Subject: CVS commit: pkgsrc
From: Takahiro Kambe
Date: 2024-02-24 15:49:29
Message id: 20240224144929.66CECF9F4@cvs.NetBSD.org
Log Message:
www/ruby-rails70: update to 7.0.8.1

Update Ruby on Rails 7.0 and related pacakges to 7.0.8.1
This includes security fix:

	CVE-2024-26144 for devel/ruby-activestorage70
	CVE-2024-26146 for www/ruby-actionpack70

Action Pack

* Fix possible XSS vulnerability with the translate method in controllers

  CVE-2024-26143

Active Storage

* Disables the session in ActiveStorage::Blobs::ProxyController and
  ActiveStorage::Representations::ProxyController in order to allow caching
  by default in some CDNs as CloudFlare

  Fixes #44136

  Bruno Prieto
Files:
RevisionActionfile
1.18modifypkgsrc/databases/ruby-activerecord70/distinfo
1.18modifypkgsrc/devel/ruby-activejob70/distinfo
1.18modifypkgsrc/devel/ruby-activemodel70/distinfo
1.3modifypkgsrc/devel/ruby-activestorage70/PLIST
1.18modifypkgsrc/devel/ruby-activestorage70/distinfo
1.18modifypkgsrc/devel/ruby-activesupport70/distinfo
1.18modifypkgsrc/devel/ruby-railties70/distinfo
1.158modifypkgsrc/lang/ruby/rails.mk
1.18modifypkgsrc/mail/ruby-actionmailbox70/distinfo
1.18modifypkgsrc/mail/ruby-actionmailer70/distinfo
1.18modifypkgsrc/textproc/ruby-actiontext70/distinfo
1.18modifypkgsrc/www/ruby-actioncable70/distinfo
1.9modifypkgsrc/www/ruby-actionpack70/Makefile
1.18modifypkgsrc/www/ruby-actionpack70/distinfo
1.18modifypkgsrc/www/ruby-actionview70/distinfo
1.18modifypkgsrc/www/ruby-rails70/distinfo