commit rubygem-rack-1_3.1341 for openSUSE:12.2:Update
Hello community, here is the log from the commit of package rubygem-rack-1_3.1341 for openSUSE:12.2:Update checked in at 2013-02-25 10:45:50 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:12.2:Update/rubygem-rack-1_3.1341 (Old) and /work/SRC/openSUSE:12.2:Update/.rubygem-rack-1_3.1341.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "rubygem-rack-1_3.1341", Maintainer is "" Changes: -------- New Changes file: --- /dev/null 2013-02-09 11:18:20.872010756 +0100 +++ /work/SRC/openSUSE:12.2:Update/.rubygem-rack-1_3.1341.new/rubygem-rack-1_3.changes 2013-02-25 10:45:51.000000000 +0100 @@ -0,0 +1,107 @@ +------------------------------------------------------------------- +Wed Feb 13 17:00:47 UTC 2013 - mrueckert@suse.de + +- update to 1.3.10 (bnc#802794) + * Fix CVE-2013-0263, timing attack against Rack::Session::Cookie + +------------------------------------------------------------------- +Thu Jan 17 13:34:29 UTC 2013 - mrueckert@suse.de + +- update to 1.3.9 (bnc#798452) + * [SEC] Rack::Auth::AbstractRequest no longer symbolizes + arbitrary strings + * Fixed erroneous test case in the 1.3.x series +- additional changes from 1.3.8 + * Security: Prevent unbounded reads in large multipart boundaries +- additional changes from 1.3.7 + * Add warnings when users do not provide a session secret Fix + * parsing performance for unquoted filenames Updated URI + * backports Fix URI backport version matching, and silence + * constant warnings Correct parameter parsing with empty values + * Correct rackup '-I' flag, to allow multiple uses Correct rackup + * pidfile handling Report rackup line numbers correctly Fix + * request loops caused by non-stale nonces with time limits Fix + * reloader on Windows Prevent infinite recursions from + * Response#to_ary Various middleware better conforms to the body + * close specification Updated language for the body close + * specification Additional notes regarding ECMA escape + * compatibility issues Fix the parsing of multiple ranges in + * range headers + +------------------------------------------------------------------- +Fri Mar 23 10:35:09 UTC 2012 - saschpe@suse.de + +- Spec file cleanup: + * Prepare for Factory + +------------------------------------------------------------------- +Thu Nov 3 16:32:15 UTC 2011 - mrueckert@suse.de + +- Update to 1.3.5 (bnc#727772) + - Fix annoying warnings caused by the backport in 1.3.4 + +------------------------------------------------------------------- +Thu Oct 6 16:09:59 UTC 2011 - fcastelli@suse.com + +- Update to 1.3.4 + - Fix bug with broken query parameters in Rack::ShowExceptions + - Rack::Request#cookies no longer swallows exceptions on broken input + - Prevents XSS attacks enabled by bug in Ruby 1.8’s regexp engine + - Rack::ConditionalGet handles broken If-Modified-Since helpers + - Fix a bug with MRI regex engine to prevent XSS by malformed unicode + - Backport security fix from 1.9.3, also fixes some roundtrip issues in URI + - Small documentation update + - Fix an issue where BodyProxy could cause an infinite recursion + - Add some supporting files for travis-ci + +------------------------------------------------------------------- +Mon Sep 12 13:53:34 UTC 2011 - mrueckert@suse.de + +- provide the single digit versioned named aswell + +------------------------------------------------------------------- +Mon Aug 1 16:40:15 UTC 2011 - mrueckert@suse.de + +- update to 1.3.2 + - fix whitespace errors + - Add .rdoc extension so GitHub can apply formatting + - Restore Ruby 1.9.1 compatibility + - Fix a regression caused by [82]f043f32 + - Fix Rack::Utils.escape in the case when $KCODE='U' + - Sigh, thinking backports was a bad idea + - fix Rack::Lock, use same logic for Rack::CommonLogger + - allow passing in rack.session in tests (used to work + previously) + - nicer method_missings + - fix typo + - BasicObject does not define respond_to? + - fix BodyProxy#close + - let Rack::BodyProxy raise an IOError (like IO and StringIO do) + when ca... + - more tests for Rack::BodyProxy + - block should not be called if IOError raised + - update core team list + - simpler, dry implementation for HeaderHash#to_hash, fixes + [122]#177 + - fix typo + - make sure the Cache-Control header can never be nil + - Minor error in documentation regarding the order of parameters + in HTTP... + - call #close on body in mock responses + - test for Rack::Response#close + - Have MockRequest call close on the body rather than + MockResponse. + - prepare readme for 1.3.1 + - update changes + - Edited lib/rack/sendfile.rb via GitHub + - Fixed a Regexp bug that can DoS your box. + - Merge pull request [156]#206 from + brendan/19451fc0463ec424fa368cac05be15c75... + - Update readme pending patch release + - Rack::Utils.escape should work with symbols in Ruby 1.8.7 + +------------------------------------------------------------------- +Fri Jun 17 14:11:39 UTC 2011 - mrueckert@suse.de + +- initial package of the 1.3 branch (1.3.0) + New: ---- rack-1.3.10.gem rubygem-rack-1_3.changes rubygem-rack-1_3.spec ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ rubygem-rack-1_3.spec ++++++ # # spec file for package rubygem-rack-1_3 # # Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed # upon. The license for this file, and modifications and additions to the # file, is the same license as for the pristine package itself (unless the # license for the pristine package is not an Open Source License, in which # case the license is the MIT License). An "Open Source License" is a # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. # Please submit bugfixes or comments via http://bugs.opensuse.org/ # Name: rubygem-rack-1_3 Version: 1.3.10 Release: 0 Summary: A modular Ruby webserver interface License: MIT Group: Development/Languages/Ruby Url: http://rack.rubyforge.org %define mod_name rack %define mod_full_name %{mod_name}-%{version} %define mod_branch -1_3 %define mod_weight 13 Source: %{mod_full_name}.gem BuildRequires: rubygems_with_buildroot_patch Requires(pre): update-alternatives Provides: rubygem-%{mod_name} = %{version} Provides: rubygem-%{mod_name}-1 = %{version} BuildRoot: %{_tmppath}/%{name}-%{version}-build %rubygems_requires %description Rack provides minimal, modular and adaptable interface for developing web applications in Ruby. By wrapping HTTP requests and responses in the simplest way possible, it unifies and distills the API for web servers, web frameworks, and software in between (the so-called middleware) into a single method call. Also see http://rack.rubyforge.org. %package doc Summary: RDoc documentation for %{mod_name} Group: Development/Languages/Ruby Requires: %{name} = %{version} %description doc Documentation generated at gem installation time. Usually in RDoc and RI formats. %package testsuite Summary: Test suite for %{mod_name} Group: Development/Languages/Ruby Requires: %{name} = %{version} %description testsuite Test::Unit or RSpec files, useful for developers. %prep %build %install %gem_install %{SOURCE0} mv %{buildroot}%{_bindir}/rackup{,%{mod_branch}} ln -s rackup %{buildroot}%{_bindir}/rackup # make sure it installs the right version when using rackup-* ruby -p -i.bak -e '$_.gsub!(/>= 0/, "= %{version}")' %{buildroot}%{_bindir}/rackup%{mod_branch} diff -urN %{buildroot}%{_bindir}/rackup%{mod_branch}{.bak,} || : rm %{buildroot}%{_bindir}/rackup%{mod_branch}.bak %post /usr/sbin/update-alternatives --install \ %{_bindir}/rackup rackup %{_bindir}/rackup%{mod_branch} %{mod_weight} %preun if [ "$1" = 0 ] ; then /usr/sbin/update-alternatives --remove rackup %{_bindir}/rackup%{mod_branch} fi %files %defattr(-,root,root,-) %ghost %config(noreplace) %{_bindir}/rackup %{_bindir}/rackup%{mod_branch} %{_libdir}/ruby/gems/%{rb_ver}/cache/%{mod_full_name}.gem %{_libdir}/ruby/gems/%{rb_ver}/gems/%{mod_full_name}/ %exclude %{_libdir}/ruby/gems/%{rb_ver}/gems/%{mod_full_name}/test %{_libdir}/ruby/gems/%{rb_ver}/specifications/%{mod_full_name}.gemspec %files doc %defattr(-,root,root,-) %doc %{_libdir}/ruby/gems/%{rb_ver}/doc/%{mod_full_name}/ %files testsuite %defattr(-,root,root,-) %{_libdir}/ruby/gems/%{rb_ver}/gems/%{mod_full_name}/test %changelog -- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org
participants (1)
-
root@hilbert.suse.de