Subject: CVS commit: pkgsrc
From: Takahiro Kambe
Date: 2024-06-05 18:40:51
Message id: 20240605164051.B9050FC74@cvs.NetBSD.org
Log Message:
www/ruby-rails70: update to 7.0.8.4

Security fix for CVE-2024-34341 (textproc/ruby-actiontext70) and
CVE-2024-28103 (www/ruby-actionpack61 package).

Ruby on Rails 7.0.8.3 (2024-05-17)

Action Text

    Sanitize ActionText HTML ContentAttachment in Trix edit view
    [CVE-2024-34341]

Ruby on Rails 7.0.8.4 (2024-06-04)

  Action Pack

    * Include the HTTP Permissions-Policy on non-HTML Content-Types
      [CVE-2024-28103]
Files:
RevisionActionfile
1.20modifypkgsrc/databases/ruby-activerecord70/distinfo
1.20modifypkgsrc/devel/ruby-activejob70/distinfo
1.20modifypkgsrc/devel/ruby-activemodel70/distinfo
1.20modifypkgsrc/devel/ruby-activestorage70/distinfo
1.20modifypkgsrc/devel/ruby-activesupport70/distinfo
1.20modifypkgsrc/devel/ruby-railties70/distinfo
1.163modifypkgsrc/lang/ruby/rails.mk
1.20modifypkgsrc/mail/ruby-actionmailbox70/distinfo
1.20modifypkgsrc/mail/ruby-actionmailer70/distinfo
1.20modifypkgsrc/textproc/ruby-actiontext70/distinfo
1.20modifypkgsrc/www/ruby-actioncable70/distinfo
1.20modifypkgsrc/www/ruby-actionpack70/distinfo
1.20modifypkgsrc/www/ruby-actionview70/distinfo
1.20modifypkgsrc/www/ruby-rails70/distinfo