Subject: CVS commit: pkgsrc/lang
From: Takahiro Kambe
Date: 2017-09-15 02:39:46
Message id: 20170915003946.B2A64FA98@cvs.NetBSD.org

Log Message:
ruby24-base: Update ruby24-base and ruby24 to 2.4.2.

Ruby 2.4.2 Released			Posted by nagachika on 14 Sep 2017

We are pleased to announce the release of Ruby 2.4.2. This release contains
some security fixes.

* CVE-2017-0898: Buffer underrun vulnerability in Kernel.sprintf

* CVE-2017-10784: Escape sequence injection vulnerability in the Basic
  authentication of WEBrick

* CVE-2017-14033: Buffer underrun vulnerability in OpenSSL ASN1 docod

* CVE-2017-14064: Heap exposure in generating JSON

* Multiple vulnerabilities in RubyGems

* Update bundled libyaml to version 0.1.7.

There are also many bug-fixes. See commit logs for more details.

Files:
RevisionActionfile
1.184modifypkgsrc/lang/ruby/rubyversion.mk
1.5modifypkgsrc/lang/ruby24-base/Makefile
1.4modifypkgsrc/lang/ruby24-base/distinfo
1.1removepkgsrc/lang/ruby24-base/patches/patch-ext_openssl_ossl__ssl.c