Received: from mail.netbsd.org (mail.netbsd.org [149.20.53.66]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mail.netbsd.org", Issuer "Postmaster NetBSD.org" (verified OK)) by mollari.NetBSD.org (Postfix) with ESMTPS id 9ADA9A6531 for ; Thu, 3 Sep 2015 18:44:29 +0000 (UTC) Received: by mail.netbsd.org (Postfix, from userid 605) id F070814A24A; Thu, 3 Sep 2015 18:44:28 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mail.netbsd.org (Postfix) with ESMTP id 38A1F14A248 for ; Thu, 3 Sep 2015 18:44:28 +0000 (UTC) X-Virus-Scanned: amavisd-new at NetBSD.org Received: from mail.netbsd.org ([127.0.0.1]) by localhost (mail.NetBSD.org [127.0.0.1]) (amavisd-new, port 10025) with ESMTP id TXcN4eAxa_T9 for ; Thu, 3 Sep 2015 18:44:27 +0000 (UTC) Received: from cvs.netbsd.org (cvs.NetBSD.org [IPv6:2001:4f8:3:7:2e0:81ff:fe30:95bd]) by mail.netbsd.org (Postfix) with ESMTP id AB88F14A242 for ; Thu, 3 Sep 2015 18:44:27 +0000 (UTC) Received: by cvs.netbsd.org (Postfix, from userid 500) id 9FB1498; Thu, 3 Sep 2015 18:44:27 +0000 (UTC) Content-Disposition: inline Content-Transfer-Encoding: 8bit Content-Type: text/plain; charset="US-ASCII" MIME-Version: 1.0 Date: Thu, 3 Sep 2015 18:44:27 +0000 From: "Matthias Scheler" Subject: CVS commit: [pkgsrc-2015Q2] pkgsrc/lang To: pkgsrc-changes@NetBSD.org Reply-To: tron@netbsd.org X-Mailer: log_accum Message-Id: <20150903184427.9FB1498@cvs.netbsd.org> Sender: pkgsrc-changes-owner@NetBSD.org List-Id: pkgsrc-changes.NetBSD.org Precedence: bulk Module Name: pkgsrc Committed By: tron Date: Thu Sep 3 18:44:27 UTC 2015 Modified Files: pkgsrc/lang/ruby [pkgsrc-2015Q2]: rubyversion.mk pkgsrc/lang/ruby200-base [pkgsrc-2015Q2]: Makefile distinfo Removed Files: pkgsrc/lang/ruby200-base/patches [pkgsrc-2015Q2]: patch-lib_rubygems_remote__fetcher.rb Log Message: Pullup ticket #4802 - requested by taca lang/ruby200-base: security update Revisions pulled up: - lang/ruby/rubyversion.mk 1.145 - lang/ruby200-base/Makefile 1.20 - lang/ruby200-base/distinfo 1.27 - lang/ruby200-base/patches/patch-lib_rubygems_remote__fetcher.rb deleted --- Module Name: pkgsrc Committed By: taca Date: Thu Aug 20 15:22:16 UTC 2015 Modified Files: pkgsrc/lang/ruby: rubyversion.mk pkgsrc/lang/ruby200-base: Makefile distinfo Removed Files: pkgsrc/lang/ruby200-base/patches: patch-lib_rubygems_remote__fetcher.rb Log Message: Update ruby200-base-2.0.0p647 to (Ruby 2.0.0-p647). Release announce: Ruby 2.0.0-p647 Released Posted by usa on 18 Aug 2015 We are pleased to announce the release of Ruby 2.0.0-p647. This release includes the security fix for a RubyGems domain name verification vulnerability. Please view the topic below for more details. CVE-2015-3900 Request hijacking vulnerability in RubyGems 2.4.6 and earlier And, this release also includes the fix for a regression of lib/resolv.rb. Uninitialized constant bug introduced by typo in backport of [#10712] Ruby 2.0.0 is now under the state of the security maintenance phase, until Feb. 24th, 2016. After the date, maintenance of Ruby 2.0.0 will be ended. We recommend you start planning migration to newer versions of Ruby, such as 2.1 or 2.2. To generate a diff of this commit: cvs rdiff -u -r1.143 -r1.143.2.1 pkgsrc/lang/ruby/rubyversion.mk cvs rdiff -u -r1.19 -r1.19.2.1 pkgsrc/lang/ruby200-base/Makefile cvs rdiff -u -r1.26 -r1.26.2.1 pkgsrc/lang/ruby200-base/distinfo cvs rdiff -u -r1.1 -r0 \ pkgsrc/lang/ruby200-base/patches/patch-lib_rubygems_remote__fetcher.rb Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.