[ol8_appstream] rubygem-psych-3.1.0-139.module+el8.8.0+21111+2e34bf27.aarch64

Name:	rubygem-psych
Version:	3.1.0
Release:	139.module+el8.8.0+21111+2e34bf27
Architecture:	aarch64
Module:	ruby:2.7:8080020230427102918:63b34585
Group:	Unspecified
Size:	164836
License:	MIT
RPM:	rubygem-psych-3.1.0-139.module+el8.8.0+21111+2e34bf27.aarch64.rpm
Source RPM:	ruby-2.7.8-139.module+el8.8.0+21111+2e34bf27.src.rpm
Build Date:	Mon Jul 03 2023
Build Host:	build-ol8-aarch64.oracle.com
Vendor:	Oracle America
URL:	http://ruby-lang.org/
Summary:	A libyaml wrapper for Ruby
Description:	Psych is a YAML parser and emitter. Psych leverages libyaml[http://pyyaml.org/wiki/LibYAML] for its YAML parsing and emitting capabilities. In addition to wrapping libyaml, Psych also knows how to serialize and de-serialize most Ruby objects to and from the YAML format.

Changelog (Show File list) (Show related packages)

Tue Apr 25 2023 Jarek Prokop <jprokop@redhat.com> - 2.7.8-139

- Upgrade to Ruby 2.7.8.
  Resolves: rhbz#2149262
- Fix HTTP response splitting in CGI.
  Resolves: CVE-2021-33621
- Fix ReDoS vulnerability in URI.
  Resolves: CVE-2023-28755
- Fix ReDoS vulnerability in Time.
  Resolves: CVE-2023-28756

Tue Jul 19 2022 Jarek Prokop <jprokop@redhat.com> - 2.7.6-138

- Upgrade to Ruby 2.7.6.
  Resolves: rhbz#2109424
- Fix FTBFS due to an incompatible load directive.
  Related: rhbz#2109424
- Fix a fiddle import test on an optimized glibc on Power 9.
  Related: rhbz#2109424
- Fix regular Expression Denial of Service Vulnerability of Date Parsing Methods.
  Resolves: CVE-2021-41817
- Fix cookie prefix spoofing in CGI::Cookie.parse.
  Resolves: CVE-2021-41819
- Fix buffer overrun in String-to-Float conversion.
  Resolves: CVE-2022-28739

Thu Jul 15 2021 Jun Aruga <jaruga@redhat.com> - 2.7.4-137

- Upgrade to Ruby 2.7.4.
- Fix command injection vulnerability in RDoc.
  Resolves: CVE-2021-31799
- Fix FTP PASV command response can cause Net::FTP to connect to arbitrary host.
  Resolves: CVE-2021-31810
- Fix StartTLS stripping vulnerability in Net::IMAP.
  Resolves: CVE-2021-32066
- Upgrade to Bundler 2.2.24.
  Resolves: CVE-2020-36327

Wed Apr 07 2021 Pavel Valena <pvalena@redhat.com> - 2.7.3-136

- Upgrade to Ruby 2.7.3.
  Resolves: rhbz#1947938
- Resolv::DNS: timeouts if multiple IPv6 name servers are given and address
  contains leading zero
  Resolves: rhbz#1944227

Tue Oct 13 2020 Vít Ondruch <vondruch@redhat.com> - 2.7.2-135

- Upgrade to Ruby 2.7.2.
- Avoid possible timeout errors in TestBugReporter#test_bug_reporter_add.

Fri Jun 26 2020 Vít Ondruch <vondruch@redhat.com> - 2.7.1-133

- Fix `require` behavior allowing to load libraries multiple times.
  Resolves: rhbz#1842989
- Add ruby-default-gems dependency on irb.

Fri Jun 26 2020 Jun Aruga <jaruga@redhat.com> - 2.7.1-133
```
- Ship racc binary.
  Resolves: rhbz#1851388
```

Fri May 29 2020 Jun Aruga <jaruga@redhat.com> - 2.7.1-132

- Update to Ruby 2.7.1 by merging Fedora master branch (commit: 2981648)
  * Skip unstable tests on s390x.
  * Skip JIT tests in RHEL 8.
  Resolves: rhbz#1817135

Thu Jul 04 2019 Jun Aruga <jaruga@redhat.com> - 2.6.3-106

- Use ffi_closure_alloc to avoid segmentation fault by libffi on aarch64.
  Resolves: rhbz#1727832
- Properly support %prerelease in %gemspec_ macros.
  Related: rhbz#1672575

Tue Jun 11 2019 Jun Aruga <jaruga@redhat.com> - 2.6.3-105

- Update to Ruby 2.6.3 by merging Fedora master branch (commit: 1cc2a49)
  * Properly generate "ruby(rubygems)" versioned dependencies.
  * Extract composition of dependecy strings into helper.
  * Loosen RDoc dependency.
  * Upstream fix adding -C flag instead of changing directory for gem build.
  * Remove obsolete Group tag
  * Fix ".include =" support in openssl.cnf.
  * Link IRB back to StdLib.
  * Link IRB files instead of directories.
  * Exclude irb.rb from ruby-libs.
  Resolves: rhbz#1672575