Path to this page:
Next | Query returned 2 messages, browsing 1 to 10 | previous
CVS Commit History:
2008-08-12 13:22:11 by Tyler R. Retzlaff | Files touched by this commit (4) | |
Log message:
pullup ticket #2481 - requested by taca
ruby-curses, ruby, ruby18-base, ruby-tk: security fix
revisions pulled up
pkgsrc/lang/ruby/rubyversion.mk 1.44
pkgsrc/lang/ruby18-base/distinfo 1.17
pkgsrc/devel/ruby-curses/distinfo 1.33
pkgsrc/x11/ruby-tk/distinfo 1.20
Module Name: pkgsrc
Committed By: taca
Date: Mon Aug 11 06:58:33 UTC 2008
Modified Files:
pkgsrc/lang/ruby: rubyversion.mk
pkgsrc/lang/ruby18-base: distinfo
Log message:
Update ruby18-base to 1.8.7.72 (Ruby 1.8.7-p72).
These packages are implicitly updated with distfile update only.
databases/ruby-gdbm
devel/ruby-readline
lang/ruby
lang/ruby18
Here's quote from release announce:
Sorry for a fuss, but it turned out that taintness check of dl in last
releases I made was incomplete. Here are fixes for that.
And relevant changes:
Mon Aug 11 09:37:17 2008 Yukihiro Matsumoto <matz@ruby-lang.org>
* ext/dl/dl.c (rb_str_to_ptr): should propagate taint to dlptr.
* ext/dl/dl.c (rb_ary_to_ptr): ditto.
* ext/dl/sym.c (rb_dlsym_call): should check taint of DLPtrData as
well.
------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: taca
Date: Mon Aug 11 06:59:40 UTC 2008
Modified Files:
pkgsrc/devel/ruby-curses: distinfo
Log message:
Update ruby-curses package to 1.8.7.72.
It is distfile change only.
------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: taca
Date: Mon Aug 11 06:59:55 UTC 2008
Modified Files:
pkgsrc/x11/ruby-tk: distinfo
Log message:
Update ruby-curses package to 1.8.7.72.
It is distfile change only.
|
2008-08-08 16:37:50 by Geert Hendrickx | Files touched by this commit (6) | |
Log message:
Pullup ticket 2473 - requested by taca
security update for ruby
- pkgsrc/devel/ruby-curses/distinfo 1.16
- pkgsrc/lang/ruby/rubyversion.mk 1.43
- pkgsrc/lang/ruby18-base/Makefile 1.46
- pkgsrc/lang/ruby18-base/distinfo 1.32
- pkgsrc/lang/ruby18-base/patches/patch-ad removed
- pkgsrc/x11/ruby-tk/distinfo 1.19
Module Name: pkgsrc
Committed By: taca
Date: Fri Aug 8 12:38:59 UTC 2008
Modified Files:
pkgsrc/lang/ruby: rubyversion.mk
Log message:
Start update of Ruby 1.8.7 patchlevel 71.
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Aug 8 12:42:44 UTC 2008
Modified Files:
pkgsrc/lang/ruby18-base: Makefile distinfo
Removed Files:
pkgsrc/lang/ruby18-base/patches: patch-ad
Log message:
Update ruby18-base to 1.8.7.71.
pkgsrc change:
Apply fix for sunpro compilre, provided by PR pkg/37771 from
Naoto Morishima.
This release includes fix for multiple vulnerabilities.
http://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby/
* Several vulnerabilities in safe level
* DoS vulnerability in WEBrick
* Lack of taintness check in dl
* DNS spoofing vulnerability in resolv.rb
Full changes are too many, please refer ChangeLog file.
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Aug 8 12:43:51 UTC 2008
Modified Files:
pkgsrc/devel/ruby-curses: distinfo
Log message:
Update ruby-curses package to 1.8.7.71.
This is version update only, no functional change in this ruby extention.
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Aug 8 12:44:51 UTC 2008
Modified Files:
pkgsrc/x11/ruby-tk: distinfo
Log message:
Update ruby-tk package to 1.8.7.71.
This is version update only, no functional change in this ruby extention.
|
Next | Query returned 2 messages, browsing 1 to 10 | previous