Re: CVS commit: pkgsrc/www/ruby-loofah

To: pkgsrc-changes%NetBSD.org@localhost
Subject: Re: CVS commit: pkgsrc/www/ruby-loofah
From: Takahiro Kambe <taca%NetBSD.org@localhost>
Date: Sun, 18 Dec 2022 23:50:37 +0900 (JST)

In message <20221218144924.C1627FA90%cvs.NetBSD.org@localhost>
        on Sun, 18 Dec 2022 14:49:24 +0000,
        "Takahiro Kambe" <taca%netbsd.org@localhost> wrote:
> Module Name:  pkgsrc
> Committed By: taca
> Date:         Sun Dec 18 14:49:24 UTC 2022
> 
> Modified Files:
>       pkgsrc/www/ruby-loofah: Makefile distinfo
> 
> Log Message:
> www/ruby-loofah: update to 2.19.0
> 
> 2.19.0 (2022-12-13)
It should be 2.19.1.

www/ruby-loofah: update to 2.19.1

2.19.1 (2022-12-13)

* Address CVE-2022-23514, inefficient regular expression complexity. See
  GHSA-486f-hjj9-9vhh for more information.
* Address CVE-2022-23515, improper neutralization of data URIs. See
  GHSA-228g-948r-83gx for more information.
* Address CVE-2022-23516, uncontrolled recursion. See GHSA-3x8r-x6xp-q4vm
  for more information.

-- 
Takahiro Kambe <taca%NetBSD.org@localhost>

References:
- CVS commit: pkgsrc/www/ruby-loofah
  - From: Takahiro Kambe

Prev by Date: CVS commit: pkgsrc/www/ruby-loofah
Next by Date: CVS commit: pkgsrc/chat/toot
Previous by Thread: CVS commit: pkgsrc/www/ruby-loofah
Next by Thread: CVS commit: pkgsrc/chat/toot
Indexes:

Home | Main Index | Thread Index | Old Index