuildRequires: rubygems_with_buildroot_patch @@ -32,6 +31,9 @@ Source: %{mod_full_name}.gem # Summary: Support library for DataMapper and Merb +License: Ruby +Group: Development/Languages/Ruby + %description Support library for DataMapper and Merb @@ -39,6 +41,7 @@ Summary: RDoc documentation for %{mod_name} Group: Development/Languages/Ruby Requires: %{name} = %{version} + %description doc Documentation generated at gem installation time. Usually in RDoc and RI formats. @@ -47,6 +50,7 @@ Summary: Test suite for %{mod_name} Group: Development/Languages/Ruby Requires: %{name} = %{version} + %description testsuite Test::Unit or RSpec files, useful for developers. -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
