pool/ruby3.2
SHA256
2
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
factory
ruby3.2/ruby3.2.changes
Manuel Schnitzer 613fca7eab Accepting request 1134479 from home:ohollmann:branches:security:tls 
- Omit test_session_reuse_but_expire if OpenSSL 3.2.0
  Add Omit-test_session_reuse_but_expire-if-OpenSSL-3.2.0.patch

OBS-URL: https://build.opensuse.org/request/show/1134479
OBS-URL: https://build.opensuse.org/package/show/devel:languages:ruby/ruby3.2?expand=0&rev=26
2024-01-25 14:35:25 +00:00

381 lines
15 KiB
Plaintext
Raw Permalink Blame History

-------------------------------------------------------------------
Thu Dec 21 12:56:03 UTC 2023 - Otto Hollmann <otto.hollmann@suse.com>
- Omit test_session_reuse_but_expire if OpenSSL 3.2.0
Add Omit-test_session_reuse_but_expire-if-OpenSSL-3.2.0.patch
-------------------------------------------------------------------
Tue Nov 7 10:01:55 UTC 2023 - Dominique Leuenberger <dimstar@opensuse.org>
- Fix build with RPM 4.19: unnumbered patches are no longer
supported.
-------------------------------------------------------------------
Sat Nov 4 00:42:57 UTC 2023 - Marcus Rueckert <mrueckert@suse.de>
- add Provides that we can differentiate between between jemalloc
enabled and non enabled ruby
-------------------------------------------------------------------
Thu Mar 30 14:23:04 UTC 2023 - Marcus Rueckert <mrueckert@suse.de>
- update to 3.2.2 (boo#1209891 CVE-2023-28755 boo#1209967 CVE-2023-28756)
https://www.ruby-lang.org/en/news/2023/03/30/redos-in-time-cve-2023-28756/
https://www.ruby-lang.org/en/news/2023/03/28/redos-in-uri-cve-2023-28755/
https://www.ruby-lang.org/en/news/2023/03/30/ruby-3-2-2-released/
- drop ruby-3.1.3-remove-timezone-test.patch
solved differently upstream
-------------------------------------------------------------------
Wed Feb 8 13:05:41 UTC 2023 - Marcus Rueckert <mrueckert@suse.de>
- Update to 3.2.1
https://www.ruby-lang.org/en/news/2023/02/08/ruby-3-2-1-released/
-------------------------------------------------------------------
Mon Jan 9 16:27:29 UTC 2023 - Marcus Rueckert <mrueckert@suse.de>
- Fix Source url (3.1 vs 3.2)
-------------------------------------------------------------------
Tue Dec 27 13:39:48 UTC 2022 - Marcus Rueckert <mrueckert@suse.de>
- Set the correct ABI version
-------------------------------------------------------------------
Sun Dec 25 09:19:30 UTC 2022 - Marcus Rueckert <mrueckert@suse.de>
- Update to 3.2.0
https://www.ruby-lang.org/en/news/2022/12/25/ruby-3-2-0-released/
- Drop ruby-3.1.3-remove-timezone-test.patch:
Fix included in update
- Refreshed use-pie.patch
-------------------------------------------------------------------
Thu Dec 22 10:20:24 UTC 2022 - Marcus Rueckert <mrueckert@suse.de>
- Added ruby-3.1.3-remove-timezone-test.patch:
Disable tests that rely on singapore's old TZ data
-------------------------------------------------------------------
Tue Dec 6 13:19:33 UTC 2022 - Marcus Rueckert <mrueckert@suse.de>
- disable yjit
-------------------------------------------------------------------
Tue Dec 6 12:44:02 UTC 2022 - Marcus Rueckert <mrueckert@suse.de>
- disable readline/reline tests as they require system ruby
-------------------------------------------------------------------
Tue Dec 6 12:43:30 UTC 2022 - Marcus Rueckert <mrueckert@suse.de>
- rust edition 2021 is supported since 1.56.0. Change buildrequires
accordingly
-------------------------------------------------------------------
Tue Dec 6 10:48:43 UTC 2022 - Marcus Rueckert <mrueckert@suse.de>
- Update to 3.2.0~rc1
https://www.ruby-lang.org/en/news/2022/12/06/ruby-3-2-0-rc1-released/
-------------------------------------------------------------------
Mon Dec 5 09:12:11 UTC 2022 - Andreas Schwab <schwab@suse.de>
- Update rb_arch_short macro
-------------------------------------------------------------------
Fri Dec 2 13:48:19 UTC 2022 - Marcus Rueckert <mrueckert@suse.de>
- Use the correct ABI version in the macros
-------------------------------------------------------------------
Thu Nov 24 16:05:11 UTC 2022 - Marcus Rueckert <mrueckert@suse.de>
- remove the bundled gems workaround
-------------------------------------------------------------------
Thu Nov 17 12:02:15 UTC 2022 - Marcus Rueckert <mrueckert@suse.de>
- bump ruby-common dependency to the version with the ruby 3.2
fixes
-------------------------------------------------------------------
Thu Nov 17 10:27:43 UTC 2022 - Marcus Rueckert <mrueckert@suse.de>
- bump version in the macro files to 3.2
-------------------------------------------------------------------
Fri Nov 11 18:34:56 UTC 2022 - Marcus Rueckert <mrueckert@suse.de>
- limit yjit to x86_64 and aarch64 as those are the only to
platforms it supports
-------------------------------------------------------------------
Fri Nov 11 17:13:14 UTC 2022 - Marcus Rueckert <mrueckert@suse.de>
- enable yjit so we can test it before the final release and see if
we want to leave it on in the package.
-------------------------------------------------------------------
Fri Nov 11 15:57:31 UTC 2022 - Marcus Rueckert <mrueckert@suse.de>
- Branch off ruby 3.2 package with preview 3
-------------------------------------------------------------------
Tue May 3 23:49:37 UTC 2022 - Marcus Rueckert <mrueckert@suse.de>
- turn off jemalloc again until we figure out how to do the dlopen
on libruby properly like vim and yast do
-------------------------------------------------------------------
Fri Apr 29 13:25:14 UTC 2022 - Martin Liška <mliska@suse.cz>
- Do not depend on binutils-gold as it will be removed
in the future as it's obsoleted. Use lld instead of it
for clang build.
-------------------------------------------------------------------
Wed Apr 13 13:41:18 UTC 2022 - Marcus Rueckert <mrueckert@suse.de>
- use rb_soname instead of hard coding the ruby package name
-------------------------------------------------------------------
Wed Apr 13 10:09:28 UTC 2022 - Marcus Rueckert <mrueckert@suse.de>
- add buildignore for ruby and ruby-common so we do not pull
gem2rpm for the testsuite
-------------------------------------------------------------------
Wed Apr 13 08:16:06 UTC 2022 - Marcus Rueckert <mrueckert@suse.de>
- Update to 3.1.2 (boo#1198441 boo#1198440)
https://www.ruby-lang.org/en/news/2022/04/12/ruby-3-1-2-released/
- CVE-2022-28738: Double free in Regexp compilation
- CVE-2022-28739: Buffer overrun in String-to-Float conversion
-------------------------------------------------------------------
Tue Mar 29 17:41:48 UTC 2022 - Dirk Müller <dmueller@suse.com>
- move tests into separate testsuite _multibuild:
* reduces buildrequires on main package (procps which is behind systemd:mini)
* reduces depth of distro rebuild chain
- exclude more tests that require network
- make test failures fatal, they pass now
- light subset of spec-cleaner cleanups
- prefer %%global over %%define, they get evaluated at parse time
-------------------------------------------------------------------
Tue Mar 8 08:39:20 UTC 2022 - Dirk Müller <dmueller@suse.com>
- use valgrind for more supported platforms
- run tests in parallel for better build times
- set PATH for test to just built ruby interpreter
- skip network tests, they hang on timeouts, slowing down the build
- remove exceptions for armv7 testing, these are all fixed
-------------------------------------------------------------------
Tue Feb 22 15:32:13 UTC 2022 - Marcus Rueckert <mrueckert@suse.de>
- Update to 3.1.1
https://www.ruby-lang.org/en/news/2022/02/18/ruby-3-1-1-released/
- drop 77fe1fca0abb56f7f07725c0a3803d53a315c853.patch:
included in update
-------------------------------------------------------------------
Sun Feb 6 18:40:18 UTC 2022 - Marcus Rueckert <mrueckert@suse.de>
- Build ruby with jemalloc for sle 15 up
-------------------------------------------------------------------
Wed Feb 2 15:45:00 UTC 2022 - Marcus Rueckert <mrueckert@suse.de>
- Added https://github.com/ruby/ipaddr/commit/77fe1fca0abb56f7f07725c0a3803d53a315c853.patch
Fix vagrant with ruby 3.1
-------------------------------------------------------------------
Sun Dec 26 19:48:49 UTC 2021 - Marcus Rueckert <mrueckert@suse.de>
- renable LTO
- apply workaround from https://bugs.ruby-lang.org/issues/18373#note-8
-------------------------------------------------------------------
Sun Dec 26 03:28:38 UTC 2021 - Marcus Rueckert <mrueckert@suse.de>
- Update to 3.1.0
https://www.ruby-lang.org/en/news/2021/12/25/ruby-3-1-0-released/
- disable LTO for now as it makes debugging the mkmf/rbinstall
problem easier
-------------------------------------------------------------------
Tue Dec 14 10:08:35 UTC 2021 - Stephan Kulow <coolo@suse.com>
- Initial 3.1 preview - currently failing, hoping for the next preview
-------------------------------------------------------------------
Thu Nov 25 11:23:08 UTC 2021 - Marcus Rueckert <mrueckert@suse.de>
- update to 3.0.3 (boo#1193081 boo#1193080 boo#1193035)
https://www.ruby-lang.org/en/news/2021/11/24/ruby-3-0-3-released/
- CVE-2021-41817: Regular Expression Denial of Service
Vulnerability of Date Parsing Methods
- CVE-2021-41816: Buffer Overrun in CGI.escape_html
- CVE-2021-41819: Cookie Prefix Spoofing in CGI::Cookie.parse
-------------------------------------------------------------------
Wed Nov 10 17:02:48 UTC 2021 - Marcus Rueckert <mrueckert@suse.de>
- provide the correct rubygems version
-------------------------------------------------------------------
Sat Nov 6 18:59:17 UTC 2021 - Klaus Kämpf <kkaempf@suse.com>
- update to 3.0.2
https://www.ruby-lang.org/en/news/2021/07/07/ruby-3-0-2-released/
* CVE-2021-31810: Trusting FTP PASV responses vulnerability in Net::FTP
* CVE-2021-32066: A StartTLS stripping vulnerability in Net::IMAP
* CVE-2021-31799: A command injection vulnerability in RDoc
-------------------------------------------------------------------
Tue Aug 24 07:26:12 UTC 2021 - Stephan Kulow <coolo@suse.com>
- Do not create links for /etc/alternatives at all but rely on
rpm's %ghosts being creating at runtime in %post
This aligns ruby3.0 with ruby2.7 and ruby-common
-------------------------------------------------------------------
Thu Jul 8 12:46:56 UTC 2021 - Stephan Kulow <coolo@suse.com>
- Fix links in /etc/alternatives not to point to itself
-------------------------------------------------------------------
Tue Apr 13 11:30:03 UTC 2021 - Marcus Rueckert <mrueckert@suse.de>
- update to ruby 3.0.1 (boo#1184644)
https://www.ruby-lang.org/en/news/2021/04/05/ruby-3-0-1-released/
- CVE-2021-28965: XML round-trip vulnerability in REXML
Complete list of changes at
https://github.com/ruby/ruby/compare/v3_0_0...v3_0_1
- drop https://github.com/rubygems/rubygems/pull/4317.patch
included in update
-------------------------------------------------------------------
Mon Jan 25 18:09:45 UTC 2021 - Marcus Rueckert <mrueckert@suse.de>
- add https://github.com/rubygems/rubygems/pull/4317.patch
make sure the gem plugins path does not contain the buildroot
-------------------------------------------------------------------
Fri Dec 25 06:28:46 UTC 2020 - Marcus Rueckert <mrueckert@suse.de>
- update to ruby 3.0.0
https://www.ruby-lang.org/en/news/2020/12/25/ruby-3-0-0-released/
-------------------------------------------------------------------
Fri Dec 25 00:18:54 UTC 2020 - Marcus Rueckert <mrueckert@suse.de>
- Update to ruby 3.0.0~rc1
https://www.ruby-lang.org/en/news/2020/12/20/ruby-3-0-0-rc1-released/
-------------------------------------------------------------------
Wed Dec 9 14:29:31 UTC 2020 - Marcus Rueckert <mrueckert@suse.de>
- Update to ruby 3.0.0~preview2
https://www.ruby-lang.org/en/news/2020/12/08/ruby-3-0-0-preview2-released/
- 3972.patch
-------------------------------------------------------------------
Tue Oct 27 11:30:47 UTC 2020 - Marcus Rueckert <mrueckert@suse.de>
- fix typo in the ruby macros file
-------------------------------------------------------------------
Tue Oct 27 11:22:03 UTC 2020 - Marcus Rueckert <mrueckert@suse.de>
- no longer luse the url for the 3972.patch, as the code in the PR
was rebased and no longer applies to the code in preview 1.
-------------------------------------------------------------------
Sun Oct 25 18:07:26 UTC 2020 - Marcus Rueckert <mrueckert@suse.de>
- fix the macros to actually use 3.0.0
-------------------------------------------------------------------
Mon Sep 28 11:34:08 UTC 2020 - Marcus Rueckert <mrueckert@suse.de>
- added https://patch-diff.githubusercontent.com/raw/rubygems/rubygems/pull/3972.patch
to fix regression in rubygems buildroot support
https://github.com/rubygems/rubygems/issues/3971
-------------------------------------------------------------------
Mon Sep 28 00:51:49 UTC 2020 - Marcus Rueckert <mrueckert@suse.de>
- Update to 3.0.0~preview1
https://www.ruby-lang.org/en/news/2020/09/25/ruby-3-0-0-preview1-released/
-------------------------------------------------------------------
Tue Apr 28 17:59:59 UTC 2020 - Marcus Rueckert <mrueckert@suse.de>
- make sure that update-alternative weight for the default
distribution is always greater than our normal weight
-------------------------------------------------------------------
Tue Apr 28 17:18:35 UTC 2020 - Marcus Rueckert <mrueckert@suse.de>
- make the update-alternative weight based on the ruby version
-------------------------------------------------------------------
Tue Apr 14 07:47:25 UTC 2020 - Bernhard Wiedemann <bwiedemann@suse.com>
- Add ruby2.7-drop-build-date.patch (boo#1047218)
-------------------------------------------------------------------
Tue Apr 7 22:53:35 UTC 2020 - Marcus Rueckert <mrueckert@suse.de>
- Update to 2.7.1 (boo#1167244 boo#1168938)
- CVE-2020-10663: Unsafe Object Creation Vulnerability in JSON
(Additional fix)
- CVE-2020-10933: Heap exposure vulnerability in the socket
library
https://github.com/ruby/ruby/compare/v2_7_0...v2_7_1
-------------------------------------------------------------------
Tue Feb 18 13:54:37 UTC 2020 - Stefan Brüns <stefan.bruens@rwth-aachen.de>
- Apply fixes/changes from ruby2.6 package lost in ruby2.7 switch:
* Fix mangling of shebangs, do not replace shell invocations with
ruby, correcly replace "/usr/bin/env ruby". (bnc#1156797)
* Cleanup spec file:
+ Drop support for obsolete distro versions
+ use license macro, remove defattr
* Use valgrind-client-headers instead of full valgrind-devel
package where available, reducing build package footprint.
* Remove unused libX11-devel BuildRequires.
-------------------------------------------------------------------
Sat Dec 28 08:03:54 UTC 2019 - Marcus Rueckert <mrueckert@suse.de>
- update to final release of 2.7.0
http://www.ruby-lang.org/en/news/2019/12/25/ruby-2-7-0-released/
- update the use-pie.patch to apply cleanly again
-------------------------------------------------------------------
Tue Jul 9 14:16:36 UTC 2019 - Marcus Rueckert <mrueckert@suse.de>
- fix running tests (boo#1140844)
just passing the DISABLED_TESTS variable is wrong. probably a
relict from calling the test scripts directly. use TESTOPTS now.
-------------------------------------------------------------------
Sun Jun 23 02:59:03 UTC 2019 - Marcus Rueckert <mrueckert@suse.de>
- add gmp to the buildrequires
-------------------------------------------------------------------
Sat Jun 22 21:07:33 UTC 2019 - Marcus Rueckert <mrueckert@suse.de>
- starting package with 2.7.0-preview1
Reference in New Issue View Git Blame Copy Permalink