ruby: bump to 2.4.4 5848/head
authorLuiz Angelo Daros de Luca <luizluca@gmail.com>
Thu, 29 Mar 2018 14:37:25 +0000 (11:37 -0300)
committerLuiz Angelo Daros de Luca <luizluca@gmail.com>
Thu, 29 Mar 2018 14:37:25 +0000 (11:37 -0300)
commit09b00c08f56a2d45967281126112d1ceb12d6758
treefcaed7a33075fc4a6946553273f0da8f86e5ec97
parentccb9ca53cc5c906f2ecffd5beb241b84a1c37ece
ruby: bump to 2.4.4

This release includes some bug fixes and some security fixes.

* CVE-2017-17742: HTTP response splitting in WEBrick
* CVE-2018-6914: Unintentional file and directory creation with directory traversal in tempfile and tmpdir
* CVE-2018-8777: DoS by large request in WEBrick
* CVE-2018-8778: Buffer under-read in String#unpack
* CVE-2018-8779: Unintentional socket creation by poisoned NUL byte in UNIXServer and UNIXSocket
* CVE-2018-8780: Unintentional directory traversal by poisoned NUL byte in Dir
* Multiple vulnerabilities in RubyGems

There are also some bug fixes

Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
lang/ruby/Makefile