Navigation:
Browse pkgsrc
(this page)
New packages:Log Message:
Pullup ticket #6443 - requested by taca
lang/ruby26-base: security fix, bugfix
Revisions pulled up:
- lang/ruby/rubyversion.mk 1.227-1.228
- lang/ruby26-base/ALTERNATIVES 1.2
- lang/ruby26-base/Makefile 1.13
- lang/ruby26-base/PLIST 1.5
- lang/ruby26-base/distinfo 1.10
- lang/ruby26-base/patches/patch-configure 1.3
- lang/ruby26-base/patches/patch-lib_webrick_httprequest.rb deleted
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Apr 11 12:16:20 UTC 2021
Modified Files:
pkgsrc/lang/ruby: rubyversion.mk
Log Message:
lang/ruby/rubyversion.mk: pass RUBY_RAILS_ACCEPTED
Pass RUBY_RAILS_ACCEPTED to MAKEFLAGS unless it isn't empty.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Apr 11 12:28:38 UTC 2021
Modified Files:
pkgsrc/lang/ruby: rubyversion.mk
pkgsrc/lang/ruby26-base: Makefile PLIST distinfo
pkgsrc/lang/ruby26-base/patches: patch-configure
Removed Files:
pkgsrc/lang/ruby26-base/patches: patch-lib_webrick_httprequest.rb
Log Message:
lang/ruby26-base: update to 2.6.7
Ruby 2.6.7 Released (2021-04-05)
This release includes security fixes. Please check the topics below for
details.
* CVE-2020-25613: Potential HTTP Request Smuggling Vulnerability in
WEBrick
* CVE-2021-28965: XML round-trip vulnerability in REXML
See the commit logs for details.
By this release, we end the normal maintenance phase of Ruby 2.6, and Ruby
2.6 enters the security maintenance phase. This means that we will no
longer backport any bug fixes to Ruby 2.6 except security fixes. The term
of the security maintenance phase is scheduled for a year. Ruby 2.6 reaches
EOL and its official support ends by the end of the security maintenance
phase. Therefore, we recommend that you start to plan upgrade to Ruby 2.7
or 3.0.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Apr 11 13:00:25 UTC 2021
Modified Files:
pkgsrc/lang/ruby26-base: ALTERNATIVES
Log Message:
lang/ruby26-base: fix ALTERNATIVES file