Path to this page:
Subject: CVS commit: pkgsrc/lang/ruby24-base
From: Takahiro Kambe
Date: 2017-08-30 05:33:39
Message id: 20170830033339.B8D07FA97@cvs.NetBSD.org
Log Message:
Add patch to fix vulnerabilities of rubygems.
https://www.ruby-lang.org/en/news/2017/08/29/multiple-vulnerabilities-in-rubygems/
* a DNS request hijacking vulnerability
* an ANSI escape sequence vulnerability
* a DoS vulernerability in the query command
* a vulnerability in the gem installer that allowed a malicious gem to
overwrite arbitrary files
Bump PKGREVISION.
Files: