jruby-openssl 0.15.3-java → 0.15.4-java

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (7) hide show
  1. checksums.yaml +4 -4
  2. data/History.md +4 -0
  3. data/lib/jopenssl/version.rb +1 -1
  4. data/lib/jopenssl.jar +0 -0
  5. data/lib/openssl/ssl.rb +1 -1
  6. data/pom.xml +1 -1
  7. metadata +2 -2
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA1:
3
- metadata.gz: 83683d0f13caa56a8a1532295c4f495ffde97fca
4
- data.tar.gz: 400e019d7951698ae3fb81feedc17a1115a1b63e
3
+ metadata.gz: e8bb3c7e2f2f97edfd979f79912f344dc7a28fea
4
+ data.tar.gz: 20b63ae82b2287f2c589fae82a40136087520e62
5
5
  SHA512:
6
- metadata.gz: 996b96239e82bff3bfe4e0137e8127a992c2f35ff984eb0df75a1b44741c3a56ead2d6cca1b02c4acf07d989526596c64cb11887de90b5c6769830352b3ba276
7
- data.tar.gz: 34016a352e977c0c5654d77c0afbf0425ebbd5011cff2a5624374f8301c4fcc94db2690f6c31525e612a9d5dca466e448c2a56c05c7f9da07f36028a68357f12
6
+ metadata.gz: 77810561ee1d964842f7be3e7568c8891288bef32b958677528464ce9b3e38e51c27d3739c23b0693b999ac0b9343be562db792889a990eb0a1aca6209b576a0
7
+ data.tar.gz: 0b55e12fe6a730e4c1be62d7671074614bfc2713d6bf9bc296b576db2f4464f9368392d9c89281c8ea7b4e403a33dd517e21014ef05d04d1356b34dfe011628e
data/History.md CHANGED
@@ -1,3 +1,7 @@
1
+ ## 0.15.4
2
+
3
+ * [fix] Verify hostname by default (CVE-2025-46551)
4
+
1
5
  ## 0.15.3
2
6
 
3
7
  * [fix] keep curve name when group is set into another key
data/lib/jopenssl/version.rb CHANGED
@@ -1,5 +1,5 @@
1
1
  module JOpenSSL
2
- VERSION = '0.15.3'
2
+ VERSION = '0.15.4'
3
3
  BOUNCY_CASTLE_VERSION = '1.79'
4
4
  end
5
5
 
data/lib/jopenssl.jar CHANGED
Binary file
data/lib/openssl/ssl.rb CHANGED
@@ -20,7 +20,7 @@ module OpenSSL
20
20
  DEFAULT_PARAMS = { # :nodoc:
21
21
  :min_version => OpenSSL::SSL::TLS1_VERSION,
22
22
  :verify_mode => OpenSSL::SSL::VERIFY_PEER,
23
- :verify_hostname => nil, # TODO => true needs JRuby support to call verify_certificate_identity
23
+ :verify_hostname => true,
24
24
  :options => OpenSSL::SSL::OP_ALL | OpenSSL::SSL::OP_NO_COMPRESSION
25
25
  }
26
26
 
data/pom.xml CHANGED
@@ -11,7 +11,7 @@ DO NOT MODIFY - GENERATED CODE
11
11
  <modelVersion>4.0.0</modelVersion>
12
12
  <groupId>rubygems</groupId>
13
13
  <artifactId>jruby-openssl</artifactId>
14
- <version>0.15.3</version>
14
+ <version>0.15.4</version>
15
15
  <packaging>gem</packaging>
16
16
  <name>JRuby OpenSSL</name>
17
17
  <description>JRuby-OpenSSL is an add-on gem for JRuby that emulates the Ruby OpenSSL native library.</description>
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: jruby-openssl
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.15.3
4
+ version: 0.15.4
5
5
  platform: java
6
6
  authors:
7
7
  - Karol Bucek
@@ -10,7 +10,7 @@ authors:
10
10
  autorequire:
11
11
  bindir: bin
12
12
  cert_chain: []
13
- date: 2025-01-19 00:00:00.000000000 Z
13
+ date: 2025-05-07 00:00:00.000000000 Z
14
14
  dependencies: []
15
15
  description: JRuby-OpenSSL is an add-on gem for JRuby that emulates the Ruby OpenSSL
16
16
  native library.