Path to this page:
Subject: CVS commit: [pkgsrc-2022Q1] pkgsrc/lang
From: S.P.Zeidler
Date: 2022-04-16 11:10:21
Message id: 20220416091021.DBCA3FB19@cvs.NetBSD.org
Log Message:
Pullup ticket #6616 - requested by taca
lang/ruby27: security update
Revisions pulled up:
- lang/ruby/rubyversion.mk 1.247
- lang/ruby27-base/Makefile 1.9
- lang/ruby27-base/distinfo 1.10
- lang/ruby27/Makefile 1.3
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: taca
Date: Tue Apr 12 14:21:00 UTC 2022
Modified Files:
pkgsrc/lang/ruby: rubyversion.mk
pkgsrc/lang/ruby27: Makefile
pkgsrc/lang/ruby27-base: Makefile distinfo
Log Message:
lang/ruby27-base: update to 2.6.7
Ruby 2.7.6 has been released.
This release includes a security fix. Please check the topics below for
details.
CVE-2022-28739: Buffer overrun in String-to-Float conversion
This release also includes some bug fixes. See the commit logs for further
details.
After thies release, we end the normal maintenance phase of Ruby 2.7, and
Ruby 2.7 enters the security maintenance phase. This means that we will no
longer backport any bug fixes to Ruby 2.7 excpet security fixes. Ther term
of the security maintenance pahse is scheduled for a year. Ruby 2.7 reaches
EOL and its official support ends by the end of the security maintenance
phase. Therefore, we recommend that you start to plan upgrade to Ruby 3.0
or 3.1.
To generate a diff of this commit:
cvs rdiff -u -r1.246 -r1.247 pkgsrc/lang/ruby/rubyversion.mk
cvs rdiff -u -r1.2 -r1.3 pkgsrc/lang/ruby27/Makefile
cvs rdiff -u -r1.8 -r1.9 pkgsrc/lang/ruby27-base/Makefile
cvs rdiff -u -r1.9 -r1.10 pkgsrc/lang/ruby27-base/distinfo
Files: