---
- branch: MAIN
  date: Wed Aug 30 03:33:39 UTC 2017
  files:
  - new: '1.4'
    old: '1.3'
    path: pkgsrc/lang/ruby24-base/Makefile
    pathrev: pkgsrc/lang/ruby24-base/Makefile@1.4
    type: modified
  - new: '1.3'
    old: '1.2'
    path: pkgsrc/lang/ruby24-base/distinfo
    pathrev: pkgsrc/lang/ruby24-base/distinfo@1.3
    type: modified
  id: 20170830T033339Z.61a5ede92c783a9edf83b18109e5e451b3188b76
  log: |
    Add patch to fix vulnerabilities of rubygems.

    https://www.ruby-lang.org/en/news/2017/08/29/multiple-vulnerabilities-in-rubygems/

    * a DNS request hijacking vulnerability
    * an ANSI escape sequence vulnerability
    * a DoS vulernerability in the query command
    * a vulnerability in the gem installer that allowed a malicious gem to
      overwrite arbitrary files

    Bump PKGREVISION.
  module: pkgsrc
  subject: 'CVS commit: pkgsrc/lang/ruby24-base'
  unixtime: '1504064019'
  user: taca