Hello community,
here is the log from the commit of package ruby2.1 for openSUSE:Factory checked in at 2016-01-13 22:44:14
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/ruby2.1 (Old)
and /work/SRC/openSUSE:Factory/.ruby2.1.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "ruby2.1"
Changes:
--------
--- /work/SRC/openSUSE:Factory/ruby2.1/ruby2.1.changes 2015-08-29 20:03:45.000000000 +0200
+++ /work/SRC/openSUSE:Factory/.ruby2.1.new/ruby2.1.changes 2016-01-13 22:44:16.000000000 +0100
@@ -1,0 +2,128 @@
+Mon Jan 4 21:38:49 UTC 2016 - mrueckert@suse.de
+
+- update to 2.1.8 (boo# 959495)
+ - ext/fiddle/handle.c: check tainted string arguments. Patch
+ provided by tenderlove and nobu. (CVE-2015-7551)
+ - test/fiddle/test_handle.rb (class TestHandle): add test for
+ above.
+ - ext/dl/handle.c (rb_dlhandle_initialize): prohibits DL::dlopen
+ with a tainted name of library. Patch by sheepman .
+ - ext/dl/handle.c (rb_dlhandle_sym): ditto
+ - io.c (parse_mode_enc): fix buffer overflow.
+ - insns.def (opt_case_dispatch): avoid converting Infinity
+ - test/ruby/test_optimization.rb (test_opt_case_dispatch_inf):
+ new [ruby-dev:49423] [Bug #11804]'
+ - configure.in: pthread_getattr_np is broken on AIX. More
+ specifically, the stack address and size returned are not
+ correct.
+ - insns.def (opt_case_dispatch): check Float#=== redefinition
+ - test/ruby/test_optimization.rb (test_opt_case_dispatch): new
+ [ruby-core:71920] [Bug #11784]
+ - ruby_atomic.h (ATOMIC_SIZE_CAS): fix the argument order of
+ InterlockedCompareExchange64. new value and then old value is
+ the last.
+ - encoding.c (enc_m_loader): defer finding encoding object not to
+ be infected by marshal source. [ruby-core:71793] [Bug #11760]
+ - marshal.c (r_object0): enable compatible loader on USERDEF
+ class. the loader function is called with the class itself,
+ instead of an allocated object, and the loaded data.
+ - marshal.c (compat_allocator_table): initialize
+ compat_allocator_tbl on demand.
+ - object.c (rb_undefined_alloc): extract from rb_obj_alloc.
+ - range.c (range_to_s): should be infected by the receiver. str2
+ infects by appending. [ruby-core:71811] [Bug #11767]
+ - ext/readline/extconf.rb: call dir_config("libedit") if
+ --enable-libedit is spcified. [Bug #11751] patched by John Hein
+ - io.c (rb_io_each_codepoint): raise an exception at incomplete
+ character before EOF when conversion takes place. [Bug #11444]
+ - io.c (rb_io_each_codepoint): read more data when read
+ partially. [ruby-core:70379] [Bug #11444]
+ - ext/digest/sha1/sha1ossl.c: fixed build error introduced at
+ r52797.
+ - insns.def (defined): skip respond_to_missing? when a method is
+ available. [Bug #11211]
+ - test/ruby/test_defined.rb: add a test for this fix.
+ - ext/digest/rmd160/rmd160.c: fixed commit mistake at r52797.
+ - io.c (argf_getpartial): should not resize str if the second
+ argument is not given. [ruby-core:71668] [Bug #11738]
+ - lib/net/http.rb: set hostname before call ossl_ssl_set_session.
+ [Bug #11401][ruby-core:70152][fix GH-964] Patch by @mkarnebeek
+ - transcode.c (rb_econv_open0): rb_econv_t::source_encoding_name
+ and rb_econv_t::destination_encoding_name should refer static
+ strings always or NULL. [ruby-core:70247] [Bug #11416]
+ - ext/digest/*/*.[ch]: include ruby.h before digest.h to avoid
+ includeing ext/digest/extconf.h. [Bug #3231]
+ https://msdn.microsoft.com/library/36k2cdd4.aspx
+ - ext/digest/*/extconf.rb: remove ext/digest from include search
+ path to avoid confusion of cl.exe.
+ - ext/digest/*/*.[ch]: explicitly specify def.h's path.
+ - Added missing reference of GitHub
+ - lib/net/http.rb: Fixed regression for Net::HTTP::PUT with
+ "Expect-100" header. [fix GH-949]
+ - test/net/http/test_http.rb: added test.
+ - ext/date/extconf.rb: try_cflags("-std=iso9899:1999") [Bug
+ #10906] ruby itself (including numeric.c) is built with strict
+ compile options including -std=iso9899:1999, but ext/date is
+ not. By the way -std=iso9899:1999 is not only a warning option
+ but also changes behavior like MACRO definitions for example
+ INFINITY. gcc on Solaris affect this.
+ - ext/openssl/ossl_pkey.c: Merge ruby/openssl@b9ea8ef [Bug
+ #10735]
+ - ext/openssl/ossl_ssl.c (ossl_ssl_method_tab): Only add SSLv3
+ support if the SSL library supports it. Thanks Kurt Roeckx
+ [Bug #11376]
+ - ext/openssl/extconf.rb: check for SSLv3 support in the SSL
+ implementation.
+ - test/openssl/test_ssl.rb (class OpenSSL): Skip tests that need
+ SSLv3 if there is no support.
+ - vm_trace.c (rb_threadptr_exec_event_hooks_orig): maintain
+ trace_running counter on internal events. This patch is made
+ by Takashi Kokubun . [Bug #11603]
+ https://github.com/ruby/ruby/pull/1059
+ - compile.c (iseq_compile_each): remove duplicated line event.
+ [Bug #10449]
+ - test/ruby/test_settracefunc.rb: add and fix tests.
+ - vm.c (hook_before_rewind): prevent kicking :return event while
+ finishing vm_exec func because invoke_block_from_c() kick a
+ :return event for bmethods. [Bug #11492]
+ - test/ruby/test_settracefunc.rb: add a test.
+ - test/openssl/test_ssl_session.rb: Fix tests so that they take
+ in to account OpenSSL installations that have SSLv3 disabled by
+ default. Thanks Jeremy Evans for the
+ patches. [Bug #11366] [Bug #11367]
+ - test/openssl/test_ssl_session.rb
+ (OpenSSL#test_ctx_client_session_cb): fix test failure with
+ OpenSSL disabled SSLv3 protocol. [ruby-core:63772] [Bug
+ #10046]
+ - string.c (sym_to_proc), proc.c (rb_block_clear_env_self): clear
+ caller's self which is useless, so that it can get collected.
+ [Fixes GH-592]
+ - lib/ipaddr.rb, test/test_ipaddr.rb: Reject invalid address
+ contained EOL string. Patch by @kachick [fix GH-942][Bug
+ #11513]
+ - lib/ipaddr.rb, test/test_ipaddr.rb: split test code from
+ library script and move to test script, just like trunk.
+ - ext/openssl/ossl_ssl.c (ssl_npn_select_cb): explicitly raise
+ error in ext/openssl instead of OpenSSL itself because LibreSSL
+ silently truncate the selected protocol name by casting the
+ length from int to unsigned char. [Bug #11369] Patch by Jeremy
+ Evans
+ - configure.in: check for libunwind.h, which is not available in
+ very old OS X SDK. [ruby-core:71080] [Bug #11591]
+ - test/drb/test_drb.rb: Run Rinda/DRb tests on localhost. [Fix
+ GH-1027] patch by voxik.
+ - test/rinda/test_rinda.rb: ditto
+ - parse.y (literal_concat_gen, evstr2dstr_gen): keep literal
+ encoding beginning with an interpolation same as the source
+ file encoding. [ruby-core:70703] [Bug #11519]
+ - lib/rss/rss.rb (Time#w3cdtf): fix zero-trimmed width of
+ fraction digits. [ruby-core:70667] [Bug #11509]
+ - re.c (rb_memsearch_wchar, rb_memsearch_qchar): test matching
+ till the end of string. [ruby-core:70592] [Bug #11488]
+ - test/ruby/test_m17n.rb (test_include?, tet_index): add tests by
+ Tom Stuart.
+ - thread_pthread.c (reserve_stack): ensure the memory is really
+ allocated. [Bug #11457]
+
+-------------------------------------------------------------------
Old:
----
ruby-2.1.7.tar.xz
New:
----
ruby-2.1.8.tar.xz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ ruby2.1.spec ++++++
--- /var/tmp/diff_new_pack.dPRh89/_old 2016-01-13 22:44:18.000000000 +0100
+++ /var/tmp/diff_new_pack.dPRh89/_new 2016-01-13 22:44:18.000000000 +0100
@@ -25,7 +25,7 @@
####
%define patch_level p0
-Version: 2.1.7
+Version: 2.1.8
Release: 0
# make the exported API version explicit
%define api_version 2.1.0
++++++ ruby-2.1.7.tar.xz -> ruby-2.1.8.tar.xz ++++++
/work/SRC/openSUSE:Factory/ruby2.1/ruby-2.1.7.tar.xz /work/SRC/openSUSE:Factory/.ruby2.1.new/ruby-2.1.8.tar.xz differ: char 26, line 1