sqlite3 1.5.0-x86_64-linux → 1.5.1-x86_64-linux

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: cce846bae39ce9cd60d5c0dd54f002e14810e6374cda885d694fe4a41553f80e
4
- data.tar.gz: 491e8c1c5d0a0994e32bb4f274524ef881eb76d12bac62f0bf4140021108d768
3
+ metadata.gz: 121bf1126615c2477479af175b187030f36228acf862684c236261840618b2ee
4
+ data.tar.gz: 47bd7191472611ed56dc6de9c498c486d177bbdea0d31bb53cf69d05a2e3e191
5
5
  SHA512:
6
- metadata.gz: 9e9dabd905051b93a446cc1377f7bcd84bd167cdbdbc57c7b1808891abebf4446eeacb55ddcd863eab626941971b669a3b0de467142a61af5166c269d4074ba6
7
- data.tar.gz: a671b6cbc211bde4433e1a6c0787dfc716dcc1f4ed68aabb8e4bdd063d3c9b67d6c53b641f8a4b8fc9bb98d6b80ab79738740fd241289992e1c74ddaaf2a97d8
6
+ metadata.gz: 3e7196723d1519a08dfa4aa8682c7e778ff65cbec0af6b970787950d09be35e888542352abaa6ae39b21b1705727ff0ca67ece9adb42fa4d188becc9916d5953
7
+ data.tar.gz: 7a625721ed72c3bbe2cb5c05f14c108315165da542368fdc831780d14fbb2dfab932b032c2b4fe47407f5def1831957c067413bcce8464c48f7e73d6846d1c02
data/CHANGELOG.md CHANGED
@@ -1,5 +1,26 @@
1
1
  # sqlite3-ruby Changelog
2
2
 
3
+ ## 1.5.1 / 2022-09-29
4
+
5
+ ### Dependencies
6
+
7
+ * Vendored sqlite is updated to [v3.39.4](https://sqlite.org/releaselog/3_39_4.html).
8
+
9
+ ### Security
10
+
11
+ The vendored version of sqlite, v3.39.4, should be considered to be a security release. From the release notes:
12
+
13
+ > Version 3.39.4 is a minimal patch against the prior release that addresses issues found since the
14
+ > prior release. In particular, a potential vulnerability in the FTS3 extension has been fixed, so
15
+ > this should be considered a security update.
16
+ >
17
+ > In order to exploit the vulnerability, an attacker must have full SQL access and must be able to
18
+ > construct a corrupt database with over 2GB of FTS3 content. The problem arises from a 32-bit
19
+ > signed integer overflow.
20
+
21
+ For more information please see [GHSA-mgvv-5mxp-xq67](https://github.com/sparklemotion/sqlite3-ruby/security/advisories/GHSA-mgvv-5mxp-xq67).
22
+
23
+
3
24
  ## 1.5.0 / 2022-09-08
4
25
 
5
26
  ### Packaging
data/README.md CHANGED
@@ -107,7 +107,8 @@ If you're on a platform that supports a native gem but you want to avoid using i
107
107
 
108
108
  - If you're not using Bundler, then run `gem install sqlite3 --platform=ruby`
109
109
  - If you are using Bundler
110
- - version 2.1 or later, then you'll need to run `bundle config set force_ruby_platform true`,
110
+ - version 2.3.18 or later, you can specify [`gem "sqlite3", force_ruby_platform: true`](https://bundler.io/v2.3/man/gemfile.5.html#FORCE_RUBY_PLATFORM)
111
+ - version 2.1 or later, then you'll need to run `bundle config set force_ruby_platform true`
111
112
  - version 2.0 or earlier, then you'll need to run `bundle config force_ruby_platform true`
112
113
 
113
114
 
@@ -143,6 +144,7 @@ If you would prefer to build the sqlite3-ruby gem against your system libsqlite3
143
144
 
144
145
  PLEASE NOTE:
145
146
 
147
+ - you must avoid installing a precompiled native gem (see [previous section](#avoiding-the-precompiled-native-gem))
146
148
  - only versions of libsqlite3 `>= 3.5.0` are supported,
147
149
  - and some library features may depend on how your libsqlite3 was compiled.
148
150
 
@@ -135,16 +135,16 @@ module Sqlite3
135
135
  sqlite3: {
136
136
  # checksum verified by first checking the published sha3(256) checksum against https://sqlite.org/download.html:
137
137
  #
138
- # $ sha3sum -a 256 ports/archives/sqlite-autoconf-3390300.tar.gz
139
- # dfa055c70724cd63f0b7da6e9f53530d8da51fe021e3f864d58c7c847d590e1d ports/archives/sqlite-autoconf-3390300.tar.gz
138
+ # $ sha3sum -a 256 ports/archives/sqlite-autoconf-3390400.tar.gz
139
+ # 431328e30d12c551da9ba7ef2122b269076058512014afa799caaf62ca567090 ports/archives/sqlite-autoconf-3390400.tar.gz
140
140
  #
141
- # $ sha256sum ports/archives/sqlite-autoconf-3390300.tar.gz
142
- # 7868fb3082be3f2cf4491c6fba6de2bddcbc293a35fefb0624ee3c13f01422b9 ports/archives/sqlite-autoconf-3390300.tar.gz
141
+ # $ sha256sum ports/archives/sqlite-autoconf-3390400.tar.gz
142
+ # f31d445b48e67e284cf206717cc170ab63cbe4fd7f79a82793b772285e78fdbb ports/archives/sqlite-autoconf-3390400.tar.gz
143
143
  #
144
- version: "3.39.3",
144
+ version: "3.39.4",
145
145
  files: [{
146
- url: "https://www.sqlite.org/2022/sqlite-autoconf-3390300.tar.gz",
147
- sha256: "7868fb3082be3f2cf4491c6fba6de2bddcbc293a35fefb0624ee3c13f01422b9",
146
+ url: "https://sqlite.org/2022/sqlite-autoconf-3390400.tar.gz",
147
+ sha256: "f31d445b48e67e284cf206717cc170ab63cbe4fd7f79a82793b772285e78fdbb",
148
148
  }],
149
149
  }
150
150
  }
Binary file
Binary file
Binary file
Binary file
@@ -1,11 +1,11 @@
1
1
  module SQLite3
2
2
 
3
- VERSION = "1.5.0"
3
+ VERSION = "1.5.1"
4
4
 
5
5
  module VersionProxy
6
6
  MAJOR = 1
7
7
  MINOR = 5
8
- TINY = 0
8
+ TINY = 1
9
9
  BUILD = nil
10
10
 
11
11
  STRING = [ MAJOR, MINOR, TINY, BUILD ].compact.join( "." )
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: sqlite3
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.5.0
4
+ version: 1.5.1
5
5
  platform: x86_64-linux
6
6
  authors:
7
7
  - Jamis Buck
@@ -10,7 +10,7 @@ authors:
10
10
  autorequire:
11
11
  bindir: bin
12
12
  cert_chain: []
13
- date: 2022-09-08 00:00:00.000000000 Z
13
+ date: 2022-09-29 00:00:00.000000000 Z
14
14
  dependencies:
15
15
  - !ruby/object:Gem::Dependency
16
16
  name: minitest