[ol7_software_collections] rh-ruby30-rubygem-psych-3.3.2-149.el7.x86_64

Name:	rh-ruby30-rubygem-psych
Version:	3.3.2
Release:	149.el7
Architecture:	x86_64
Group:	Development/Libraries
Size:	125850
License:	MIT
RPM:	rh-ruby30-rubygem-psych-3.3.2-149.el7.x86_64.rpm
Source RPM:	rh-ruby30-ruby-3.0.4-149.el7.src.rpm
Build Date:	Tue Oct 11 2022
Build Host:	build-ol7-x86_64.oracle.com
Vendor:	Oracle America
URL:	https://www.ruby-lang.org/
Summary:	A libyaml wrapper for Ruby
Description:	Psych is a YAML parser and emitter. Psych leverages libyaml[http://pyyaml.org/wiki/LibYAML] for its YAML parsing and emitting capabilities. In addition to wrapping libyaml, Psych also knows how to serialize and de-serialize most Ruby objects to and from the YAML format.

Changelog (Show File list) (Show related packages)

Mon Aug 22 2022 Jarek Prokop <jprokop@redhat.com> - 3.0.4-149

- Upgrade to Ruby 3.0.4.
  Resolves: rhbz#2128628
- Fix user-installed rubygems plugins are not being loaded.
  Resolves: rhbz#2128629
- Fix buffer overflow in CGI.escape_html.
  Resolves: CVE-2021-41816
- Fix regular expression denial of service vulnerability of Date parsing
  methods.
  Resolves: CVE-2021-41817
- Fix cookie prefix spoofing in CGI::Cookie.parse.
  Resolves: CVE-2021-41819
- Fix double free in Regexp compilation.
  Resolves: CVE-2022-28738
- Fix buffer overrun in String-to-Float conversion.
  Resolves: CVE-2022-28739

Wed Jul 28 2021 Jarek Prokop <jprokop@redhat.com> - 3.0.2-148

- Upgrade to Ruby 3.0.2.
- Fix command injection vulnerability in RDoc. (CVE-2021-31799)
  Resolves: rhbz#1980842
- Fix FTP PASV command response can cause Net::FTP to connect to arbitrary host.
  (CVE-2021-31810)
  Resolves: rhbz#1980824
- Fix StartTLS stripping vulnerability in Net::IMAP. (CVE-2021-32066)
  Resolves: rhbz#1980834
- Fix dependencies of gems with explicit source installed from a
  different source. (CVE-2020-36327)
  Resolves: rhbz#1968498
- Re-enable SSL tests.
- Fix some failing Bundler tests with old Git.

Fri Apr 23 2021 Jun Aruga <jaruga@redhat.com> - 3.0.1-147

- Upgrade to Ruby 3.0.1.
  Resolves: rhbz#1947933
  Resolves: CVE-2021-28965

Thu Apr 01 2021 Jun Aruga <jaruga@redhat.com> - 3.0.0-146

- Add the requirement of the ruby-default-gems to the ruby.
  Related: rhbz#1921719

Wed Mar 10 2021 Jun Aruga <jaruga@redhat.com> - 3.0.0-145

- Fix the ruby systemtap file path.
  Resolves: rhbz#1932291
- Revert removing the rdoc symbolic files that are specific in SCL.
- Bundle RDoc into StdLib.
  Resolves: rhbz#1921719
- Merge commits from Fedora rawhide branch.
  Related: rhbz#1903661

Mon Jan 25 2021 Jun Aruga <jaruga@redhat.com> - 3.0.0-144

- Upgrade to Ruby 3.0.0.
  Resolves: rhbz#1903661
- Skip the ssl tests for offline on Brew build environment.
- Remove the rdoc symbolic files that are specific in SCL.

Tue Apr 14 2020 Jun Aruga <jaruga@redhat.com> - 2.7.1-128

- Upgrade to Ruby 2.7.1.
  Resolves: rhbz#1826872
- Call load builtin macro if it is defined, or call own load macro.

Thu Apr 02 2020 Jun Aruga <jaruga@redhat.com> 2.7.0-127

- Fix did_you_mean (LoadError) that happens when running `bundle install`.
  Resolves: rhbz#1819245

Thu Mar 12 2020 Jun Aruga <jaruga@redhat.com> 2.7.0-126

- Provide StdLib links for Racc and install it by default.

Thu Jan 16 2020 Jun Aruga <jaruga@redhat.com> 2.7.0-125
```
- Upgrade to Ruby 2.7.0.
```