pkgsrc-Changes-HG archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
[pkgsrc/pkgsrc-2008Q2]: pkgsrc Pullup ticket 2473 - requested by taca
details: https://anonhg.NetBSD.org/pkgsrc/rev/bd90d0c52292
branches: pkgsrc-2008Q2
changeset: 544226:bd90d0c52292
user: ghen <ghen%pkgsrc.org@localhost>
date: Fri Aug 08 14:37:50 2008 +0000
description:
Pullup ticket 2473 - requested by taca
security update for ruby
- pkgsrc/devel/ruby-curses/distinfo 1.16
- pkgsrc/lang/ruby/rubyversion.mk 1.43
- pkgsrc/lang/ruby18-base/Makefile 1.46
- pkgsrc/lang/ruby18-base/distinfo 1.32
- pkgsrc/lang/ruby18-base/patches/patch-ad removed
- pkgsrc/x11/ruby-tk/distinfo 1.19
Module Name: pkgsrc
Committed By: taca
Date: Fri Aug 8 12:38:59 UTC 2008
Modified Files:
pkgsrc/lang/ruby: rubyversion.mk
Log Message:
Start update of Ruby 1.8.7 patchlevel 71.
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Aug 8 12:42:44 UTC 2008
Modified Files:
pkgsrc/lang/ruby18-base: Makefile distinfo
Removed Files:
pkgsrc/lang/ruby18-base/patches: patch-ad
Log Message:
Update ruby18-base to 1.8.7.71.
pkgsrc change:
Apply fix for sunpro compilre, provided by PR pkg/37771 from
Naoto Morishima.
This release includes fix for multiple vulnerabilities.
http://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby/
* Several vulnerabilities in safe level
* DoS vulnerability in WEBrick
* Lack of taintness check in dl
* DNS spoofing vulnerability in resolv.rb
Full changes are too many, please refer ChangeLog file.
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Aug 8 12:43:51 UTC 2008
Modified Files:
pkgsrc/devel/ruby-curses: distinfo
Log Message:
Update ruby-curses package to 1.8.7.71.
This is version update only, no functional change in this ruby extention.
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Aug 8 12:44:51 UTC 2008
Modified Files:
pkgsrc/x11/ruby-tk: distinfo
Log Message:
Update ruby-tk package to 1.8.7.71.
This is version update only, no functional change in this ruby extention.
diffstat:
devel/ruby-curses/distinfo | 8 ++++----
lang/ruby/rubyversion.mk | 4 ++--
lang/ruby18-base/Makefile | 6 +++---
lang/ruby18-base/distinfo | 9 ++++-----
lang/ruby18-base/patches/patch-ad | 20 --------------------
x11/ruby-tk/distinfo | 8 ++++----
6 files changed, 17 insertions(+), 38 deletions(-)
diffs (113 lines):
diff -r 5e7984620de1 -r bd90d0c52292 devel/ruby-curses/distinfo
--- a/devel/ruby-curses/distinfo Mon Aug 04 08:54:55 2008 +0000
+++ b/devel/ruby-curses/distinfo Fri Aug 08 14:37:50 2008 +0000
@@ -1,6 +1,6 @@
-$NetBSD: distinfo,v 1.15 2008/06/20 15:40:25 taca Exp $
+$NetBSD: distinfo,v 1.15.4.1 2008/08/08 14:37:50 ghen Exp $
-SHA1 (ruby-1.8.7-p22.tar.bz2) = a54e59393f0ca8fcc39f9e23e63a04b1cd4e3b7a
-RMD160 (ruby-1.8.7-p22.tar.bz2) = 249253406204151d9448ec43ddc61712556ae023
-Size (ruby-1.8.7-p22.tar.bz2) = 4121532 bytes
+SHA1 (ruby-1.8.7-p71.tar.bz2) = 5ac1e6dec35a2b38f1f244f9d1a7b9b4c6c788bd
+RMD160 (ruby-1.8.7-p71.tar.bz2) = cd1a6c9dc2595e1d11c8a880f822928f5ed0a180
+Size (ruby-1.8.7-p71.tar.bz2) = 4127519 bytes
SHA1 (patch-aa) = 5e5dcea99e02716e42a428a2d01769c5709f0f45
diff -r 5e7984620de1 -r bd90d0c52292 lang/ruby/rubyversion.mk
--- a/lang/ruby/rubyversion.mk Mon Aug 04 08:54:55 2008 +0000
+++ b/lang/ruby/rubyversion.mk Fri Aug 08 14:37:50 2008 +0000
@@ -1,4 +1,4 @@
-# $NetBSD: rubyversion.mk,v 1.42 2008/06/22 04:15:54 minskim Exp $
+# $NetBSD: rubyversion.mk,v 1.42.4.1 2008/08/08 14:37:50 ghen Exp $
#
.if !defined(_RUBYVERSION_MK)
@@ -10,7 +10,7 @@
RUBY18_VERSION= 1.8.7
# patch
-RUBY18_PATCHLEVEL= 22
+RUBY18_PATCHLEVEL= 71
# RUBY_VERSION_DEFAULT defines default version for Ruby related
# packages and user can define in mk.conf. (1.6 or 1.8)
diff -r 5e7984620de1 -r bd90d0c52292 lang/ruby18-base/Makefile
--- a/lang/ruby18-base/Makefile Mon Aug 04 08:54:55 2008 +0000
+++ b/lang/ruby18-base/Makefile Fri Aug 08 14:37:50 2008 +0000
@@ -1,11 +1,11 @@
-# $NetBSD: Makefile,v 1.45 2008/07/03 21:06:10 tonnerre Exp $
+# $NetBSD: Makefile,v 1.45.4.1 2008/08/08 14:37:50 ghen Exp $
#
DISTNAME= ${RUBY_DISTNAME}
PKGNAME= ${RUBY_PKGPREFIX}-base-${RUBY_VERSION_SUFFIX}
CATEGORIES= lang ruby
MASTER_SITES= ${MASTER_SITE_RUBY}
-PKGREVISION= 1
+#PKGREVISION=
MAINTAINER= taca%NetBSD.org@localhost
HOMEPAGE= ${RUBY_HOMEPAGE}
@@ -36,7 +36,7 @@
.if !empty(PKGSRC_COMPILER:Msunpro)
LIBS.SunOS+= -B static -lsunmath -B dynamic -lm
LDFLAGS.SunOS+= -L${SUNWSPROBASE}/lib -Wl,-R${SUNWSPROBASE}/lib
-MAKE_FLAGS+= LDSHARED="${CC} -G"
+CONFIGURE_ENV+= LDSHARED="${CC} -G"
.else
LIBS.SunOS+= -lm
.endif
diff -r 5e7984620de1 -r bd90d0c52292 lang/ruby18-base/distinfo
--- a/lang/ruby18-base/distinfo Mon Aug 04 08:54:55 2008 +0000
+++ b/lang/ruby18-base/distinfo Fri Aug 08 14:37:50 2008 +0000
@@ -1,9 +1,8 @@
-$NetBSD: distinfo,v 1.31 2008/07/03 21:06:10 tonnerre Exp $
+$NetBSD: distinfo,v 1.31.4.1 2008/08/08 14:37:50 ghen Exp $
-SHA1 (ruby-1.8.7-p22.tar.bz2) = a54e59393f0ca8fcc39f9e23e63a04b1cd4e3b7a
-RMD160 (ruby-1.8.7-p22.tar.bz2) = 249253406204151d9448ec43ddc61712556ae023
-Size (ruby-1.8.7-p22.tar.bz2) = 4121532 bytes
+SHA1 (ruby-1.8.7-p71.tar.bz2) = 5ac1e6dec35a2b38f1f244f9d1a7b9b4c6c788bd
+RMD160 (ruby-1.8.7-p71.tar.bz2) = cd1a6c9dc2595e1d11c8a880f822928f5ed0a180
+Size (ruby-1.8.7-p71.tar.bz2) = 4127519 bytes
SHA1 (patch-aa) = 59f4462dada7e7b00c7a773c8a95454f3dc4f994
SHA1 (patch-ab) = 239872c5faf95c05d2a94fe5f40af5b8541423c7
SHA1 (patch-ac) = eb4dd068729ba2a2c7d4d659f6bcdb1410227f3b
-SHA1 (patch-ad) = 289682b47332eec16cc88e4f8ff7b5a6be0d75e7
diff -r 5e7984620de1 -r bd90d0c52292 lang/ruby18-base/patches/patch-ad
--- a/lang/ruby18-base/patches/patch-ad Mon Aug 04 08:54:55 2008 +0000
+++ /dev/null Thu Jan 01 00:00:00 1970 +0000
@@ -1,20 +0,0 @@
-$NetBSD: patch-ad,v 1.9 2008/07/03 21:06:10 tonnerre Exp $
-
-Avoid memory size integer overflow memory exhaustion DoS in filling
-arrays (SN-2008-02).
-
---- array.c.orig 2008-07-03 22:56:32.000000000 +0200
-+++ array.c
-@@ -2416,10 +2416,10 @@ rb_ary_fill(argc, argv, ary)
- break;
- }
- rb_ary_modify(ary);
-- end = beg + len;
-- if (end < 0) {
-+ if (beg >= ARY_MAX_SIZE || len > ARY_MAX_SIZE - beg) {
- rb_raise(rb_eArgError, "argument too big");
- }
-+ end = beg + len;
- if (end > RARRAY(ary)->len) {
- if (end >= RARRAY(ary)->aux.capa) {
- REALLOC_N(RARRAY(ary)->ptr, VALUE, end);
diff -r 5e7984620de1 -r bd90d0c52292 x11/ruby-tk/distinfo
--- a/x11/ruby-tk/distinfo Mon Aug 04 08:54:55 2008 +0000
+++ b/x11/ruby-tk/distinfo Fri Aug 08 14:37:50 2008 +0000
@@ -1,6 +1,6 @@
-$NetBSD: distinfo,v 1.18 2008/06/20 15:42:12 taca Exp $
+$NetBSD: distinfo,v 1.18.4.1 2008/08/08 14:37:50 ghen Exp $
-SHA1 (ruby-1.8.7-p22.tar.bz2) = a54e59393f0ca8fcc39f9e23e63a04b1cd4e3b7a
-RMD160 (ruby-1.8.7-p22.tar.bz2) = 249253406204151d9448ec43ddc61712556ae023
-Size (ruby-1.8.7-p22.tar.bz2) = 4121532 bytes
+SHA1 (ruby-1.8.7-p71.tar.bz2) = 5ac1e6dec35a2b38f1f244f9d1a7b9b4c6c788bd
+RMD160 (ruby-1.8.7-p71.tar.bz2) = cd1a6c9dc2595e1d11c8a880f822928f5ed0a180
+Size (ruby-1.8.7-p71.tar.bz2) = 4127519 bytes
SHA1 (patch-aa) = 3e4795c80ec44b8aade5ce5ed6c2936f9f1d1e09
Home |
Main Index |
Thread Index |
Old Index