nokogiri 1.6.7.1-x86-mingw32 → 1.6.7.2-x86-mingw32

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.


This version of nokogiri might be problematic. Click here for more details.

checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA1:
3
- metadata.gz: a2cc691acff47a22f8a4bf91ad10bf14832f5571
4
- data.tar.gz: 2edc75d4128d2dd472dbf7d33991bf5f3bf34b8b
3
+ metadata.gz: 3bb8c38358dba1319ea9233ce13ced779f2efcf6
4
+ data.tar.gz: 6b0f564dd6daee675aa0a4ff802c539d639f6c5b
5
5
  SHA512:
6
- metadata.gz: cd886240f91d8b4d5026981c9e9e3989f46d8135718d96f61c66edc7936c9726c53837adf8fc9323d89fd93dc8037550188a70200ff18e9aa98e6e824adb0dd1
7
- data.tar.gz: 7068f357b09e39ceb10a00d2750b8398423cb5030cff39ff05ac0e011a15b7739d207cb894d038ff0876a4bcdf8a21c120bc4557b339d005a12ebffee2507cf1
6
+ metadata.gz: 7f66897cd22b0cd5140d4ead9ac5844bf4a4ba2556b76cbdc1263e1f8432b1fba6b4b35830abe059331c6ea8319e5cb899b427a04f1eef83555d3e2c9e4f8c18
7
+ data.tar.gz: b023947d2ceda6a22e87fee8615e247fe99a25e3c8005a12edf742e59c54e3d029bdb4db650ba9472e91e81749f8b9cd61dc50c207807702500d13b8fe12e144
@@ -1,3 +1,14 @@
1
+ === 1.6.7.2 / 2015-01-20
2
+
3
+ This version pulls in several upstream patches to the vendored libxml2 and libxslt to address:
4
+
5
+ CVE-2015-7499
6
+
7
+ Ubuntu classifies this as "Priority: Low", RedHat classifies this as "Impact: Moderate", and NIST classifies this as "Severity: 5.0 (MEDIUM)".
8
+
9
+ MITRE record is https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7499
10
+
11
+
1
12
  === 1.6.7.1 / 2015-12-16
2
13
 
3
14
  This version pulls in several upstream patches to the vendored libxml2 and libxslt to address:
@@ -11,6 +22,8 @@ This version pulls in several upstream patches to the vendored libxml2 and libxs
11
22
  CVE-2015-8242
12
23
  CVE-2015-8317
13
24
 
25
+ These CVEs are all low or medium priority according to Canonical, however NIST NVD gives CVE-2015-5312 a high severity score.
26
+
14
27
  See also http://www.ubuntu.com/usn/usn-2834-1/
15
28
 
16
29
 
Binary file
Binary file
Binary file
Binary file
@@ -1,6 +1,6 @@
1
1
  module Nokogiri
2
2
  # The version of Nokogiri you are using
3
- VERSION = '1.6.7.1'
3
+ VERSION = '1.6.7.2'
4
4
 
5
5
  class VersionInfo # :nodoc:
6
6
  def jruby?
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: nokogiri
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.6.7.1
4
+ version: 1.6.7.2
5
5
  platform: x86-mingw32
6
6
  authors:
7
7
  - Aaron Patterson
@@ -12,7 +12,7 @@ authors:
12
12
  autorequire:
13
13
  bindir: bin
14
14
  cert_chain: []
15
- date: 2015-12-17 00:00:00.000000000 Z
15
+ date: 2016-01-20 00:00:00.000000000 Z
16
16
  dependencies:
17
17
  - !ruby/object:Gem::Dependency
18
18
  name: mini_portile2