LogoopenSUSE Build Service > Request 204314
Sign Up | Log In

Request 204314 (accepted)

No description set

Submit package home:jordimassag...:languages:ruby / ruby20 to package devel:languages:ruby / ruby20

[-] [+] Changed ruby20.changes
[-] [+] Changed ruby20.spec ^
[-] [+] Added CVE-2013-4287-4363.patch ^

Mentioned Issues (3)

CVE-2013-4287
Algorithmic complexity vulnerability in Gem::Version::VERSION_PATTERN in lib/rubygems/version.rb in RubyGems before 1.8.23.1, 1.8.24 through 1.8.25, 2.0.x before 2.0.8, and 2.1.x before 2.1.0, as used in Ruby 1.9.0 through 2.0.0p247, allows remote attacke
CVE-2013-4363
Algorithmic complexity vulnerability in Gem::Version::ANCHORED_VERSION_PATTERN in lib/rubygems/version.rb in RubyGems before 1.8.23.2, 1.8.24 through 1.8.26, 2.0.x before 2.0.10, and 2.1.x before 2.1.5, as used in Ruby 1.9.0 through 2.0.0p247, allows remo
boo#837457 Virtual SUSE Security Team _security_team Closed
VUL-0: CVE-2013-4287 CVE-2013-4363: ruby19: Algorithmic complexity vulnerability

There's nothing to be done right now

Request History

Jordi Massaguer jordimassaguerpla created request almost 3 years ago
Stephan Kulow coolo Request got accepted over 2 years ago

Comments for request 204314 (2)

Jordi Massaguer jordimassaguerpla wrote almost 3 years ago

is ruby20 broken?

Hi! When trying to install this package, I get a strange error:

"Reading installed packages... 'tmpRPMcache:ruby20=0:2.0.0.p247-15.8' not found in package names. Trying capabilities. No provider of 'ruby20 = 0:2.0.0.p247-15.8' found

Jordi Massaguer jordimassaguerpla wrote almost 3 years ago

false alarm

sorry. False alarm. I updated the test machine with the latest opensuse from factory and it got installed without any trouble.