[ol7_latest_archive] rubygem-json-1.7.7-22.el7_0.x86_64

Name:	rubygem-json
Version:	1.7.7
Release:	22.el7_0
Architecture:	x86_64
Group:	Development/Libraries
Size:	94734
License:	Ruby or GPLv2
RPM:	rubygem-json-1.7.7-22.el7_0.x86_64.rpm
Source RPM:	ruby-2.0.0.353-22.el7_0.src.rpm
Build Date:	Wed Nov 26 2014
Build Host:	ca-build70.us.oracle.com
Vendor:	Oracle America
URL:	http://ruby-lang.org/
Summary:	This is a JSON implementation as a Ruby extension in C
Description:	This is a implementation of the JSON specification according to RFC 4627. You can think of it as a low fat alternative to XML, if you want to store data to disk or transmit it over a network rather than use a verbose markup language.

Changelog (Show File list) (Show related packages)

Sun Nov 16 2014 Vít Ondruch <vondruch@redhat.com> - 2.0.0.353-22

- Fix REXML billion laughs attack via parameter entity expansion
  (CVE-2014-8080).
  Resolves: rhbz#1163998
- REXML incomplete fix for CVE-2014-8080 (CVE-2014-8090).
  Resolves: rhbz#1163998

Fri Nov 14 2014 Vít Ondruch <vondruch@redhat.com> - 2.0.0.353-21

- Fix off-by-one stack-based buffer overflow in the encodes() function
  (CVE-2014-4975)
  Resolves: rhbz#1163998

Tue Sep 23 2014 Josef Stribny <jstribny@redhat.com> - 2.0.0.353-21
```
- Fix FTBFS with new tzdata
  Related: rhbz#1163998
```
Fri Jan 24 2014 Daniel Mach <dmach@redhat.com> - 2.0.0.353-20
```
- Mass rebuild 2014-01-24
```

Tue Jan 07 2014 Vít Ondruch <vondruch@redhat.com> - 2.0.0.353-19

- Update to Ruby 2.0.0-p353.
  - Resolves: rhbz#1033923
- Allow MD5 in OpenSSL for tests.

Fri Jan 03 2014 Vít Ondruch <vondruch@redhat.com> - 2.0.0.247-18

- Fix FTBFS due to expired certificate for IMAP test case.
- Fix test_aes_gcm_wrong_tag random failures.
  - Resolves: rhbz#1048899

Fri Dec 27 2013 Daniel Mach <dmach@redhat.com> - 2.0.0.247-18
```
- Mass rebuild 2013-12-27
```

Mon Nov 25 2013 Vít Ondruch <vondruch@redhat.com> - 2.0.0.247-17

- Heap overflow in floating point parsing (CVE-2013-4164).
  * ruby-2.0.0-p353-CVE-2013-4164-ignore-too-long-fraction-part.patch
  - Resolves: rhbz#1033503
- Allow MD5 in OpenSSL tests.

Wed Sep 25 2013 Vít Ondruch <vondruch@redhat.com> - 2.0.0.247-16

- Fix version regex algorithmic complexity vulnerability (CVE for incomplete
  fix for CVE-2013-4287) (CVE-2013-4363).
  - Related: rhbz#1006429

Tue Sep 17 2013 Vít Ondruch <vondruch@redhat.com> - 2.0.0.247-15

- Fix version regex algorithmic complexity vulnerability (CVE-2013-4287).
  - Resolves: rhbz#1006429