---
- branch: MAIN
  date: Wed Aug 30 03:32:55 UTC 2017
  files:
  - new: '1.18'
    old: '1.17'
    path: pkgsrc/lang/ruby22-base/Makefile
    pathrev: pkgsrc/lang/ruby22-base/Makefile@1.18
    type: modified
  - new: '1.19'
    old: '1.18'
    path: pkgsrc/lang/ruby22-base/distinfo
    pathrev: pkgsrc/lang/ruby22-base/distinfo@1.19
    type: modified
  id: 20170830T033255Z.12406e9cc1c65022957b926b5f1d6515b99e6a3a
  log: |
    Add patch to fix vulnerabilities of rubygems.

    https://www.ruby-lang.org/en/news/2017/08/29/multiple-vulnerabilities-in-rubygems/

    * a DNS request hijacking vulnerability
    * an ANSI escape sequence vulnerability
    * a DoS vulernerability in the query command
    * a vulnerability in the gem installer that allowed a malicious gem to
      overwrite arbitrary files

    Bump PKGREVISION.
  module: pkgsrc
  subject: 'CVS commit: pkgsrc/lang/ruby22-base'
  unixtime: '1504063975'
  user: taca