ruby: bump to 2.4.2 4862/head
authorLuiz Angelo Daros de Luca <luizluca@gmail.com>
Mon, 18 Sep 2017 04:41:53 +0000 (01:41 -0300)
committerLuiz Angelo Daros de Luca <luizluca@gmail.com>
Wed, 20 Sep 2017 13:04:45 +0000 (10:04 -0300)
commitea9ca5ed7e4cfd1cd5ed6a79ff52f13a6e204c79
treebeea33b56c8ee928789658eef1853c9ae3ad86ca
parentfa3a118de87d7600729dd07d2f24ca3138d9dd4d
ruby: bump to 2.4.2

This release contains some security fixes.

 CVE-2017-0898: Buffer underrun vulnerability in Kernel.sprintf
 CVE-2017-10784: Escape sequence injection vulnerability in the Basic authentication of WEBrick
 CVE-2017-14033: Buffer underrun vulnerability in OpenSSL ASN1 decode
 CVE-2017-14064: Heap exposure in generating JSON
 Multiple vulnerabilities in RubyGems
 Update bundled libyaml to version 0.1.7.

And many other bugfix.

Signed-off-by: Luiz Angelo Daros de Luca <luizluca@gmail.com>
(cherry picked from commit 699d9bef30df17272b834a6c6bd8d0c5f8bbf1c9)
lang/ruby/Makefile
lang/ruby/patches/010-configure-2.4.2.patch [new file with mode: 0644]