Hello community, here is the log from the commit of package ruby2.5 for openSUSE:Factory checked in at 2018-11-13 16:22:49 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/ruby2.5 (Old) and /work/SRC/openSUSE:Factory/.ruby2.5.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "ruby2.5" Tue Nov 13 16:22:49 2018 rev:13 rq:647052 version:2.5.3 Changes: -------- --- /work/SRC/openSUSE:Factory/ruby2.5/ruby2.5.changes 2018-11-06 13:50:43.576551405 +0100 +++ /work/SRC/openSUSE:Factory/.ruby2.5.new/ruby2.5.changes 2018-11-13 16:23:02.402927434 +0100 @@ -1,0 +2,14 @@ +Wed Nov 7 13:20:47 UTC 2018 - Marcus Rueckert <[email protected]> + +- update to 2.5.3 + This release includes some bug fixes and some security fixes. + + - CVE-2018-16396: Tainted flags are not propagated in Array#pack + and String#unpack with some directives + - CVE-2018-16395: OpenSSL::X509::Name equality check does not + work correctly + + https://github.com/ruby/ruby/compare/v2_5_1...v2_5_3 +- drop frozen-pop3.patch + +------------------------------------------------------------------- Old: ---- frozen-pop3.patch ruby-2.5.1.tar.xz New: ---- ruby-2.5.3.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ ruby2.5.spec ++++++ --- /var/tmp/diff_new_pack.QOp281/_old 2018-11-13 16:23:03.702925164 +0100 +++ /var/tmp/diff_new_pack.QOp281/_new 2018-11-13 16:23:03.702925164 +0100 @@ -25,13 +25,13 @@ #### %define patch_level p0 -Version: 2.5.1 +Version: 2.5.3 Release: 0 # make the exported API version explicit %define api_version 2.5.0 %define rb_binary_suffix .ruby2.5 %define rb_soname ruby2.5 -%define pkg_version 2.5.1 +%define pkg_version 2.5.3 # ruby-macros and ruby-common version %define rpm_macros_version 3 @@ -129,8 +129,7 @@ Patch02: 0002-gc.c-tick-for-POWER-arch.patch Patch03: 0003-Mark-Gemspec-reproducible-change-fixing-784225-too.patch Patch04: 0004-Make-gemspecs-reproducible.patch -Patch05: frozen-pop3.patch -Patch06: 450160263aed8c446ce5b142d71f921ab4118f3a.patch +Patch05: 450160263aed8c446ce5b142d71f921ab4118f3a.patch # Summary: An Interpreted Object-Oriented Scripting Language @@ -327,7 +326,6 @@ %patch03 -p1 %patch04 -p1 %patch05 -p1 -%patch06 -p1 find sample -type f -print0 | xargs -r0 chmod a-x grep -Erl '^#! */' benchmark bootstraptest ext lib sample test \ | xargs -r perl -p -i -e 's|^#!\s*\S+(\s+.*)?$|#!/usr/bin/ruby%{rb_binary_suffix} $1|' ++++++ ruby-2.5.1.tar.xz -> ruby-2.5.3.tar.xz ++++++ /work/SRC/openSUSE:Factory/ruby2.5/ruby-2.5.1.tar.xz /work/SRC/openSUSE:Factory/.ruby2.5.new/ruby-2.5.3.tar.xz differ: char 26, line 1
