Opened 3 years ago

Closed 3 years ago

#15785 closed enhancement (fixed)

ruby-3.0.3

Reported by: Bruce Dubbs Owned by: Bruce Dubbs
Priority: elevated Milestone: 11.1
Component: BOOK Version: git
Severity: normal Keywords:
Cc:

Description

New point version.

Change History (3)

comment:1 by Bruce Dubbs, 3 years ago

Owner: changed from blfs-book to Bruce Dubbs
Status: newassigned

comment:2 by Bruce Dubbs, 3 years ago

Priority: normalelevated

Ruby 3.0.3 has been released.

This release includes security fixes. Please check the topics below for details.

  • CVE-2021-41817: Regular Expression Denial of Service Vulnerability of Date Parsing Methods
  • CVE-2021-41816: Buffer Overrun in CGI.escape_html
  • CVE-2021-41819: Cookie Prefix Spoofing in CGI::Cookie.parse

comment:3 by Bruce Dubbs, 3 years ago

Resolution: fixed
Status: assignedclosed

Fixed at commit c86d663425d0376bd0ff95fb4cb67a68dc85b76d 

Package updates.
    Update to git-2.34.1.
    Update to ruby-3.0.3.
    Update to libsoup-2.74.2.
    Update to mercurial-6.0.
Note: See TracTickets for help on using tickets.