diff options
| author | spz <spz@pkgsrc.org> | 2018-10-29 17:25:26 +0000 |
|---|---|---|
| committer | spz <spz@pkgsrc.org> | 2018-10-29 17:25:26 +0000 |
| commit | cab37c5f912d48f199d14b3e7fee659e254a20c1 (patch) | |
| tree | c2314cea92e86fda8f647951ac163f8b13286423 | |
| parent | f173532c66926684436ba3e65957188d3f9d531a (diff) | |
| download | pkgsrc-cab37c5f912d48f199d14b3e7fee659e254a20c1.tar.gz | |
Pullup ticket #5865 - requested by taca
lang/ruby: security update
lang/ruby25-base: security update
Revisions pulled up:
- lang/ruby/rubyversion.mk 1.197
- lang/ruby25-base/distinfo 1.7
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: taca
Date: Thu Oct 18 14:21:36 UTC 2018
Modified Files:
pkgsrc/lang/ruby: rubyversion.mk
pkgsrc/lang/ruby25-base: distinfo
Log Message:
lang/ruby25-base: update to 2.5.3
Ruby 2.5.2 Released
Ruby 2.5.2 has been released.
This release includes some bug fixes and some security fixes.
* CVE-2018-16396: Tainted flags are not propagated in Array#pack and
String#unpack with some directives
* CVE-2018-16395: OpenSSL::X509::Name equality check does not work correctly
There are also some bug fixes. See commit logs for more details.
Ruby 2.5.3 Released
Ruby 2.5.3 has been released.
There were some missing files in the release packages of 2.5.2 which are
necessary for building. See details in [Bug #15232].
This release is just for fixing the packaging issue. This release doesn¢t
contain any additional bug fixes from 2.5.2.
To generate a diff of this commit:
cvs rdiff -u -r1.196 -r1.197 pkgsrc/lang/ruby/rubyversion.mk
cvs rdiff -u -r1.6 -r1.7 pkgsrc/lang/ruby25-base/distinfo
| -rw-r--r-- | lang/ruby/rubyversion.mk | 6 | ||||
| -rw-r--r-- | lang/ruby25-base/distinfo | 10 |
2 files changed, 8 insertions, 8 deletions
diff --git a/lang/ruby/rubyversion.mk b/lang/ruby/rubyversion.mk index e324fc99b0a..88dacb33964 100644 --- a/lang/ruby/rubyversion.mk +++ b/lang/ruby/rubyversion.mk @@ -1,4 +1,4 @@ -# $NetBSD: rubyversion.mk,v 1.195.6.1 2018/10/29 07:53:23 spz Exp $ +# $NetBSD: rubyversion.mk,v 1.195.6.2 2018/10/29 17:25:26 spz Exp $ # # This file determines which Ruby version is used as a dependency for @@ -217,7 +217,7 @@ RUBY_VERSION_REQD?= ${PKGNAME_REQD:C/ruby([0-9][0-9])-.*/\1/} RUBY22_VERSION= 2.2.10 RUBY23_VERSION= 2.3.7 RUBY24_VERSION= 2.4.5 -RUBY25_VERSION= 2.5.1 +RUBY25_VERSION= 2.5.3 # current API compatible version; used for version of shared library RUBY22_API_VERSION= 2.2.0 @@ -344,7 +344,7 @@ RUBY_XML_RPC_VERSION= 0.3.0 RUBY_BIGDECIMAL_VERSION= 1.3.4 RUBY_JSON_VERSION= 2.1.0 RUBY_IO_CONSOLE_VERSION= 0.4.6 -RUBY_OPENSSL_VERSION= 2.1.0 +RUBY_OPENSSL_VERSION= 2.1.2 RUBY_PSYCH_VERSION= 3.0.2 RUBY_SUFFIX= ${_RUBY_VER_MAJOR}${_RUBY_VER_MINOR} diff --git a/lang/ruby25-base/distinfo b/lang/ruby25-base/distinfo index c41f1898793..e0ae8f6f0b8 100644 --- a/lang/ruby25-base/distinfo +++ b/lang/ruby25-base/distinfo @@ -1,9 +1,9 @@ -$NetBSD: distinfo,v 1.6 2018/03/29 03:06:57 taca Exp $ +$NetBSD: distinfo,v 1.6.6.1 2018/10/29 17:25:26 spz Exp $ -SHA1 (ruby-2.5.1.tar.bz2) = 251fdb5ac10783b036fe923aa7986be582062361 -RMD160 (ruby-2.5.1.tar.bz2) = a4cd4e9b38103d65da2954681d5d0c34b17b69ae -SHA512 (ruby-2.5.1.tar.bz2) = 82e799ecf7257a9f5fe8691c50a478b0f91bd4bdca50341c839634b0da5cd76c5556965cb9437264b66438434c94210c949fe9dab88cbc5b3b7fa34b5382659b -Size (ruby-2.5.1.tar.bz2) = 14000644 bytes +SHA1 (ruby-2.5.3.tar.bz2) = d47ede7dab79de25fcc274dfcad0f92f389a4313 +RMD160 (ruby-2.5.3.tar.bz2) = c711c721143ece0f412676e573f09c13f1218b6a +SHA512 (ruby-2.5.3.tar.bz2) = 6fe89fe9d406bb454457442f908774577369ab2501da4fd15725ccbab77675b88faad739a6c8ad1c7b6690b439a27de5e08035b7546406cdeca65c7b295e2c77 +Size (ruby-2.5.3.tar.bz2) = 14159874 bytes SHA1 (patch-configure) = 965f31ec3ae2fb91479f02cb3b19ea7518685718 SHA1 (patch-ext_dbm_extconf.rb) = c998f8735db54b1ae2bc8b6caa359ce88bc7a45b SHA1 (patch-lib_mkmf.rb) = 75d2261a8282a00cd5f811a5e629302d1667207e |