## mark a section (Learn more)

2007-11-01 22:00:00 Akira TAGOH <tagoh@redhat.com> - 1.8.5-5.el5_1.1: - security fix for CVE-2007-5162 and CVE-2007-5770 - ruby-1.8.5-CVE-2007-5162.patch: fix issues that is insufficient verification of SSL certificate. (#320331) - Fix the multilib regression issue. 2006-12-11 22:00:00 Akira TAGOH <tagoh@redhat.com> - 1.8.5-5: - security fix release. - ruby-1.8.5-cgi-CVE-2006-6303.patch: fix a infinite loop with certain HTTP request. (#218290) 2006-10-27 22:00:00 Akira TAGOH <tagoh@redhat.com> - 1.8.5-4: - security fix release. - ruby-1.8.5-cgi-CVE-2006-5467.patch: fix a CGI multipart parsing bug that causes the denial of service. (#212396) 2006-10-01 22:00:00 Jesse Keating <jkeating@redhat.com> - 1.8.5-3: - rebuilt for unwind info generation, broken in gcc-4.1.1-21 2006-09-26 22:00:00 Akira TAGOH <tagoh@redhat.com> - 1.8.5-2: - fixed rbconfig.rb to refer to DESTDIR for sitearchdir. (#207311) 2006-08-28 22:00:00 Akira TAGOH <tagoh@redhat.com> - 1.8.5-1: - New upstream release. - removed the unnecessary patches: - ruby-1.8.4-no-eaccess.patch - ruby-1.8.4-64bit-pack.patch - ruby-1.8.4-fix-insecure-dir-operation.patch - ruby-1.8.4-fix-insecure-regexp-modification.patch - ruby-1.8.4-fix-alias-safe-level.patch - build with --enable-pthread except on ppc. - ruby-1.8.5-hash-memory-leak.patch: backported from CVS to fix a memory leak on Hash. [ruby-talk:211233]

This paste will be private.