kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/misc/rubygems
History
taca eef5ee8597 Update rubygems package to 1.8.10. 
=== 1.8.10 / 2011-08-25

RubyGems 1.8.10 contains a security fix that prevents malicious gems from
executing code when their specification is loaded.  See
https://github.com/rubygems/rubygems/pull/165 for details.

* 5 bug fixes:

  * RubyGems escapes strings in ruby-format specs using #dump instead of #to_s
    and %q to prevent code injection.  Issue #165 by Postmodern
  * RubyGems attempt to activate the psych gem now to obtain bugfixes from
    psych.
  * Gem.dir has been restored to the front of Gem.path.  Fixes remaining
    problem with Issue #115
  * Fixed Syck DefaultKey infecting ruby-format specifications.
  * `gem uninstall a b` no longer stops if gem "a" is not installed.
2011-09-04 17:05:13 +00:00
..
patches Update rubygems package to 1.8.10. 2011-09-04 17:05:13 +00:00
ALTERNATIVES * take maintainer ship. 2010-09-10 03:48:40 +00:00
DEINSTALL * Allow build on not only ruby18 but ruby19. 2011-03-27 13:02:17 +00:00
DESCR Update description to be less rambling and more consise. 2008-03-21 22:23:51 +00:00
distinfo Update rubygems package to 1.8.10. 2011-09-04 17:05:13 +00:00
INSTALL * Allow build on not only ruby18 but ruby19. 2011-03-27 13:02:17 +00:00
Makefile Update rubygems package to 1.8.10. 2011-09-04 17:05:13 +00:00
PLIST Update rubygems package to 1.8.7 with adding compatibility to read 2011-08-12 15:50:44 +00:00