Path to this page:
Subject: CVS commit: [pkgsrc-2015Q4] pkgsrc
From: Benny Siegert
Date: 2016-02-10 20:22:42
Message id: 20160210192242.64272FBB7@cvs.NetBSD.org
Log Message:
Pullup ticket #4915 - requested by taca
devel/ruby-activemodel32: security fix
devel/ruby-activesupport32: security fix
devel/ruby-railties32: security fix
mail/ruby-actionmailer32: security fix
www/ruby-actionpack32: security fix
www/ruby-activeresource32: security fix
www/ruby-rails32: security fix
Revisions pulled up:
- databases/ruby-activerecord32/distinfo 1.22
- devel/ruby-activemodel32/distinfo 1.22
- devel/ruby-activesupport32/PLIST 1.2
- devel/ruby-activesupport32/distinfo 1.22
- devel/ruby-railties32/Makefile 1.11
- devel/ruby-railties32/distinfo 1.22
- lang/ruby/rails.mk 1.53
- mail/ruby-actionmailer32/distinfo 1.22
- www/ruby-actionpack32/distinfo 1.22
- www/ruby-activeresource32/distinfo 1.22
- www/ruby-rails32/distinfo 1.22
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:42:36 UTC 2016
Modified Files:
pkgsrc/lang/ruby: rails.mk
Log Message:
Start update of Ruby on Rails to 3.2.22.1.
Also tweak _RAILS_{MAJOR,MINOR,TEENY} variable definition.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:43:56 UTC 2016
Modified Files:
pkgsrc/devel/ruby-activesupport32: PLIST distinfo
Log Message:
Update ruby-activesupport32 to 3.2.22.1.
* Add ActiveSupport::SecurityUtils module which is required for
security fix of actionpack.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:45:10 UTC 2016
Modified Files:
pkgsrc/devel/ruby-activemodel32: distinfo
Log Message:
Update ruby-activemodel32 to 3.2.22.1.
* No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:46:12 UTC 2016
Modified Files:
pkgsrc/databases/ruby-activerecord32: Makefile distinfo
Log Message:
Update ruby-activerecord32 to 3.2.22.1.
* No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:47:02 UTC 2016
Modified Files:
pkgsrc/www/ruby-activeresource32: distinfo
Log Message:
Update ruby-activeresource32 to 3.2.22.1.
* No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:48:02 UTC 2016
Modified Files:
pkgsrc/www/ruby-actionpack32: distinfo
Log Message:
Note update of ruby-actionpack32 to 3.2.22.1.
* Use secure string comparisons for basic auth username / password.
(CVE-2015-7576)
* Stop caching mime types globally. (CVE-2016-0751)
* Don't short-circuit reject_if proc. (CVE-2015-7577)
* Allow :file to be outside rails root, but anything else must be inside
the rails view directory. (CVE-2016-0752)
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:48:55 UTC 2016
Modified Files:
pkgsrc/mail/ruby-actionmailer32: distinfo
Log Message:
Update ruby-actionmailer32 to 3.2.22.1.
* No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:49:57 UTC 2016
Modified Files:
pkgsrc/devel/ruby-railties32: Makefile distinfo
Log Message:
Update ruby-railties32 to 3.2.22.1.
* No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:50:48 UTC 2016
Modified Files:
pkgsrc/www/ruby-rails32: distinfo
Log Message:
Update ruby-rails32 to 3.2.22.1.
* No change except version.
---
Module Name: pkgsrc
Committed By: taca
Date: Mon Feb 1 13:46:12 UTC 2016
Modified Files:
pkgsrc/databases/ruby-activerecord32: Makefile distinfo
Log Message:
Update ruby-activerecord32 to 3.2.22.1.
* No change except version.
Files: