Pullup ticket #4533 - requested by taca lang/ruby193-base: security update Revisions pulled up: - lang/ruby/rubyversion.mk 1.125 - lang/ruby193-base/Makefile 1.46-1.47 - lang/ruby193-base/distinfo 1.36-1.37 - lang/ruby193-base/patches/patch-pack.c 1.2 --- Module Name: pkgsrc Committed By: taca Date: Thu Oct 2 08:50:12 UTC 2014 Modified Files: pkgsrc/lang/ruby193-base: distinfo pkgsrc/lang/ruby193-base/patches: patch-pack.c Log Message: Fix typo in comment in a patch file. --- Module Name: pkgsrc Committed By: taca Date: Mon Oct 27 16:11:18 UTC 2014 Modified Files: pkgsrc/lang/ruby: rubyversion.mk pkgsrc/lang/ruby193-base: Makefile distinfo Log Message: Update ruby193-base and related packages to 1.9.3p550 (Ruby 1.9.3-p550). Ruby 1.9.3-p550 Released We are pleased to announce the release of Ruby 1.9.3-p550. This release includes a security fix for DoS vulnerability of REXML. * CVE-2014-8080: Denial Of Service XML Expansion This release also includes the change of default settings of ext/openssl. Insecure SSL/TLS options are now turn off by default. * Changed default settings of ext/openssl And, in addition, bandled jQuery for darkfish template of RDoc is also updated. --- Module Name: pkgsrc Committed By: wiz Date: Tue Oct 28 07:48:19 UTC 2014 Modified Files: pkgsrc/lang/ruby193-base: Makefile Log Message: Not MAKE_JOBS_SAFE (two tries with MAKE_JOBS=8 failed for me in a row).diff -r1.124.2.1 -r1.124.2.2 pkgsrc/lang/ruby/rubyversion.mk
(tron)
@@ -1,14 +1,14 @@ | @@ -1,14 +1,14 @@ | |||
1 | # $NetBSD: rubyversion.mk,v 1.124.2.1 2014/11/01 19:17:24 tron Exp $ | 1 | # $NetBSD: rubyversion.mk,v 1.124.2.2 2014/11/02 17:14:33 tron Exp $ | |
2 | # | 2 | # | |
3 | 3 | |||
4 | # This file determines which Ruby version is used as a dependency for | 4 | # This file determines which Ruby version is used as a dependency for | |
5 | # a package. | 5 | # a package. | |
6 | # | 6 | # | |
7 | # | 7 | # | |
8 | # === User-settable variables === | 8 | # === User-settable variables === | |
9 | # | 9 | # | |
10 | # RUBY_VERSION_DEFAULT | 10 | # RUBY_VERSION_DEFAULT | |
11 | # The preferered Ruby version to use. | 11 | # The preferered Ruby version to use. | |
12 | # | 12 | # | |
13 | # Possible values: 18 193 200 21 | 13 | # Possible values: 18 193 200 21 | |
14 | # Default: 200 | 14 | # Default: 200 | |
@@ -217,27 +217,27 @@ RUBY_VERSION_REQD?= ${PKGNAME_REQD:C/rub | @@ -217,27 +217,27 @@ RUBY_VERSION_REQD?= ${PKGNAME_REQD:C/rub | |||
217 | RUBY_VERSION_REQD?= ${PKGNAME_REQD:C/ruby([0-9][0-9]+)-.*/\1/} | 217 | RUBY_VERSION_REQD?= ${PKGNAME_REQD:C/ruby([0-9][0-9]+)-.*/\1/} | |
218 | . endif | 218 | . endif | |
219 | . endif | 219 | . endif | |
220 | .endif | 220 | .endif | |
221 | 221 | |||
222 | # current supported Ruby's version | 222 | # current supported Ruby's version | |
223 | RUBY18_VERSION= 1.8.7 | 223 | RUBY18_VERSION= 1.8.7 | |
224 | RUBY193_VERSION= 1.9.3 | 224 | RUBY193_VERSION= 1.9.3 | |
225 | RUBY200_VERSION= 2.0.0 | 225 | RUBY200_VERSION= 2.0.0 | |
226 | RUBY21_VERSION= 2.1.2 | 226 | RUBY21_VERSION= 2.1.2 | |
227 | 227 | |||
228 | # patch | 228 | # patch | |
229 | RUBY18_PATCHLEVEL= pl374 | 229 | RUBY18_PATCHLEVEL= pl374 | |
230 | RUBY193_PATCHLEVEL= p547 | 230 | RUBY193_PATCHLEVEL= p550 | |
231 | RUBY200_PATCHLEVEL= p594 | 231 | RUBY200_PATCHLEVEL= p594 | |
232 | #RUBY21_PATCHLEVEL= p95 | 232 | #RUBY21_PATCHLEVEL= p95 | |
233 | 233 | |||
234 | # current API compatible version; used for version of shared library | 234 | # current API compatible version; used for version of shared library | |
235 | RUBY18_API_VERSION= 1.8.7 | 235 | RUBY18_API_VERSION= 1.8.7 | |
236 | RUBY193_API_VERSION= 1.9.1 | 236 | RUBY193_API_VERSION= 1.9.1 | |
237 | RUBY200_API_VERSION= 2.0.0 | 237 | RUBY200_API_VERSION= 2.0.0 | |
238 | RUBY21_API_VERSION= 2.1.0 | 238 | RUBY21_API_VERSION= 2.1.0 | |
239 | 239 | |||
240 | # | 240 | # | |
241 | RUBY_VERSION_DEFAULT?= 200 | 241 | RUBY_VERSION_DEFAULT?= 200 | |
242 | 242 | |||
243 | RUBY_VERSION_SUPPORTED?= 200 193 18 21 | 243 | RUBY_VERSION_SUPPORTED?= 200 193 18 21 |
@@ -1,36 +1,36 @@ | @@ -1,36 +1,36 @@ | |||
1 | # $NetBSD: Makefile,v 1.45 2014/09/30 10:40:08 taca Exp $ | 1 | # $NetBSD: Makefile,v 1.45.2.1 2014/11/02 17:14:33 tron Exp $ | |
2 | # | 2 | # | |
3 | 3 | |||
4 | DISTNAME= ${RUBY_DISTNAME} | 4 | DISTNAME= ${RUBY_DISTNAME} | |
5 | PKGNAME= ${RUBY_PKGPREFIX}-base-${RUBY_VERSION_FULL} | 5 | PKGNAME= ${RUBY_PKGPREFIX}-base-${RUBY_VERSION_FULL} | |
6 | PKGREVISION= 1 | |||
7 | CATEGORIES= lang ruby | 6 | CATEGORIES= lang ruby | |
8 | MASTER_SITES= ${MASTER_SITE_RUBY} | 7 | MASTER_SITES= ${MASTER_SITE_RUBY} | |
9 | 8 | |||
10 | MAINTAINER= taca@NetBSD.org | 9 | MAINTAINER= taca@NetBSD.org | |
11 | HOMEPAGE= ${RUBY_HOMEPAGE} | 10 | HOMEPAGE= ${RUBY_HOMEPAGE} | |
12 | COMMENT= Ruby ${RUBY_VERSION} release minimum base package | 11 | COMMENT= Ruby ${RUBY_VERSION} release minimum base package | |
13 | LICENSE= ${RUBY_LICENSE} | 12 | LICENSE= ${RUBY_LICENSE} | |
14 | 13 | |||
15 | RUBY_VERSION_SUPPORTED= 193 | 14 | RUBY_VERSION_SUPPORTED= 193 | |
16 | 15 | |||
17 | USE_GCC_RUNTIME= yes | 16 | USE_GCC_RUNTIME= yes | |
18 | USE_LANGUAGES= c | 17 | USE_LANGUAGES= c | |
19 | USE_TOOLS+= pax yacc | 18 | USE_TOOLS+= pax yacc | |
20 | GNU_CONFIGURE= yes | 19 | GNU_CONFIGURE= yes | |
21 | TEST_TARGET= test | 20 | TEST_TARGET= test | |
22 | CONFIGURE_ARGS+= --enable-shared | 21 | CONFIGURE_ARGS+= --enable-shared | |
23 | WRKSRC= ${RUBY_WRKSRC} | 22 | WRKSRC= ${RUBY_WRKSRC} | |
23 | MAKE_JOBS_SAFE= no | |||
24 | 24 | |||
25 | MAKE_DIRS= ${RUBY_SITEARCHLIB} ${RUBY_VENDORARCHLIB} | 25 | MAKE_DIRS= ${RUBY_SITEARCHLIB} ${RUBY_VENDORARCHLIB} | |
26 | 26 | |||
27 | # | 27 | # | |
28 | # Don't refrect pkgsrc's INSTALL macro since Ruby expect it could | 28 | # Don't refrect pkgsrc's INSTALL macro since Ruby expect it could | |
29 | # execute by unprivileged user. | 29 | # execute by unprivileged user. | |
30 | # | 30 | # | |
31 | CONFIGURE_ENV+= INSTALL="${INSTALL} ${COPY}" \ | 31 | CONFIGURE_ENV+= INSTALL="${INSTALL} ${COPY}" \ | |
32 | INSTALL_DATA= INSTALL_PROGRAM= INSTALL_SCRIPT= | 32 | INSTALL_DATA= INSTALL_PROGRAM= INSTALL_SCRIPT= | |
33 | 33 | |||
34 | .include "../../mk/compiler.mk" | 34 | .include "../../mk/compiler.mk" | |
35 | 35 | |||
36 | .if !empty(PKGSRC_COMPILER:Msunpro) | 36 | .if !empty(PKGSRC_COMPILER:Msunpro) |
@@ -1,35 +1,35 @@ | @@ -1,35 +1,35 @@ | |||
1 | $NetBSD: distinfo,v 1.35 2014/09/30 10:40:08 taca Exp $ | 1 | $NetBSD: distinfo,v 1.35.2.1 2014/11/02 17:14:33 tron Exp $ | |
2 | 2 | |||
3 | SHA1 (ruby-1.9.3-p547.tar.bz2) = 972ea65ab50c697a60c672888a143e0bc84b4d6e | 3 | SHA1 (ruby-1.9.3-p550.tar.bz2) = d4f1574a7fbcd402407b6c0ebf6ebea9c0c7d55a | |
4 | RMD160 (ruby-1.9.3-p547.tar.bz2) = 827473dd20e4dad7704eb5da19f13ce5c105bddf | 4 | RMD160 (ruby-1.9.3-p550.tar.bz2) = bcc30a2a4d602f42222544d0ed00b0446978920b | |
5 | Size (ruby-1.9.3-p547.tar.bz2) = 10036828 bytes | 5 | Size (ruby-1.9.3-p550.tar.bz2) = 10053787 bytes | |
6 | SHA1 (patch-configure) = 0ef7e10bbff37118c48053e7189f87528a3e408b | 6 | SHA1 (patch-configure) = 0ef7e10bbff37118c48053e7189f87528a3e408b | |
7 | SHA1 (patch-configure.in) = 09dfe819b6a9bd7c9af704eeaef659857d33d0c3 | 7 | SHA1 (patch-configure.in) = 09dfe819b6a9bd7c9af704eeaef659857d33d0c3 | |
8 | SHA1 (patch-defs_default__gems) = fb24111736f1a76a05e853aa068024dbdd24e5a5 | 8 | SHA1 (patch-defs_default__gems) = fb24111736f1a76a05e853aa068024dbdd24e5a5 | |
9 | SHA1 (patch-ext_dl_extconf.rb) = aed210606893d2b9c463d794df039f06003848e4 | 9 | SHA1 (patch-ext_dl_extconf.rb) = aed210606893d2b9c463d794df039f06003848e4 | |
10 | SHA1 (patch-lib_rdoc_ri_driver.rb) = acb4cb022893eb8dea2adf7564f5e5e1a0f1e9c8 | 10 | SHA1 (patch-lib_rdoc_ri_driver.rb) = acb4cb022893eb8dea2adf7564f5e5e1a0f1e9c8 | |
11 | SHA1 (patch-lib_rubygems.rb) = e472c981e544b75c3762385895c9a0197be9badd | 11 | SHA1 (patch-lib_rubygems.rb) = e472c981e544b75c3762385895c9a0197be9badd | |
12 | SHA1 (patch-lib_rubygems_command.rb) = 916a93372e714b56a741acc15350536194f34c77 | 12 | SHA1 (patch-lib_rubygems_command.rb) = 916a93372e714b56a741acc15350536194f34c77 | |
13 | SHA1 (patch-lib_rubygems_command__manager.rb) = 4fabf9a6c8bf5e47a4fb3bb3d398105b4452ec7e | 13 | SHA1 (patch-lib_rubygems_command__manager.rb) = 4fabf9a6c8bf5e47a4fb3bb3d398105b4452ec7e | |
14 | SHA1 (patch-lib_rubygems_commands_install__command.rb) = ff637f39f3fd76b7550fd7f8c32fe303eec6f8c3 | 14 | SHA1 (patch-lib_rubygems_commands_install__command.rb) = ff637f39f3fd76b7550fd7f8c32fe303eec6f8c3 | |
15 | SHA1 (patch-lib_rubygems_commands_setup__command.rb) = 85b666544fc0787e67bb54071d8660cbfe3015d6 | 15 | SHA1 (patch-lib_rubygems_commands_setup__command.rb) = 85b666544fc0787e67bb54071d8660cbfe3015d6 | |
16 | SHA1 (patch-lib_rubygems_commands_uninstall__command.rb) = 7d8dd07d332f0e89822d06f2d71e7552358107cc | 16 | SHA1 (patch-lib_rubygems_commands_uninstall__command.rb) = 7d8dd07d332f0e89822d06f2d71e7552358107cc | |
17 | SHA1 (patch-lib_rubygems_commands_unpack__command.rb) = b8e18f1feedb7966e2a5280d6020c6134a7d83a3 | 17 | SHA1 (patch-lib_rubygems_commands_unpack__command.rb) = b8e18f1feedb7966e2a5280d6020c6134a7d83a3 | |
18 | SHA1 (patch-lib_rubygems_config__file.rb) = ed4ff25ea89a2d13ee601c7edfda0902f08fe29c | 18 | SHA1 (patch-lib_rubygems_config__file.rb) = ed4ff25ea89a2d13ee601c7edfda0902f08fe29c | |
19 | SHA1 (patch-lib_rubygems_defaults.rb) = 101a6e653ef3811cdda3ed333b50448c0d3f0d26 | 19 | SHA1 (patch-lib_rubygems_defaults.rb) = 101a6e653ef3811cdda3ed333b50448c0d3f0d26 | |
20 | SHA1 (patch-lib_rubygems_dependency__installer.rb) = 8832e6d0157191b1c137ad7ad7ba5429bcfadd5a | 20 | SHA1 (patch-lib_rubygems_dependency__installer.rb) = 8832e6d0157191b1c137ad7ad7ba5429bcfadd5a | |
21 | SHA1 (patch-lib_rubygems_doc__manager.rb) = 4b2d70e5dfaeff1f1b70ff27f1084065dcc742d3 | 21 | SHA1 (patch-lib_rubygems_doc__manager.rb) = 4b2d70e5dfaeff1f1b70ff27f1084065dcc742d3 | |
22 | SHA1 (patch-lib_rubygems_gem__runner.rb) = 03ff2f0b72004ef7e09b5ba9d56752109e4e6b73 | 22 | SHA1 (patch-lib_rubygems_gem__runner.rb) = 03ff2f0b72004ef7e09b5ba9d56752109e4e6b73 | |
23 | SHA1 (patch-lib_rubygems_install__update__options.rb) = 74f81900c92bc3c7a663a112cccf6ff88b6ae180 | 23 | SHA1 (patch-lib_rubygems_install__update__options.rb) = 74f81900c92bc3c7a663a112cccf6ff88b6ae180 | |
24 | SHA1 (patch-lib_rubygems_installer.rb) = fe1c97abaf0b7a3fbecf8327a6d1ccd697cb62cc | 24 | SHA1 (patch-lib_rubygems_installer.rb) = fe1c97abaf0b7a3fbecf8327a6d1ccd697cb62cc | |
25 | SHA1 (patch-lib_rubygems_platform.rb) = dff117b80a004325e7012575e838f49740a37dba | 25 | SHA1 (patch-lib_rubygems_platform.rb) = dff117b80a004325e7012575e838f49740a37dba | |
26 | SHA1 (patch-lib_rubygems_specification.rb) = 3da23596f701c1966bc12f2341c82f2f2c646779 | 26 | SHA1 (patch-lib_rubygems_specification.rb) = 3da23596f701c1966bc12f2341c82f2f2c646779 | |
27 | SHA1 (patch-lib_rubygems_uninstaller.rb) = 038df207f0ad4ef674ff60976fcda969d50c3c4e | 27 | SHA1 (patch-lib_rubygems_uninstaller.rb) = 038df207f0ad4ef674ff60976fcda969d50c3c4e | |
28 | SHA1 (patch-man_erb.1) = a8f69ebb02b4d5e1c80b270a3d683c23d8dfbcf1 | 28 | SHA1 (patch-man_erb.1) = a8f69ebb02b4d5e1c80b270a3d683c23d8dfbcf1 | |
29 | SHA1 (patch-man_irb.1) = 58fcccbb5f5f76450715cbf246a018af58d9b57e | 29 | SHA1 (patch-man_irb.1) = 58fcccbb5f5f76450715cbf246a018af58d9b57e | |
30 | SHA1 (patch-man_ri.1) = 25d82d08a9eb74ccc1cbbc1fc324d23f1a56ed64 | 30 | SHA1 (patch-man_ri.1) = 25d82d08a9eb74ccc1cbbc1fc324d23f1a56ed64 | |
31 | SHA1 (patch-man_ruby.1) = 43c638a38bed8257f33d8f5a491acd77a18032b7 | 31 | SHA1 (patch-man_ruby.1) = 43c638a38bed8257f33d8f5a491acd77a18032b7 | |
32 | SHA1 (patch-pack.c) = 1fa428ded4e95a8511333d7d1eaa4ff80f0f919d | 32 | SHA1 (patch-pack.c) = d1e2c9871d2ba012a9136bdf708c2d42588d863c | |
33 | SHA1 (patch-test_rubygems_test__gem.rb) = fe8b8e436b255595122d2a01462ba0a686575f24 | 33 | SHA1 (patch-test_rubygems_test__gem.rb) = fe8b8e436b255595122d2a01462ba0a686575f24 | |
34 | SHA1 (patch-tool_rbinstall.rb) = f0497085a09b31145f57028b30e335b09acabcff | 34 | SHA1 (patch-tool_rbinstall.rb) = f0497085a09b31145f57028b30e335b09acabcff | |
35 | SHA1 (patch-vsnprintf.c) = 7bb4ca07381536717518143ef7803634168ca9fa | 35 | SHA1 (patch-vsnprintf.c) = 7bb4ca07381536717518143ef7803634168ca9fa |
@@ -1,16 +1,16 @@ | @@ -1,16 +1,16 @@ | |||
1 | $NetBSD: patch-pack.c,v 1.1 2014/09/30 10:40:08 taca Exp $ | 1 | $NetBSD: patch-pack.c,v 1.1.2.1 2014/11/02 17:14:33 tron Exp $ | |
2 | 2 | |||
3 | Fix for CVS-2014-4975 from revision #46806 in ruby_2_1 branch. | 3 | Fix for CVE-2014-4975 from revision #46806 in ruby_2_1 branch. | |
4 | 4 | |||
5 | --- pack.c.orig 2012-08-09 13:49:27.000000000 +0000 | 5 | --- pack.c.orig 2012-08-09 13:49:27.000000000 +0000 | |
6 | +++ pack.c | 6 | +++ pack.c | |
7 | @@ -1068,7 +1068,8 @@ static const char b64_table[] = | 7 | @@ -1068,7 +1068,8 @@ static const char b64_table[] = | |
8 | static void | 8 | static void | |
9 | encodes(VALUE str, const char *s, long len, int type, int tail_lf) | 9 | encodes(VALUE str, const char *s, long len, int type, int tail_lf) | |
10 | { | 10 | { | |
11 | - char buff[4096]; | 11 | - char buff[4096]; | |
12 | + enum {buff_size = 4096, encoded_unit = 4}; | 12 | + enum {buff_size = 4096, encoded_unit = 4}; | |
13 | + char buff[buff_size + 1]; /* +1 for tail_lf */ | 13 | + char buff[buff_size + 1]; /* +1 for tail_lf */ | |
14 | long i = 0; | 14 | long i = 0; | |
15 | const char *trans = type == 'u' ? uu_table : b64_table; | 15 | const char *trans = type == 'u' ? uu_table : b64_table; | |
16 | int padding; | 16 | int padding; |