kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/misc/rubygems
History
taca f76c2cc352 Update rubygems package to 2.0.10. This is security fix for CVE-2013-4363. 
=== 2.0.10 / 2013-09-24

Security fixes:

* RubyGems 2.1.4 and earlier are vulnerable to excessive CPU usage due to a
  backtracking in Gem::Version validation.  See CVE-2013-4363 for full details
  including vulnerable APIs.  Fixed versions include 2.1.5, 2.0.10, 1.8.27 and
  1.8.23.2 (for Ruby 1.9.3).

=== 2.0.9 / 2013-09-13

Bug fixes:

* Gem fetch now fetches the newest (not oldest) gem when --version is given.
  Issue #643 by Brian Shirai.
* Fixed credential creation for `gem push` when `--host` is not given.  Pull
  request #622 by Arthur Nogueira Neves
2013-09-30 03:12:59 +00:00
..
patches Update rubygems to 2.0.8. 2013-09-10 16:33:29 +00:00
ALTERNATIVES
DEINSTALL * Allow build on not only ruby18 but ruby19. 2011-03-27 13:02:17 +00:00
DESCR
distinfo Update rubygems package to 2.0.10. This is security fix for CVE-2013-4363. 2013-09-30 03:12:59 +00:00
INSTALL * Allow build on not only ruby18 but ruby19. 2011-03-27 13:02:17 +00:00
Makefile Update rubygems package to 2.0.10. This is security fix for CVE-2013-4363. 2013-09-30 03:12:59 +00:00
PLIST Remove Ruby's version denendent directory. 2013-07-07 15:12:56 +00:00