Subject: CVS commit: [pkgsrc-2016Q3] pkgsrc/www/ruby-http-cookie
From: Benny Siegert
Date: 2016-10-01 15:46:36
Message id: 20161001134636.95A55FBD2@cvs.NetBSD.org
Log Message:
Pullup ticket #5112 - requested by taca
www/ruby-http-cookie: security fix

Revisions pulled up:
- www/ruby-http-cookie/Makefile                                 1.2
- www/ruby-http-cookie/distinfo                                 1.3

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Fri Sep 30 15:36:59 UTC 2016

   Modified Files:
   	pkgsrc/www/ruby-http-cookie: Makefile distinfo

   Log Message:
   Update ruby-http-cookie to 1.0.3.

   ## 1.0.3 (2016-09-30)

   - Treat comma as normal character in HTTP::Cookie.cookie_value_to_hash
     instead of key-value pair separator.  This should fix the problem
     described in CVE-2016-7401.
Files:
RevisionActionfile
1.1.26.1modifypkgsrc/www/ruby-http-cookie/Makefile
1.2.8.1modifypkgsrc/www/ruby-http-cookie/distinfo