[Bluewhite64 Linux Security] ruby [BW64SA:20090502-01] |
Hash: SHA1 [Bluewhite64 Linux Security] ruby [BW64SA:20090502-01] New ruby packages are available for Bluewhite64 Linux 11.0, 12.0, 12.1, 12.2, and -current to fix a problem with REXML and other security issues. For details about the REXML issue, see: http://www.ruby-lang.org/en/news/2008/08/23/dos-vulnerability-in-rexml/ A full list may be found in the ChangeLog file included with the source code. Here are the details from the Bluewhite64 12.2 ChangeLog: - ---------------------------------------------------------- PATCHES/packages/ruby-1.8.7_p160-x86_64-1.tgz: Upgraded to ruby-1.8.7-p160. This update fixes a DoS in REXML. For details, see: http://www.ruby-lang.org/en/news/2008/08/23/dos-vulnerability-in-rexml/ [*** Security fix ***] Download the new packages from: - -------------------------------- For Bluewhite64 Linux 11.0: http://data.bluewhite64.com/bluewhite64-11.1/patches/packages/ruby-1.8.6_p368-x86_64-1.tgz For Bluewhite64 Linux 12.0: http://data.bluewhite64.com/bluewhite64-12.0/patches/packages/ruby-1.8.6_p368-x86_64-1.tgz For Bluewhite64 Linux 12.1: http://data.bluewhite64.com/bluewhite64-12.1/patches/packages/ruby-1.8.6_p368-x86_64-1.tgz For Bluewhite64 Linux 12.2: http://data.bluewhite64.com/bluewhite64-12.2/patches/packages/ruby-1.8.7_p160-x86_64-1.tgz For Bluewhite64 Linux -current: http://data.bluewhite64.com/bluewhite64-current/bluewhite64/d/ruby-1.8.7_p160-x86_64-1.tgz Also, please see the "Get Bluewhite64" section on http://www.bluewhite64.com for additional mirror sites near you. MD5 signatures: - ---------------- Bluewhite64 11.0 package: df587cca037c31b808812c182a9b3b3f ruby-1.8.6_p368-x86_64-1.tgz Bluewhite64 12.0 package: f5f86e8c29ab522ce0d539c1c6bc23bc ruby-1.8.6_p368-x86_64-1.tgz Bluewhite64 12.1 package: 741da78e788aaa6453819d0319a4fa0f ruby-1.8.6_p368-x86_64-1.tgz Bluewhite64 12.2 package: 13d2d29787568da31fae0552f720648b ruby-1.8.7_p160-x86_64-1.tgz Bluewhite64 -current package: a7d3bb62db8e3b9e1941522c7ddfeef0 ruby-1.8.7_p160-x86_64-1.tgz Installation instructions: - ---------------------------- Upgrade the package as root: # upgradepkg ruby-1.8.7_p160-x86_64-1.tgz - --- Bluewhite64 Linux Security Team http://bluewhite64.com/gpg-key security©bluewhite64.com - ------------------------------------------------------ To leave the bluewhite64-security mailing list: Send a blank email to bluewhite64-security-unsubscribe©bluewhite64.com You will get a confirmation message back containing instructions to complete the process. Please do not reply to this email address. - ------------------------------------------------------ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iEYEARECAAYFAkn8VrMACgkQpTOsxuDdlY6vrwCeNhebQJC44QLUWPW4SIWQ7vvy IJUAnAs2jfzbun0qXBe2uRglAtfJ9+pX =vWAD -----END PGP SIGNATURE----- |
Latest News
16 November 2009Bluewhite Linux 13.0 LiveDVD is released!
This new version brings the possibility to boot the DVD in KDE (4.3.2), Xfce (4.6.1) or to the command line interface from the beginning. The LiveDVD is powered by the Linux Kernel 2.6.31.5 with advanced features and optimized for performance. Read more...
9 September 2009
Bluewhite Linux 13.0 is released!
This new version of Bluewhite brings many new and interesting features, improvements and packages updates. I like to share with you just a few and the important ones, but if you are interested to see all of them you have to download and install Bluewhite 13.0 Read more...
3 August 2009
Bluewhite Linux 13.0-RC2 is out!
will not say here to much about this Release candidate release, I reserve my words for the final one. Just a few notes about what we are "cooking" here. Read more...