ruby-changes:30858

nagachika	2013-09-14 00:02:01 +0900 (Sat, 14 Sep 2013)

  New Revision: 42937

  http://svn.ruby-lang.org/cgi-bin/viewvc.cgi?view=rev&revision=42937

  Log:
    * lib/rubygems: Update to RubyGems to 2.0.8. [ruby-core:57155]
      [Backport #8900]
      the patch is provided by drbrain (Eric Hodel).
      this update contains a security fix for CVE-2013-4287.

  Modified files:
    branches/ruby_2_0_0/ChangeLog
    branches/ruby_2_0_0/NEWS
    branches/ruby_2_0_0/lib/rubygems/version.rb
    branches/ruby_2_0_0/lib/rubygems.rb
    branches/ruby_2_0_0/version.h
Index: ruby_2_0_0/ChangeLog
===================================================================
--- ruby_2_0_0/ChangeLog	(revision 42936)
+++ ruby_2_0_0/ChangeLog	(revision 42937)
@@ -1,3 +1,10 @@ https://github.com/ruby/ruby/blob/trunk/ruby_2_0_0/ChangeLog#L1
+Sat Sep 14 00:01:20 2013  CHIKANAGA Tomoyuki  <nagachika@r...>
+
+	* lib/rubygems: Update to RubyGems to 2.0.8. [ruby-core:57155]
+	  [Backport #8900]
+	  the patch is provided by drbrain (Eric Hodel).
+	  this update contains a security fix for CVE-2013-4287.
+
 Fri Sep 13 23:20:29 2013  Kenichi Kamiya  <kachick1@g...>
 
 	* object.c (Init_Object): undef Module#prepend_features on Class, as
@@ -136,7 +143,7 @@ Sat Aug 17 00:36:24 2013  Charlie Somerv https://github.com/ruby/ruby/blob/trunk/ruby_2_0_0/ChangeLog#L143
 
 Sat Aug 17 00:32:17 2013  CHIKANAGA Tomoyuki  <nagachika@r...>
 
-	* lib/rubygems: update to RubyGems 2.0.6. the patch by drbrain.
+	* lib/rubygems: update to RubyGems 2.0.7. the patch by drbrain.
 	  [ruby-core:56633] [Backport #8787]
 
 Sat Aug 10 23:59:47 2013  NAKAMURA Usaku  <usa@r...>
Index: ruby_2_0_0/lib/rubygems/version.rb
===================================================================
--- ruby_2_0_0/lib/rubygems/version.rb	(revision 42936)
+++ ruby_2_0_0/lib/rubygems/version.rb	(revision 42937)
@@ -147,7 +147,7 @@ class Gem::Version https://github.com/ruby/ruby/blob/trunk/ruby_2_0_0/lib/rubygems/version.rb#L147
 
   # FIX: These are only used once, in .correct?. Do they deserve to be
   # constants?
-  VERSION_PATTERN = '[0-9]+(\.[0-9a-zA-Z]+)*' # :nodoc:
+  VERSION_PATTERN = '[0-9]+(?>\.[0-9a-zA-Z]+)*' # :nodoc:
   ANCHORED_VERSION_PATTERN = /\A\s*(#{VERSION_PATTERN})*\s*\z/ # :nodoc:
 
   ##
Index: ruby_2_0_0/lib/rubygems.rb
===================================================================
--- ruby_2_0_0/lib/rubygems.rb	(revision 42936)
+++ ruby_2_0_0/lib/rubygems.rb	(revision 42937)
@@ -8,7 +8,7 @@ https://github.com/ruby/ruby/blob/trunk/ruby_2_0_0/lib/rubygems.rb#L8
 require 'rbconfig'
 
 module Gem
-  VERSION = '2.0.7'
+  VERSION = '2.0.8'
 end
 
 # Must be first since it unloads the prelude from 1.9.2
@@ -307,7 +307,7 @@ module Gem https://github.com/ruby/ruby/blob/trunk/ruby_2_0_0/lib/rubygems.rb#L307
     @paths         = nil
     @user_home     = nil
     Gem::Specification.reset
-    Gem::Security.reset if const_defined? :Security
+    Gem::Security.reset if defined?(Gem::Security)
   end
 
   ##
Index: ruby_2_0_0/NEWS
===================================================================
--- ruby_2_0_0/NEWS	(revision 42936)
+++ ruby_2_0_0/NEWS	(revision 42937)
@@ -461,6 +461,10 @@ with all sufficient information, see the https://github.com/ruby/ruby/blob/trunk/ruby_2_0_0/NEWS#L461
     XML declaration is used for XML document encoding.
 
 * RubyGems
+  * Updated to 2.0.8.  This fixes CVE-2013-4287:
+
+    http://rubygems.rubyforge.org/rubygems-update/CVE-2013-4287_txt.html
+
   * Updated to 2.0.3.  See
     http://rubygems.rubyforge.org/rubygems-update/History_txt.html#label-2.0.3+%2F+2012-03-1
     for release notes.
Index: ruby_2_0_0/version.h
===================================================================
--- ruby_2_0_0/version.h	(revision 42936)
+++ ruby_2_0_0/version.h	(revision 42937)
@@ -1,10 +1,10 @@ https://github.com/ruby/ruby/blob/trunk/ruby_2_0_0/version.h#L1
 #define RUBY_VERSION "2.0.0"
-#define RUBY_RELEASE_DATE "2013-09-13"
-#define RUBY_PATCHLEVEL 312
+#define RUBY_RELEASE_DATE "2013-09-14"
+#define RUBY_PATCHLEVEL 313
 
 #define RUBY_RELEASE_YEAR 2013
 #define RUBY_RELEASE_MONTH 9
-#define RUBY_RELEASE_DAY 13
+#define RUBY_RELEASE_DAY 14
 
 #include "ruby/version.h"
 

--
ML: ruby-changes@q...
Info: http://www.atdot.net/~ko1/quickml/