projects / feed / packages.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e911c7d) | patch
ruby: bump to 2.5.1 5847/head
authorLuiz Angelo Daros de Luca <luizluca@gmail.com>
Thu, 29 Mar 2018 14:13:08 +0000 (11:13 -0300)
committerLuiz Angelo Daros de Luca <luizluca@gmail.com>
Thu, 29 Mar 2018 18:11:15 +0000 (15:11 -0300)
commit04c6285a7ae8a5081ac90a2b3629b8cf4a81b8a6
treebd51ded7636c266edff10a5b28d4b98dcb05d2c9tree | snapshot
parente911c7db9d3e1d5e9334fb93cef6dc9dbe80d14ccommit | diff
ruby: bump to 2.5.1

This release includes some bug fixes and some security fixes.

* CVE-2017-17742: HTTP response splitting in WEBrick
* CVE-2018-6914: Unintentional file and directory creation with directory traversal in tempfile and tmpdir
* CVE-2018-8777: DoS by large request in WEBrick
* CVE-2018-8778: Buffer under-read in String#unpack
* CVE-2018-8779: Unintentional socket creation by poisoned NUL byte in UNIXServer and UNIXSocket
* CVE-2018-8780: Unintentional directory traversal by poisoned NUL byte in Dir
* Multiple vulnerabilities in RubyGems

There are also some bug fixes.

Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
lang/ruby/Makefile diff | blob | history
Mirror of packages feed