Pullup ticket #6653 - requested by taca

databases/ruby-activerecord52: security update devel/ruby-activejob52: security update devel/ruby-activemodel52: security update devel/ruby-activestorage52: security update devel/ruby-activesupport52: security update devel/ruby-railties52: security update mail/ruby-actionmailer52: security update www/ruby-actioncable52: security update www/ruby-actionpack52: security update www/ruby-actionview52: security update www/ruby-rails52: security update Revisions pulled up: - databases/ruby-activerecord52/distinfo 1.15 - devel/ruby-activejob52/distinfo 1.15 - devel/ruby-activemodel52/distinfo 1.15 - devel/ruby-activestorage52/distinfo 1.15 - devel/ruby-activesupport52/distinfo 1.15 - devel/ruby-railties52/Makefile 1.4 - devel/ruby-railties52/distinfo 1.15 - lang/ruby/rails.mk 1.129 - mail/ruby-actionmailer52/distinfo 1.15 - www/ruby-actioncable52/distinfo 1.15 - www/ruby-actionpack52/distinfo 1.15 - www/ruby-actionview52/distinfo 1.15 - www/ruby-rails52/distinfo 1.15 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Wed Jul 13 14:41:09 UTC 2022 Modified Files: pkgsrc/databases/ruby-activerecord52: distinfo pkgsrc/devel/ruby-activejob52: distinfo pkgsrc/devel/ruby-activemodel52: distinfo pkgsrc/devel/ruby-activestorage52: distinfo pkgsrc/devel/ruby-activesupport52: distinfo pkgsrc/devel/ruby-railties52: Makefile distinfo pkgsrc/lang/ruby: rails.mk pkgsrc/mail/ruby-actionmailer52: distinfo pkgsrc/www/ruby-actioncable52: distinfo pkgsrc/www/ruby-actionpack52: distinfo pkgsrc/www/ruby-actionview52: distinfo pkgsrc/www/ruby-rails52: distinfo Log Message: www/ruby-rails52: update to 5.2.8.1 Rails 5.2.8.1 (2022-07-12) updates databases/ruby-activerecord52 only. databases/ruby-activerecord52 * Change ActiveRecord::Coders::YAMLColumn default to safe_load This adds two new configuration options The configuration options are as follows: o config.active_storage.use_yaml_unsafe_load When set to true, this configuration option tells Rails to use the old "unsafe" YAML loading strategy, maintaining the existing behavior but leaving the possible escalation vulnerability in place. Setting this option to true is *not* recommended, but can aid in upgrading. o config.active_record.yaml_column_permitted_classes The "safe YAML" loading method does not allow all classes to be deserialized by default. This option allows you to specify classes deemed "safe" in your application. For example, if your application uses Symbol and Time in serialized data, you can add Symbol and Time to the allowed list as follows: config.active_record.yaml_column_permitted_classes = [Symbol, Date, Time] [CVE-2022-32224] To generate a diff of this commit: cvs rdiff -u -r1.14 -r1.15 pkgsrc/databases/ruby-activerecord52/distinfo cvs rdiff -u -r1.14 -r1.15 pkgsrc/devel/ruby-activejob52/distinfo cvs rdiff -u -r1.14 -r1.15 pkgsrc/devel/ruby-activemodel52/distinfo cvs rdiff -u -r1.14 -r1.15 pkgsrc/devel/ruby-activestorage52/distinfo cvs rdiff -u -r1.14 -r1.15 pkgsrc/devel/ruby-activesupport52/distinfo cvs rdiff -u -r1.3 -r1.4 pkgsrc/devel/ruby-railties52/Makefile cvs rdiff -u -r1.14 -r1.15 pkgsrc/devel/ruby-railties52/distinfo cvs rdiff -u -r1.128 -r1.129 pkgsrc/lang/ruby/rails.mk cvs rdiff -u -r1.14 -r1.15 pkgsrc/mail/ruby-actionmailer52/distinfo cvs rdiff -u -r1.14 -r1.15 pkgsrc/www/ruby-actioncable52/distinfo cvs rdiff -u -r1.14 -r1.15 pkgsrc/www/ruby-actionpack52/distinfo cvs rdiff -u -r1.14 -r1.15 pkgsrc/www/ruby-actionview52/distinfo cvs rdiff -u -r1.14 -r1.15 pkgsrc/www/ruby-rails52/distinfo
author: spz <spz@pkgsrc.org> 2022-07-23 17:05:52 +0000
committer: spz <spz@pkgsrc.org> 2022-07-23 17:05:52 +0000
commit: 5ff6e74449e32a0b5b4039cfd68c5e757034468d (patch)
tree: 8601b24811768bed0b5b839ea670984140b2b14a
parent: 3dfc97e19bff03a3c41caa0f6493656c363f978e (diff)
download: pkgsrc-5ff6e74449e32a0b5b4039cfd68c5e757034468d.tar.gz
13 files changed, 48 insertions, 50 deletions
diff --git a/databases/ruby-activerecord52/distinfo b/databases/ruby-activerecord52/distinfo
index 95a52b3b90a..8234c79c396 100644
--- a/databases/ruby-activerecord52/distinfo
+++ b/databases/ruby-activerecord52/distinfo
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.14 2022/06/07 14:48:12 taca Exp $
+$NetBSD: distinfo,v 1.14.2.1 2022/07/23 17:05:52 spz Exp $
 
-BLAKE2s (activerecord-5.2.8.gem) = 424c01dc0d7c4b8e3d8e363fb534bf6de40995d1d4d411b6edad7d1809e83ad0
-SHA512 (activerecord-5.2.8.gem) = e3c4ae2c318a9ac71a7ba2e7fcca69be238cd3433ebe9dde94e67d03d5da1dcdcd06c19aa8b828a8a796680b81cee330b041829fa90418661e7c6e96500afcc7
-Size (activerecord-5.2.8.gem) = 358400 bytes
+BLAKE2s (activerecord-5.2.8.1.gem) = 3bb38557e307386380b2f386eb0a0e131f1ce82030d9d99933f620619387009e
+SHA512 (activerecord-5.2.8.1.gem) = dd0a7b2f2b6cfcc968ca989ecd979a6e8326c2bf6474beb132b0f9e0298177fb916571fb219cf66b32aa20718a6d29cffcba60beee4a2449a2677306d989d49e
+Size (activerecord-5.2.8.1.gem) = 359424 bytes
diff --git a/devel/ruby-activejob52/distinfo b/devel/ruby-activejob52/distinfo
index bee0a27a2b0..b4dc46cd553 100644
--- a/devel/ruby-activejob52/distinfo
+++ b/devel/ruby-activejob52/distinfo
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.14 2022/06/07 14:48:12 taca Exp $
+$NetBSD: distinfo,v 1.14.2.1 2022/07/23 17:05:52 spz Exp $
 
-BLAKE2s (activejob-5.2.8.gem) = 95b0a069f29b53525e6f3a6ca996abd6270fff82405a2737ccebafdacbee9434
-SHA512 (activejob-5.2.8.gem) = 5d708317c7fbff448710ac2c7958c01f4d3453a62d12913fc6e28dc4aa55a7914d5f37e2be652e7827cb56cc5d5607dce97e0dbe7f7a7be272cdb848f811223a
-Size (activejob-5.2.8.gem) = 26624 bytes
+BLAKE2s (activejob-5.2.8.1.gem) = 3278bf01bfa97d23ce6453cc2f50d083873d1bbfeaa9e693bfcbfcc98b05db10
+SHA512 (activejob-5.2.8.1.gem) = 9b9d9e87d3799dfe4e01ba6f3f99a545aab77ff56bcd18758acf23837357d8119d6077429dc25c1cf0f51a06fcd72fe8369f924db1a7d473d2c4280d45a8bce9
+Size (activejob-5.2.8.1.gem) = 26624 bytes
diff --git a/devel/ruby-activemodel52/distinfo b/devel/ruby-activemodel52/distinfo
index 4db313c28a2..0720f15930f 100644
--- a/devel/ruby-activemodel52/distinfo
+++ b/devel/ruby-activemodel52/distinfo
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.14 2022/06/07 14:48:12 taca Exp $
+$NetBSD: distinfo,v 1.14.2.1 2022/07/23 17:05:52 spz Exp $
 
-BLAKE2s (activemodel-5.2.8.gem) = 4a8767c2ce199393d4100d3c8e50d64b1a449e75fd495b4d7db52eaf71bbda68
-SHA512 (activemodel-5.2.8.gem) = 489bdf4637abf50079d2e21f9054ae27eae9016a559d6ae59fc79c3cbc8bd8767a30fa5b8f190c008ae21be11d7ea08b4e6214c17fe811941c7101f8e73e3720
-Size (activemodel-5.2.8.gem) = 56832 bytes
+BLAKE2s (activemodel-5.2.8.1.gem) = 4106ffec48852c29c4708725be30e49344826df23c1a251355f009a86a3ace80
+SHA512 (activemodel-5.2.8.1.gem) = 87b432d530f058396b0e23ebefe77d7dc888d20d29f7fa9794db3d544a96e6fc1c31b60b8073b5e17ceacf7ebe9bc0790950e1e18de4aaf06d5a247b25f90ad6
+Size (activemodel-5.2.8.1.gem) = 56832 bytes
diff --git a/devel/ruby-activestorage52/distinfo b/devel/ruby-activestorage52/distinfo
index 546c2cf4f7f..bcd6c637fbb 100644
--- a/devel/ruby-activestorage52/distinfo
+++ b/devel/ruby-activestorage52/distinfo
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.14 2022/06/07 14:48:12 taca Exp $
+$NetBSD: distinfo,v 1.14.2.1 2022/07/23 17:05:52 spz Exp $
 
-BLAKE2s (activestorage-5.2.8.gem) = e1214249012a8d4d8fd48242c7d9c49670c0b83a3cb9938fc6a9edb06631f4ef
-SHA512 (activestorage-5.2.8.gem) = 5511d71aaafe70f272c721e0bb40cedb6f477d2719c3cfe4228aad04c43d1cb7ab7c8f63cbd6c43e64c9247077b6a6ad3969c93fc40ba40a053604d243be32fd
-Size (activestorage-5.2.8.gem) = 46592 bytes
+BLAKE2s (activestorage-5.2.8.1.gem) = ffc66d4d38e49595245d86a2441e97e055d03e17f246dab01ed732b8cb27b3f9
+SHA512 (activestorage-5.2.8.1.gem) = c6fb7ef3f47ed6e37b35cbe5a4a04dab15f391cab25c91224a6e6330e41d6c94787c482143d4064a662fa3fabae95dd53fbd56db7f970ac354961633c510bf26
+Size (activestorage-5.2.8.1.gem) = 46592 bytes
diff --git a/devel/ruby-activesupport52/distinfo b/devel/ruby-activesupport52/distinfo
index 78a1a40467d..9d508f68bcc 100644
--- a/devel/ruby-activesupport52/distinfo
+++ b/devel/ruby-activesupport52/distinfo
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.14 2022/06/07 14:48:12 taca Exp $
+$NetBSD: distinfo,v 1.14.2.1 2022/07/23 17:05:52 spz Exp $
 
-BLAKE2s (activesupport-5.2.8.gem) = 0df0637e6b38f4e82fe146130daaa9ca0db635d0065b459b3ca04d732c9e3dc1
-SHA512 (activesupport-5.2.8.gem) = 979bb2163d592c02b96dc19e20036bd744fb7a961a744296854ab8a0e752de67c06026b94e00ed083f41843921cc508db96d61a247a01cd1c2279789723ad4f7
-Size (activesupport-5.2.8.gem) = 382976 bytes
+BLAKE2s (activesupport-5.2.8.1.gem) = 17e84d1c6a2a5c5727e5aeb2285b89aeadff0e44c13bb56934c269f336df9d22
+SHA512 (activesupport-5.2.8.1.gem) = 48074315729ddc43058c0e7545044a774f69ff7e47600acc92ae1776311550f00e30a6ebe62ca57548fc7e288cd906013fdf3694d86852b6caafeeced973b5ba
+Size (activesupport-5.2.8.1.gem) = 382976 bytes
diff --git a/devel/ruby-railties52/Makefile b/devel/ruby-railties52/Makefile
index 5ee2deb626c..cd6d4fe455e 100644
--- a/devel/ruby-railties52/Makefile
+++ b/devel/ruby-railties52/Makefile
@@ -1,4 +1,4 @@
-# $NetBSD: Makefile,v 1.3 2022/06/07 14:48:13 taca Exp $
+# $NetBSD: Makefile,v 1.3.2.1 2022/07/23 17:05:52 spz Exp $
 
 DISTNAME=	railties-${RAILS_VERSION}
 PKGNAME=	${RUBY_PKGPREFIX}-railties${RUBY_RAILS}-${RAILS_VERSION}
@@ -20,14 +20,12 @@ RUBY_RAILS_ACCEPTED=	52
 RUBY_RAILS_STRICT_DEP=	yes
 RUBYGEM_OPTIONS+=	--format-executable
 OVERRIDE_GEMSPEC+=	:executables rails=rails${RUBY_RAILS} \
-			:files exe/rails=exe/rails${RUBY_RAILS} \
-			:files lib/rails/.DS_Store=
+			:files exe/rails=exe/rails${RUBY_RAILS}
 
 pre-configure:
 	${TEST} -f ${WRKSRC}/exe/rails${RUBY_RAILS} || \
 		${MV} ${WRKSRC}/exe/rails ${WRKSRC}/exe/rails${RUBY_RAILS}
 	${CHMOD} ${BINMODE} ${WRKSRC}/exe/rails${RUBY_RAILS}
-	${RM} ${WRKSRC}/lib/rails/.DS_Store
 
 .include "../../lang/ruby/gem.mk"
 .include "../../mk/bsd.pkg.mk"
diff --git a/devel/ruby-railties52/distinfo b/devel/ruby-railties52/distinfo
index e481e5095b5..e3d48afd934 100644
--- a/devel/ruby-railties52/distinfo
+++ b/devel/ruby-railties52/distinfo
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.14 2022/06/07 14:48:13 taca Exp $
+$NetBSD: distinfo,v 1.14.2.1 2022/07/23 17:05:52 spz Exp $
 
-BLAKE2s (railties-5.2.8.gem) = 8a28e92d4fd905db207e09ce7f8f7ea9c311f04840fdb10ebd8aa9bec355ae3b
-SHA512 (railties-5.2.8.gem) = c6d3b7ef1294c99301ce75045e25617ce14b42c0b29e855967f9ff9bba1d331212113e10207934f7470f4fbd327026627d4edf60aa5e3f189f82c594f6613359
-Size (railties-5.2.8.gem) = 237056 bytes
+BLAKE2s (railties-5.2.8.1.gem) = e0d2517338cb14d7a3db10916584bc973d978324a042615552028239e2cf9548
+SHA512 (railties-5.2.8.1.gem) = 2cd40d0a967c85e4e908e820aed8bdee42fa85dcf8bd877e5ced609a072936e269640853f6eb2135c6a214b0cae9d01212a5a94da36935ac6ce500acfd7c8fe8
+Size (railties-5.2.8.1.gem) = 236544 bytes
diff --git a/lang/ruby/rails.mk b/lang/ruby/rails.mk
index c024fa3330e..e28fb714441 100644
--- a/lang/ruby/rails.mk
+++ b/lang/ruby/rails.mk
@@ -1,4 +1,4 @@
-# $NetBSD: rails.mk,v 1.128 2022/06/07 15:12:58 taca Exp $
+# $NetBSD: rails.mk,v 1.128.2.1 2022/07/23 17:05:52 spz Exp $
 
 .if !defined(_RUBY_RAILS_MK)
 _RUBY_RAILS_MK=	# defined
@@ -47,7 +47,7 @@ _RUBY_RAILS_MK=	# defined
 #
 # current Ruby on Rails versions.
 #
-RUBY_RAILS52_VERSION?=	5.2.8
+RUBY_RAILS52_VERSION?=	5.2.8.1
 RUBY_RAILS60_VERSION?=	6.0.5
 RUBY_RAILS61_VERSION?=	6.1.6
 RUBY_RAILS70_VERSION?=	7.0.3
diff --git a/mail/ruby-actionmailer52/distinfo b/mail/ruby-actionmailer52/distinfo
index 966c3c2d874..7867d963b82 100644
--- a/mail/ruby-actionmailer52/distinfo
+++ b/mail/ruby-actionmailer52/distinfo
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.14 2022/06/07 14:48:12 taca Exp $
+$NetBSD: distinfo,v 1.14.2.1 2022/07/23 17:05:52 spz Exp $
 
-BLAKE2s (actionmailer-5.2.8.gem) = f4dcfc9064ac76d5e0754b13506b00359613ac26d10a5f1c8ce2432b394fe22c
-SHA512 (actionmailer-5.2.8.gem) = bc07878b59c3e7506e35580d563144d94e144a73b1fe777242b631b77031e7fc983aed641324867efa0bd45c0887f977cc1b39291ee0ca4cfd214aca823746e4
-Size (actionmailer-5.2.8.gem) = 29696 bytes
+BLAKE2s (actionmailer-5.2.8.1.gem) = 57bb2c12faaa1755a909a6f856bd1bad386dfd60c878d10341c4308a1e8f1572
+SHA512 (actionmailer-5.2.8.1.gem) = 169b64c066625164624d9ba67c0f0de58a81446b252aacc80d5100b0d25788928d025731915d1af92a6d8e28981d36e36146efde815872b1854c04466fecaecd
+Size (actionmailer-5.2.8.1.gem) = 29696 bytes
diff --git a/www/ruby-actioncable52/distinfo b/www/ruby-actioncable52/distinfo
index 8a487a30526..b32f772b3ae 100644
--- a/www/ruby-actioncable52/distinfo
+++ b/www/ruby-actioncable52/distinfo
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.14 2022/06/07 14:48:12 taca Exp $
+$NetBSD: distinfo,v 1.14.2.1 2022/07/23 17:05:53 spz Exp $
 
-BLAKE2s (actioncable-5.2.8.gem) = 000cfab9461cc2e77fd9c416e5cc3e87e347926056ff3ef4c76ebc4ba8f6d711
-SHA512 (actioncable-5.2.8.gem) = e078a33524f5c4f914b3965c0e702e4125b19f1cf6282968e9e7e325a7cfcd9c5c7880256416d92b74ac8fdbb495cf95c9e81b2aee85f3c139870fe876af9365
-Size (actioncable-5.2.8.gem) = 41472 bytes
+BLAKE2s (actioncable-5.2.8.1.gem) = 10df8b2c1d857a73b457211145725e666f9314273525f9cc38dfd370c61b520e
+SHA512 (actioncable-5.2.8.1.gem) = c6048e36400aa68696f985a9a9cb359af2d25430d60dc1230ced0866bfd2ce249b80baf9979fe52ceae58f62662c987e40f7962a6f736a4bfc2f0f5594d1a0b0
+Size (actioncable-5.2.8.1.gem) = 41472 bytes
diff --git a/www/ruby-actionpack52/distinfo b/www/ruby-actionpack52/distinfo
index 0a5ef7e21d6..96d035cfd13 100644
--- a/www/ruby-actionpack52/distinfo
+++ b/www/ruby-actionpack52/distinfo
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.14 2022/06/07 14:48:12 taca Exp $
+$NetBSD: distinfo,v 1.14.2.1 2022/07/23 17:05:53 spz Exp $
 
-BLAKE2s (actionpack-5.2.8.gem) = ef053fede2c4f39a18d0a7d4f791270838ca4c84146ac77998f9715b0a120dba
-SHA512 (actionpack-5.2.8.gem) = 25d5ee40f698bebfd9fdab70d27129f04c42571d4e09765e3d92c5e9986c740c2eeb7d4d937ec093417baa8a7f33ea4a130e047522f39d1e02f2c7c9fb32d41f
-Size (actionpack-5.2.8.gem) = 214528 bytes
+BLAKE2s (actionpack-5.2.8.1.gem) = 027393689d47bdfee362ff34fa6d46c7a48ab23c314282f75fe73e06a25386e9
+SHA512 (actionpack-5.2.8.1.gem) = cb16e2293630bae2448c7a8960d8911f11b09c9884223f21a906964278c748105eb39dbdcb3b2bd055fe1c9df0e7d65c0480cb74645f3b92276a68abd3ab6235
+Size (actionpack-5.2.8.1.gem) = 214528 bytes
diff --git a/www/ruby-actionview52/distinfo b/www/ruby-actionview52/distinfo
index c62e60aba96..bc4ac70a24a 100644
--- a/www/ruby-actionview52/distinfo
+++ b/www/ruby-actionview52/distinfo
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.14 2022/06/07 14:48:12 taca Exp $
+$NetBSD: distinfo,v 1.14.2.1 2022/07/23 17:05:53 spz Exp $
 
-BLAKE2s (actionview-5.2.8.gem) = d38dcb1e70a576b7a8866b5131b6feea3de7c304d03239238f83fc77656e4e3f
-SHA512 (actionview-5.2.8.gem) = c69bd0039f265bdbfce73b912419c4a4ecc418038b180164810682f487d44f840309832a83d999a9b6965c98e17f45261323bd604640635b14df90165a063b40
-Size (actionview-5.2.8.gem) = 163840 bytes
+BLAKE2s (actionview-5.2.8.1.gem) = 277db3a85706a9d6a0d247fec8f3c9b16d4af453ef39a337564b8fa2992f7ad6
+SHA512 (actionview-5.2.8.1.gem) = 2d9b7a9ac66812a16df065732ed340519a6eacd08dd28da6d4a1eafeea028749a9194d27261457402ffe3a5a6df68762d07339a88ce9b559b278165a3a62e098
+Size (actionview-5.2.8.1.gem) = 163840 bytes
diff --git a/www/ruby-rails52/distinfo b/www/ruby-rails52/distinfo
index 7eae231b7c6..69c99b97fa4 100644
--- a/www/ruby-rails52/distinfo
+++ b/www/ruby-rails52/distinfo
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.14 2022/06/07 14:48:13 taca Exp $
+$NetBSD: distinfo,v 1.14.2.1 2022/07/23 17:05:53 spz Exp $
 
-BLAKE2s (rails-5.2.8.gem) = 478cef0c7cb0c022163db5ecbae2f9c87663ae20a639dfdb52aed92d3331c521
-SHA512 (rails-5.2.8.gem) = b8ac1afc31a13ec9736ef81dbdd3ad89c4c7337e766e3598ea0c467fb06b925dd29372bef7b6b8f7b26ca9a51c1e831621338753519075b3d03f4bf7c237fe82
-Size (rails-5.2.8.gem) = 6656 bytes
+BLAKE2s (rails-5.2.8.1.gem) = a24b69fee72bfdca9a416e9e9c45368b043af45b0f73f9bd94b60c278f07eb9d
+SHA512 (rails-5.2.8.1.gem) = 556ac7f136d963f029253664dc4d4eb417e5892d33bf11d59ede67f7120b83a72c00e2516670fcbcd86ee28c90f5fc75c89a44e1294510b81e527155d8690279
+Size (rails-5.2.8.1.gem) = 6656 bytes
author	spz <spz@pkgsrc.org>	2022-07-23 17:05:52 +0000
committer	spz <spz@pkgsrc.org>	2022-07-23 17:05:52 +0000
commit	5ff6e74449e32a0b5b4039cfd68c5e757034468d (patch)
tree	8601b24811768bed0b5b839ea670984140b2b14a
parent	3dfc97e19bff03a3c41caa0f6493656c363f978e (diff)
download	pkgsrc-5ff6e74449e32a0b5b4039cfd68c5e757034468d.tar.gz