]> git.pld-linux.org Git - packages/ruby.git/commit
projects / packages / ruby.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 27553c8) | patch
up to 2.4.5; CVE-2018-16396, CVE-2018-16395
authorElan Ruusamäe <glen@pld-linux.org>
Sun, 4 Nov 2018 21:03:52 +0000 (23:03 +0200)
committerElan Ruusamäe <glen@pld-linux.org>
Sun, 4 Nov 2018 21:04:32 +0000 (23:04 +0200)
commit4fcae2800c1a641454dcc6bb56c0588b774e55ca
tree1edbfa2dfb218f61305462ccd32c56794937e3f3tree | snapshot
parent27553c8baf5777ed22b5b47ef167c9a2688fd671commit | diff
up to 2.4.5; CVE-2018-16396, CVE-2018-16395

https://www.ruby-lang.org/en/news/2018/10/17/ruby-2-4-5-released/

- CVE-2018-16396: Tainted flags are not propagated in Array#pack and String#unpack with some directives
- CVE-2018-16395: OpenSSL::X509::Name equality check does not work correctly
ruby.spec diff | blob | blame | history
Ruby - interpreted scripting language
This page took 0.031633 seconds and 4 git commands to generate.