Browse code
ruby cve-2017-9228
Change-Id: I7ac6b898ac7d6522b71db196090f075f4168a150
Reviewed-on: http://photon-jenkins.eng.vmware.com:8082/3453
Reviewed-by: Sharath George
Tested-by: Sharath George
Priyesh Padmavilasom authored on 2017/08/09 06:54:07Showing 2 changed files
| 1 | 1 |
new file mode 100644 |
| ... | ... |
@@ -0,0 +1,15 @@ |
| 0 |
+diff --git a/regparse.c b/regparse.c.1 |
|
| 1 |
+index 1e0dfd9..d99cbcd 100644 |
|
| 2 |
+--- a/regparse.c |
|
| 3 |
+@@ -4433,7 +4433,9 @@ next_state_class(CClassNode* cc, CClassNode* asc_cc, |
|
| 4 |
+ } |
|
| 5 |
+ } |
|
| 6 |
+ |
|
| 7 |
+- *state = CCS_VALUE; |
|
| 8 |
++ if (*state != CCS_START) |
|
| 9 |
++ *state = CCS_VALUE; |
|
| 10 |
++ |
|
| 11 |
+ *type = CCV_CLASS; |
|
| 12 |
+ return 0; |
|
| 13 |
+ } |
| ... | ... |
@@ -1,7 +1,7 @@ |
| 1 | 1 |
Summary: Ruby |
| 2 | 2 |
Name: ruby |
| 3 | 3 |
Version: 2.4.0 |
| 4 |
-Release: 4%{?dist}
|
|
| 4 |
+Release: 5%{?dist}
|
|
| 5 | 5 |
License: BSDL |
| 6 | 6 |
URL: https://www.ruby-lang.org/en/ |
| 7 | 7 |
Group: System Environment/Security |
| ... | ... |
@@ -14,6 +14,7 @@ Patch1: ruby-CVE-2017-9226.patch |
| 14 | 14 |
Patch2: ruby-CVE-2017-9227.patch |
| 15 | 15 |
Patch3: ruby-CVE-2017-9229.patch |
| 16 | 16 |
Patch4: ruby-CVE-2017-6181.patch |
| 17 |
+Patch5: ruby-CVE-2017-9228.patch |
|
| 17 | 18 |
BuildRequires: openssl-devel |
| 18 | 19 |
BuildRequires: ca-certificates |
| 19 | 20 |
BuildRequires: readline-devel |
| ... | ... |
@@ -32,6 +33,7 @@ This is useful for object-oriented scripting. |
| 32 | 32 |
%patch2 -p1 |
| 33 | 33 |
%patch3 -p1 |
| 34 | 34 |
%patch4 -p1 |
| 35 |
+%patch5 -p1 |
|
| 35 | 36 |
%build |
| 36 | 37 |
./configure \ |
| 37 | 38 |
--prefix=%{_prefix} \
|
| ... | ... |
@@ -59,6 +61,8 @@ rm -rf %{buildroot}/*
|
| 59 | 59 |
%{_docdir}/%{name}-%{version}
|
| 60 | 60 |
%{_mandir}/man1/*
|
| 61 | 61 |
%changelog |
| 62 |
+* Tue Aug 08 2017 Priyesh Padmavilasom <ppadmavilasom@vmware.com> 2.4.0-5 |
|
| 63 |
+- [security] CVE-2017-9228 |
|
| 62 | 64 |
* Fri Jul 07 2017 Harish Udaiya Kumar <hudaiyakumar@vmware.com> 2.4.0-4 |
| 63 | 65 |
- [security] ruby-CVE-2017-6181.patch |
| 64 | 66 |
* Tue Jun 13 2017 Priyesh Padmavilasom <ppadmavilasom@vmware.com> 2.4.0-3 |