Jump to letter: [
9ABCDEFGHIJKLMNOPQRSTUVWXYZ
]
ruby-devel: A Ruby development environment.
Name: | ruby-devel |
Vendor: | Scientific Linux |
Version: | 1.8.5 |
License: | Ruby License/GPL - see COPYING |
Release: | 5.el5_2.6 |
URL: | http://www.ruby-lang.org/ |
- Summary
- Header files and libraries for building a extension library for the
Ruby or an application embedded Ruby.
Changelog
- * Wed Nov 19 16:00:00 2008 Akira TAGOH <tagoh{%}redhat{*}com> - 1.8.5-5.el5_2.6
- security fix (#470262)
- CVE-2008-4310: real fix for CVE-2008-3656. original patch named as fix for
CVE-2008-3656 actually fixed different issue (CVE-2008-1145),
hence we are providing correct patch and renaming original
patch to refer to proper CVE.
- * Wed Oct 8 17:00:00 2008 Akira TAGOH <tagoh{%}redhat{*}com> - 1.8.5-5.el5_2.5
- Build with -fno-strict-aliasing.
- * Wed Oct 8 17:00:00 2008 Akira TAGOH <tagoh{%}redhat{*}com> - 1.8.5-5.el5_2.4
- security fixes. (#461590)
- CVE-2008-3655: multiple insufficient safe mode restrictions.
- CVE-2008-1145: WEBrick DoS vulnerability (CPU consumption).
- CVE-2008-3657: missing "taintness" checks in dl module.
- CVE-2008-3905: use of predictable source port and transaction id in DNS
requests done by resolv.rb module.
- CVE-2008-3443: Memory allocation failure in Ruby regex engine
(remotely exploitable DoS).
- CVE-2008-3790: DoS vulnerability in the REXML module.