#12597: ruby-2.6.5
-------------------------+-----------------------
Reporter: renodr | Owner: bdubbs
Type: enhancement | Status: assigned
Priority: high | Milestone: 9.1
Component: BOOK | Version: SVN
Severity: normal | Resolution:
Keywords: |
-------------------------+-----------------------
Changes (by bdubbs):
* priority: normal => high
Comment:
Ruby 2.6.5 has been released.
This release includes security fixes.
- CVE-2019-16255: A code injection vulnerability of Shell#[] and
Shell#test
- CVE-2019-16254: HTTP response splitting in WEBrick (Additional fix)
- CVE-2019-15845: A NUL injection vulnerability of File.fnmatch and
File.fnmatch?
- CVE-2019-16201: Regular Expression Denial of Service vulnerability of
WEBrickâs Digest access authentication
--
Ticket URL: <http://wiki.linuxfromscratch.org/blfs/ticket/12597#comment:2>
BLFS Trac <http://wiki.linuxfromscratch.org/blfs>
Beyond Linux From Scratch
--
http://lists.linuxfromscratch.org/listinfo/blfs-book
FAQ: http://www.linuxfromscratch.org/blfs/faq.html
Unsubscribe: See the above information page
