Path to this page:
Subject: CVS commit: [pkgsrc-2019Q3] pkgsrc/lang
From: Benny Siegert
Date: 2019-10-05 21:46:45
Message id: 20191005194645.680B4FBF4@cvs.NetBSD.org
Log Message:
Pullup ticket #6065 - requested by taca
lang/ruby25-base: security fix
Revisions pulled up:
- lang/ruby/rubyversion.mk 1.210
- lang/ruby25-base/Makefile 1.10
- lang/ruby25-base/distinfo 1.12
- lang/ruby25/Makefile 1.2
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Oct 2 13:39:53 UTC 2019
Modified Files:
pkgsrc/lang/ruby: rubyversion.mk
pkgsrc/lang/ruby25: Makefile
pkgsrc/lang/ruby25-base: Makefile distinfo
Log Message:
lang/ruby25: update to 2.5.7
Update ruby25-base, ruby25 and ruby25-mode packges to 2.5.7.
pkgsrc chagnes
* fix warnings of pkglint.
Quote from release announce:
Ruby 2.5.7 (2019-10-01)
This release includes security fixes as listed below. Please check the
topics below for details.
* CVE-2019-16255: A code injection vulnerability of Shell#[] and Shell#test
* CVE-2019-16254: HTTP response splitting in WEBrick (Additional fix)
* CVE-2019-15845: A NUL injection vulnerability of File.fnmatch and
File.fnmatch?
* CVE-2019-16201: Regular Expression Denial of Service vulnerability of
WEBrick's Digest access authentication
Files: