[pkgsrc/trunk]: pkgsrc/www/ruby-rest-client Update ruby-rest-client to 1.8.0,...

To: pkgsrc-changes-hg%NetBSD.org@localhost
Subject: [pkgsrc/trunk]: pkgsrc/www/ruby-rest-client Update ruby-rest-client to 1.8.0,...
From: taca <taca%pkgsrc.org@localhost>
Date: Thu, 14 Oct 2021 17:37:06 +0000

details:   https://anonhg.NetBSD.org/pkgsrc/rev/bf585cefe36a
branches:  trunk
changeset: 649016:bf585cefe36a
user:      taca <taca%pkgsrc.org@localhost>
date:      Sat Mar 28 04:12:16 2015 +0000

description:
Update ruby-rest-client to 1.8.0, security fix.

# 1.8.0

- Security: implement standards compliant cookie handling by adding a
  dependency on http-cookie. This breaks compatibility, but was necessary to
  address a session fixation / cookie disclosure vulnerability.
  (#369 / CVE-2015-1820)

  Previously, any Set-Cookie headers found in an HTTP 30x response would be
  sent to the redirection target, regardless of domain. Responses now expose a
  cookie jar and respect standards compliant domain / path flags in Set-Cookie
  headers.

diffstat:

 www/ruby-rest-client/Makefile |  5 +++--
 www/ruby-rest-client/distinfo |  8 ++++----
 2 files changed, 7 insertions(+), 6 deletions(-)

diffs (33 lines):

diff -r 194d2db27a93 -r bf585cefe36a www/ruby-rest-client/Makefile
--- a/www/ruby-rest-client/Makefile     Fri Mar 27 23:45:29 2015 +0000
+++ b/www/ruby-rest-client/Makefile     Sat Mar 28 04:12:16 2015 +0000
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.2 2015/03/13 17:36:10 taca Exp $
+# $NetBSD: Makefile,v 1.3 2015/03/28 04:12:16 taca Exp $
 
-DISTNAME=      rest-client-1.7.3
+DISTNAME=      rest-client-1.8.0
 CATEGORIES=    www
 
 MAINTAINER=    pkgsrc-users%NetBSD.org@localhost
@@ -11,6 +11,7 @@
 DEPENDS+=      ${RUBY_PKGPREFIX}-readline>=${RUBY_VERSION}:../../devel/ruby-readline
 DEPENDS+=      ${RUBY_PKGPREFIX}-mime-types>=1.16<3.0:../../mail/ruby-mime-types
 DEPENDS+=      ${RUBY_PKGPREFIX}-netrc>=0.7<1:../../net/ruby-netrc
+DEPENDS+=      ${RUBY_PKGPREFIX}-http-cookie>=1.0.2<2:../../www/ruby-http-cookie
 
 .include "../../lang/ruby/gem.mk"
 .include "../../mk/bsd.pkg.mk"
diff -r 194d2db27a93 -r bf585cefe36a www/ruby-rest-client/distinfo
--- a/www/ruby-rest-client/distinfo     Fri Mar 27 23:45:29 2015 +0000
+++ b/www/ruby-rest-client/distinfo     Sat Mar 28 04:12:16 2015 +0000
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.2 2015/03/13 17:36:10 taca Exp $
+$NetBSD: distinfo,v 1.3 2015/03/28 04:12:16 taca Exp $
 
-SHA1 (rest-client-1.7.3.gem) = c080632d602ece2d8f1f579090da64234101c484
-RMD160 (rest-client-1.7.3.gem) = e4ede7aaa321aa9be5e4f1e80ba5a33781ba4b6c
-Size (rest-client-1.7.3.gem) = 124416 bytes
+SHA1 (rest-client-1.8.0.gem) = 271b57e37e69afbc1a02b455391d171379bdda8a
+RMD160 (rest-client-1.8.0.gem) = be9fab9a89955c9db281adbe9b1692d9f17a8b15
+Size (rest-client-1.8.0.gem) = 124928 bytes

Prev by Date: [pkgsrc/trunk]: pkgsrc/doc Updated x11/libXaw to 1.0.13
Next by Date: [pkgsrc/trunk]: pkgsrc/graphics/ruby-gd * Add GEM_EXTSDIR support.
Previous by Thread: [pkgsrc/trunk]: pkgsrc/doc Updated x11/libXaw to 1.0.13
Next by Thread: [pkgsrc/trunk]: pkgsrc/graphics/ruby-gd * Add GEM_EXTSDIR support.
Indexes:

Home | Main Index | Thread Index | Old Index