Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

ruby2.5-rubygem-nokogiri-testsuite-1.8.5-lp152.4.3.1 RPM for aarch64

From OpenSuSE Ports Leap 15.2 updates for aarch64

Name: ruby2.5-rubygem-nokogiri-testsuite Distribution: openSUSE Leap 15.2
Version: 1.8.5 Vendor: openSUSE
Release: lp152.4.3.1 Build date: Mon Feb 1 12:17:54 2021
Group: Development/Languages/Ruby Build host: obs-arm-9
Size: 2506134 Source RPM: rubygem-nokogiri-1.8.5-lp152.4.3.1.src.rpm
Summary: Test suite for nokogiri
Test::Unit or RSpec files, useful for developers.






* Thu Jan 21 2021 Jacek Tomasiak <>
  - add 000-CVE-2019-5477.patch (CVE-2019-5477, bsc#1146578)
  - add 001-test-equality.patch (prereq of 002-CVE-2020-26247.patch)
  - add 002-CVE-2020-26247.patch (CVE-2020-26247, bsc#1180507)
* Mon Oct 29 2018
  - updated to version 1.8.5 (bsc#1156722)
    [#]# Security Notes
    [MRI] Pulled in upstream patches from libxml2 that address CVE-2018-14404 and CVE-2018-14567. Full details are available in [#1785]( Note that these patches are not yet (as of 2018-10-04) in an upstream release of libxml2.
    [#]# Bug fixes
    * [MRI] Fix regression in installation when building against system libraries, where some systems would not be able to find libxml2 or libxslt when present. (Regression introduced in v1.8.3.) [#1722]
    * [JRuby] Fix node reparenting when the destination doc is empty. [#1773]
* Wed Jul 04 2018
  - updated to version 1.8.4
    see installed
    [#] 1.8.4 / 2018-07-03
    [#]# Bug fixes
    * [MRI] Fix memory leak when creating nodes with namespaces. (Introduced in v1.5.7) [#1771]
* Sat Jun 16 2018
  - updated to version 1.8.3
    see installed
    [#] 1.8.3 / 2018-06-16
    [#]# Security Notes
    [MRI] Behavior in libxml2 has been reverted which caused CVE-2018-8048 (loofah gem), CVE-2018-3740 (sanitize gem), and CVE-2018-3741 (rails-html-sanitizer gem). The commit in question is here:
    and more information is available about this commit and its impact here:
    This release simply reverts the libxml2 commit in question to protect users of Nokogiri's vendored libraries from similar vulnerabilities.
    If you're offended by what happened here, I'd kindly ask that you comment on the upstream bug report here:
* Thu Feb 08 2018
  - updated to version 1.8.2
    see installed
    [#] 1.8.2 / 2018-01-29
    [#]# Security Notes
    [MRI] The update of vendored libxml2 from 2.9.5 to 2.9.7 addresses at least one published vulnerability, CVE-2017-15412. [#1714 has complete details]
    [#]# Dependencies
    * [MRI] libxml2 is updated from 2.9.5 to 2.9.7
    * [MRI] libxml2 is updated from 1.1.30 to 1.1.32
    [#]# Features
    * [MRI] OpenBSD installation should be a bit easier now. [#1685] (Thanks, @jeremyevans!)
    * [MRI] Cross-built Windows gems now support Ruby 2.5
    [#]# Bug fixes
    * Node#serialize once again returns UTF-8-encoded strings. [#1659]
    * [JRuby] made SAX parsing of characters consistent with C implementation [#1676] (Thanks, @andrew-aladev!)
    * [MRI] Predefined entities, when inspected, no longer cause a segfault. [#1238]
* Wed Sep 20 2017
  - Updated to version 1.8.1
    From the upstream changelog:
      [MRI] libxml2 is updated from 2.9.4 to 2.9.5.
      [MRI] libxslt is updated from 1.1.29 to 1.1.30.
      [MRI] optional dependency on the pkg-config gem has had its constraint loosened to ~> 1.1 (from ~> 1.1.7). [#1660]
      [MRI] Upgrade mini_portile2 dependency from ~> 2.2.0 to ~> 2.3.0, which will validate checksums on the vendored libxml2 and libxslt tarballs before using them.
      NodeSet#first with an integer argument longer than the length of the NodeSet now correctly clamps the length of the returned NodeSet to the original length. [#1650] (Thanks, @Derenge!)
      [MRI] Ensure raises TypeError if the content argument is not implicitly convertible into a string. [#1669]
* Mon Sep 18 2017
  - make gem2rpm.yaml match the gemspec with regards to BR:
* Tue Jun 06 2017
  - updated to version 1.8.0
    see installed
    [#] 1.8.0 / 2017-06-04
    [#]# Backwards incompatibilities
    This release ends support for Ruby 2.1 on Windows in the `x86-mingw32` and `x64-mingw32` platform gems (containing pre-compiled DLLs). Official support ended for Ruby 2.1 on 2017-04-01.
    Please note that this deprecation note only applies to the precompiled Windows gems. Ruby 2.1 continues to be supported (for now) in the default gem when compiled on installation.
    [#]# Dependencies
    * [Windows] Upgrade iconv from 1.14 to 1.15 (unless --use-system-libraries)
    * [Windows] Upgrade zlib from 1.2.8 to 1.2.11 (unless --use-system-libraries)
    * [MRI] Upgrade rake-compiler dependency from 0.9.2 to 1.0.3
    * [MRI] Upgrade mini-portile2 dependency from `~> 2.1.0` to `~> 2.2.0`
    [#]# Compatibility notes
    * [JRuby] Removed support for `jruby --1.8` code paths. [#1607] (Thanks, @kares!)
    * [MRI Windows] Retrieve zlib source from to avoid deprecation issues going forward. See #1632 for details around this problem.
    [#]# Features
    * NodeSet#clone is not an alias for NodeSet#dup [#1503] (Thanks, @stephankaag!)
    * Allow Processing Instructions and Comments as children of a document root. [#1033] (Thanks, @windwiny!)
    * [MRI] PushParser#replace_entities and #replace_entities= will control whether entities are replaced or not. [#1017] (Thanks, @spraints!)
    * [MRI] SyntaxError#to_s now includes line number, column number, and log level if made available by the parser. [#1304, #1637] (Thanks, @spk and @ccarruitero!)
    * [MRI] Cross-built Windows gems now support Ruby 2.4
    * [MRI] Support for frozen string literals. [#1413]
    * [MRI] Support for installing Nokogiri on a machine in FIPS-enabled mode [#1544]
    * [MRI] Vendored libraries are verified with SHA-256 hashes (formerly some MD5 hashes were used) [#1544]
    * [JRuby] (performance) remove unnecessary synchronization of class-cache [#1563] (Thanks, @kares!)
    * [JRuby] (performance) remove unnecessary cloning of objects in XPath searches [#1563] (Thanks, @kares!)
    * [JRuby] (performance) more performance improvements, particularly in XPath, Reader, XmlNode, and XmlNodeSet [#1597] (Thanks, @kares!)
    [#]# Bugs
    * HTML::SAX::Parser#parse_io now correctly parses HTML and not XML [#1577] (Thanks for the test case, @gregors!)
    * Support installation on systems with a `lib64` site config. [#1562]
    * [MRI] on OpenBSD, do not require gcc if using system libraries [#1515] (Thanks, @jeremyevans!)
    * [MRI] checks type of Document arg to prevent segfaults. [#1477]
    * [MRI] Prefer xmlCharStrdup (and friends) to strdup (and friends), which can cause problems on some platforms. [#1517] (Thanks, @jeremy!)
    * [JRuby] correctly append a text node before another text node [#1318] (Thanks, @jkraemer!)
    * [JRuby] custom xpath functions returning an integer now work correctly [#1595] (Thanks, @kares!)
    * [JRuby] serializing (`#to_html`, `#to_s`, et al) a document with explicit encoding now works correctly. [#1281, #1440] (Thanks, @kares!)
    * [JRuby] XML::Reader now returns parse errors [#1586] (Thanks, @kares!)
    * [JRuby] Empty NodeSets are now decorated properly. [#1319] (Thanks, @kares!)
    * [JRuby] Merged nodes no longer results in Java exceptions during XPath queries. [#1320] (Thanks, @kares!)
* Tue May 23 2017
  - updated to version 1.7.2
    see installed
    [#] 1.7.2 / 2017-05-09
    [#]# Security Notes
    [MRI] Upstream libxslt patches are applied to the vendored libxslt 1.1.29 which address CVE-2017-5029 and CVE-2016-4738.
    For more information:
* Mon Mar 20 2017
  - updated to version 1.7.1
    see installed
    [#] 1.7.1 / unreleased
    [#]# Security Notes
    [MRI] Upstream libxml2 patches are applied to the vendored libxml 2.9.4 which address CVE-2016-4658 and CVE-2016-5131.
    For more information:
    [#]# Dependencies
    * [Windows] Upgrade zlib from 1.2.8 to 1.2.11 (unless --use-system-libraries)
* Sat Jan 14 2017
  - updated to version
    see installed
    [#] / 2017-01-04
    [#]# Bugs
    * Fix OpenBSD support. (#1569) (related to #1543)
* Tue Dec 27 2016
  - updated to version 1.7.0
    CHANGELOG.rdoc removed upstream
* Tue Oct 04 2016
  - updated to version
    see installed CHANGELOG.rdoc
* Tue Jun 07 2016
  - updated to version 1.6.8
    ==== Features
    Several changes were made to improve performance:
    * [MRI] Simplify NodeSet#to_a with a minor speed-up. (#1397)
    * XML::Node#ancestors optimization. (#1297) (Thanks, Bruno Sutic!)
    * Use Symbol#to_proc where we weren't previously. (#1296) (Thanks, Bruno Sutic!)
    * XML::DTD#each uses implicit block calls. (Thanks, @glaucocustodio!)
    * Fall back to the `pkg-config` gem if we're having trouble finding the system libxml2. This should help many FreeBSD users. (#1417)
    * Set document encoding appropriately even on blank document. (#1043) (Thanks, @batter!)
    ==== Bug Fixes
    * [JRuby] fix slow add_child (#692)
    * [JRuby] fix load errors when deploying to JRuby/Torquebox (#1114) (Thanks, @atambo and @jvshahid!)
    * [JRuby] fix NPE when inspecting nodes returned by NodeSet#drop (#1042) (Thanks, @mkristian!)
    * [JRuby] fix nil attriubte node's namespace in reader (#1327) (Thanks, @codekitchen!)
    * [JRuby] fix Nokogiri munging unicode characters that require more than 2 bytes (#1113) (Thanks, @mkristian!)
    * [JRuby] allow unlinking an unparented node (#1112, #1152) (Thanks, @esse!)
    * [JRuby] allow Fragment parsing on a frozen string (#444, #1077)
    * [JRuby] HTML `style` tags are no longer encoded (#1316) (Thanks, @tbeauvais!)
    * [MRI] fix assertion failure while accessing attribute node's namespace in reader (#843) (Thanks, @2potatocakes!)
    * [MRI] fix issue with GCing namespace nodes returned in an xpath query. (#1155)
    * [MRI] Ensure C strings are null-terminated. (#1381)
    * [MRI] Ensure Rubygems is loaded before using mini_portile2 at installation. (#1393, #1411) (Thanks, @JonRowe!)
    * [MRI] Handling another edge case where the `libxml-ruby` gem's global callbacks were smashing the heap. (#1426). (Thanks to @bbergstrom for providing an isolated test case!)
    * [MRI] Ensure encodings are passed to Sax::Parser xmldecl callback. (#844)
    * [MRI] Ensure default ns prefix is applied correctly when reparenting nodes to another document. (#391) (Thanks, @ylecuyer!)
    * [MRI] Ensure Reader handles non-existent attributes as expected. (#1254) (Thanks, @ccutrer!)
    * [MRI] Cleanup around namespace handling when reparenting nodes. (#1332, #1333, #1444) (Thanks, @cuttrer and @bradleybeddoes!)
    * unescape special characters in CSS queries (#1303) (Thanks, @twalpole!)
    * consistently handle empty documents (#1349)
    * Update to mini_portile2 2.1.0 to address whitespace-handling during patching. (#1402)
    * Fix encoding of xml node namespaces.
    * Work around issue installing Nokogiri on overlayfs (commonly used in Docker containers). (#1370, #1405)
    ==== Other Notes
    * Removed legacy code remaining from Ruby 1.8.x support.
    * Removed legacy code remaining from REE support.
    * Removing hacky workarounds for bugs in some older versions of libxml2.
    * Handling C strings in a forward-compatible manner, see
  - remove nokogiri- as upstreamed
* Wed Mar 23 2016
  - Force fixed timestamps for patched gems (bsc#916047)
* Tue Jan 26 2016
  - lockdown mini_portile2 to 2.0
* Mon Jan 25 2016
  - update to version
    This version pulls in several upstream patches to the vendored
    libxml2 and libxslt to address:
    Ubuntu classifies this as "Priority: Low", RedHat classifies this
    as "Impact: Moderate", and NIST classifies this as "Severity: 5.0
    MITRE record is
    This is not effecting us as we are using the system copy.
  - refresh mini_portile patch to apply cleanly again
    old: nokogiri-1.6.7.diff
    new: nokogiri-
* Thu Jan 21 2016
  - fix buildrequires for mini_portile
* Thu Dec 17 2015
  - updated to version
    see installed CHANGELOG.rdoc
    === / 2015-12-16
    This version pulls in several upstream patches to the vendored libxml2 and libxslt to address:
    See also
* Tue Dec 15 2015
  - add nokogiri-1.6.7.diff to fix the mini_portile2 dependency
* Tue Dec 01 2015
  - updated to version 1.6.7
    see installed CHANGELOG.rdoc
    === 1.6.7 / 2015-11-29
    ==== Notes
    This version supports native builds on Windows using the RubyInstaller
    DevKit. It also supports Ruby 2.2.x on Windows, as well as making
    several other improvements to the installation process on various
    This version also includes the security patches already applied in
    v1.6.6.3 and v1.6.6.4 to the vendored libxml2 and libxslt source.
    See #1374 and #1376 for details.
    ==== Features
    * Cross-built gems now have a proper ruby version requirement. (#1266)
    * Ruby 2.2.x is supported on Windows.
    * Native build is supported on Windows.
    * [MRI] libxml2 and libxslt `config.guess` files brought up to date. (#1326) (Thanks, @hernan-erasmo!)
    * [JRuby] fix error in validating files with jruby (#1355, #1361) (Thanks, @twalpole!)
    * [MRI, OSX] Patch to handle nonstandard location of `iconv.h`. (#1206, #1210, #1218, #1345) (Thanks, @neonichu!)
    ==== Bug Fixes
    * [JRuby] reset the namespace cache when replacing the document's innerHtml (#1265) (Thanks, @mkristian!)
    * [JRuby] Document#parse should support IO objects that respond to #read. (#1124) (Thanks, Jake Byman!)
    * [MRI] Duplicate-id errors when setting the `id` attribute on HTML documents are now silenced. (#1262)
    * [JRuby] SAX parser cuts texts in peices when quare brackets exist. (#1261)
    * [JRuby] Namespaced attributes aren't removed by remove_attribute. (#1299)
* Tue Nov 24 2015
  - updated to version
    see installed CHANGELOG.rdoc
    === / 2015-11-19
    This version pulls in an upstream patche to the vendored libxml2 to address:
    * unclosed comment uninitialized access issue (#1376)
    This issue does not have a CVE assigned to it as this time.
* Tue Nov 17 2015
  - updated to version
    see installed CHANGELOG.rdoc
    === / 2015-11-16
    This version pulls in several upstream patches to the vendored libxml2 and libxslt to address:
    * CVE-2015-1819
    * CVE-2015-7941_1
    * CVE-2015-7941_2
    * CVE-2015-7942
    * CVE-2015-7942-2
    * CVE-2015-8035
    * CVE-2015-7995
    See #1374 for details.
* Wed Feb 04 2015
  - Update to
    * Fixed installation issue affecting compiler arguments. (#1230)
    * Unified Node and NodeSet implementations of #search, #xpath and #css.
    * Added Node#lang and Node#lang=.
    * bin/nokogiri passes the URI to parse() if an HTTP URL is given.
    * bin/nokogiri now loads ~/.nokogirirc so user can define helper methods, etc.
    * bin/nokogiri can be configured to use Pry instead of IRB by adding a couple of lines to ~/.nokogirirc. (#1198)
    * bin/nokogiri can better handle urls from STDIN (aiding use of xargs). (#1065)
    * DocumentFragment#search now matches against root nodes. (#1205)
    * (MRI) More fixes related to handling libxml2 parse errors during DocumentFragment#dup. (#1196)
    * `` argument types are now consistent and safe (and documented) across MRI and JRuby. (#1224)
    * Check if `zlib` is available before building `libxml2`. (#1188)
    * Implement Slop#respond_to_missing?. (#1176)
    * Optimized the XPath query generated by an `an+b` CSS query.
    * Capture non-parse errors from Document#dup in Document#errors. (#1196)
    * (MRI) Fix a bug where CFLAGS passed in are dropped. (#1188)
    * Fix a bug where CSS selector :nth(n) did not work. (#1187)
    * (MRI) Bundled Libxml2 is upgraded to 2.9.2.
    * (MRI) `nokogiri --version` will include a list of applied patches.
    * (MRI) Nokogiri no longer prints messages directly to TTY while building the extension.
    * (MRI) Improve the iconv detection for building libxml2.
    * (MRI) Fix DocumentFragment#element_children (#1138).
    * Fix a bug with CSS attribute selector without any prefix where "foo [bar]" was treated as "foo[bar]". (#1174)
* Wed Oct 15 2014
  - adapt to new rubygem packaging



Generated by rpm2html 1.8.1

Fabrice Bellet, Thu Dec 2 23:36:37 2021