projects / feed / packages.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 476dae3) | patch
ruby: bump to 2.4.2 4846/head
authorLuiz Angelo Daros de Luca <luizluca@gmail.com>
Mon, 18 Sep 2017 04:41:53 +0000 (01:41 -0300)
committerLuiz Angelo Daros de Luca <luizluca@gmail.com>
Wed, 20 Sep 2017 12:17:38 +0000 (09:17 -0300)
commit699d9bef30df17272b834a6c6bd8d0c5f8bbf1c9
tree9d5416d136cccfd1ab9dc3190e46be2eb0a76de7tree | snapshot
parent476dae33c74e83bde8d14e4002df5c5a33a80268commit | diff
ruby: bump to 2.4.2

This release contains some security fixes.

 CVE-2017-0898: Buffer underrun vulnerability in Kernel.sprintf
 CVE-2017-10784: Escape sequence injection vulnerability in the Basic authentication of WEBrick
 CVE-2017-14033: Buffer underrun vulnerability in OpenSSL ASN1 decode
 CVE-2017-14064: Heap exposure in generating JSON
 Multiple vulnerabilities in RubyGems
 Update bundled libyaml to version 0.1.7.

And many other bugfix.

Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
lang/ruby/Makefile diff | blob | history
lang/ruby/patches/010-configure-2.4.2.patch [new file with mode: 0644] blob
Mirror of packages feed