nokogiri 1.6.7.1-x86-mingw32 → 1.6.7.2-x86-mingw32
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Potentially problematic release.
This version of nokogiri might be problematic. Click here for more details.
- checksums.yaml +4 -4
- data/CHANGELOG.rdoc +13 -0
- data/lib/nokogiri/1.9/nokogiri.so +0 -0
- data/lib/nokogiri/2.0/nokogiri.so +0 -0
- data/lib/nokogiri/2.1/nokogiri.so +0 -0
- data/lib/nokogiri/2.2/nokogiri.so +0 -0
- data/lib/nokogiri/version.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA1:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 3bb8c38358dba1319ea9233ce13ced779f2efcf6
|
4
|
+
data.tar.gz: 6b0f564dd6daee675aa0a4ff802c539d639f6c5b
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 7f66897cd22b0cd5140d4ead9ac5844bf4a4ba2556b76cbdc1263e1f8432b1fba6b4b35830abe059331c6ea8319e5cb899b427a04f1eef83555d3e2c9e4f8c18
|
7
|
+
data.tar.gz: b023947d2ceda6a22e87fee8615e247fe99a25e3c8005a12edf742e59c54e3d029bdb4db650ba9472e91e81749f8b9cd61dc50c207807702500d13b8fe12e144
|
data/CHANGELOG.rdoc
CHANGED
@@ -1,3 +1,14 @@
|
|
1
|
+
=== 1.6.7.2 / 2015-01-20
|
2
|
+
|
3
|
+
This version pulls in several upstream patches to the vendored libxml2 and libxslt to address:
|
4
|
+
|
5
|
+
CVE-2015-7499
|
6
|
+
|
7
|
+
Ubuntu classifies this as "Priority: Low", RedHat classifies this as "Impact: Moderate", and NIST classifies this as "Severity: 5.0 (MEDIUM)".
|
8
|
+
|
9
|
+
MITRE record is https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7499
|
10
|
+
|
11
|
+
|
1
12
|
=== 1.6.7.1 / 2015-12-16
|
2
13
|
|
3
14
|
This version pulls in several upstream patches to the vendored libxml2 and libxslt to address:
|
@@ -11,6 +22,8 @@ This version pulls in several upstream patches to the vendored libxml2 and libxs
|
|
11
22
|
CVE-2015-8242
|
12
23
|
CVE-2015-8317
|
13
24
|
|
25
|
+
These CVEs are all low or medium priority according to Canonical, however NIST NVD gives CVE-2015-5312 a high severity score.
|
26
|
+
|
14
27
|
See also http://www.ubuntu.com/usn/usn-2834-1/
|
15
28
|
|
16
29
|
|
Binary file
|
Binary file
|
Binary file
|
Binary file
|
data/lib/nokogiri/version.rb
CHANGED
metadata
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: nokogiri
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.6.7.
|
4
|
+
version: 1.6.7.2
|
5
5
|
platform: x86-mingw32
|
6
6
|
authors:
|
7
7
|
- Aaron Patterson
|
@@ -12,7 +12,7 @@ authors:
|
|
12
12
|
autorequire:
|
13
13
|
bindir: bin
|
14
14
|
cert_chain: []
|
15
|
-
date:
|
15
|
+
date: 2016-01-20 00:00:00.000000000 Z
|
16
16
|
dependencies:
|
17
17
|
- !ruby/object:Gem::Dependency
|
18
18
|
name: mini_portile2
|