Navigation:
Browse pkgsrc
(this page) 2013-02-25 17:55:28 by Matthias Scheler | Files touched by this commit (11) |  |
Log message:
Pullup ticket #4080 - requested by taca
lang/ruby193-base: security update
Revisions pulled up:
- lang/ruby/rubyversion.mk 1.95
- lang/ruby193-base/Makefile 1.26
- lang/ruby193-base/distinfo 1.18
- lang/ruby193-base/patches/patch-ext_json_lib_json_add_core.rb deleted
- lang/ruby193-base/patches/patch-ext_json_lib_json_common.rb deleted
- lang/ruby193-base/patches/patch-ext_json_lib_json_version.rb deleted
- lang/ruby193-base/patches/patch-ext_json_parser_parser.c deleted
- lang/ruby193-base/patches/patch-ext_json_parser_parser.rl deleted
- lang/ruby193-base/patches/patch-test_json_test__json.rb deleted
- lang/ruby193-base/patches/patch-test_json_test__json__addition.rb deleted
- lang/ruby193-base/patches/patch-test_json_test__json__string__matching.rb deleted
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Feb 22 16:20:48 UTC 2013
Modified Files:
pkgsrc/lang/ruby: rubyversion.mk
pkgsrc/lang/ruby193-base: Makefile distinfo
Removed Files:
pkgsrc/lang/ruby193-base/patches: patch-ext_json_lib_json_add_core.rb
patch-ext_json_lib_json_common.rb
patch-ext_json_lib_json_version.rb patch-ext_json_parser_parser.c
patch-ext_json_parser_parser.rl patch-test_json_test__json.rb
patch-test_json_test__json__addition.rb
patch-test_json_test__json__string__matching.rb
Log message:
Update ruby193-base package (and related) to 1.9.3-p392.
Security problem of CVE-2013-0269 was already handled but REXML security
problem is fixed by this package.
Now Ruby 1.9.3-p392 is released. I apologize for updating too frequently.
This release includes security fixes about bundled JSON and REXML.
* Denial of Service and Unsafe Object Creation Vulnerability in JSON
(CVE-2013-0269)
* Entity expansion DoS vulnerability in REXML (XML bomb)
And some small bugfixes are also included.
|
| 2013-02-15 14:32:28 by Matthias Scheler | Files touched by this commit (9) | |
Log message:
Pullup ticket #4072 - requested by taca
databases/ruby-activerecord32: security update
devel/ruby-activemodel32: security update
devel/ruby-activesupport32: security update
devel/ruby-railties32: security update
mail/ruby-actionmailer32: security update
www/ruby-actionpack32: security update
www/ruby-activeresource32: security update
www/ruby-rails32: security update
Revisions pulled up:
- databases/ruby-activerecord32/distinfo 1.10
- devel/ruby-activemodel32/distinfo 1.10
- devel/ruby-activesupport32/distinfo 1.10
- devel/ruby-railties32/Makefile 1.4
- devel/ruby-railties32/distinfo 1.10
- lang/ruby/rails.mk 1.40
- mail/ruby-actionmailer32/distinfo 1.10
- www/ruby-actionpack32/distinfo 1.10
- www/ruby-activeresource32/distinfo 1.10
- www/ruby-rails32/distinfo 1.10
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:28:10 UTC 2013
Modified Files:
pkgsrc/lang/ruby: rails.mk
Log message:
Start update of Ruby on Rails 3.2.12.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:28:59 UTC 2013
Modified Files:
pkgsrc/devel/ruby-activesupport32: distinfo
Log message:
Update ruby-activesupport32 to 3.2.12.
Change of version only.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:29:48 UTC 2013
Modified Files:
pkgsrc/devel/ruby-activemodel32: distinfo
Log message:
Update ruby-activemodel32 to 3.2.12.
Change of version only.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:30:48 UTC 2013
Modified Files:
pkgsrc/www/ruby-activeresource32: distinfo
Log message:
Update ruby-activeresource32 to 3.2.12.
Change of version only.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:31:19 UTC 2013
Modified Files:
pkgsrc/databases/ruby-activerecord32: distinfo
Log message:
Update ruby-activerecord32 to 3.2.12.
## Rails 3.2.12 (unreleased) ##
* Quote numeric values being compared to non-numeric columns. Otherwise,
in some database, the string column values will be coerced to a numeric
allowing 0, 0.0 or false to match any string starting with a non-digit.
Example:
App.where(apikey: 0) # => SELECT * FROM users WHERE apikey = '0'
*Dylan Smith*
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:31:52 UTC 2013
Modified Files:
pkgsrc/www/ruby-actionpack32: distinfo
Log message:
Update ruby-actionpack32 to 3.2.12.
Change of version only.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:32:32 UTC 2013
Modified Files:
pkgsrc/mail/ruby-actionmailer32: distinfo
Log message:
Update of ruby-actionmailer32 to 3.2.12.
Change of version only.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:33:08 UTC 2013
Modified Files:
pkgsrc/devel/ruby-railties32: Makefile distinfo
Log message:
Update ruby-railties32 to 3.2.12.
Change of version only.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:33:42 UTC 2013
Modified Files:
pkgsrc/www/ruby-rails32: distinfo
Log message:
Update ruby-rails32 to 3.2.12.
Change of version only.
|
| 2013-02-15 12:23:45 by Matthias Scheler | Files touched by this commit (9) | |
Log message:
Pullup ticket #4071 - requested by taca
databases/ruby-activerecord31: security update
devel/ruby-activemodel31: security update
devel/ruby-activesupport31: security update
devel/ruby-railties31: security update
mail/ruby-actionmailer31: security update
www/ruby-actionpack31: security update
www/ruby-activeresource31: security update
www/ruby-rails31: security update
Revisions pulled up:
- databases/ruby-activerecord31/distinfo 1.9
- devel/ruby-activemodel31/distinfo 1.9
- devel/ruby-activesupport31/distinfo 1.10
- devel/ruby-railties31/Makefile 1.6
- devel/ruby-railties31/distinfo 1.9
- lang/ruby/rails.mk 1.39
- mail/ruby-actionmailer31/distinfo 1.9
- www/ruby-actionpack31/distinfo 1.10
- www/ruby-activeresource31/distinfo 1.9
- www/ruby-rails31/distinfo 1.9
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:16:07 UTC 2013
Modified Files:
pkgsrc/lang/ruby: rails.mk
Log message:
Start update of Ruby on Rails 3.1.11.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:17:07 UTC 2013
Modified Files:
pkgsrc/devel/ruby-activesupport31: distinfo
Log message:
Update ruby-activesupport31 to 3.1.11.
## Rails 3.1.11 (unreleased) ##
* Allow `multi_json` version `>= 1.3`, relaxing back to semantic versioning
2.0.0 (revert of #5861)
Backport of #5896
*Alex Riedler*
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:18:08 UTC 2013
Modified Files:
pkgsrc/devel/ruby-activemodel31: distinfo
Log message:
Update ruby-activemodel31 to 3.1.11.
Change of version only.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:19:10 UTC 2013
Modified Files:
pkgsrc/www/ruby-activeresource31: distinfo
Log message:
Update ruby-activeresource31 to 3.1.11.
Change of version only.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:21:05 UTC 2013
Modified Files:
pkgsrc/databases/ruby-activerecord31: distinfo
Log message:
Update ruby-activerecord31 to 3.1.11.
## Rails 3.1.11 (unreleased) ##
* Quote numeric values being compared to non-numeric columns. Otherwise,
in some database, the string column values will be coerced to a numeric
allowing 0, 0.0 or false to match any string starting with a non-digit.
Example:
App.where(apikey: 0) # => SELECT * FROM users WHERE apikey = '0'
*Dylan Smith*
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:22:03 UTC 2013
Modified Files:
pkgsrc/www/ruby-actionpack31: distinfo
Log message:
Update ruby-actionpack31 to 3.1.11.
## Rails 3.1.11 (unreleased)
* Fixed JSON params parsing regression for non-object JSON content.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:22:43 UTC 2013
Modified Files:
pkgsrc/mail/ruby-actionmailer31: distinfo
Log message:
Update ruby-actionmailer331 to 3.1.11.
Change of version only.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:23:36 UTC 2013
Modified Files:
pkgsrc/devel/ruby-railties31: Makefile distinfo
Log message:
Update ruby-railties31 to 3.1.11.
Change of version only.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Feb 12 14:24:13 UTC 2013
Modified Files:
pkgsrc/www/ruby-rails31: distinfo
Log message:
Update of ruby-rails31 to 3.1.11.
Change of version only.
|
| 2013-02-12 18:40:15 by Matthias Scheler | Files touched by this commit (3) | |
Log message:
Pullup ticket #4057 - requested by taca
devel/ruby-rdoc: security update
Revisions pulled up:
- devel/ruby-rdoc/PLIST 1.7
- devel/ruby-rdoc/distinfo 1.9
- lang/ruby/rdoc.mk 1.12
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Feb 6 15:53:15 UTC 2013
Modified Files:
pkgsrc/devel/ruby-rdoc: PLIST distinfo
pkgsrc/lang/ruby: rdoc.mk
Log message:
Update ruby-rdoc to 3.12.1.
=== 3.12.1 / 2013-02-05
* Bug fixes
* Fixed an XSS exploit in darkfish.js. This could lead to cookie disclosure
to third parties. See CVE-2013-0256[rdoc-ref:CVE-2013-0256.rdoc] for full
details including a patch you can apply to generated RDoc documentation.
* Ensured that rd parser files are generated before checking the manifest.
|
| 2013-02-11 18:39:08 by Matthias Scheler | Files touched by this commit (11) | |
Log message:
Pullup ticket #4056 - requested by taca
lang/ruby193-base: security update
Revisions pulled up:
- lang/ruby/rubyversion.mk 1.93-1.94
- lang/ruby193-base/Makefile 1.21-1.23
- lang/ruby193-base/PLIST 1.5-1.6
- lang/ruby193-base/distinfo 1.14-1.16
- lang/ruby193-base/patches/patch-configure 1.5-1.6
- lang/ruby193-base/patches/patch-configure.in 1.5
- lang/ruby193-base/patches/patch-lib_rubygems.rb 1.2
- lang/ruby193-base/patches/patch-lib_rubygems_specification.rb 1.3
- lang/ruby193-base/patches/patch-lib_rubygems_version.rb 1.1
- lang/ruby193-base/patches/patch-random.c deleted
- lang/ruby193-base/patches/patch-test_rubygems_test__gem.rb 1.2
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Jan 31 15:56:14 UTC 2013
Modified Files:
pkgsrc/lang/ruby: rubyversion.mk
pkgsrc/lang/ruby193-base: Makefile PLIST distinfo
pkgsrc/lang/ruby193-base/patches: patch-configure patch-configure.in
patch-lib_rubygems.rb patch-test_rubygems_test__gem.rb
Removed Files:
pkgsrc/lang/ruby193-base/patches: patch-random.c
Log message:
Update ruby193 to 1.9.3p374 (Ruby 1.9.3-p374).
These releasess don't include any security fixes.
Ruby 1.9.3-p362:
This release includes other many bug fixes.
Resolved build problems on Solaris.
Windows 8 support (hopefully).
other many bug fixes.
Ruby 1.9.3-p374:
This release includes many bug fixes. Especially,
Fixed randomly SEGV problem (often reported with Rails)
Windows 8 support (maybe, hopefully)
other many bug fixes.
See tickets and ChangeLog for details.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Feb 2 08:11:54 UTC 2013
Modified Files:
pkgsrc/lang/ruby193-base: Makefile distinfo
pkgsrc/lang/ruby193-base/patches: patch-lib_rubygems_specification.rb
Added Files:
pkgsrc/lang/ruby193-base/patches: patch-lib_rubygems_version.rb
Log message:
Add a two fixes from ruby-2.0.0/rubygems 1.8.25.
* Allow multiple conditions for requirement of gem's specification since
some newer gem already use this feature.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Feb 6 15:48:31 UTC 2013
Modified Files:
pkgsrc/lang/ruby: rubyversion.mk
pkgsrc/lang/ruby193-base: Makefile PLIST distinfo
pkgsrc/lang/ruby193-base/patches: patch-configure
Log message:
Update ruby193 pacakges to 1.9.3p385.
This release includes a security fix about bundled RDoc.
Full changes are too may to write here, please refer ChangeLog.
|
| 2013-02-02 11:40:02 by Matthias Scheler | Files touched by this commit (10) | |
Log message:
Pullup ticket #4052 - requested by taca
databases/ruby-activerecord3: security update
devel/ruby-activemodel: security update
devel/ruby-activesupport3: security update
devel/ruby-railties: security update
mail/ruby-actionmailer3: security update
www/ruby-actionpack3: security update
www/ruby-activeresource3: security update
www/ruby-rails3: security update
Revisions pulled up:
- databases/ruby-activerecord3/distinfo 1.18
- devel/ruby-activemodel/distinfo 1.18
- devel/ruby-activesupport3/PLIST 1.2
- devel/ruby-activesupport3/distinfo 1.19
- devel/ruby-railties/distinfo 1.18
- lang/ruby/rails.mk 1.38
- mail/ruby-actionmailer3/distinfo 1.20
- www/ruby-actionpack3/distinfo 1.19
- www/ruby-activeresource3/distinfo 1.18
- www/ruby-rails3/distinfo 1.19
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Jan 29 15:36:12 UTC 2013
Modified Files:
pkgsrc/lang/ruby: rails.mk
Log message:
Start update of Ruby on Rails 3.0.20.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Jan 29 15:37:52 UTC 2013
Modified Files:
pkgsrc/devel/ruby-activesupport3: PLIST distinfo
Log message:
Update ruby-activesupport3 to 3.0.20.
Fix CVE-2013-0333.
There is a vulnerability in the JSON code for Ruby on Rails which
allows attackers to bypass authentication systems, inject arbitrary
SQL, inject and execute arbitrary code, or perform a DoS attack on a
Rails application.
## Rails 3.0.20 (unreleased)
* Fix XML serialization of methods that return nil to not be
considered as YAML (GH #8853 and GH #492)
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Jan 29 15:38:40 UTC 2013
Modified Files:
pkgsrc/devel/ruby-activemodel: distinfo
Log message:
Update ruby-activemodel to 3.0.20.
Fix CVE-2013-0333.
There is a vulnerability in the JSON code for Ruby on Rails which
allows attackers to bypass authentication systems, inject arbitrary
SQL, inject and execute arbitrary code, or perform a DoS attack on a
Rails application.
## Rails 3.0.20 (unreleased)
* Fix XML serialization of methods that return nil to not be
considered as YAML (GH #8853 and GH #492)
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Jan 29 15:39:33 UTC 2013
Modified Files:
pkgsrc/www/ruby-activeresource3: distinfo
Log message:
Update ruby-activeresource3 to 3.0.20.
No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Jan 29 15:40:43 UTC 2013
Modified Files:
pkgsrc/databases/ruby-activerecord3: distinfo
Log message:
Update ruby-activerecord3 to 3.0.20.
No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Jan 29 15:41:17 UTC 2013
Modified Files:
pkgsrc/www/ruby-actionpack3: distinfo
Log message:
Update ruby-actionpack3 to 3.0.20.
No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Jan 29 15:41:49 UTC 2013
Modified Files:
pkgsrc/mail/ruby-actionmailer3: distinfo
Log message:
Update ruby-actionmailer3 to 3.0.20.
No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Jan 29 15:42:27 UTC 2013
Modified Files:
pkgsrc/devel/ruby-railties: distinfo
Log message:
Update ruby-railties to 3.0.20.
No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Jan 29 15:42:58 UTC 2013
Modified Files:
pkgsrc/www/ruby-rails3: distinfo
Log message:
Update ruby-rails3 to 3.0.20.
No change except version.
|
| 2013-01-18 16:41:59 by Matthias Scheler | Files touched by this commit (9) | |
Log message:
Pullup ticket #4025 - requested by taca
databases/ruby-activerecord32: security update
devel/ruby-activemodel32: security update
devel/ruby-activesupport32: security update
devel/ruby-railties32: security update
mail/ruby-actionmailer32: security update
www/ruby-actionpack32: security update
www/ruby-activeresource32: security update
www/ruby-rails32: security update
Revisions pulled up:
- databases/ruby-activerecord32/distinfo 1.9
- devel/ruby-activemodel32/distinfo 1.9
- devel/ruby-activesupport32/distinfo 1.9
- devel/ruby-railties32/distinfo 1.9
- lang/ruby/rails.mk 1.37
- mail/ruby-actionmailer32/distinfo 1.9
- www/ruby-actionpack32/distinfo 1.9
- www/ruby-activeresource32/distinfo 1.9
- www/ruby-rails32/distinfo 1.9
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:40:52 UTC 2013
Modified Files:
pkgsrc/lang/ruby: rails.mk
Log message:
Start update of Ruby on Rails 3.2.11.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:41:15 UTC 2013
Modified Files:
pkgsrc/devel/ruby-activesupport32: distinfo
Log message:
Update ruby-activesupport32 to 3.2.11.
## Rails 3.2.10 (Jan 8, 2012) ##
* Hash.from_xml raises when it encounters type="symbol" or \
type="yaml".
Use Hash.from_trusted_xml to parse this XML.
CVE-2013-0156
*Jeremy Kemper*
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:41:45 UTC 2013
Modified Files:
pkgsrc/devel/ruby-activemodel32: distinfo
Log message:
Update ruby-activemodel32 to 3.2.11.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:42:12 UTC 2013
Modified Files:
pkgsrc/www/ruby-activeresource32: distinfo
Log message:
Update ruby-activeresource32 to 3.2.11.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:43:18 UTC 2013
Modified Files:
pkgsrc/databases/ruby-activerecord32: distinfo
Log message:
Update ruby-activerecord32 to 3.2.11.
## Rails 3.2.11 ##
* Fix querying with an empty hash *Damien Mathieu* [CVE-2013-0155]
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:43:59 UTC 2013
Modified Files:
pkgsrc/www/ruby-actionpack32: distinfo
Log message:
Update ruby-actionpack32 to 3.2.11.
## Rails 3.2.11 ##
* Strip nils from collections on JSON and XML posts. [CVE-2013-0155]
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:44:21 UTC 2013
Modified Files:
pkgsrc/mail/ruby-actionmailer32: distinfo
Log message:
Update ruby-actionmailer32 to 3.2.11.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:44:44 UTC 2013
Modified Files:
pkgsrc/devel/ruby-railties32: distinfo
Log message:
Update ruby-railties32 to 3.2.11.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:45:04 UTC 2013
Modified Files:
pkgsrc/www/ruby-rails32: distinfo
Log message:
Update ruby-railties32 to 3.2.11.
Only version has updated.
|
| 2013-01-18 16:08:39 by Matthias Scheler | Files touched by this commit (9) | |
Log message:
Pullup ticket #4024 - requested by taca
databases/ruby-activerecord31: security update
devel/ruby-activemodel31: security update
devel/ruby-activesupport31: security update
devel/ruby-railties31: security update
mail/ruby-actionmailer31: security update
www/ruby-actionpack31: security update
www/ruby-activeresource31: security update
www/ruby-rails31: security update
Revisions pulled up:
- databases/ruby-activerecord31/distinfo 1.8
- devel/ruby-activemodel31/distinfo 1.8
- devel/ruby-activesupport31/distinfo 1.9
- devel/ruby-railties31/distinfo 1.8
- lang/ruby/rails.mk 1.36
- mail/ruby-actionmailer31/distinfo 1.8
- www/ruby-actionpack31/distinfo 1.9
- www/ruby-activeresource31/distinfo 1.8
- www/ruby-rails31/distinfo 1.8
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:33:28 UTC 2013
Modified Files:
pkgsrc/lang/ruby: rails.mk
Log message:
Start update of Ruby on Rails 3.1.10.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:34:08 UTC 2013
Modified Files:
pkgsrc/devel/ruby-activesupport31: distinfo
Log message:
Update ruby-activesupport31 to 3.1.10.
## Rails 3.1.10 (Jan 8, 2012) ##
* Hash.from_xml raises when it encounters type="symbol" or \
type="yaml".
Use Hash.from_trusted_xml to parse this XML.
CVE-2013-0156
*Jeremy Kemper*
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:34:55 UTC 2013
Modified Files:
pkgsrc/devel/ruby-activemodel31: distinfo
Log message:
Update ruby-activemodel31 to 3.1.10.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:35:24 UTC 2013
Modified Files:
pkgsrc/www/ruby-activeresource31: distinfo
Log message:
Update ruby-activeresource31 to 3.1.10.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:36:36 UTC 2013
Modified Files:
pkgsrc/databases/ruby-activerecord31: distinfo
Log message:
Update ruby-activerecord31 to 3.1.10.
## Rails 3.1.10
* Fix querying with an empty hash *Damien Mathieu* [CVE-2013-0155]
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:37:05 UTC 2013
Modified Files:
pkgsrc/www/ruby-actionpack31: distinfo
Log message:
Update ruby-actionpack31 to 3.1.10.
## Rails 3.1.10
* Strip nils from collections on JSON and XML posts. [CVE-2013-0155]
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:37:52 UTC 2013
Modified Files:
pkgsrc/mail/ruby-actionmailer31: distinfo
Log message:
Update ruby-actionpack31 to 3.1.10.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:38:11 UTC 2013
Modified Files:
pkgsrc/devel/ruby-railties31: distinfo
Log message:
Update ruby-railties31 to 3.1.10.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:38:29 UTC 2013
Modified Files:
pkgsrc/www/ruby-rails31: distinfo
Log message:
Update ruby-rails31 to 3.1.10.
Only version has updated.
|
| 2013-01-18 15:51:11 by Matthias Scheler | Files touched by this commit (10) | |
Log message:
Pullup ticket #4023 - requested by taca
databases/ruby-activerecord3: security update
devel/ruby-activemodel: security update
devel/ruby-activesupport3: security update
devel/ruby-railties: security update
mail/ruby-actionmailer3: security update
www/ruby-actionpack3: security update
www/ruby-activeresource3: security update
www/ruby-rails3: security update
Revisions pulled up:
- databases/ruby-activerecord3/distinfo 1.17
- devel/ruby-activemodel/distinfo 1.17
- devel/ruby-activesupport3/distinfo 1.18
- devel/ruby-railties/PLIST 1.6
- devel/ruby-railties/distinfo 1.17
- lang/ruby/rails.mk 1.35
- mail/ruby-actionmailer3/distinfo 1.19
- www/ruby-actionpack3/distinfo 1.18
- www/ruby-activeresource3/distinfo 1.17
- www/ruby-rails3/distinfo 1.18
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:24:27 UTC 2013
Modified Files:
pkgsrc/lang/ruby: rails.mk
Log message:
Start update of Ruby on Rails 3.0.19.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:25:17 UTC 2013
Modified Files:
pkgsrc/devel/ruby-activesupport3: distinfo
Log message:
Update ruby-activesupport3 to 3.0.19.
## Rails 3.0.19 (Jan 8, 2012) ##
* Hash.from_xml raises when it encounters type="symbol" or \
type="yaml".
Use Hash.from_trusted_xml to parse this XML.
CVE-2013-0156
*Jeremy Kemper*
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:26:20 UTC 2013
Modified Files:
pkgsrc/devel/ruby-activemodel: distinfo
Log message:
Update ruby-activemodel to 3.0.19.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:27:13 UTC 2013
Modified Files:
pkgsrc/www/ruby-activeresource3: distinfo
Log message:
Update ruby-activeresource3 to 3.0.19.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:28:04 UTC 2013
Modified Files:
pkgsrc/www/ruby-actionpack3: distinfo
Log message:
Update ruby-actionpack3 to 3.0.19.
## Rails 3.0.19
* Strip nils from collections on JSON and XML posts. [CVE-2013-0155]
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:28:50 UTC 2013
Modified Files:
pkgsrc/databases/ruby-activerecord3: distinfo
Log message:
Update ruby-activerecord3 to 3.0.19.
## Rails 3.0.19
* Fix querying with an empty hash *Damien Mathieu* [CVE-2013-0155]
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:29:19 UTC 2013
Modified Files:
pkgsrc/mail/ruby-actionmailer3: distinfo
Log message:
Update ruby-actionmailer3 to 3.0.19.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:29:40 UTC 2013
Modified Files:
pkgsrc/devel/ruby-railties: PLIST distinfo
Log message:
Update ruby-railties to 3.0.19.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Jan 9 12:30:06 UTC 2013
Modified Files:
pkgsrc/www/ruby-rails3: distinfo
Log message:
Update ruby-rails3 to 3.0.19.
Only version has updated.
|
| 2013-01-18 15:09:40 by Matthias Scheler | Files touched by this commit (10) | |
Log message:
Pullup ticket #4021 - requested by taca
databases/ruby-activerecord32: security update
devel/ruby-activemodel32: security update
devel/ruby-activesupport32: security update
devel/ruby-railties32: security update
mail/ruby-actionmailer32: security update
www/ruby-actionpack32: security update
www/ruby-activeresource32: security update
www/ruby-rails32: security update
Revisions pulled up:
- databases/ruby-activerecord32/distinfo 1.8
- devel/ruby-activemodel32/distinfo 1.8
- devel/ruby-activesupport32/distinfo 1.8
- devel/ruby-railties32/PLIST 1.3
- devel/ruby-railties32/distinfo 1.8
- lang/ruby/rails.mk 1.34
- mail/ruby-actionmailer32/distinfo 1.8
- www/ruby-actionpack32/distinfo 1.8
- www/ruby-activeresource32/distinfo 1.8
- www/ruby-rails32/distinfo 1.8
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 5 14:17:48 UTC 2013
Modified Files:
pkgsrc/lang/ruby: rails.mk
Log message:
Start updating of Ruby on Rails 3.2.10.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 5 14:18:39 UTC 2013
Modified Files:
pkgsrc/devel/ruby-activesupport32: distinfo
Log message:
Update ruby-activesupport32 to 3.2.10.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 5 14:19:25 UTC 2013
Modified Files:
pkgsrc/devel/ruby-activemodel32: distinfo
Log message:
Update ruby-activemodel32 to 3.2.10.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 5 14:20:05 UTC 2013
Modified Files:
pkgsrc/www/ruby-activeresource32: distinfo
Log message:
Note update of ruby-activeresource32 to 3.2.10.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 5 14:21:02 UTC 2013
Modified Files:
pkgsrc/databases/ruby-activerecord32: distinfo
Log message:
Update ruby-activerecord32 to 3.2.10.
## Rails 3.2.10 ##
* CVE-2012-5664 options hashes should only be extracted if there are extra
parameters.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 5 14:21:28 UTC 2013
Modified Files:
pkgsrc/www/ruby-actionpack32: distinfo
Log message:
Update ruby-actionpack32 to 3.2.10.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 5 14:22:02 UTC 2013
Modified Files:
pkgsrc/mail/ruby-actionmailer32: distinfo
Log message:
Update ruby-actionmailer32 to 3.2.10.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 5 14:22:25 UTC 2013
Modified Files:
pkgsrc/devel/ruby-railties32: PLIST distinfo
Log message:
Update ruby-railties32 to 3.2.10.
Only version has updated.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 5 14:22:55 UTC 2013
Modified Files:
pkgsrc/www/ruby-rails32: distinfo
Log message:
Update ruby-rails32 to 3.2.10.
Only version has updated.
|
New packages: