---
- branch: MAIN
  date: Thu Feb 11 14:30:08 UTC 2021
  files:
  - new: '1.7'
    old: '1.6'
    path: pkgsrc/databases/ruby-activerecord60/distinfo
    pathrev: pkgsrc/databases/ruby-activerecord60/distinfo@1.7
    type: modified
  - new: '1.7'
    old: '1.6'
    path: pkgsrc/devel/ruby-activejob60/distinfo
    pathrev: pkgsrc/devel/ruby-activejob60/distinfo@1.7
    type: modified
  - new: '1.7'
    old: '1.6'
    path: pkgsrc/devel/ruby-activemodel60/distinfo
    pathrev: pkgsrc/devel/ruby-activemodel60/distinfo@1.7
    type: modified
  - new: '1.7'
    old: '1.6'
    path: pkgsrc/devel/ruby-activestorage60/distinfo
    pathrev: pkgsrc/devel/ruby-activestorage60/distinfo@1.7
    type: modified
  - new: '1.7'
    old: '1.6'
    path: pkgsrc/devel/ruby-activesupport60/distinfo
    pathrev: pkgsrc/devel/ruby-activesupport60/distinfo@1.7
    type: modified
  - new: '1.7'
    old: '1.6'
    path: pkgsrc/devel/ruby-railties60/distinfo
    pathrev: pkgsrc/devel/ruby-railties60/distinfo@1.7
    type: modified
  - new: '1.93'
    old: '1.92'
    path: pkgsrc/lang/ruby/rails.mk
    pathrev: pkgsrc/lang/ruby/rails.mk@1.93
    type: modified
  - new: '1.7'
    old: '1.6'
    path: pkgsrc/mail/ruby-actionmailbox60/distinfo
    pathrev: pkgsrc/mail/ruby-actionmailbox60/distinfo@1.7
    type: modified
  - new: '1.7'
    old: '1.6'
    path: pkgsrc/mail/ruby-actionmailer60/distinfo
    pathrev: pkgsrc/mail/ruby-actionmailer60/distinfo@1.7
    type: modified
  - new: '1.7'
    old: '1.6'
    path: pkgsrc/textproc/ruby-actiontext60/distinfo
    pathrev: pkgsrc/textproc/ruby-actiontext60/distinfo@1.7
    type: modified
  - new: '1.7'
    old: '1.6'
    path: pkgsrc/www/ruby-actioncable60/distinfo
    pathrev: pkgsrc/www/ruby-actioncable60/distinfo@1.7
    type: modified
  - new: '1.7'
    old: '1.6'
    path: pkgsrc/www/ruby-actionpack60/distinfo
    pathrev: pkgsrc/www/ruby-actionpack60/distinfo@1.7
    type: modified
  - new: '1.7'
    old: '1.6'
    path: pkgsrc/www/ruby-actionview60/distinfo
    pathrev: pkgsrc/www/ruby-actionview60/distinfo@1.7
    type: modified
  - new: '1.7'
    old: '1.6'
    path: pkgsrc/www/ruby-rails60/distinfo
    pathrev: pkgsrc/www/ruby-rails60/distinfo@1.7
    type: modified
  id: 20210211T143008Z.3362e82af871b5d2285e84c83695419e3e09d759
  log: |
    www/ruby-rails60: update to 6.0.3.5

    databases/ruby-activerecord60:

    ## Rails 6.0.3.5 (February 10, 2021) ##

    *   Fix possible DoS vector in PostgreSQL money type

        Carefully crafted input can cause a DoS via the regular expressions used
        for validating the money format in the PostgreSQL adapter.  This patch
        fixes the regexp.

        Thanks to @dee-see from Hackerone for this patch!

        [CVE-2021-22880]

        *Aaron Patterson*

    www/ruby-actionpack60

    ## Rails 6.0.3.5 (February 10, 2021) ##

    *   Prevent open redirect when allowed host starts with a dot

        [CVE-2021-22881]

        Thanks to @tktech (https://hackerone.com/tktech) for reporting this
        issue and the patch!

        *Aaron Patterson*
  module: pkgsrc
  subject: 'CVS commit: pkgsrc'
  unixtime: '1613053808'
  user: taca