Set PKG_CONFIG to empty as it removes reference to the build directory.
Add checks for the presence of SSLv3 in OpenSSL/LibreSSL - obtained from
http://www.libressl.org/patches.html
Fix typo in comment s/refrect/reference.
Reviewed by taca@ wiz@
$(DLLIB): $(OBJS) Makefile
...
$(Q) $(POSTLINK)
And POSTLINK is empty macro. In such case, GNU make ignore empty command
line but BSD make tries to execute it and causes error.
Bump PKGREVISION.
# --- ext/date/all ---
# make[2]: make[2]: don't know how to make ../../.ext/common/date. Stop
# make[2]: stopped in .../lang/ruby193-base/work/ruby-1.9.3-p550/ext/date
Ruby 1.9.3-p550 Released
We are pleased to announce the release of Ruby 1.9.3-p550.
This release includes a security fix for DoS vulnerability of REXML.
* CVE-2014-8080: Denial Of Service XML Expansion
This release also includes the change of default settings of
ext/openssl. Insecure SSL/TLS options are now turn off by default.
* Changed default settings of ext/openssl
And, in addition, bandled jQuery for darkfish template of RDoc is also
updated.
Almost no functional change to existing packages.
Wed May 14 17:35:32 2014 NAKAMURA Usaku <usa@ruby-lang.org>
* common.mk: need to quote $BASERUBY because it may includes options.
this change is only for release management, not bug fix.
[Backport #9837] [ruby-dev:48218]
Mon Mar 31 15:38:07 2014 Nobuyoshi Nakada <nobu@ruby-lang.org>
* ext/openssl/ossl.c (ossl_make_error): check NULL for unknown
error reasons with old OpenSSL, and insert a colon iff formatted
message is not empty.
pkgsrc chagnges:
* Use RUBY_SUFFIX instead of RUBY_VER for appropriate place.
* Detect NetBSD correctly in Gem::Platform.
Quote from release announce:
This is the last ordinal release of Ruby 1.9.3. It means that Ruby 1.9.3 goes
into the state of the security maintenance phase, and will never be released
unless any critical regressions or security issues are found. This phase is
planned to be maintained for 1 year. Then, maintenance of Ruby 1.9.3 will be
ended at Feb. 24th, 2015.
This release includes many bugfixes. See tickets and ChangeLog for details.
Ruby 1.9.3-p484 is released
Now Ruby 1.9.3-p484 is released.
This release includes a security fix about ruby interpreter core:
Heap Overflow in Floating Point Parsing (CVE-2013-4164)
And some bugfixes are also included. See tickets and ChangeLog for details.
That place was changed prior to my update of ruby193-base pacakge and
I'm not sure it was correct or not.
And suffix of libruby shared library has something historical part of
pkgsrc. I don't care so much to changing the name, but also don't
think it is so important thing to bump revisions.
Noted by pkg/47831 from David Shao.
Security problem of CVE-2013-0269 was already handled but REXML security
problem is fixed by this package.
Now Ruby 1.9.3-p392 is released. I apologize for updating too frequently.
This release includes security fixes about bundled JSON and REXML.
* Denial of Service and Unsafe Object Creation Vulnerability in JSON
(CVE-2013-0269)
* Entity expansion DoS vulnerability in REXML (XML bomb)
And some small bugfixes are also included.
These releasess don't include any security fixes.
Ruby 1.9.3-p362:
This release includes other many bug fixes.
Resolved build problems on Solaris.
Windows 8 support (hopefully).
other many bug fixes.
Ruby 1.9.3-p374:
This release includes many bug fixes. Especially,
Fixed randomly SEGV problem (often reported with Rails)
Windows 8 support (maybe, hopefully)
other many bug fixes.
See tickets and ChangeLog for details.
