Navigation:
Browse pkgsrc
(this page)
lang ruby27-b..
CVSweb ] [ 
Homepage ] [ 
RSS ] [ 
Required by ] 2023-05-30 17:52:14 by Takahiro Kambe | Files touched by this commit (25) |  |
Log message: lang/ruby27-base: remove package Ruby 2.7 reached EOL. |
2023-04-01 10:59:44 by Takahiro Kambe | Files touched by this commit (2) |  |
Log message: lang/ruby27: update to 2.7.8 Ruby 2.7.8 Released Posted by usa on 30 Mar 2023 Ruby 2.7.8 has been released. This release includes security fixes. Please check the topics below for details. * CVE-2023-28755: ReDoS vulnerability in URI * CVE-2023-28756: ReDoS vulnerability in Time This release also includes some build problem fixes. See the GitHub releases for further details. After this release, Ruby 2.7 reaches EOL. In other words, this is expected to be the last release of Ruby 2.7 series. We will not release Ruby 2.7.9 even if a security vulnerability is found (but could release if a severe regression is found). We recommend all Ruby 2.7 users to start migration to Ruby 3.2, 3.1, or 3.0 immediately. |
| 2022-11-26 14:09:59 by Takahiro Kambe | Files touched by this commit (3) | |
Log message: lang/ruby27-base: update to 2.7.7 Ruby 2.7.7 Released (2022-11-24) Ruby 2.7.7 has been released. This release includes a security fix. Please check the topics below for details. * CVE-2021-33621: HTTP response splitting in CGI This release also includes some build problem fixes. They are not considered to affect compatibility with previous versions. See the commit logs for further details. |
| 2022-04-12 16:21:00 by Takahiro Kambe | Files touched by this commit (4) | |
Log message: lang/ruby27-base: update to 2.6.7 Ruby 2.7.6 has been released. This release includes a security fix. Please check the topics below for details. CVE-2022-28739: Buffer overrun in String-to-Float conversion This release also includes some bug fixes. See the commit logs for further details. After thies release, we end the normal maintenance phase of Ruby 2.7, and Ruby 2.7 enters the security maintenance phase. This means that we will no longer backport any bug fixes to Ruby 2.7 excpet security fixes. Ther term of the security maintenance pahse is scheduled for a year. Ruby 2.7 reaches EOL and its official support ends by the end of the security maintenance phase. Therefore, we recommend that you start to plan upgrade to Ruby 3.0 or 3.1. |
| 2022-01-16 15:22:47 by Takahiro Kambe | Files touched by this commit (3) |
Log message: Remove ruby-fiddle from MESSAGE |
| 2022-01-14 17:12:19 by Takahiro Kambe | Files touched by this commit (2) |
Log message: lang/ruby27-base: take in ruby-fiddle pacakge Stop separating ruby-fiddle package and take in it since devel/ruby-fiddle lacks its rubygem's meta data and I have no idea to add them to it. Bump PKGREVISION. |
| 2022-01-14 16:42:09 by Takahiro Kambe | Files touched by this commit (9) |
Log message:
lang/ruby: clean up some macro handling
1. Move some variables from gem-vars.mk to rubyversion.mk:
GEM_EXTSBASE
GEM_PATH
GEM_PLUGINSDIR
RUBYGEM
RUBY_GEM_ARCH
2. Drop unused GEM_EXTSDIR_NEEDS_SUBDIR (it is always true).
3. Define bundled module's version as "MODULE_VER".
4. Generate PLIST_SUBST and PRINT_PLIST_AWK from bundled module's name
if corresponding MODULE_VER is defined.
5. Do not run ${RUBYGEM} for RUYB_GEM_ARCH and RUBY_GEM_VER.
NFCI.
|
| 2021-11-25 17:01:18 by Takahiro Kambe | Files touched by this commit (3) | |
Log message: lang/ruby27-base: update to 2.7.5 Ruby 2.7.5 Released Posted by usa on 24 Nov 2021 Ruby 2.7.5 has been released. This release includes security fixes. Please check the topics below for details. * CVE-2021-41817: Regular Expression Denial of Service Vulnerability of Date Parsing Methods * CVE-2021-41816: Buffer Overrun in CGI.escape_html * CVE-2021-41819: Cookie Prefix Spoofing in CGI::Cookie.parse See the commit logs for details. |
New packages: