diff options
author | taca <taca@pkgsrc.org> | 2021-02-11 14:30:06 +0000 |
---|---|---|
committer | taca <taca@pkgsrc.org> | 2021-02-11 14:30:06 +0000 |
commit | 5df39e478abc6cb140240761dce26516634d11b0 (patch) | |
tree | d3e46b610cd3d4be56bb85673db6cb2f62c46563 /textproc | |
parent | f96317c14b58c402ecdc890d1a8e20ad49bdc304 (diff) | |
download | pkgsrc-5df39e478abc6cb140240761dce26516634d11b0.tar.gz |
www/ruby-rails60: update to 6.0.3.5
databases/ruby-activerecord60:
## Rails 6.0.3.5 (February 10, 2021) ##
* Fix possible DoS vector in PostgreSQL money type
Carefully crafted input can cause a DoS via the regular expressions used
for validating the money format in the PostgreSQL adapter. This patch
fixes the regexp.
Thanks to @dee-see from Hackerone for this patch!
[CVE-2021-22880]
*Aaron Patterson*
www/ruby-actionpack60
## Rails 6.0.3.5 (February 10, 2021) ##
* Prevent open redirect when allowed host starts with a dot
[CVE-2021-22881]
Thanks to @tktech (https://hackerone.com/tktech) for reporting this
issue and the patch!
*Aaron Patterson*
Diffstat (limited to 'textproc')
-rw-r--r-- | textproc/ruby-actiontext60/distinfo | 10 |
1 files changed, 5 insertions, 5 deletions
diff --git a/textproc/ruby-actiontext60/distinfo b/textproc/ruby-actiontext60/distinfo index 5ab94f4d83a..177d8aaa535 100644 --- a/textproc/ruby-actiontext60/distinfo +++ b/textproc/ruby-actiontext60/distinfo @@ -1,6 +1,6 @@ -$NetBSD: distinfo,v 1.6 2020/10/19 14:50:31 taca Exp $ +$NetBSD: distinfo,v 1.7 2021/02/11 14:30:08 taca Exp $ -SHA1 (actiontext-6.0.3.4.gem) = b080d368861b406b2b78ae46f905476d66b8ba4b -RMD160 (actiontext-6.0.3.4.gem) = 3bb8c23c310bc1f47fe744ba525d9a96d9dd62e4 -SHA512 (actiontext-6.0.3.4.gem) = 51298102bb213e67df7096d66c8a4e231af55f0c203be8bac45a41fe6f80dc6d2416ff8995d92a5e87a227b176ab2cf67927d3b16b070971ab9c0babad1b2313 -Size (actiontext-6.0.3.4.gem) = 17408 bytes +SHA1 (actiontext-6.0.3.5.gem) = ab66690b35bd4383ae016b0b988aeb48e06d5122 +RMD160 (actiontext-6.0.3.5.gem) = 0cb24623b3b4f2c703aac1265b3e81cb632b8531 +SHA512 (actiontext-6.0.3.5.gem) = 3c80b3f790c85bda9ea682af665d132ce7c6d7c9bb41c14206baac6524c9f91760fb5535001c40a2caba870a143d2f59bd3c3b92fd7e524aad3e75c11eeea639 +Size (actiontext-6.0.3.5.gem) = 17408 bytes |