Link [ pkgsrc | NetBSD | pkgsrc git mirror | PR fulltext-search | netbsd commit viewer ]


   
        usage: [branch:branch] [user:user] [path[@revision]] keyword [... [-excludekeyword [...]]] (e.g. branch:MAIN pkgtools/pkg)


[ 1 ]


switch to index mode

recent branches: MAIN (1h)  pkgsrc-2024Q1 (11d)  pkgsrc-2023Q4 (58d)  pkgsrc-2023Q2 (90d)  pkgsrc-2023Q3 (170d) 

2024-05-28 17:41:05 UTC Now

2017-08-30 03:33:17 UTC MAIN commitmail json YAML

pkgsrc/lang/ruby23-base/Makefile@1.10 / diff
pkgsrc/lang/ruby23-base/distinfo@1.9 / diff

Add patch to fix vulnerabilities of rubygems.

https://www.ruby-lang.org/en/news/2017/08/29/multiple-vulnerabilities-in-rubygems/

* a DNS request hijacking vulnerability
* an ANSI escape sequence vulnerability
* a DoS vulernerability in the query command
* a vulnerability in the gem installer that allowed a malicious gem to
  overwrite arbitrary files

Bump PKGREVISION.

(taca)

[ 1 ]