From 702c655874db358706b7858445b06dba09c90cd6 Mon Sep 17 00:00:00 2001 From: Luiz Angelo Daros de Luca Date: Sun, 27 Oct 2019 15:37:50 -0300 Subject: [PATCH] ruby: update to 2.6.5 MIME-Version: 1.0 Content-Type: text/plain; charset=utf8 Content-Transfer-Encoding: 8bit 2.6.5 fixes: * CVE-2019-16255: A code injection vulnerability of Shell#[] and Shell#test * CVE-2019-16254: HTTP response splitting in WEBrick (Additional fix) * CVE-2019-15845: A NUL injection vulnerability of File.fnmatch and File.fnmatch? * CVE-2019-16201: Regular Expression Denial of Service vulnerability of WEBrick’s Digest access authentication 2.6.4 fixes: * Multiple jQuery vulnerabilities in RDoc Changelog: https://github.com/ruby/ruby/compare/v2_6_3...v2_6_5 Signed-off-by: Luiz Angelo Daros de Luca (cherry picked from commit d3d0c281494b32cd9785a82cbb432b28d5254c91) --- lang/ruby/Makefile | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/lang/ruby/Makefile b/lang/ruby/Makefile index c5ff990750..7b976341d2 100644 --- a/lang/ruby/Makefile +++ b/lang/ruby/Makefile @@ -11,7 +11,7 @@ include $(TOPDIR)/rules.mk PKG_NAME:=ruby -PKG_VERSION:=2.6.3 +PKG_VERSION:=2.6.5 PKG_RELEASE:=1 # First two numbes @@ -19,7 +19,7 @@ PKG_ABI_VERSION:=$(subst $(space),.,$(wordlist 1, 2, $(subst .,$(space),$(PKG_VE PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION).tar.xz PKG_SOURCE_URL:=https://cache.ruby-lang.org/pub/ruby/$(PKG_ABI_VERSION)/ -PKG_HASH:=11a83f85c03d3f0fc9b8a9b6cad1b2674f26c5aaa43ba858d4b0fcc2b54171e1 +PKG_HASH:=d5d6da717fd48524596f9b78ac5a2eeb9691753da5c06923a6c31190abe01a62 PKG_MAINTAINER:=Luiz Angelo Daros de Luca PKG_LICENSE:=BSD-2-Clause PKG_LICENSE_FILES:=COPYING -- 2.30.2