Path to this page:
Subject: CVS commit: [pkgsrc-2020Q1] pkgsrc/lang
From: Benny Siegert
Date: 2020-04-28 17:23:32
Message id: 20200428152332.4D1DCFB27@cvs.NetBSD.org
Log Message:
Pullup ticket #6167 - requested by taca
lang/ruby24-base: security fix
Revisions pulled up:
- lang/ruby/rubyversion.mk 1.221
- lang/ruby24-base/distinfo 1.16
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Apr 1 15:27:40 UTC 2020
Modified Files:
pkgsrc/lang/ruby: rubyversion.mk
Log Message:
lang/ruby24-base: update to 2.4.10
Update ruby24-base (and ruby24) to 2.4.10.
This release includes a security fix. Please check the topics below for
details.
* CVE-2020-16255: Unsafe Object Creation Vulnerability in JSON (Additional
fix)
Ruby 2.4 is now under the state of the security maintenance phase, until the
end of March of 2020. After that date, maintenance of Ruby 2.4 will be
ended. Thus, this release would be the last of Ruby 2.4 series. We
recommend you immediately upgrade Ruby to newer versions, such as 2.7 or 2.6
or 2.5.
---
Module Name: pkgsrc
Committed By: wiz
Date: Thu Apr 2 12:20:51 UTC 2020
Modified Files:
pkgsrc/lang/ruby24-base: distinfo
Log Message:
ruby24-base: update distinfo for 2.4.10 release
Files: