Subject: CVS commit: pkgsrc
From: Takahiro Kambe
Date: 2024-06-05 18:44:18
Message id: 20240605164419.0A66CFC74@cvs.NetBSD.org
Log Message:
www/ruby-rails71: update to 7.1.3.4

Security fix for CVE-2024-32464 (textproc/ruby-actiontext70) and
CVE-2024-28103 (www/ruby-actionpack61 package).

Ruby on Rails 7.1.3.4 (2024-06-04)

Action Text

    * Sanitize ActionText HTML ContentAttachment in Trix edit view
      [CVE-2024-32464]

  Action Pack

    * Include the HTTP Permissions-Policy on non-HTML Content-Types
      [CVE-2024-28103]
Files:
RevisionActionfile
1.5modifypkgsrc/databases/ruby-activerecord71/distinfo
1.5modifypkgsrc/devel/ruby-activejob71/distinfo
1.5modifypkgsrc/devel/ruby-activemodel71/distinfo
1.5modifypkgsrc/devel/ruby-activestorage71/distinfo
1.5modifypkgsrc/devel/ruby-activesupport71/distinfo
1.5modifypkgsrc/devel/ruby-railties71/distinfo
1.164modifypkgsrc/lang/ruby/rails.mk
1.5modifypkgsrc/mail/ruby-actionmailbox71/distinfo
1.5modifypkgsrc/mail/ruby-actionmailer71/distinfo
1.5modifypkgsrc/textproc/ruby-actiontext71/distinfo
1.5modifypkgsrc/www/ruby-actioncable71/distinfo
1.5modifypkgsrc/www/ruby-actionpack71/distinfo
1.5modifypkgsrc/www/ruby-actionview71/distinfo
1.5modifypkgsrc/www/ruby-rails71/distinfo