diff options
| author | spz <spz@pkgsrc.org> | 2018-10-29 17:34:02 +0000 |
|---|---|---|
| committer | spz <spz@pkgsrc.org> | 2018-10-29 17:34:02 +0000 |
| commit | 86f9823ead97a605cc1bc9ac24dda7a813e35bed (patch) | |
| tree | 20a4b766db75f1cc42f21dae67dbd8b4dec3bfcc | |
| parent | cab37c5f912d48f199d14b3e7fee659e254a20c1 (diff) | |
| download | pkgsrc-86f9823ead97a605cc1bc9ac24dda7a813e35bed.tar.gz | |
Pullup ticket #5862 - requested by taca
lang/ruby: security update
lang/ruby23-base: security update
Revisions pulled up:
- lang/ruby/rubyversion.mk 1.198
- lang/ruby23-base/distinfo 1.17
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: taca
Date: Thu Oct 18 14:24:07 UTC 2018
Modified Files:
pkgsrc/lang/ruby: rubyversion.mk
pkgsrc/lang/ruby23-base: distinfo
Log Message:
lang/ruby23-base: update o 2.3.8
Ruby 2.3.8 Released
Ruby 2.3.8 has been released. This release includes several security
fixes. Please check the topics below for details.
* CVE-2018-16396: Tainted flags are not propagated in Array#pack and
String#unpack with some directives
* CVE-2018-16395: OpenSSL::X509::Name equality check does not work
correctly This release also includes a non-security fix to support
Visual Studio 2014 with Windows 10 October 2018 Update for
maintenance reasons.
Ruby 2.3 is now under the state of the security maintenance phase,
until the end of the March of 2019. After the date, maintenance of
Ruby 2.3 will be ended. We recommend you start planning migration to
newer versions of Ruby, such as 2.5 or 2.4.
To generate a diff of this commit:
cvs rdiff -u -r1.197 -r1.198 pkgsrc/lang/ruby/rubyversion.mk
cvs rdiff -u -r1.16 -r1.17 pkgsrc/lang/ruby23-base/distinfo
| -rw-r--r-- | lang/ruby/rubyversion.mk | 4 | ||||
| -rw-r--r-- | lang/ruby23-base/distinfo | 10 |
2 files changed, 7 insertions, 7 deletions
diff --git a/lang/ruby/rubyversion.mk b/lang/ruby/rubyversion.mk index 88dacb33964..0e461e3d492 100644 --- a/lang/ruby/rubyversion.mk +++ b/lang/ruby/rubyversion.mk @@ -1,4 +1,4 @@ -# $NetBSD: rubyversion.mk,v 1.195.6.2 2018/10/29 17:25:26 spz Exp $ +# $NetBSD: rubyversion.mk,v 1.195.6.3 2018/10/29 17:34:02 spz Exp $ # # This file determines which Ruby version is used as a dependency for @@ -215,7 +215,7 @@ RUBY_VERSION_REQD?= ${PKGNAME_REQD:C/ruby([0-9][0-9])-.*/\1/} # current supported Ruby's version RUBY22_VERSION= 2.2.10 -RUBY23_VERSION= 2.3.7 +RUBY23_VERSION= 2.3.8 RUBY24_VERSION= 2.4.5 RUBY25_VERSION= 2.5.3 diff --git a/lang/ruby23-base/distinfo b/lang/ruby23-base/distinfo index 81b44e66826..5797a00f4ab 100644 --- a/lang/ruby23-base/distinfo +++ b/lang/ruby23-base/distinfo @@ -1,9 +1,9 @@ -$NetBSD: distinfo,v 1.16 2018/03/29 03:09:35 taca Exp $ +$NetBSD: distinfo,v 1.16.6.1 2018/10/29 17:34:02 spz Exp $ -SHA1 (ruby-2.3.7.tar.bz2) = 3bb88965405da5e4de2432eeb445fffa8a66fb33 -RMD160 (ruby-2.3.7.tar.bz2) = cb8f83f773a0d1cfc8595148ac61aff253f6b67d -SHA512 (ruby-2.3.7.tar.bz2) = e72754f7703f0706c4b0bccd053035536053451fe069a55427984cc0bc5692b86bd51c243c5f62f78527c66b08300d2e4aa19b73e6ded13d6020aa2450e66a7d -Size (ruby-2.3.7.tar.bz2) = 14421177 bytes +SHA1 (ruby-2.3.8.tar.bz2) = 91b31abdba00a346c155fd32bd32d3cec3b73bc4 +RMD160 (ruby-2.3.8.tar.bz2) = 1e7cc76027730979123cdd02691ce5193cd9df7a +SHA512 (ruby-2.3.8.tar.bz2) = 6d79e0d25757fd37188a8db3e630a52539bce7927fcb779a2ce9a97b9e5f330753035c16843552f1a1fb6c9a1e5c0f916b3cc8b5c0bfe81e20f35f8442e40ae8 +Size (ruby-2.3.8.tar.bz2) = 14418609 bytes SHA1 (patch-configure) = 3737bf52082288b02e7382d71a322f4822c5abe4 SHA1 (patch-ext_dbm_extconf.rb) = c998f8735db54b1ae2bc8b6caa359ce88bc7a45b SHA1 (patch-ext_openssl_ossl__ssl.c) = 24e794aae278da6204e29212d9e2add0b0119ea4 |