pkgsrc/lang/ruby25-base
taca cf36d7a25a lang/ruby25-base: update to 2.5.1, security release
Ruby 2.5.1 Released				Posted by naruse on 28 Mar 2018

Ruby 2.5.1 has been released.

This release includes some bug fixes and some security fixes.

* CVE-2017-17742: HTTP response splitting in WEBrick
* CVE-2018-6914: Unintentional file and directory creation with directory
  traversal in tempfile and tmpdir
* CVE-2018-8777: DoS by large request in WEBrick
* CVE-2018-8778: Buffer under-read in String#unpack
* CVE-2018-8779: Unintentional socket creation by poisoned NUL byte in
  UNIXServer and UNIXSocket
* CVE-2018-8780: Unintentional directory traversal by poisoned NUL byte in Dir
* Multiple vulnerabilities in RubyGems

There are also some bug fixes. See commit logs for more details.
2018-03-29 03:06:57 +00:00
..
patches ruby25-base: Put -std= in CFLAGS not CPPFLAGS. Bump PKGREVISION. 2018-01-26 13:25:29 +00:00
ALTERNATIVES
DEINSTALL
DESCR
distinfo lang/ruby25-base: update to 2.5.1, security release 2018-03-29 03:06:57 +00:00
hacks.mk
INSTALL
Makefile lang/ruby25-base: update to 2.5.1, security release 2018-03-29 03:06:57 +00:00
MESSAGE
options.mk
PLIST