Bug #17201: Backport webrick patch for CVE-2020-25613 - Ruby master - Ruby Issue Tracking System

Actions

Copy link

Bug #17201

closed

Backport webrick patch for CVE-2020-25613

Added by hsbt (Hiroshi SHIBATA) about 4 years ago. Updated almost 4 years ago.

Status:

Closed

Assignee:

Target version:

ruby -v:

Backport:

2.5: DONE, 2.6: DONE, 2.7: DONE

[ruby-core:100207]

Description

I created the patch sets for Ruby 2.5, 2.6 and 2.7 for CVE-2020-25613

Files

Download all files

ruby_2_7_webrick_1_6_1.patch (1.95 KB) ruby_2_7_webrick_1_6_1.patch		hsbt (Hiroshi SHIBATA), 09/29/2020 09:07 AM
ruby_2_6_webrick_1_4_4.patch (2.94 KB) ruby_2_6_webrick_1_4_4.patch		hsbt (Hiroshi SHIBATA), 09/29/2020 09:07 AM
ruby_2_5_webrick.patch (1.26 KB) ruby_2_5_webrick.patch		hsbt (Hiroshi SHIBATA), 09/29/2020 09:07 AM

Actions

Copy link

#1 [ruby-core:100368]

Updated by nagachika (Tomoyuki Chikanaga) about 4 years ago

Backport changed from 2.5: REQUIRED, 2.6: REQUIRED, 2.7: REQUIRED to 2.5: REQUIRED, 2.6: REQUIRED, 2.7: DONE

I'm afraid that I did backport the changeset d23d2f3f6fbb5d787b0dd80675c489a692be23e2 solely at 828c34e58b63d64558ec0f2d1d7ae401c5e6b21f.
I applied the remaining part of the patch into ruby_2_7 at 48ac73769772317d6c3f864f087ef930a47120d9.

Actions

Copy link

#2 [ruby-core:102332]