Bug 458920

Summary: vulnerability of dl
Product: [Fedora] Fedora Reporter: acount closed by user <a1459440>
Component: rubyAssignee: Akira TAGOH <tagoh>
Status: CLOSED RAWHIDE QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: low Docs Contact:
Priority: medium    
Version: rawhide   
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
URL: http://www.ruby-lang.org/en/news/2008/08/11/ruby-1-8-7-p72-and-1-8-6-p287-released/
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2008-08-23 09:33:41 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description acount closed by user 2008-08-13 08:09:17 UTC 
Ruby 1.8.7-p72 and 1.8.6-p287 have been released. The last releases were incomplete, and the new releases include fixes of the previously announced vulnerability of dl: http://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby/#label-3



Please update it to 1.8.7, before Fedora 10.


-thanks-
Comment 1 Akira TAGOH 2008-08-23 09:33:41 UTC 
1.8.6.287-1.fc10 is available.
Comment 2 acount closed by user 2008-08-23 10:55:06 UTC 
(In reply to comment #1)
> 1.8.6.287-1.fc10 is available.

why not 1.8.7 ?
Comment 3 Akira TAGOH 2008-08-25 01:09:12 UTC 
because that needs a lot of work to push it. just the security fix is a priority.