Ruby 1.9.3-p484 is released
Now Ruby 1.9.3-p484 is released.
This release includes a security fix about ruby interpreter core:
Heap Overflow in Floating Point Parsing (CVE-2013-4164)
And some bugfixes are also included. See tickets and ChangeLog for details.
That place was changed prior to my update of ruby193-base pacakge and
I'm not sure it was correct or not.
And suffix of libruby shared library has something historical part of
pkgsrc. I don't care so much to changing the name, but also don't
think it is so important thing to bump revisions.
Noted by pkg/47831 from David Shao.
Security problem of CVE-2013-0269 was already handled but REXML security
problem is fixed by this package.
Now Ruby 1.9.3-p392 is released. I apologize for updating too frequently.
This release includes security fixes about bundled JSON and REXML.
* Denial of Service and Unsafe Object Creation Vulnerability in JSON
(CVE-2013-0269)
* Entity expansion DoS vulnerability in REXML (XML bomb)
And some small bugfixes are also included.
These releasess don't include any security fixes.
Ruby 1.9.3-p362:
This release includes other many bug fixes.
Resolved build problems on Solaris.
Windows 8 support (hopefully).
other many bug fixes.
Ruby 1.9.3-p374:
This release includes many bug fixes. Especially,
Fixed randomly SEGV problem (often reported with Rails)
Windows 8 support (maybe, hopefully)
other many bug fixes.
See tickets and ChangeLog for details.
This adds shlib version handling to rubyversion.mk, a fix to configure
(include <sys/time.h> when checking for struct timespec) and a workaround
for broken code if getgrnam_r is available.
This patch should be verified on none-BSD platform.
* Distribution file of Ruby 1.9.3 patchlevel 125 was update with the
same file name.
Packages are repacked to fix [Bug #6040].
See http://www.ruby-lang.org/en/news/2012/02/16/ruby-1-9-3-p125-is-released/
These files are changed:
enc/trans/big5.c
insns_info.inc
Please refer detail for:
http://svn.ruby-lang.org/repos/ruby/tags/v1_9_3_0/NEWShttp://svn.ruby-lang.org/repos/ruby/tags/v1_9_3_0/ChangeLog
Short summary from NEWS:
* Ruby's License is changed from a dual license with GPLv2
to a dual license with 2-clause BSDL.
* Encoding
* new encodings: CP950, CP951, UTF-16 and UTF-32
* change alias:
* SJIS is Windows-31J
* Regexps now support Unicode 6.0. (new characters and scripts)
* builtin classes
* ARGF
* new methods: ARGF.read_nonblock and so on.
* Array
* extended method: Array#pack supports endian modifiers
* String
* extended method: String#unpack supports endian modifiers
* new method: String#prepend and String#byteslice
* Bignum
* Multiplication algorithm for Bignums with a large number of digits over
150 BDIGITs is changed in order to reduce its calculation time.
Now such large Bignums are multiplied by using Toom-3 algorithm.
* File
* new constant: File::NULL and File::DIRECT
* IO
* extended method: IO#putc supports multibyte characters
* new methods: * IO#advise, IO.write and IO.binwrite
* Kernel
* move #__id__ to BasicObject
* extended method: Kernel#rand supports range argument
* Module
* new methods: Module#private_constant and Module#public_constant
* Random
* extended method: Random.rand supports range argument
* Time
* extended method: Time#strftime supports %:z and %::z
* Process
* Process#maxgroups and Process#maxgroups= now raise NotImplementedError if
the platform don't support supplementary groups concept
