www/ruby-rails60: update to 6.0.3.5

databases/ruby-activerecord60: ## Rails 6.0.3.5 (February 10, 2021) ## * Fix possible DoS vector in PostgreSQL money type Carefully crafted input can cause a DoS via the regular expressions used for validating the money format in the PostgreSQL adapter. This patch fixes the regexp. Thanks to @dee-see from Hackerone for this patch! [CVE-2021-22880] *Aaron Patterson* www/ruby-actionpack60 ## Rails 6.0.3.5 (February 10, 2021) ## * Prevent open redirect when allowed host starts with a dot [CVE-2021-22881] Thanks to @tktech (https://hackerone.com/tktech) for reporting this issue and the patch! *Aaron Patterson*
author: taca <taca@pkgsrc.org> 2021-02-11 14:30:06 +0000
committer: taca <taca@pkgsrc.org> 2021-02-11 14:30:06 +0000
commit: 5df39e478abc6cb140240761dce26516634d11b0 (patch)
tree: d3e46b610cd3d4be56bb85673db6cb2f62c46563 /lang
parent: f96317c14b58c402ecdc890d1a8e20ad49bdc304 (diff)
download: pkgsrc-5df39e478abc6cb140240761dce26516634d11b0.tar.gz
1 files changed, 2 insertions, 2 deletions
diff --git a/lang/ruby/rails.mk b/lang/ruby/rails.mk
index 980e625fdab..95562bc854f 100644
--- a/lang/ruby/rails.mk
+++ b/lang/ruby/rails.mk
@@ -1,4 +1,4 @@
-# $NetBSD: rails.mk,v 1.92 2021/02/11 14:23:41 taca Exp $
+# $NetBSD: rails.mk,v 1.93 2021/02/11 14:30:06 taca Exp $
 
 .if !defined(_RUBY_RAILS_MK)
 _RUBY_RAILS_MK=	# defined
@@ -48,7 +48,7 @@ _RUBY_RAILS_MK=	# defined
 # current Ruby on Rails versions.
 #
 RUBY_RAILS52_VERSION?=	5.2.4.5
-RUBY_RAILS60_VERSION?=	6.0.3.4
+RUBY_RAILS60_VERSION?=	6.0.3.5
 
 RUBY_RAILS_ACCEPTED?=	# defined
 RUBY_RAILS_DEFAULT?=	52
author	taca <taca@pkgsrc.org>	2021-02-11 14:30:06 +0000
committer	taca <taca@pkgsrc.org>	2021-02-11 14:30:06 +0000
commit	5df39e478abc6cb140240761dce26516634d11b0 (patch)
tree	d3e46b610cd3d4be56bb85673db6cb2f62c46563 /lang
parent	f96317c14b58c402ecdc890d1a8e20ad49bdc304 (diff)
download	pkgsrc-5df39e478abc6cb140240761dce26516634d11b0.tar.gz