Bluewhite64 Linux: [Bluewhite64 Linux Security] ruby [BW64SA:20090502-01]

[Bluewhite64 Linux Security] ruby [BW64SA:20090502-01]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[Bluewhite64 Linux Security] ruby [BW64SA:20090502-01]

New ruby packages are available for Bluewhite64 Linux 11.0, 12.0, 12.1, 12.2,
and -current to fix a problem with REXML and other security issues.

For details about the REXML issue, see:

http://www.ruby-lang.org/en/news/2008/08/23/dos-vulnerability-in-rexml/

A full list may be found in the ChangeLog file included with the source code.

Here are the details from the Bluewhite64 12.2 ChangeLog:
- ----------------------------------------------------------
PATCHES/packages/ruby-1.8.7_p160-x86_64-1.tgz: Upgraded to ruby-1.8.7-p160.
This update fixes a DoS in REXML.
For details, see:
http://www.ruby-lang.org/en/news/2008/08/23/dos-vulnerability-in-rexml/
[*** Security fix ***]

Download the new packages from:
- --------------------------------
For Bluewhite64 Linux 11.0:
http://data.bluewhite64.com/bluewhite64-11.1/patches/packages/ruby-1.8.6_p368-x86_64-1.tgz

For Bluewhite64 Linux 12.0:
http://data.bluewhite64.com/bluewhite64-12.0/patches/packages/ruby-1.8.6_p368-x86_64-1.tgz

For Bluewhite64 Linux 12.1:
http://data.bluewhite64.com/bluewhite64-12.1/patches/packages/ruby-1.8.6_p368-x86_64-1.tgz

For Bluewhite64 Linux 12.2:
http://data.bluewhite64.com/bluewhite64-12.2/patches/packages/ruby-1.8.7_p160-x86_64-1.tgz

For Bluewhite64 Linux -current:
http://data.bluewhite64.com/bluewhite64-current/bluewhite64/d/ruby-1.8.7_p160-x86_64-1.tgz

Also, please see the "Get Bluewhite64" section on http://www.bluewhite64.com for
additional mirror sites near you.

MD5 signatures:
- ----------------
Bluewhite64 11.0 package:
df587cca037c31b808812c182a9b3b3f ruby-1.8.6_p368-x86_64-1.tgz

Bluewhite64 12.0 package:
f5f86e8c29ab522ce0d539c1c6bc23bc ruby-1.8.6_p368-x86_64-1.tgz

Bluewhite64 12.1 package:
741da78e788aaa6453819d0319a4fa0f ruby-1.8.6_p368-x86_64-1.tgz

Bluewhite64 12.2 package:
13d2d29787568da31fae0552f720648b ruby-1.8.7_p160-x86_64-1.tgz

Bluewhite64 -current package:
a7d3bb62db8e3b9e1941522c7ddfeef0 ruby-1.8.7_p160-x86_64-1.tgz

Installation instructions:
- ----------------------------
Upgrade the package as root:
# upgradepkg ruby-1.8.7_p160-x86_64-1.tgz

- ---
Bluewhite64 Linux Security Team
http://bluewhite64.com/gpg-key

security©bluewhite64.com

- ------------------------------------------------------
To leave the bluewhite64-security mailing list:
Send a blank email to

bluewhite64-security-unsubscribe©bluewhite64.com

You will get a confirmation message back containing
instructions to complete the process.

Please do not reply to this email address.
- ------------------------------------------------------

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkn8VrMACgkQpTOsxuDdlY6vrwCeNhebQJC44QLUWPW4SIWQ7vvy
IJUAnAs2jfzbun0qXBe2uRglAtfJ9+pX
=vWAD
-----END PGP SIGNATURE-----

Welcome

Be cool!

RSS Feeds

Latest Forum Posts

[Bluewhite64 Linux Security] ruby [BW64SA:20090502-01]