Package "libruby2.5"

Name: libruby2.5


Libraries necessary to run Ruby 2.5

Latest version: 2.5.5-4ubuntu2.1
Release: eoan (19.10)
Level: updates
Repository: main
Head package: ruby2.5
Homepage: http://www.ruby-lang.org/


Save this URL for the latest version of "libruby2.5": https://www.ubuntuupdates.org/libruby2.5

Download "libruby2.5"

Other versions of "libruby2.5" in Eoan

Repository Area Version
base main 2.5.5-4ubuntu2
security main 2.5.5-4ubuntu2.1


Version: 2.5.5-4ubuntu2.1 2019-11-26 17:06:40 UTC

  ruby2.5 (2.5.5-4ubuntu2.1) eoan-security; urgency=medium

  * SECURITY UPDATE: NULL injection vulnerability
    - debian/patches/CVE-2019-15845.patch: ensure that
      pattern does not contain a NULL character in dir.c,
    - CVE-2019-15845
  * SECURITY UPDATE: Denial of service vulnerability
    - debian/patches/CVE-2019-16201.patch: fix in
    - CVE-2019-16201.patch
  * SECURITY UPDATE: HTTP response splitting in WEBrick
    - debian/patches/CVE-2019-16254.patch: prevent response
      splitting and header injection in lib/webrick/httpresponse.rb,
    - CVE-2019-16254
  * SECURITY UPDATE: Code injection
    - debian/patches/CVE-2019-16255.patch: prevent unknown command
      in lib/shell/command-processor.rb, test/shell/test_command_processor.rb.
    - CVE-2019-16255

 -- <email address hidden> (Leonidas S. Barbosa) Mon, 25 Nov 2019 15:00:47 -0300

CVE-2019-15845 RESERVED
CVE-2019-16201 RESERVED
CVE-2019-16254 RESERVED
CVE-2019-16255 RESERVED

About   -   Send Feedback to @ubuntu_updates