[SECURITY] Fedora 38 Update: rubygem-yard-0.9.36-1.fc38 - package-announce - Fedora mailing-lists

20 Mar 2024


      --------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2024-3744975c4b
2024-03-21 01:27:46.105047
--------------------------------------------------------------------------------
Name        : rubygem-yard
Product     : Fedora 38
Version     : 0.9.36
Release     : 1.fc38
URL         : http://yardoc.org
Summary     : Documentation tool for consistent and usable documentation in Ruby
Description :
YARD is a documentation generation tool for the Ruby programming language.
It enables the user to generate consistent, usable documentation that can be
exported to a number of formats very easily, and also supports extending for
custom Ruby constructs such as custom class level definitions.
--------------------------------------------------------------------------------
Update Information:
A security flaw was found on rubygem-yard that documents generated by yard may
be vulnerable to XSS attack. This issue is now assigned as CVE-2024-27285 . This
new rpm is supposed to fix this issue.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar  1 2024 Mamoru TASAKA mtasaka@fedoraproject.org - 0.9.36-1
- 0.9.36
* Fri Jan 26 2024 Fedora Release Engineering releng@fedoraproject.org - 0.9.34-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Fri Nov 10 2023 Mamoru TASAKA mtasaka@fedoraproject.org - 0.9.34-4
- Testsuite: remove invalid yield usage from spec (for ruby3.3)
* Mon Sep 25 2023 Mamoru TASAKA mtasaka@fedoraproject.org - 0.9.34-3
- Backport upstream patch for BOM detection change in ruby33
* Fri Jul 21 2023 Fedora Release Engineering releng@fedoraproject.org - 0.9.34-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Thu Apr 13 2023 Mamoru TASAKA mtasaka@fedoraproject.org - 0.9.34-1
- 0.9.34
* Wed Apr 12 2023 Mamoru TASAKA mtasaka@fedoraproject.org - 0.9.33-1
- 0.9.33
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2024-3744975c4b' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------