Subject: CVS commit: pkgsrc/lang
From: Takahiro Kambe
Date: 2015-08-20 17:22:16
Message id: 20150820152216.5656798@cvs.netbsd.org
Log Message:
Update ruby200-base-2.0.0p647 to (Ruby 2.0.0-p647).

Release announce:

Ruby 2.0.0-p647 Released

Posted by usa on 18 Aug 2015

We are pleased to announce the release of Ruby 2.0.0-p647.

This release includes the security fix for a RubyGems domain name
verification vulnerability. Please view the topic below for more details.

    CVE-2015-3900 Request hijacking vulnerability in RubyGems 2.4.6 and earlier

And, this release also includes the fix for a regression of lib/resolv.rb.

    Uninitialized constant bug introduced by typo in backport of [#10712]

Ruby 2.0.0 is now under the state of the security maintenance phase, until
Feb. 24th, 2016. After the date, maintenance of Ruby 2.0.0 will be ended. We
recommend you start planning migration to newer versions of Ruby, such as
2.1 or 2.2.
Files:
RevisionActionfile
1.145modifypkgsrc/lang/ruby/rubyversion.mk
1.20modifypkgsrc/lang/ruby200-base/Makefile
1.27modifypkgsrc/lang/ruby200-base/distinfo
1.1removepkgsrc/lang/ruby200-base/patches/patch-lib_rubygems_remote__fetcher.rb