Hello community, here is the log from the commit of package ruby for openSUSE:11.4 checked in at Mon Jan 16 01:19:04 CET 2012. -------- --- old-versions/11.4/UPDATES/all/ruby/ruby.changes 2011-05-17 18:43:20.000000000 +0200 +++ 11.4/ruby/ruby.changes 2012-01-12 16:53:36.000000000 +0100 @@ -1,0 +2,40 @@ +Thu Jan 12 15:49:10 UTC 2012 - mrueckert@suse.de + +- update to 1.8.7.p357 (bnc#739122) + - randomize hash to avoid algorithmic complexity attacks. + CVE-2011-4815 + - initialization of hash_seed to be at the beginning of the + process. + - initialize random seed at first. + - call OpenSSL::Random.seed at the SecureRandom.random_bytes + call. insert separators for array join. patch by Masahiro + Tomita. [ruby-dev:44270] + - mkconfig.rb: fix for continued lines. based on a patch from + Marcus Rueckert <darix AT opensu.se> at [ruby-core:20420]. + - Infinity is greater than any bignum number. [ruby-dev:38672] + - initialize store->ex_data.sk. [ruby-core:28907] + [ruby-core:23971] [ruby-core:18121] + +------------------------------------------------------------------- +Wed Dec 21 16:54:50 UTC 2011 - mrueckert@suse.de + +- update to 1.8.7.p352 (Fate #312657) (bnc#704409) + - support for openssl compiled without SSLv2 + - multilib support for tk build + - some IPv6 related fixes + - zlib fixes + - reinitialize PRNG when forking children + (CVE-2011-2686/CVE-2011-3009) + - securerandom fixes (CVE-2011-2705) + - uri route_to fixes + - fix race condition with variables and autoload +- switched rb_arch macro to use RUBY_PLATFORM +- dropped patches: + 1887f60a8540f64f5c7bb14d57c0be70506941b8.patch + ruby-1.8.7.p22_tcltk-multilib.patch + ruby-1.8.7-p334.tar.bz2 + ruby-1.8.x_bigdecimal_memory_corruption.patch +- new patches + ruby-1.8.x_rubylibdir.patch + +------------------------------------------------------------------- calling whatdependson for 11.4-i586 Old: ---- 1887f60a8540f64f5c7bb14d57c0be70506941b8.patch ruby-1.8.7-p334.tar.bz2 ruby-1.8.7.p22_tcltk-multilib.patch ruby-1.8.x_bigdecimal_memory_corruption.patch New: ---- ruby-1.8.7-p357.tar.bz2 ruby-1.8.x_rubylibdir.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ ruby.spec ++++++ --- /var/tmp/diff_new_pack.RptKHM/_old 2012-01-16 01:18:44.000000000 +0100 +++ /var/tmp/diff_new_pack.RptKHM/_new 2012-01-16 01:18:44.000000000 +0100 @@ -1,7 +1,7 @@ # # spec file for package ruby # -# Copyright (c) 2011 SUSE LINUX Products GmbH, Nuernberg, Germany. +# Copyright (c) 2012 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -19,11 +19,11 @@ Name: ruby -Version: 1.8.7.p334 -Release: 1.<RELEASE4> +Version: 1.8.7.p357 +Release: 0.<RELEASE2> # %define pkg_version 1.8.7 -%define patch_level p334 +%define patch_level p357 %define rb_arch %(echo %{_target_cpu}-linux | sed -e "s/i686/i586/" -e "s/hppa2.0/hppa/" -e "s/ppc/powerpc/") %define rb_ver %(echo %{pkg_version} | sed -e 's/\\\.[0-9]\\\+$//') # @@ -59,7 +59,6 @@ Source1: irb.1 Source2: ruby-doc-bundle.tar.bz2 Patch1: ruby-1.8.7.p299_lib64.patch -Patch2: ruby-1.8.7.p22_tcltk-multilib.patch Patch5: ruby-1.8.7.p299_date_remove_privat.patch Patch6: ruby-1.8.7.p299_pedantic-headers.patch Patch7: ruby-1.8.7.p72_vendor_specific.patch @@ -68,9 +67,8 @@ # can be removed on next version update. pulled from svn Patch10: ruby-1.8.x_openssl_branch_update.patch Patch11: ruby-1.8.x_yaml2byte.patch -Patch12: 1887f60a8540f64f5c7bb14d57c0be70506941b8.patch Patch13: ruby-1.8.7.p334_remove_zlib_test_params_test.patch -Patch14: ruby-1.8.x_bigdecimal_memory_corruption.patch +Patch14: ruby-1.8.x_rubylibdir.patch # vendor ruby files taken from: # http://svn.macports.org/repository/macports/trunk/dports/lang/ruby/ Source3: site-specific.rb @@ -248,7 +246,6 @@ %prep %setup -q -n ruby-%{pkg_version}-%{patch_level} -a2 %{?with_bleak_house:-a6} %patch1 -%patch2 %patch5 %patch6 %patch7 @@ -256,7 +253,6 @@ %patch9 %patch10 %patch11 -%patch12 %patch13 %patch14 %if 0%{?with_bleak_house} @@ -269,7 +265,7 @@ old parse.c %build -# autoreconf -fi +autoreconf -fi export CFLAGS="%{optflags} -g -fno-strict-aliasing" %configure \ --target=%{_target_platform} \ ++++++ ruby-1.8.7-p334.tar.bz2 -> ruby-1.8.7-p357.tar.bz2 ++++++ ++++ 4263 lines of diff (skipped) ++++++ ruby-1.8.x_rubylibdir.patch ++++++ Index: configure.in =================================================================== --- configure.in.orig +++ configure.in @@ -1757,7 +1757,12 @@ case "$target_os" in rubyw_install_name="$RUBYW_INSTALL_NAME" ;; esac -RUBY_LIB_PREFIX=`eval echo \\"${libdir}/ruby\\"` + +AC_ARG_WITH(rubylibdir, + [ --with-rubylibdir=DIR stdlib libraries in DIR [[LIBDIR/ruby]]], + [rubylibdir=$withval], + [rubylibdir='${libdir}/ruby']) +RUBY_LIB_PREFIX=`eval echo \\"${rubylibdir}\\"` AC_ARG_WITH(sitedir, [ --with-sitedir=DIR site libraries in DIR [[LIBDIR/ruby/site_ruby]]], continue with "q"... Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org