pkgsrc.se | The NetBSD package collection

./lang/ruby32-base, Ruby 3.2.4 release minimum base package

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 3.2.4, Package name: ruby32-base-3.2.4, Maintainer: taca

Ruby is a dynamic, open source programming language with a focus on
simplicity and productivity. It has an elegant syntax that is natural to
read and easy to write.

Features of Ruby are shown below.
+ Simple Syntax
+ *Normal* Object-Oriented features (ex. class, method calls)
+ *Advanced* Object-Oriented features (ex. Mix-in, Singleton-method)
+ Operator Overloading
+ Exception Handling
+ Iterators and Closures
+ Garbage Collection
+ Dynamic Loading of Object files (on some architecture)
+ Highly Portable (works on many UNIX machines, and on Windows, Mac, etc.)

Ruby 3.2 introduces a number of new features and performance improvements,
here are some of them:
* Performance: YJIT: New experimental in-process JIT compiler
* Development supports
- debug gem: A new debugger
- error_highlight: Fine-grained error location in backtrace
- IRB Autocomplete and Document Display

This package is Ruby 3.2 release minimum base package.

DEINSTALL [+/-]

Package options: ruby-build-ri-db, ruby-yjit

Master sites: (Expand)

Filesize: 14819.977 KB

Version history: (Expand)

(2024-04-25) Updated to version: ruby32-base-3.2.4
(2024-03-23) Updated to version: ruby32-base-3.2.3nb1
(2024-01-21) Updated to version: ruby32-base-3.2.3
(2024-01-16) Updated to version: ruby32-base-3.2.2nb4
(2023-10-25) Updated to version: ruby32-base-3.2.2nb3
(2023-06-29) Updated to version: ruby32-base-3.2.2nb2

CVS history: (Expand)

2024-04-25 17:06:11 by Takahiro Kambe | Files touched by this commit (5) | Package updated

Log message:
lang/ruby32-base: update to 3.2.4

This is security release.  Note CVE-2024-27280 and CVE-2024-27281 were
already fixed by ruby31-base-3.2.3nb3.

3.2.4 (2024-04-23)

* CVE-2024-27282: Arbitrary memory address read vulnerability with Regex
  search
* CVE-2024-27281: RCE vulnerability with .rdoc_options in RDoc
* CVE-2024-27280: Buffer overread vulnerability in StringIO

2024-03-23 15:47:13 by Takahiro Kambe | Files touched by this commit (5)

Log message:
lang/ruby32-base: fix CVE-2024-27281

Update rdoc to 6.5.1.1 to fix for CVE-2024-27281.

Bump PKGREVISION.

2024-01-21 09:35:39 by Takahiro Kambe | Files touched by this commit (8) | Package updated

Log message:
lang/ruby32-base: update to 3.2.3

Since ruby32-base3.2.2-nb2 have uri gem 0.12.2, this update contains
no security fix.

These default gems are updated from ruby32-base-3.2.2nb4:

	- rubygems 3.4.9
	- bundler 2.4.19
	- net-http 0.4.1
	- syntax-suggest 1.1.0

These bundled gems are updated:

	- net-ftp 0.2.1
	- net-imap 0.3.4.1
	- net-smtp 0.3.4

3.2.3 (2024-01-18)

This release includes many bug-fixes.  See the GitHub releases for further
details.

This release also includes the update of uri.gem to 0.12.2 which contains
the security fix.  Please check the topics below for details.

	* CVE-2023-36617: ReDoS vulnerability in URI

2024-01-16 16:17:41 by Takahiro Kambe | Files touched by this commit (3)

Log message:
lang/ruby32-base: enable ruby-yjit on supprted platforms.

* Accidently, ruby-yjit was not enabled on supprted platforms.
* RUBY_SUFFIX is always defined.
* Avoid use "!empty()".

Bump PKGREVISION.

2023-10-25 00:11:51 by Thomas Klausner | Files touched by this commit (2298)

Log message:
*: bump for openssl 3

2023-09-10 10:54:09 by Nia Alarie | Files touched by this commit (2)

Log message:
ruby3*-base: Require a compiler with c11 and thread local support.

2023-06-29 17:42:07 by Takahiro Kambe | Files touched by this commit (6) | Package updated

Log message:
lang/ruby32-base: update bundled gem uri to 0.12.2

Fix CVE-2023-36617: ReDoS vulnerability in URI.

Bump PKGREVISION.

2023-05-30 17:54:36 by Takahiro Kambe | Files touched by this commit (2) | Package updated

Log message:
lang/ruby32-base: update ALTERNATIVES

rdbg was missing from ALTERNATIVES.

Bump PKGREVISION.