------------------------------------------------------------------- Mon Jul 6 18:27:47 UTC 2015 - jmassaguerpla@suse.com - CVE-2015-3227: rubygem-activesupport: Possible Denial of Service attack in Active Support (bnc#934800) CVE-2015-3227.patch: contains the fix ------------------------------------------------------------------- Fri Feb 21 10:50:21 UTC 2014 - jmassaguerpla@suse.com - fix rubygem patches are not applied to the gem but only to the tree (bnc#864873) ------------------------------------------------------------------- Thu Dec 12 16:23:55 UTC 2013 - jmassaguerpla@suse.com - update license to SPDX-name MIT ------------------------------------------------------------------- Thu Dec 12 15:53:13 UTC 2013 - jmassaguerpla@suse.com - fix CVE-2013-4389: rubygem-actionmailer-3_1: possible DoS vulnerability in the log subscriber component (bnc#846239) File CVE-2013-4389.patch contains the fix. ------------------------------------------------------------------- Thu Feb 14 10:03:54 UTC 2013 - mrueckert@suse.de - update to version 3.2.12 (bnc#803336) CVE-2013-0276: * Version bump ------------------------------------------------------------------- Wed Jan 9 10:07:18 UTC 2013 - jreidinger@suse.com - update to 3.2.11 * Hash.from_xml raises when it encounters type="symbol" or type="yaml". CVE-2013-0156 ------------------------------------------------------------------- Thu Jan 3 13:19:57 UTC 2013 - jreidinger@suse.com - update to 3.2.10, "no changes" ------------------------------------------------------------------- Thu Nov 15 17:10:35 UTC 2012 - jreidinger@suse.com - update to 3.2.9 * Add logger.push_tags and .pop_tags to complement logger.tagged * Add %:z and %::z format string support to ActiveSupport::TimeWithZone#strftime * Fix ActiveSupport integration with Mocha > 0.12.1 ------------------------------------------------------------------- Fri Jul 27 13:15:22 UTC 2012 - coolo@suse.com - update to 3.2.7 * Hash#fetch(fetch) is not the same as doing hash[key] * adds a missing require [fixes #6896] * make sure the inflection rules are loaded when cherry-picking active_support/core_ext/string/inflections.rb [fixes #6884] * Merge pull request #6857 from rsutphin/as_core_ext_time_missing_require * bump AS deprecation_horizon to 4.0 ------------------------------------------------------------------- Thu Jun 28 13:06:33 UTC 2012 - coolo@suse.com - update to 3.2.6 * ActiveSupport::JSON::Variable is deprecated. Define your own #as_json and #encode_json methods for custom JSON string literals. *Erich Menge* * Added #beginning_of_hour and #end_of_hour to Time and DateTime core extensions. *Mark J. Titorenko* ------------------------------------------------------------------- Wed Apr 4 15:28:10 UTC 2012 - coolo@suse.com - update to 3.2.3, no changes (it says literally) ------------------------------------------------------------------- Fri Mar 23 11:00:44 UTC 2012 - saschpe@suse.de - Spec file cleanup: * Factory preparation ------------------------------------------------------------------- Fri Jan 27 00:58:12 UTC 2012 - mrueckert@suse.de - update to 3.2.1 * Documentation fixes and improvements. * Update time zone offset information. *Ravil Bayramgalin* * The deprecated `ActiveSupport::Base64.decode64` calls `::Base64.decode64` now. *Jonathan Viney* * Fixes uninitialized constant `ActiveSupport::TaggedLogging::ERROR`. *kennyj* ------------------------------------------------------------------- Thu Jan 26 16:23:06 UTC 2012 - mrueckert@suse.de - initial package of the 3.2 branch