pkgsrc.se | The NetBSD package collection

Subject: CVS commit: pkgsrc/lang
From: Takahiro Kambe
Date: 2024-04-25 17:06:11
Message id: 20240425150611.A33CBFA2C@cvs.NetBSD.org

Log Message:
lang/ruby32-base: update to 3.2.4

This is security release.  Note CVE-2024-27280 and CVE-2024-27281 were
already fixed by ruby31-base-3.2.3nb3.

3.2.4 (2024-04-23)

* CVE-2024-27282: Arbitrary memory address read vulnerability with Regex
  search
* CVE-2024-27281: RCE vulnerability with .rdoc_options in RDoc
* CVE-2024-27280: Buffer overread vulnerability in StringIO

Files:

Revision	Action	file
1.277	modify	pkgsrc/lang/ruby/rubyversion.mk
1.9	modify	pkgsrc/lang/ruby32-base/Makefile
1.8	modify	pkgsrc/lang/ruby32-base/distinfo
1.1	remove	pkgsrc/lang/ruby32-base/patches/patch-lib_rdoc_store.rb
1.1	remove	pkgsrc/lang/ruby32-base/patches/patch-lib_rdoc_version.rb