diff options
author | taca <taca@pkgsrc.org> | 2016-03-15 15:45:46 +0000 |
---|---|---|
committer | taca <taca@pkgsrc.org> | 2016-03-15 15:45:46 +0000 |
commit | 00c4cd582d7b8f8d25344e26186afebb3d36f2c1 (patch) | |
tree | a566202904e4e9b9648cfddec99ee23ff4325ea8 /textproc | |
parent | df186f48f93b335e7667b7e0f5ac93f8132648df (diff) | |
download | pkgsrc-00c4cd582d7b8f8d25344e26186afebb3d36f2c1.tar.gz |
Update ruby-nokogiri to 1.6.7.2.
Below security problem dose not affect to pkgsrc since we do not use bundlerd
libxml2.
=== 1.6.7.2 / 2015-01-20
This version pulls in several upstream patches to the vendored libxml2 and libxslt to address:
CVE-2015-7499
Ubuntu classifies this as "Priority: Low", RedHat classifies this as "Impact: Moderate", and NIST classifies this as "Severity: 5.0 (MEDIUM)".
MITRE record is https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7499
Diffstat (limited to 'textproc')
-rw-r--r-- | textproc/ruby-nokogiri/Makefile | 4 | ||||
-rw-r--r-- | textproc/ruby-nokogiri/PLIST | 5 | ||||
-rw-r--r-- | textproc/ruby-nokogiri/distinfo | 10 |
3 files changed, 11 insertions, 8 deletions
diff --git a/textproc/ruby-nokogiri/Makefile b/textproc/ruby-nokogiri/Makefile index f45e6017440..071b699cbd4 100644 --- a/textproc/ruby-nokogiri/Makefile +++ b/textproc/ruby-nokogiri/Makefile @@ -1,6 +1,6 @@ -# $NetBSD: Makefile,v 1.30 2016/01/10 11:55:44 tsutsui Exp $ +# $NetBSD: Makefile,v 1.31 2016/03/15 15:45:46 taca Exp $ -DISTNAME= nokogiri-1.6.7.1 +DISTNAME= nokogiri-1.6.7.2 CATEGORIES= textproc MAINTAINER= pkgsrc-users@NetBSD.org diff --git a/textproc/ruby-nokogiri/PLIST b/textproc/ruby-nokogiri/PLIST index 33ed514ec97..20c17e05a8d 100644 --- a/textproc/ruby-nokogiri/PLIST +++ b/textproc/ruby-nokogiri/PLIST @@ -1,4 +1,4 @@ -@comment $NetBSD: PLIST,v 1.18 2016/01/10 11:55:44 tsutsui Exp $ +@comment $NetBSD: PLIST,v 1.19 2016/03/15 15:45:46 taca Exp $ bin/nokogiri${RUBY_SUFFIX} ${GEM_HOME}/cache/${GEM_NAME}.gem ${GEM_EXTSDIR}/gem.build_complete @@ -174,6 +174,9 @@ ${GEM_LIBDIR}/patches/libxml2/0015-Add-xmlHaltParser-to-stop-the-parser.patch ${GEM_LIBDIR}/patches/libxml2/0016-Detect-incoherency-on-GROW.patch ${GEM_LIBDIR}/patches/libxml2/0017-CVE-2015-7500-Fix-memory-access-error-due-to-incorre.patch ${GEM_LIBDIR}/patches/libxml2/0018-CVE-2015-8242-Buffer-overead-with-HTML-parser-in-pus.patch +${GEM_LIBDIR}/patches/libxml2/0019-Do-not-print-error-context-when-there-is-none.patch +${GEM_LIBDIR}/patches/libxml2/0020-xmlStopParser-reset-errNo.patch +${GEM_LIBDIR}/patches/libxml2/0021-Reuse-xmlHaltParser-where-it-makes-sense.patch ${GEM_LIBDIR}/patches/libxslt/0001-Adding-doc-update-related-to-1.1.28.patch ${GEM_LIBDIR}/patches/libxslt/0002-Fix-a-couple-of-places-where-f-printf-parameters-wer.patch ${GEM_LIBDIR}/patches/libxslt/0003-Initialize-pseudo-random-number-generator-with-curre.patch diff --git a/textproc/ruby-nokogiri/distinfo b/textproc/ruby-nokogiri/distinfo index e4cabe5515e..c5ea0a3c7c4 100644 --- a/textproc/ruby-nokogiri/distinfo +++ b/textproc/ruby-nokogiri/distinfo @@ -1,6 +1,6 @@ -$NetBSD: distinfo,v 1.20 2016/01/10 11:55:44 tsutsui Exp $ +$NetBSD: distinfo,v 1.21 2016/03/15 15:45:46 taca Exp $ -SHA1 (nokogiri-1.6.7.1.gem) = 5891d05b0ed63825f2955418a9282ca5cd61436e -RMD160 (nokogiri-1.6.7.1.gem) = df79c4c80e7df6d9af45fb544bad482e4a182a68 -SHA512 (nokogiri-1.6.7.1.gem) = 85212317ac44ab4b08f7c35d9fb930402146a4576b03c2b23aa84901a7684c7a7e128af77dc7427f458606fd54250b95cbb13fc27d8097e8e8dc688db1220304 -Size (nokogiri-1.6.7.1.gem) = 9274368 bytes +SHA1 (nokogiri-1.6.7.2.gem) = d6a374a969abd6105d19076558e57a5cbb10e484 +RMD160 (nokogiri-1.6.7.2.gem) = e7e531b522128552d042d024c483b878626aca07 +SHA512 (nokogiri-1.6.7.2.gem) = 27f72763f4f572b9a7042b48bd3a7a7516773eda128be603b8316e8ecaef42028f3d3a190947011cc6973fa4a43265a56f4b563bf28a8b2739b470cc19cee6cd +Size (nokogiri-1.6.7.2.gem) = 9276928 bytes |