Navigation:
Browse pkgsrc
(this page) 2021-11-27 23:11:20 by Thomas Merkel | Files touched by this commit (4) |  |
Log message:
Pullup ticket #6547 - requested by taca
lang/ruby30-base: security fix
Revisions pulled up:
- lang/ruby/rubyversion.mk 1.240
- lang/ruby30-base/PLIST 1.4
- lang/ruby30-base/distinfo 1.7
- lang/ruby30-base/patches/patch-lib_rubygems_installer.rb 1.2
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Nov 25 16:35:52 UTC 2021
Modified Files:
pkgsrc/lang/ruby: rubyversion.mk
pkgsrc/lang/ruby30-base: PLIST distinfo
pkgsrc/lang/ruby30-base/patches: patch-lib_rubygems_installer.rb
Log message:
lang/ruby30-base: update to 3.0.3
Ruby 3.0.3 Released
Posted by nagachika on 24 Nov 2021
Ruby 3.0.3 has been released.
This release includes security fixes. Please check the topics below for
details.
* CVE-2021-41817: Regular Expression Denial of Service Vulnerability of Date
Parsing Methods
* CVE-2021-41816: Buffer Overrun in CGI.escape_html
* CVE-2021-41819: Cookie Prefix Spoofing in CGI::Cookie.parse
See the commit logs for details.
|
New packages: