kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/lang/ruby22-base
History
taca 7aa2cea01b Update ruby22-base and ruby22 packages to 2.2.8. 
pkgsrc change: clean up PILST.


Ruby 2.2.8 Released			Posted by usa on 14 Sep 2017

Ruby 2.2.8 has been released. This release includes several security
fixes. Please check the topics below for details.

* CVE-2017-0898: Buffer underrun vulnerability in Kernel.sprintf

* CVE-2017-10784: Escape sequence injection vulnerability in the Basic
  authentication of WEBrick

* CVE-2017-14033: Buffer underrun vulnerability in OpenSSL ASN1 docode

* CVE-2017-14064: Heap exposure vulnerability in generating JSON

* Multiple vulnerabilities in RubyGems

* Updated bundled libyaml to version 0.1.7

Ruby 2.2 is now under the state of the security maintenance phase, until the
endo of the March of 2018. After the date, maintenance of Ruby 2.2 will be
ended. We recommend you start planning migration to newer versions of Ruby,
such as 2.4 or 2.3.
2017-09-15 00:33:58 +00:00
..
patches Fix build problem when PKGSRC_USE_RELRO is not "no". 2017-07-06 16:35:05 +00:00
ALTERNATIVES
DEINSTALL
DESCR
distinfo Update ruby22-base and ruby22 packages to 2.2.8. 2017-09-15 00:33:58 +00:00
hacks.mk Update ruby22-base and ruby22 to 2.2.7. 2017-04-09 15:49:50 +00:00
INSTALL
Makefile Update ruby22-base and ruby22 packages to 2.2.8. 2017-09-15 00:33:58 +00:00
MESSAGE
options.mk
PLIST Update ruby22-base and ruby22 packages to 2.2.8. 2017-09-15 00:33:58 +00:00