pkgsrc-Changes-HG archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

[pkgsrc/pkgsrc-2018Q3]: pkgsrc/lang Pullup ticket #5862 - requested by taca



details:   https://anonhg.NetBSD.org/pkgsrc/rev/79ff89b0ec16
branches:  pkgsrc-2018Q3
changeset: 408363:79ff89b0ec16
user:      spz <spz%pkgsrc.org@localhost>
date:      Mon Oct 29 17:34:02 2018 +0000

description:
Pullup ticket #5862 - requested by taca
lang/ruby: security update
lang/ruby23-base: security update

Revisions pulled up:
- lang/ruby/rubyversion.mk                                      1.198
- lang/ruby23-base/distinfo                                     1.17

-------------------------------------------------------------------
   Module Name: pkgsrc
   Committed By:        taca
   Date:                Thu Oct 18 14:24:07 UTC 2018

   Modified Files:
        pkgsrc/lang/ruby: rubyversion.mk
        pkgsrc/lang/ruby23-base: distinfo

   Log Message:
   lang/ruby23-base: update o 2.3.8

   Ruby 2.3.8 Released

   Ruby 2.3.8 has been released. This release includes several security
   fixes. Please check the topics below for details.

   * CVE-2018-16396: Tainted flags are not propagated in Array#pack and
     String#unpack with some directives

   * CVE-2018-16395: OpenSSL::X509::Name equality check does not work
     correctly This release also includes a non-security fix to support
     Visual Studio 2014 with Windows 10 October 2018 Update for
     maintenance reasons.

   Ruby 2.3 is now under the state of the security maintenance phase,
   until the end of the March of 2019. After the date, maintenance of
   Ruby 2.3 will be ended. We recommend you start planning migration to
   newer versions of Ruby, such as 2.5 or 2.4.


   To generate a diff of this commit:
   cvs rdiff -u -r1.197 -r1.198 pkgsrc/lang/ruby/rubyversion.mk
   cvs rdiff -u -r1.16 -r1.17 pkgsrc/lang/ruby23-base/distinfo

diffstat:

 lang/ruby/rubyversion.mk  |   4 ++--
 lang/ruby23-base/distinfo |  10 +++++-----
 2 files changed, 7 insertions(+), 7 deletions(-)

diffs (36 lines):

diff -r 7d9acc502230 -r 79ff89b0ec16 lang/ruby/rubyversion.mk
--- a/lang/ruby/rubyversion.mk  Mon Oct 29 17:25:26 2018 +0000
+++ b/lang/ruby/rubyversion.mk  Mon Oct 29 17:34:02 2018 +0000
@@ -1,4 +1,4 @@
-# $NetBSD: rubyversion.mk,v 1.195.6.2 2018/10/29 17:25:26 spz Exp $
+# $NetBSD: rubyversion.mk,v 1.195.6.3 2018/10/29 17:34:02 spz Exp $
 #
 
 # This file determines which Ruby version is used as a dependency for
@@ -215,7 +215,7 @@
 
 # current supported Ruby's version
 RUBY22_VERSION=                2.2.10
-RUBY23_VERSION=                2.3.7
+RUBY23_VERSION=                2.3.8
 RUBY24_VERSION=                2.4.5
 RUBY25_VERSION=                2.5.3
 
diff -r 7d9acc502230 -r 79ff89b0ec16 lang/ruby23-base/distinfo
--- a/lang/ruby23-base/distinfo Mon Oct 29 17:25:26 2018 +0000
+++ b/lang/ruby23-base/distinfo Mon Oct 29 17:34:02 2018 +0000
@@ -1,9 +1,9 @@
-$NetBSD: distinfo,v 1.16 2018/03/29 03:09:35 taca Exp $
+$NetBSD: distinfo,v 1.16.6.1 2018/10/29 17:34:02 spz Exp $
 
-SHA1 (ruby-2.3.7.tar.bz2) = 3bb88965405da5e4de2432eeb445fffa8a66fb33
-RMD160 (ruby-2.3.7.tar.bz2) = cb8f83f773a0d1cfc8595148ac61aff253f6b67d
-SHA512 (ruby-2.3.7.tar.bz2) = e72754f7703f0706c4b0bccd053035536053451fe069a55427984cc0bc5692b86bd51c243c5f62f78527c66b08300d2e4aa19b73e6ded13d6020aa2450e66a7d
-Size (ruby-2.3.7.tar.bz2) = 14421177 bytes
+SHA1 (ruby-2.3.8.tar.bz2) = 91b31abdba00a346c155fd32bd32d3cec3b73bc4
+RMD160 (ruby-2.3.8.tar.bz2) = 1e7cc76027730979123cdd02691ce5193cd9df7a
+SHA512 (ruby-2.3.8.tar.bz2) = 6d79e0d25757fd37188a8db3e630a52539bce7927fcb779a2ce9a97b9e5f330753035c16843552f1a1fb6c9a1e5c0f916b3cc8b5c0bfe81e20f35f8442e40ae8
+Size (ruby-2.3.8.tar.bz2) = 14418609 bytes
 SHA1 (patch-configure) = 3737bf52082288b02e7382d71a322f4822c5abe4
 SHA1 (patch-ext_dbm_extconf.rb) = c998f8735db54b1ae2bc8b6caa359ce88bc7a45b
 SHA1 (patch-ext_openssl_ossl__ssl.c) = 24e794aae278da6204e29212d9e2add0b0119ea4



Home | Main Index | Thread Index | Old Index