Summary: | Ruby 1.8.6 / 1.8.7 have new stable releases | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | M. Edward Borasky <znmeb> |
Component: | New packages | Assignee: | Gentoo Ruby Team <ruby> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | znmeb |
Priority: | High | ||
Version: | 2007.0 | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | |||
Bug Blocks: | 225465 |
Description
M. Edward Borasky
2008-08-08 03:43:37 UTC
But wait! There's more! http://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby/ Adding security team. I've just added ruby 1.8.6_p286 to CVS. But wait! There's *still* more! From shyouhei@ruby-lang.org Mon Aug 11 01:41:32 2008 Return-Path: <ruby-talk-admin@ruby-lang.org> Delivered-To: cesmail-net-znmeb@cesmail.net Received: (qmail 10861 invoked from network); 11 Aug 2008 01:41:32 -0000 X-Spam-Checker-Version: SpamAssassin 3.2.4 (2008-01-01) on filter7 X-Spam-Level: X-Spam-Status: hits=0.0 tests=none version=3.2.4 Received: from unknown (192.168.1.108) by filter7.cesmail.net with QMQP; 11 Aug 2008 01:41:32 -0000 Received: from carbon.ruby-lang.org (221.186.184.68) by mx71.cesmail.net with SMTP; 11 Aug 2008 01:41:32 -0000 Received: from carbon.ruby-lang.org (beryllium.ruby-lang.org [127.0.0.1]) by carbon.ruby-lang.org (Postfix) with ESMTP id AE11B3C224B92; Mon, 11 Aug 2008 10:38:14 +0900 (JST) Received: from dump.fs.trans-nt.com (smtp.trans-nt.co.jp [202.10.98.251]) by carbon.ruby-lang.org (Postfix) with SMTP id ABAE43C224B8A for <ruby-talk@ruby-lang.org>; Mon, 11 Aug 2008 10:38:09 +0900 (JST) Received: (qmail 19842 invoked from network); 11 Aug 2008 10:40:27 +0900 Received: from dhcp117.p.nn.trans-nt.com (HELO ?192.168.164.3?) (192.168.130.117) by smtp.trans-nt.co.jp with SMTP; 11 Aug 2008 10:40:27 +0900 Delivered-To: ruby-talk@ruby-lang.org Date: Mon, 11 Aug 2008 10:38:10 +0900 Posted: Mon, 11 Aug 2008 10:40:27 +0900 From: Urabe Shyouhei <shyouhei@ruby-lang.org> Reply-To: ruby-talk@ruby-lang.org Subject: Ruby 1.8.7-p72 / 1.8.6-p287 released (Security Fix) To: ruby-talk@ruby-lang.org (ruby-talk ML) ,ruby-list@ruby-lang.org Message-Id: <489F988B.9090601@ruby-lang.org> X-ML-Name: ruby-talk X-Mail-Count: 310808 X-MLServer: fml [fml 4.0.3 release (20011202/4.0.3)]; post only (only members can post) X-ML-Info: If you have a question, send e-mail with the body "help" (without quotes) to the address ruby-talk-ctl@ruby-lang.org; help=<mailto:ruby-talk-ctl@ruby-lang.org?body=help> User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.16) Gecko/20080724 Thunderbird/2.0.0.16 Mnenhy/0.7.5.0 X-Enigmail-Version: 0.95.0 Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-2022-JP Content-Transfer-Encoding: 7bit Precedence: bulk Lines: 40 List-Id: ruby-talk.ruby-lang.org List-Software: fml [fml 4.0.3 release (20011202/4.0.3)] List-Post: <mailto:ruby-talk@ruby-lang.org> List-Owner: <mailto:ruby-talk-admin@ruby-lang.org> List-Help: <mailto:ruby-talk-ctl@ruby-lang.org?body=help> List-Unsubscribe: <mailto:ruby-talk-ctl@ruby-lang.org?body=unsubscribe> X-SpamCop-Checked: 221.186.184.68 202.10.98.251 X-Evolution-Source: pop://znmeb%40cesmail.net@pop.spamcop.net/ Sorry for a fuss, but it turned out that taintness check of dl in last releases I made was incomplete. Here are fixes for that. Released tarballes are available at: ftp://ftp.ruby-lang.org/pub/ruby/1.8/ruby-1.8.6-p287.tar.gz ftp://ftp.ruby-lang.org/pub/ruby/1.8/ruby-1.8.6-p287.tar.bz2 ftp://ftp.ruby-lang.org/pub/ruby/1.8/ruby-1.8.6-p287.zip ftp://ftp.ruby-lang.org/pub/ruby/1.8/ruby-1.8.7-p72.tar.gz ftp://ftp.ruby-lang.org/pub/ruby/1.8/ruby-1.8.7-p72.tar.bz2 ftp://ftp.ruby-lang.org/pub/ruby/1.8/ruby-1.8.7-p72.zip And checksums: MD5(ruby-1.8.6-p287.tar.gz)= f6cd51001534ced5375339707a757556 SHA256(ruby-1.8.6-p287.tar.gz)= 6463d1932c34ff72b79174ac7d2c28940d29d147928250928a00a0dbee43db57 SIZE(ruby-1.8.6-p287.tar.gz)= 4590393 MD5(ruby-1.8.6-p287.tar.bz2)= 80b5f3db12531d36e6c81fac6d05dda9 SHA256(ruby-1.8.6-p287.tar.bz2)= ac15a1cb78c50ec9cc7e831616a143586bdd566bc865c6b769a0c47b3b3936ce SIZE(ruby-1.8.6-p287.tar.bz2)= 3956902 MD5(ruby-1.8.6-p287.zip)= e555d51f5b387fdd52ae53d9bafa13f5 SHA256(ruby-1.8.6-p287.zip)= 844c66c015565839531a34b83e0526cd4fa2a71cc0f5cc8ddb0d4c158403543a SIZE(ruby-1.8.6-p287.zip)= 5606238 MD5(ruby-1.8.7-p72.tar.gz)= 5e5b7189674b3a7f69401284f6a7a36d SHA256(ruby-1.8.7-p72.tar.gz)= e15ca005076f5d6f91fc856fdfbd071698a4cadac3c6e25855899dba1f6fc5ef SIZE(ruby-1.8.7-p72.tar.gz)= 4805594 MD5(ruby-1.8.7-p72.tar.bz2)= 0b215c46b89b28d7ab8d56d96e72d5b9 SHA256(ruby-1.8.7-p72.tar.bz2)= a8f8a28e286dd76747d8e97ea5cfe7a315eb896906ab8c8606d687d9f6f6146e SIZE(ruby-1.8.7-p72.tar.bz2)= 4127450 MD5(ruby-1.8.7-p72.zip)= b44fe5a12d4bf138ba0d3660e13a8216 SHA256(ruby-1.8.7-p72.zip)= 77e67be4aa8c3e041e1d20d24e5fcf2e33ad9bccb3da3332b6c0a5b648334903 SIZE(ruby-1.8.7-p72.zip)= 5855902 Sorry again for an incomplete release. ruby 1.8.6_p287 is now in CVS Closing this since the 1.8.7 version is now also in CVS. |