Path to this page:
Subject: CVS commit: pkgsrc/lang
From: Takahiro Kambe
Date: 2023-04-01 11:17:15
Message id: 20230401091715.231A6FA81@cvs.NetBSD.org
Log Message:
lang/ruby31: update to 3.1.4
Ruby 3.1.4 Released Posted by nagachika on 30 Mar 2023
Ruby 3.1.4 has been released.
This release includes security fixes. Please check the topics below for
details.
* CVE-2023-28755: ReDoS vulnerability in URI
* CVE-2023-28756: ReDoS vulnerability in Time
What's Changed
* Bug #19187: Ruby 3.1.3 testsuite fails after timezone 2022g update is
applied
* Bug #19153: Since 2.7.7 CGI::Cookie raises ArgumentError when cookie
domains is prefixed with a dot
* Bug #18629: block args array splatting assigns to higher scope _ var
* Bug #18765: Wrong description introduced by
https://github.com/ruby/ruby/pull/4938/files
* Bug #19189: Ruby 3.1.3/3.2.x can no longer find pkg-config if not present
at buildtime
* Bug #19292: Time object's wday, yday, and isdst returns broken value (and
so does to_a) when kwarg in: 'UTC' was given
* Bug #19305: TracePoint#parameters segfaults when certain method creation
pattern is used
* Bug #19319: Crash in rb_str_casemap
* Bug #19316: YJIT crash in 3.2.0
* Bug #19284: Integer overflow when using RUBY_GC_HEAP_INIT_SLOTS
environment variable
* Bug #19320: Crash during compaction while traversing the stack
* Bug #19389: StringIO gets(..., chomp: true) behaves differently to File/IO.
* Bug #19284: Integer overflow when using RUBY_GC_HEAP_INIT_SLOTS
environment variable
* Bug #19398: Memory leak in WeakMap
* Bug #19403: Unable to Build Native Gems on Mac with Ruby 3.1.0+
* Bug #19415: Incorrect circularity warning for concurrent requires
* Bug #19419: [BUG] try to mark T_NONE object in ibf_dump_mark
* Bug #19445: Segmentation fault with Numeric#step
* Bug #19161: Cannot compile 3.0.5 or 3.1.3 on Red Hat Enterprise Linux 7
* Bug #18989: Backport f229b36087f1b387d77af8f3fa50f9bffd2fd44e to ruby_3_1
* Bug #18748: Range#cover? returns true for beginless range of different
type
* Bug #18827: __ENCODING__ is not set to the source encoding when saving
script lines
* Bug #19242: Circular cause by Marshal
* Bug #19243: Windows: Dir.home returns string in wrong encoding
* Bug #19115: RubyGems fails to detect OpenSSL in --with-static-linked-ext
builds
* Bug #18464: RUBY_INTERNAL_EVENT_NEWOBJ tracepoint causes an interpreter
crash when combined with Ractors
* Bug #19529: [BUG] ObjectSpace::WeakMap can segfault after compaction
* Bug #19485: Unexpected behavior in squiggly heredocs
Note: This list is automatically generated by tool/gen-github-release.rb.
Because of this, some commits may be missing.
Files: