ruby2.0 (2.0.0.343-1ubuntu1) trusty; urgency=low * SECURITY UPDATE: denial of service and possible code execution via heap overflow in floating point parsing. - debian/patches/CVE-2013-4164.patch: check lengths in util.c, added test to test/ruby/test_float.rb. - CVE-2013-4164
Date: Mon, 25 Nov 2013 14:58:07 -0500 Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> https://launchpad.net/ubuntu/trusty/+source/ruby2.0/2.0.0.343-1ubuntu1
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 25 Nov 2013 14:58:07 -0500 Source: ruby2.0 Binary: ruby2.0 libruby2.0 ruby2.0-dev ruby2.0-doc ruby2.0-tcltk Architecture: source Version: 2.0.0.343-1ubuntu1 Distribution: trusty Urgency: low Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com> Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com> Description: libruby2.0 - Libraries necessary to run Ruby 2.0 ruby2.0 - Interpreter of object-oriented scripting language Ruby ruby2.0-dev - Header files for compiling extension modules for the Ruby 2.0 ruby2.0-doc - Documentation for Ruby 2.0 ruby2.0-tcltk - Ruby/Tk for Ruby 2.0 Changes: ruby2.0 (2.0.0.343-1ubuntu1) trusty; urgency=low . * SECURITY UPDATE: denial of service and possible code execution via heap overflow in floating point parsing. - debian/patches/CVE-2013-4164.patch: check lengths in util.c, added test to test/ruby/test_float.rb. - CVE-2013-4164 Checksums-Sha1: 77cada97ac5c7655bf76e875c05394156db48837 2370 ruby2.0_2.0.0.343-1ubuntu1.dsc 61c950f6813ba6aa1d71fd578a7bab5cdae26a87 88266 ruby2.0_2.0.0.343-1ubuntu1.debian.tar.gz Checksums-Sha256: 8058538262430bf0d104fe31e66e4d0465bbce60d1e9d51393278f9d8dc6858a 2370 ruby2.0_2.0.0.343-1ubuntu1.dsc 8649d12455896c850719dcef0f1cbb36b8094a476f935f927690bb52e26c5707 88266 ruby2.0_2.0.0.343-1ubuntu1.debian.tar.gz Files: 85e3df9c721e08d63fb48b60aceb8285 2370 ruby extra ruby2.0_2.0.0.343-1ubuntu1.dsc 520789dfe5c25d2ac012ee97cd352500 88266 ruby extra ruby2.0_2.0.0.343-1ubuntu1.debian.tar.gz Original-Maintainer: Antonio Terceiro <terce...@debian.org> -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.14 (GNU/Linux) iQIcBAEBCgAGBQJSlKRTAAoJEGVp2FWnRL6TFUQQAI3xsNgthul50xt2D0Qm4cJI EZfRKK6rRl2GU5jYTqqZHNHAT3f3E1xrQEW7ApJv0HM+KkkTmB+w6pXcWxupgUXX zNR53dlqwfZ3N6BsRoiYA5c2GSLNbKG8v9AzPoDyW86g6lAb3J6CcDBZyvByeua7 ZJLPrTNbAKzNvEkGJRTC/FJDzfLUaKkn/FFiVxTxiZIp1TXiv/vHI2CANl/mJPDT 1ddyUgeXv1v8z86Fp9icRcI4wVKOTsHQBjMqXdJpZK4g4gqWI7O7upkEOJAo+kHm Apr3UOlYpps5UPpeMCvVT8LAfgZxs5yQ9DnoMQBzzbMnUFAaI3P+ZNFHT+rwowsw VmGXjp0lO4alnoaLx7XanIYxlww3/0lQpe+4w2CWAMoqhmVzBObMbBi3gE+X2WEP ymWVaHu8O1ra6TjyRzerSJ+sWW9cGipxDie2kv3Bu/moYVx2o5FR2fW5QXU9kIZn bz9AhVhK2tt0PSJ9UsI/2XMhTzAZHqO/jWqIM16Z4IHGMnXlVPQhKInlDNlem9Ue BA7UFs8iwJrkIOt26EJeAguZ0AL13yzXZ13lfxj4B6M9cTKCMoqPwrMC8idzmKZO NwPsVdcku+2btdUxb/hZJCtka+IqGF3yIQHIYN1nH1IYPHyDyiieIstcZMhfT0li S+9MfcxDoq4YaCBLFehV =Konn -----END PGP SIGNATURE-----
-- Trusty-changes mailing list Trusty-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/trusty-changes