Bug#593312: unblock: ruby1.8/1.8.7.302-1
Package: release.debian.org
Severity: normal
User: release.debian.org@packages.debian.org
Usertags: freeze-exception
Please unblock package ruby1.8
Full Debian changelog:
ruby1.8 (1.8.7.302-1) unstable; urgency=high
* New upstream release in the stable 1.8.7 branch (very minor changes only).
+ Fixes CVE-2010-0541.
-- Lucas Nussbaum <lucas@lucas-nussbaum.net> Mon, 16 Aug 2010 11:23:16 +0200
Full upstream changelog since p299 (in testing):
> Sun Aug 15 19:59:58 2010 Yuki Sonoda (Yugui) <yugui@yugui.jp>
>
> * lib/webrick/httpresponse.rb (WEBrick::HTTPResponse#set_error):
> Fix for possible cross-site scripting (CVE-2010-0541).
> Found by Apple, reported by Hideki Yamane.
> Patch by Hirokazu Nishio <nishio.hirokazu AT gmail.com>.
>
> Sat Jul 17 15:19:58 2010 KOSAKI Motohiro <kosaki.motohiro@gmail.com>
>
> * configure.in: Change AC_PREREQ from 2.58 to 2.60 because
> AC_CASE macro require 2.60 or later. Thanks, Mitsuru SHIMAMURA.
> [Bug #3579] [ruby-dev:41856]
unblock ruby1.8/1.8.7.302-1
-- System Information:
Debian Release: squeeze/sid
APT prefers testing
APT policy: (990, 'testing'), (700, 'unstable'), (500, 'stable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.32-5-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Reply to: