File mruby.changes of Package mruby
-------------------------------------------------------------------
Wed Feb 15 18:26:15 UTC 2023 - Ferdinand Thiessen <rpm@fthiessen.de>
- Update to 3.1.0
* New features:
* CRuby3.0 compatible keyword arguments are introduced.
* Keyword arguments are basically separated from ordinal arguments.
* Implement endless-def
* Replace `R-assignment` by `single-line pattern matching`
* Support squiggly heredocs.
* Hash value omission
* New library methods
* New supported directives for `mrbgems/mruby-pack`
* Breaking Changes
* `Kernel#printf` (`mruby-sprintf`) Format specifiers `%a` and `%A` are removed.
* `Kernel#puts` (`mruby-print`) Now expand Array arguments.
* mruby binaries are no longer backward compatible.
* Upgrade mruby VM version `RITE_VM_VER` to `0300` (means mruby 3.0 or after).
* Upgrade mruby binary version `RITE_BINARY_FORMAT_VER` to `0300`.
* `mruby3.0` removed `OP_EXT1`, `OP_EXT2`, `OP_EXT3` for operand extension.
But the operand size limitations was too tight for real-world application.
`mruby3.1` reintroduces those extension instructions.
* Some instructions are removed and some new are added,
see full changelog https://github.com/mruby/mruby/blob/3.1.0/doc/mruby3.1.md
* Fixed CVEs:
CVE-2021-4110, CVE-2021-4188, CVE-2022-0080, CVE-2022-0240,
CVE-2022-0326, CVE-2022-0481, CVE-2022-0631, CVE-2022-0632,
CVE-2022-0890, CVE-2022-1071, CVE-2022-1106, CVE-2022-1201,
CVE-2022-1427
- Drop upstream fixed:
* CVE-2021-4110.patch
* CVE-2022-0240.patch
* CVE-2022-0080.patch
* CVE-2022-0481.patch
- Replaced b1d0296a.patch with CVE-2022-1286.patch
-------------------------------------------------------------------
Tue Apr 26 18:57:21 UTC 2022 - Ferdinand Thiessen <rpm@fthiessen.de>
- Add b1d0296a.patch: fixing CVE-2022-1286 / boo#1198289
- Add CVE-2022-1212.patch: fixing CVE-2022-1212 / boo#1198089
-------------------------------------------------------------------
Mon Feb 21 11:32:34 UTC 2022 - Ferdinand Thiessen <rpm@fthiessen.de>
- Install libmruby_core library, required by mruby binary
- Fix missing SONAME in library by adding link-with-soname.patch
-------------------------------------------------------------------
Wed Feb 9 15:51:52 UTC 2022 - Ferdinand Thiessen <rpm@fthiessen.de>
- Added CVE-2022-0481.patch from upstream
fixed NULL Pointer Dereference boo#1195632 / CVE-2022-0481
- Fixed file attributes (executable bit for shared library)
-------------------------------------------------------------------
Tue Jan 18 08:58:03 UTC 2022 - Ferdinand Thiessen <rpm@fthiessen.de>
- Added CVE-2022-0080.patch from upstream,
fixed Heap-based Buffer Overflow boo#1194244 / CVE-2022-0080
-------------------------------------------------------------------
Tue Jan 18 08:47:09 UTC 2022 - Ferdinand Thiessen <rpm@fthiessen.de>
- Added CVE-2022-0240.patch from upstream,
fixed NULL Pointer Dereference boo#1194808 / CVE-2022-0240
-------------------------------------------------------------------
Thu Dec 16 11:30:22 UTC 2021 - Ferdinand Thiessen <rpm@fthiessen.de>
- Added CVE-2021-4110.patch from upstream, fixes boo#1193796 / CVE-2021-4110
-------------------------------------------------------------------
Sat May 15 14:01:43 UTC 2021 - Ferdinand Thiessen <rpm@fthiessen.de>
- Update to version 3.0.0
* New Core Language Features
* Implement endless-def. Ruby:Feature#16746
* Replace R-assignment by single-line pattern matching.
Ruby:Feature#15921
* Support squiggly heredocs. Ruby:Feature#5246
* Breaking Changes
* mruby VM and bytecode:
mruby binaries are no longer backward compatible
Upgrade mruby VM version RITE_VM_VER to 0300 (means mruby 3.0).
Upgrade mruby binary version RITE_BINARY_FORMAT_VER to 0200.
* Integer has been changed to a specification similar to CRuby.
* Integrate Fixnum and Integer.
* Remove Integral.
* int / int -> int
* Add APIs for Integer.
* Full change log:
https://mruby.org/releases/2021/03/05/mruby-3.0.0-released.html
-------------------------------------------------------------------
Fri May 7 14:26:23 UTC 2021 - Ferdinand Thiessen <rpm@fthiessen.de>
- Update to version 2.1.2
* IO#readchar returns a UTF-8 character fragment instead of
EOFError if EOF is reached in the middle of UTF-8 characters.
* This behavior is different from CRuby, but it is a mruby
specification that supports either ASCII or UTF-8 exclusively.
* Remove mrb_run() from C APIs.
* Fixed segmentation fault at mrb_io_s_select
* Fixed segmentation fault at mrb_vm_exec.
* Fixed some Hash methods are inconsistent with values when hash
has duplicate key.
* Fixed get local variable names from orphan block.
* Fixed memory leaks in some places when out of memory.
* Fixed heap buffer overflow in mruby interpreter.
* Fixed type tag not used when calculating hash code.
* Full log:
https://mruby.org/releases/2020/08/06/mruby-2.1.2-released.html
-------------------------------------------------------------------
Mon Jun 15 22:45:07 UTC 2020 - Marcus Rueckert <mrueckert@suse.de>
- update to 2.1.1
too many changes to include here
https://mruby.org/releases/2020/06/04/mruby-2.1.1-released.html
https://mruby.org/releases/2019/11/19/mruby-2.1.0-released.html
https://mruby.org/releases/2019/04/04/mruby-2.0.1-released.html
https://mruby.org/releases/2018/12/11/mruby-2.0.0-released.html
https://mruby.org/releases/2018/04/27/mruby-1.4.1-released.html
https://mruby.org/releases/2017/07/04/mruby-1.3.0-released.html
https://mruby.org/releases/2015/11/18/mruby-1.2.0-released.html
https://mruby.org/releases/2014/11/19/mruby-1.1.0-released.html
https://mruby.org/releases/2014/02/09/mruby-1.0.0-released.html
-------------------------------------------------------------------
Tue Jul 03 06:20:43 CET 2012 - pascal.bleser@opensuse.org
- initial version (0.0+20120701)
