Next | Query returned 660 messages, browsing 1 to 10 | Previous

History of commit frequency

CVS Commit History:


   2024-03-23 16:15:52 by Takahiro Kambe | Files touched by this commit (5)
Log message:
lang/ruby33: fix CVE-2024-27281

Update rdoc to 6.6.3.1 to fix for CVE-2024-27281.

Bump PKGREVISION.
   2024-03-23 15:47:13 by Takahiro Kambe | Files touched by this commit (5)
Log message:
lang/ruby32-base: fix CVE-2024-27281

Update rdoc to 6.5.1.1 to fix for CVE-2024-27281.

Bump PKGREVISION.
   2024-03-23 15:28:48 by Takahiro Kambe | Files touched by this commit (7)
Log message:
lang/ruby31-base: fix CVE-2024-27280 and CVE-2024-27281

Update rdoc to 6.4.1.1 to fix for CVE-2024-27281.
Update stringio to 3.0.1.2 to fix for CVE-2024-27280.

Bump PKGREVISION.
   2024-02-24 15:55:27 by Takahiro Kambe | Files touched by this commit (15) | Package updated
Log message:
www/ruby-rails71: update to 7.1.3.2

Update Ruby on Rails 7.1 and related pacakges to 7.1.3.2
This includes security fix:

	CVE-2024-26142 for www/ruby-actionpack71
	CVE-2024-26143 for www/ruby-actionpack71

Action Pack

* Fix possible XSS vulnerability with the translate method in controllers

  CVE-2024-26143

* Fix ReDoS in Accept header parsing

  CVE-2024-26142
   2024-02-24 15:49:29 by Takahiro Kambe | Files touched by this commit (16) | Package updated
Log message:
www/ruby-rails70: update to 7.0.8.1

Update Ruby on Rails 7.0 and related pacakges to 7.0.8.1
This includes security fix:

	CVE-2024-26144 for devel/ruby-activestorage70
	CVE-2024-26146 for www/ruby-actionpack70

Action Pack

* Fix possible XSS vulnerability with the translate method in controllers

  CVE-2024-26143

Active Storage

* Disables the session in ActiveStorage::Blobs::ProxyController and
  ActiveStorage::Representations::ProxyController in order to allow caching
  by default in some CDNs as CloudFlare

  Fixes #44136

  Bruno Prieto
   2024-02-24 15:42:41 by Takahiro Kambe | Files touched by this commit (17) | Package updated
Log message:
www/rails61: update to 6.1.7.7

Update rails61 and related pacakges to 6.1.7.7
This includes security fix for CVE-2024-26144, devel/ruby-activestorage61.

Active Storage

* Disables the session in ActiveStorage::Blobs::ProxyController and
  ActiveStorage::Representations::ProxyController in order to allow caching
  by default in some CDNs as CloudFlare

  Fixes #44136

  Bruno Prieto
   2024-02-10 15:41:47 by Takahiro Kambe | Files touched by this commit (1)
Log message:
lang/ruby: switch default version to Ruby 3.2

Add missing Ruby 3.3 related value in comments, too.
   2024-02-04 16:05:48 by Takahiro Kambe | Files touched by this commit (1) | Package updated
Log message:
lang/ruby: start update rails71 to 7.1.3
   2024-01-21 09:36:58 by Takahiro Kambe | Files touched by this commit (1)
Log message:
lang/ruby: a small fix for ruby32-base

ruby32-base contains syntax_suggest as ruby33.
   2024-01-21 09:35:39 by Takahiro Kambe | Files touched by this commit (8) | Package updated
Log message:
lang/ruby32-base: update to 3.2.3

Since ruby32-base3.2.2-nb2 have uri gem 0.12.2, this update contains
no security fix.

These default gems are updated from ruby32-base-3.2.2nb4:

	- rubygems 3.4.9
	- bundler 2.4.19
	- net-http 0.4.1
	- syntax-suggest 1.1.0

These bundled gems are updated:

	- net-ftp 0.2.1
	- net-imap 0.3.4.1
	- net-smtp 0.3.4

3.2.3 (2024-01-18)

This release includes many bug-fixes.  See the GitHub releases for further
details.

This release also includes the update of uri.gem to 0.12.2 which contains
the security fix.  Please check the topics below for details.

	* CVE-2023-36617: ReDoS vulnerability in URI

Next | Query returned 660 messages, browsing 1 to 10 | Previous