[ol7_optional_archive] ruby-devel-2.0.0.353-22.el7_0.x86_64

Header files and libraries for building an extension library for the
Ruby or an application embedding Ruby.

Changelog (Show File list) (Show related packages)

• Sun Nov 16 2014 Vít Ondruch <vondruch@redhat.com> - 2.0.0.353-22

  - Fix REXML billion laughs attack via parameter entity expansion
    (CVE-2014-8080).
    Resolves: rhbz#1163998
  - REXML incomplete fix for CVE-2014-8080 (CVE-2014-8090).
    Resolves: rhbz#1163998

• Fri Nov 14 2014 Vít Ondruch <vondruch@redhat.com> - 2.0.0.353-21

  - Fix off-by-one stack-based buffer overflow in the encodes() function
    (CVE-2014-4975)
    Resolves: rhbz#1163998

• Tue Sep 23 2014 Josef Stribny <jstribny@redhat.com> - 2.0.0.353-21

  - Fix FTBFS with new tzdata
    Related: rhbz#1163998

• Fri Jan 24 2014 Daniel Mach <dmach@redhat.com> - 2.0.0.353-20

  - Mass rebuild 2014-01-24

• Tue Jan 07 2014 Vít Ondruch <vondruch@redhat.com> - 2.0.0.353-19

  - Update to Ruby 2.0.0-p353.
    - Resolves: rhbz#1033923
  - Allow MD5 in OpenSSL for tests.

• Fri Jan 03 2014 Vít Ondruch <vondruch@redhat.com> - 2.0.0.247-18

  - Fix FTBFS due to expired certificate for IMAP test case.
  - Fix test_aes_gcm_wrong_tag random failures.
    - Resolves: rhbz#1048899

• Fri Dec 27 2013 Daniel Mach <dmach@redhat.com> - 2.0.0.247-18

  - Mass rebuild 2013-12-27

• Mon Nov 25 2013 Vít Ondruch <vondruch@redhat.com> - 2.0.0.247-17

  - Heap overflow in floating point parsing (CVE-2013-4164).
    * ruby-2.0.0-p353-CVE-2013-4164-ignore-too-long-fraction-part.patch
    - Resolves: rhbz#1033503
  - Allow MD5 in OpenSSL tests.

• Wed Sep 25 2013 Vít Ondruch <vondruch@redhat.com> - 2.0.0.247-16

  - Fix version regex algorithmic complexity vulnerability (CVE for incomplete
    fix for CVE-2013-4287) (CVE-2013-4363).
    - Related: rhbz#1006429

• Tue Sep 17 2013 Vít Ondruch <vondruch@redhat.com> - 2.0.0.247-15

  - Fix version regex algorithmic complexity vulnerability (CVE-2013-4287).
    - Resolves: rhbz#1006429