Path to this page:
Subject: CVS commit: [pkgsrc-2018Q3] pkgsrc/lang
From: S.P.Zeidler
Date: 2018-10-29 08:53:23
Message id: 20181029075323.4177EFBEE@cvs.NetBSD.org
Log Message:
Pullup ticket #5861 - requested by taca
lang/ruby: security update
lang/ruby24-base: security update
Revisions pulled up:
- lang/ruby/rubyversion.mk 1.196
- lang/ruby24-base/distinfo 1.10
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: taca
Date: Thu Oct 18 14:15:13 UTC 2018
Modified Files:
pkgsrc/lang/ruby: rubyversion.mk
pkgsrc/lang/ruby24-base: distinfo
Log Message:
lang/ruby24-base: update to 2.4.5
Ruby 2.4.5 Released
Ruby 2.4.5 has been released.
This release includes about 40 bug fixes after the previous release, and also
includes several security fixes. Please check the topics below for details.
* CVE-2018-16396: Tainted flags are not propagated in Array#pack and
String#unpack with some directives
* CVE-2018-16395: OpenSSL::X509::Name equality check does not work correctly
See the commit logs for details.
To generate a diff of this commit:
cvs rdiff -u -r1.195 -r1.196 pkgsrc/lang/ruby/rubyversion.mk
cvs rdiff -u -r1.9 -r1.10 pkgsrc/lang/ruby24-base/distinfo
Files: