General

Profile

GOTOU Yuuzou

Issues

Projects

Activity

08/17/2008

05:33 PM Ruby trunk Revision 18678 (ruby_2_3): * lib/webrick/cgi.rb (WEBrick::CGI::Socket#eof?): added lacked method.

05/18/2008

01:54 PM Ruby trunk Revision 16455 (ruby_2_3): test material for r16453.
01:33 PM Ruby trunk Revision 16453 (ruby_2_3): * lib/webrick/httpservlet/filehandler.rb: should normalize path
name in path_info to prevent script disclosure vulnerability on
DOSISH filesystems. (fix: CVE-2008-1891)
Note: NT...

03/03/2008

02:31 PM Ruby trunk Revision 15676 (ruby_2_3): * lib/webrick/httpservlet/filehandler.rb: should normalize path
separators in path_info to prevent directory traversal
attacks on DOSISH platforms.
reported by Digital Security ...

01/09/2008

11:37 AM Ruby trunk Revision 14968 (ruby_2_3): * lib/webrick/httprequest.rb: supprt X-Forwarded-* header fields.
WEBrick::HTTPRequest#{host,port,request_uri} is derived having
regards to X-Forwarded-Proto and X-Forwarded-Host.
...
04:46 AM Ruby trunk Revision 14961 (ruby_2_3): * lib/webrick/server.rb (WEBrick::HTTPServer#start):
:DoNotReverseLookup option had not been performed.

01/07/2008

11:40 AM Ruby trunk Revision 14936 (ruby_2_3): * lib/webrick/httpservlet/cgihandler.rb: external encoding of
tempfiles is set to "ASCII-8BIT".

12/31/2007

02:17 PM Ruby trunk Revision 14816 (ruby_2_3): * lib/webrick/httpproxy.rb (WEBrick::HTTPProxyServer#proxy_service):
call do_XXX which corespond with request method.
(WEBrick::HTTPProxyServer#do_CONNECT,do_GET,do_POST,do_HEAD): adde...

12/28/2007

07:55 PM Ruby trunk Revision 14778 (ruby_2_3): * Fix variable name.
07:47 PM Ruby trunk Revision 14777 (ruby_2_3): * lib/test/unit/assertions.rb (Test::Unit::Assertions#assert_throws):
throw won't raise NameError nor ThreadError but ArgumentError on 1.9.
(Test::Unit::Assertions#assert_not_throws): d...

Also available in: Atom