[pkgsrc/trunk]: pkgsrc/textproc/ruby-nokogiri ruby-nokogiri: update to 1.12.5.

To: pkgsrc-changes-hg%NetBSD.org@localhost
Subject: [pkgsrc/trunk]: pkgsrc/textproc/ruby-nokogiri ruby-nokogiri: update to 1.12.5.
From: tsutsui <tsutsui%pkgsrc.org@localhost>
Date: Fri, 01 Oct 2021 20:15:39 +0000

details:   https://anonhg.NetBSD.org/pkgsrc/rev/46c4f05194a4
branches:  trunk
changeset: 459221:46c4f05194a4
user:      tsutsui <tsutsui%pkgsrc.org@localhost>
date:      Fri Oct 01 18:54:25 2021 +0000

description:
ruby-nokogiri: update to 1.12.5.

Upstream changes:
https://github.com/sparklemotion/nokogiri/releases/tag/v1.12.5

1.12.5 / 2021-09-27

Security

[JRuby] Address CVE-2021-41098 (GHSA-2rr5-8q37-2w7h).

In Nokogiri v1.12.4 and earlier, on JRuby only, the SAX parsers resolve
external entities (XXE) by default. This fix turns off
entity-resolution-by-default in the JRuby SAX parsers to match the CRuby SAX
parsers' behavior.

CRuby users are not affected by this CVE.

Fixed

  * [CRuby] Document#to_xhtml properly serializes self-closing tags in libxml >
    2.9.10. A behavior change introduced in libxml 2.9.11 resulted in emitting
    start and and tags (e.g., <br></br>) instead of a self-closing tag (e.g.,
    <br/>) in previous Nokogiri versions. [#2324]

diffstat:

 textproc/ruby-nokogiri/Makefile |   4 ++--
 textproc/ruby-nokogiri/distinfo |  10 +++++-----
 2 files changed, 7 insertions(+), 7 deletions(-)

diffs (28 lines):

diff -r bab1b3a4ca5a -r 46c4f05194a4 textproc/ruby-nokogiri/Makefile
--- a/textproc/ruby-nokogiri/Makefile   Fri Oct 01 17:59:05 2021 +0000
+++ b/textproc/ruby-nokogiri/Makefile   Fri Oct 01 18:54:25 2021 +0000
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.63 2021/09/21 09:36:03 jperkin Exp $
+# $NetBSD: Makefile,v 1.64 2021/10/01 18:54:25 tsutsui Exp $
 
-DISTNAME=      nokogiri-1.12.4
+DISTNAME=      nokogiri-1.12.5
 CATEGORIES=    textproc
 
 MAINTAINER=    tsutsui%NetBSD.org@localhost
diff -r bab1b3a4ca5a -r 46c4f05194a4 textproc/ruby-nokogiri/distinfo
--- a/textproc/ruby-nokogiri/distinfo   Fri Oct 01 17:59:05 2021 +0000
+++ b/textproc/ruby-nokogiri/distinfo   Fri Oct 01 18:54:25 2021 +0000
@@ -1,7 +1,7 @@
-$NetBSD: distinfo,v 1.43 2021/09/18 08:05:09 taca Exp $
+$NetBSD: distinfo,v 1.44 2021/10/01 18:54:25 tsutsui Exp $
 
-SHA1 (nokogiri-1.12.4.gem) = 0eb79e072c21a25d0131e143b69a963944306438
-RMD160 (nokogiri-1.12.4.gem) = cc3550259ed66d0a2871622c102050eca6d497c2
-SHA512 (nokogiri-1.12.4.gem) = cc590261b4fb475cd34cebf7cfb94d3a673250487e6f3b25923cfc689bb055aab1e16b727388becf2a2f0236801053495e5caaf25cbcd9e849da56b365f20dcb
-Size (nokogiri-1.12.4.gem) = 9588736 bytes
+SHA1 (nokogiri-1.12.5.gem) = a290767b2fe1c9e233c8dd93bb0da86754c9292e
+RMD160 (nokogiri-1.12.5.gem) = 88a5974683061cc26525a38a978e6b606080e932
+SHA512 (nokogiri-1.12.5.gem) = 29ef38133906f3ffc4b8a3d8f980b5b684dcab21360a46fa618cc47caf1f98f51654a64648a1cc638d784a33336f24ce45a6ea43aa365caf39702e36ab75dbcf
+Size (nokogiri-1.12.5.gem) = 9588736 bytes
 SHA1 (patch-ext_nokogiri_extconf.rb) = bed43fcfa1e984727d71da270768c29e7017a074

Prev by Date: [pkgsrc/trunk]: pkgsrc/doc doc/pkgsrc.*: regen
Next by Date: [pkgsrc/trunk]: pkgsrc/doc doc: Updated textproc/ruby-nokogiri to 1.12.5
Previous by Thread: [pkgsrc/trunk]: pkgsrc/doc doc/pkgsrc.*: regen
Next by Thread: [pkgsrc/trunk]: pkgsrc/doc doc: Updated textproc/ruby-nokogiri to 1.12.5
Indexes:

Home | Main Index | Thread Index | Old Index