vulnerabilities in Ruby
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/ruby1.8/+bug/257122/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/ruby1.8/+bug/257122/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
** Branch linked: lp:ubuntu/dapper-updates/ruby1.8
** Branch linked: lp:~ubuntu-branches/ubuntu/feisty/ruby1.8/feisty-
security
** Branch linked: lp:ubuntu/hardy-updates/ruby1.8
** Branch linked: lp:ubuntu/gutsy-updates/ruby1.8
--
Multiple vulnerabilities in Ruby
The 18 month support period for Gutsy Gibbon 7.10 has reached its end of life -
http://www.ubuntu.com/news/ubuntu-7.10-eol . As a result, we are closing the
Gutsy task.
** Changed in: ruby1.9 (Ubuntu Gutsy)
Status: New = Won't Fix
--
Multiple vulnerabilities in Ruby
Ubuntu Feisty Fawn is no longer supported, so a SRU will not be issued
for this release. Marking Feisty as Won't Fix.
** Changed in: ruby1.9 (Ubuntu Feisty)
Status: New = Won't Fix
--
Multiple vulnerabilities in Ruby
https://bugs.launchpad.net/bugs/257122
You received this bug
Fixed via sync request in
https://bugs.launchpad.net/ubuntu/+source/ruby1.9/+bug/281456
** Changed in: ruby1.9 (Ubuntu Intrepid)
Status: In Progress = Fix Released
--
Multiple vulnerabilities in Ruby
https://bugs.launchpad.net/bugs/257122
You received this bug notification because you
Requested sync from Debian to 1.9.0.2-7 for Intrepid. See bug #281456.
** Changed in: ruby1.9 (Ubuntu Intrepid)
Status: Triaged = In Progress
--
Multiple vulnerabilities in Ruby
https://bugs.launchpad.net/bugs/257122
You received this bug notification because you are a member of Ubuntu
This bug was fixed in the package ruby1.8 - 1.8.6.111-2ubuntu1.2
---
ruby1.8 (1.8.6.111-2ubuntu1.2) hardy-security; urgency=low
* SECURITY UPDATE: denial of service via resource exhaustion in the REXML
module (LP: #261459)
- debian/patches/102_CVE-2008-3790.dpatch: adjust
This bug was fixed in the package ruby1.8 - 1.8.6.36-1ubuntu3.3
---
ruby1.8 (1.8.6.36-1ubuntu3.3) gutsy-security; urgency=low
* SECURITY UPDATE: denial of service via resource exhaustion in the REXML
module (LP: #261459)
- debian/patches/103_CVE-2008-3790.dpatch: adjust
This bug was fixed in the package ruby1.8 - 1.8.5-4ubuntu2.3
---
ruby1.8 (1.8.5-4ubuntu2.3) feisty-security; urgency=low
* SECURITY UPDATE: denial of service via resource exhaustion in the REXML
module (LP: #261459)
- debian/patches/953_CVE-2008-3790.patch: adjust
http://www.ubuntu.com/usn/usn-651-1
** Changed in: ruby1.8 (Ubuntu Dapper)
Status: In Progress = Fix Released
** Changed in: ruby1.9 (Ubuntu Intrepid)
Status: New = Triaged
--
Multiple vulnerabilities in Ruby
https://bugs.launchpad.net/bugs/257122
You received this bug
** Changed in: ruby1.8 (Ubuntu Dapper)
Status: Confirmed = In Progress
** Changed in: ruby1.8 (Ubuntu Feisty)
Status: Confirmed = In Progress
** Changed in: ruby1.8 (Ubuntu Gutsy)
Status: Confirmed = In Progress
** Changed in: ruby1.8 (Ubuntu Hardy)
Status: Confirmed
** Changed in: ruby1.8 (Ubuntu)
Sourcepackagename: ruby-defaults = ruby1.8
** Changed in: ruby1.8 (Ubuntu)
Assignee: (unassigned) = Jamie Strandboge (jdstrand)
Status: New = Confirmed
** Also affects: ruby1.9 (Ubuntu)
Importance: Undecided
Status: New
** Changed in:
I hate to be a nag, but this package is in main, and it's been a month,
and well, the SABDFL seems to think Ubuntu has a good track record with
security fixes...
Well we have a better security track record than Red Hat, we do that by
focusing very hard on security, making sure the updates are
Thanks for the ping. We are working on it, but other updates have taken
priority over Ruby. The open Ruby vulnerabilities are mostly denial-of-
service or untrusted local script issues, which have traditionally been
low priority.
--
Multiple vulnerabilities in Ruby
*** This bug is a security vulnerability ***
You have been subscribed to a public security bug by Jamie Strandboge
(jdstrand):
Some vulnerabilities have been reported in Ruby, which can be exploited
by malicious people to bypass certain security restrictions, cause a DoS
(Denial of Service),
** Visibility changed to: Public
--
Multiple vulnerabilities in Ruby
https://bugs.launchpad.net/bugs/257122
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
17 matches
Mail list logo