![[BACK]](/icons/back.gif){kind=icon}
Up to [cvs.NetBSD.org] / pkgsrc / lang / ruby26-base
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.17, Mon Oct 10 03:29:30 2022 UTC (11 months, 2 weeks ago) by taca
Branch: MAIN
CVS Tags: HEAD
Changes since 1.16: +1 -1
lines
FILE REMOVED
lang/ruby26-base: remove Ruby 2.6 packages from pkgsrc Ruby 2.6 reached to EOL on 22th April 2022.
Revision 1.15.4.1 / (download) - annotate - [select for diffs], Sat Apr 16 08:59:30 2022 UTC (17 months, 1 week ago) by spz
Branch: pkgsrc-2022Q1
Changes since 1.15: +4 -4
lines
Diff to previous 1.15 (colored) next main 1.16 (colored)
Pullup ticket #6615 - requested by taca lang/ruby26-base: security-update Revisions pulled up: - lang/ruby/rubyversion.mk 1.246 - lang/ruby26-base/Makefile 1.17 - lang/ruby26-base/distinfo 1.16 - lang/ruby26/Makefile 1.6 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Tue Apr 12 14:16:44 UTC 2022 Modified Files: pkgsrc/lang/ruby26: Makefile pkgsrc/lang/ruby26-base: Makefile distinfo Log Message: lang/ruby26-base: update to 2.6.10 Here is release announce: Ruby 2.6.10 has been released. This release includes a security fix. Please check the topics below for details. CVE-2022-28739: Buffer overrun in String-to-Float conversion This release also includes a fix of a build problem with very old compilers and a fix of a regression of date library. See the commit logs for further details. After this release, Ruby 2.6 reaches EOL. In other words, this is expected to be the last release of Ruby 2.6 series. We will not release Ruby 2.6.11 even if a security vulnerability is found (but ocould release if a severe regression is found). We recommend all Ruby 2.6 users to start migration to Ruby 3.1, 3.0, or 2.7 immediately. To generate a diff of this commit: cvs rdiff -u -r1.5 -r1.6 pkgsrc/lang/ruby26/Makefile cvs rdiff -u -r1.16 -r1.17 pkgsrc/lang/ruby26-base/Makefile cvs rdiff -u -r1.15 -r1.16 pkgsrc/lang/ruby26-base/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: taca Date: Tue Apr 12 14:19:26 UTC 2022 Modified Files: pkgsrc/lang/ruby: rubyversion.mk Log Message: lang/ruby: forgot to commit for 2.6.10 To generate a diff of this commit: cvs rdiff -u -r1.245 -r1.246 pkgsrc/lang/ruby/rubyversion.mk
Revision 1.16 / (download) - annotate - [select for diffs], Tue Apr 12 14:16:43 2022 UTC (17 months, 1 week ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2022Q3-base,
pkgsrc-2022Q3,
pkgsrc-2022Q2-base,
pkgsrc-2022Q2
Changes since 1.15: +4 -4
lines
Diff to previous 1.15 (colored)
lang/ruby26-base: update to 2.6.10 Here is release announce: Ruby 2.6.10 has been released. This release includes a security fix. Please check the topics below for details. CVE-2022-28739: Buffer overrun in String-to-Float conversion This release also includes a fix of a build problem with very old compilers and a fix of a regression of date library. See the commit logs for further details. After this release, Ruby 2.6 reaches EOL. In other words, this is expected to be the last release of Ruby 2.6 series. We will not release Ruby 2.6.11 even if a security vulnerability is found (but ocould release if a severe regression is found). We recommend all Ruby 2.6 users to start migration to Ruby 3.1, 3.0, or 2.7 immediately.
Revision 1.11.2.1 / (download) - annotate - [select for diffs], Sat Nov 27 21:53:13 2021 UTC (21 months, 3 weeks ago) by tm
Branch: pkgsrc-2021Q3
Changes since 1.11: +5 -5
lines
Diff to previous 1.11 (colored) next main 1.12 (colored)
Pullup ticket #6545 - requested by taca
lang/ruby26-base: security fix
Revisions pulled up:
- lang/ruby/rubyversion.mk 1.238
- lang/ruby26-base/distinfo 1.15
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Nov 25 15:51:08 UTC 2021
Modified Files:
pkgsrc/lang/ruby: rubyversion.mk
pkgsrc/lang/ruby26-base: distinfo
Log Message:
lang/ruby26-base: update to 2.6.9
Ruby 2.6.9 Released
Posted by usa on 24 Nov 2021
Ruby 2.6.9 has been released.
This release includes security fixes. Please check the topics below for
details.
* CVE-2021-41817: Regular Expression Denial of Service Vulnerability of Date
Parsing Methods
* CVE-2021-41819: Cookie Prefix Spoofing in CGI::Cookie.parse See the commit
logs for details.
Ruby 2.6 is now under the state of the security maintenance phase, until the
end of March of 2022. After that date, maintenance of Ruby 2.6 will be
ended. We recommend you start planning the migration to newer versions of
Ruby, such as 3.0 or 2.7.
Revision 1.15 / (download) - annotate - [select for diffs], Thu Nov 25 15:51:08 2021 UTC (21 months, 4 weeks ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2022Q1-base,
pkgsrc-2021Q4-base,
pkgsrc-2021Q4
Branch point for: pkgsrc-2022Q1
Changes since 1.14: +4 -4
lines
Diff to previous 1.14 (colored)
lang/ruby26-base: update to 2.6.9 Ruby 2.6.9 Released Posted by usa on 24 Nov 2021 Ruby 2.6.9 has been released. This release includes security fixes. Please check the topics below for details. * CVE-2021-41817: Regular Expression Denial of Service Vulnerability of Date Parsing Methods * CVE-2021-41819: Cookie Prefix Spoofing in CGI::Cookie.parse See the commit logs for details. Ruby 2.6 is now under the state of the security maintenance phase, until the end of March of 2022. After that date, maintenance of Ruby 2.6 will be ended. We recommend you start planning the migration to newer versions of Ruby, such as 3.0 or 2.7.
Revision 1.14 / (download) - annotate - [select for diffs], Tue Nov 9 12:13:02 2021 UTC (22 months, 2 weeks ago) by jperkin
Branch: MAIN
Changes since 1.13: +2 -1
lines
Diff to previous 1.13 (colored)
ruby26-base: Support OpenSSL 3.
Revision 1.13 / (download) - annotate - [select for diffs], Tue Oct 26 10:51:54 2021 UTC (22 months, 4 weeks ago) by nia
Branch: MAIN
Changes since 1.12: +2 -2
lines
Diff to previous 1.12 (colored)
lang: Replace RMD160 checksums with BLAKE2s checksums All checksums have been double-checked against existing RMD160 and SHA512 hashes The following distfiles could not be fetched (possibly fetched conditionally?): ./lang/rust-bin/distinfo rust-bin-1.54.0/rust-1.54.0-aarch64-unknown-linux-gnu.tar.gz ./lang/rust-bin/distinfo rust-bin-1.54.0/rust-1.54.0-aarch64-unknown-linux-musl.tar.gz ./lang/rust-bin/distinfo rust-bin-1.54.0/rust-1.54.0-aarch64-unknown-netbsd.tar.gz ./lang/rust-bin/distinfo rust-bin-1.54.0/rust-1.54.0-armv7-unknown-netbsd-eabihf.tar.gz ./lang/rust-bin/distinfo rust-bin-1.54.0/rust-1.54.0-i686-unknown-linux-gnu.tar.gz ./lang/rust-bin/distinfo rust-bin-1.54.0/rust-1.54.0-powerpc-unknown-netbsd90.tar.gz ./lang/rust-bin/distinfo rust-bin-1.54.0/rust-1.54.0-sparc64-unknown-netbsd.tar.gz ./lang/rust-bin/distinfo rust-bin-1.54.0/rust-1.54.0-x86_64-apple-darwin.tar.gz ./lang/rust-bin/distinfo rust-bin-1.54.0/rust-1.54.0-x86_64-unknown-freebsd.tar.gz ./lang/rust-bin/distinfo rust-bin-1.54.0/rust-1.54.0-x86_64-unknown-linux-gnu.tar.gz ./lang/rust-bin/distinfo rust-bin-1.54.0/rust-1.54.0-x86_64-unknown-linux-musl.tar.gz ./lang/smlnj/distinfo smlnj-110.73/boot.ppc-unix.tgz ./lang/smlnj/distinfo smlnj-110.73/boot.sparc-unix.tgz ./lang/oracle-jre8/distinfo jce_policy-8.zip ./lang/oracle-jre8/distinfo jre-8u202-linux-i586.tar.gz ./lang/oracle-jre8/distinfo jre-8u202-linux-x64.tar.gz ./lang/oracle-jre8/distinfo jre-8u202-macosx-x64.tar.gz ./lang/oracle-jre8/distinfo jre-8u202-solaris-x64.tar.gz ./lang/oracle-jdk8/distinfo jdk-8u202-linux-i586.tar.gz ./lang/oracle-jdk8/distinfo jdk-8u202-linux-x64.tar.gz ./lang/oracle-jdk8/distinfo jdk-8u202-solaris-x64.tar.gz ./lang/ghc80/distinfo ghc-7.10.3-boot-x86_64-unknown-solaris2.tar.xz ./lang/ghc80/distinfo ghc-8.0.2-boot-i386-unknown-freebsd.tar.xz ./lang/ghc80/distinfo ghc-8.0.2-boot-x86_64-unknown-freebsd.tar.xz ./lang/gcc5-aux/distinfo ada-bootstrap.i386.freebsd.100B.tar.bz2 ./lang/gcc5-aux/distinfo ada-bootstrap.i386.freebsd.84.tar.bz2 ./lang/gcc5-aux/distinfo ada-bootstrap.x86_64.dragonfly.41.tar.bz2 ./lang/gcc5-aux/distinfo ada-bootstrap.x86_64.freebsd.100B.tar.bz2 ./lang/gcc5-aux/distinfo ada-bootstrap.x86_64.freebsd.84.tar.bz2 ./lang/gcc5-aux/distinfo ada-bootstrap.x86_64.solaris.511.tar.bz2 ./lang/rust/distinfo rust-1.53.0-aarch64-apple-darwin.tar.gz ./lang/rust/distinfo rust-1.53.0-aarch64-unknown-linux-gnu.tar.gz ./lang/rust/distinfo rust-1.53.0-aarch64-unknown-netbsd.tar.gz ./lang/rust/distinfo rust-1.53.0-aarch64_be-unknown-netbsd.tar.gz ./lang/rust/distinfo rust-1.53.0-arm-unknown-linux-gnueabihf.tar.gz ./lang/rust/distinfo rust-1.53.0-armv7-unknown-linux-gnueabihf.tar.gz ./lang/rust/distinfo rust-1.53.0-i686-unknown-linux-gnu.tar.gz ./lang/rust/distinfo rust-1.53.0-powerpc-unknown-netbsd.tar.gz ./lang/rust/distinfo rust-1.53.0-powerpc-unknown-netbsd90.tar.gz ./lang/rust/distinfo rust-1.53.0-sparc64-unknown-netbsd.tar.gz ./lang/rust/distinfo rust-1.53.0-x86_64-apple-darwin.tar.gz ./lang/rust/distinfo rust-1.53.0-x86_64-unknown-freebsd.tar.gz ./lang/rust/distinfo rust-1.53.0-x86_64-unknown-illumos.tar.gz ./lang/rust/distinfo rust-1.53.0-x86_64-unknown-linux-gnu.tar.gz ./lang/rust/distinfo rust-std-1.53.0-aarch64-apple-darwin.tar.gz ./lang/rust/distinfo rust-std-1.53.0-aarch64-unknown-linux-gnu.tar.gz ./lang/rust/distinfo rust-std-1.53.0-aarch64-unknown-netbsd.tar.gz ./lang/rust/distinfo rust-std-1.53.0-aarch64_be-unknown-netbsd.tar.gz ./lang/rust/distinfo rust-std-1.53.0-arm-unknown-linux-gnueabihf.tar.gz ./lang/rust/distinfo rust-std-1.53.0-armv7-unknown-linux-gnueabihf.tar.gz ./lang/rust/distinfo rust-std-1.53.0-i686-unknown-linux-gnu.tar.gz ./lang/rust/distinfo rust-std-1.53.0-powerpc-unknown-netbsd.tar.gz ./lang/rust/distinfo rust-std-1.53.0-powerpc-unknown-netbsd90.tar.gz ./lang/rust/distinfo rust-std-1.53.0-sparc64-unknown-netbsd.tar.gz ./lang/rust/distinfo rust-std-1.53.0-x86_64-apple-darwin.tar.gz ./lang/rust/distinfo rust-std-1.53.0-x86_64-unknown-freebsd.tar.gz ./lang/rust/distinfo rust-std-1.53.0-x86_64-unknown-linux-gnu.tar.gz ./lang/smlnj11072/distinfo smlnj-110.72/boot.ppc-unix.tgz ./lang/smlnj11072/distinfo smlnj-110.72/boot.sparc-unix.tgz ./lang/ghc84/distinfo ghc-8.0.2-boot-x86_64-unknown-solaris2.tar.xz ./lang/ghc84/distinfo ghc-8.4.4-boot-i386-unknown-freebsd.tar.xz ./lang/ghc84/distinfo ghc-8.4.4-boot-x86_64-apple-darwin.tar.xz ./lang/ghc84/distinfo ghc-8.4.4-boot-x86_64-unknown-freebsd.tar.xz ./lang/ghc7/distinfo ghc-7.10.3-boot-i386-unknown-freebsd.tar.xz ./lang/ghc7/distinfo ghc-7.6.3-boot-i386-unknown-solaris2.tar.xz ./lang/ghc7/distinfo ghc-7.6.3-boot-powerpc-apple-darwin.tar.xz ./lang/ghc7/distinfo ghc-7.6.3-boot-x86_64-unknown-solaris2.tar.xz ./lang/ghc90/distinfo ghc-8.10.4-boot-x86_64-unknown-solaris2.tar.xz ./lang/ghc90/distinfo ghc-9.0.1-boot-aarch64-unknown-netbsd.tar.xz ./lang/ghc90/distinfo ghc-9.0.1-boot-i386-unknown-freebsd.tar.xz ./lang/ghc90/distinfo ghc-9.0.1-boot-x86_64-apple-darwin.tar.xz ./lang/ghc90/distinfo ghc-9.0.1-boot-x86_64-unknown-freebsd.tar.xz ./lang/openjdk8/distinfo openjdk7/bootstrap-jdk-1.7.76-freebsd-10-amd64-20150301.tar.xz ./lang/openjdk8/distinfo openjdk7/bootstrap-jdk-1.7.76-netbsd-7-sparc64-20150301.tar.xz ./lang/openjdk8/distinfo openjdk7/bootstrap-jdk-1.8.181-netbsd-8-aarch64-20180917.tar.xz ./lang/openjdk8/distinfo openjdk7/bootstrap-jdk7u60-bin-dragonfly-3.6-amd64-20140719.tar.bz2 ./lang/openjdk8/distinfo openjdk7/bootstrap-jdk7u60-bin-dragonfly-3.8-amd64-20140719.tar.bz2 ./lang/go-bin/distinfo go1.14.2.darwin-amd64.tar.gz ./lang/go-bin/distinfo go1.14.2.linux-386.tar.gz ./lang/go-bin/distinfo go1.14.2.linux-amd64.tar.gz ./lang/go-bin/distinfo go1.14.2.linux-arm64.tar.gz ./lang/go-bin/distinfo go1.14.2.linux-armv6l.tar.gz ./lang/go-bin/distinfo go1.14.2.netbsd-arm64.tar.gz ./lang/go-bin/distinfo go1.16beta1.darwin-arm64.tar.gz ./lang/gcc6-aux/distinfo ada-bootstrap.i386.freebsd.100B.tar.bz2 ./lang/gcc6-aux/distinfo ada-bootstrap.x86_64.dragonfly.41.tar.bz2 ./lang/gcc6-aux/distinfo ada-bootstrap.x86_64.freebsd.100B.tar.bz2 ./lang/gcc6-aux/distinfo ada-bootstrap.x86_64.freebsd.84.tar.bz2 ./lang/gcc6-aux/distinfo ada-bootstrap.x86_64.solaris.511.tar.bz2 ./lang/ghc810/distinfo ghc-8.8.4-boot-x86_64-unknown-solaris2.tar.xz ./lang/sun-jre7/distinfo UnlimitedJCEPolicyJDK7.zip ./lang/sun-jre7/distinfo jre-7u80-linux-x64.tar.gz ./lang/sun-jre7/distinfo jre-7u80-solaris-i586.tar.gz ./lang/sun-jre7/distinfo jre-7u80-solaris-x64.tar.gz ./lang/ghc88/distinfo ghc-8.4.4-boot-i386-unknown-freebsd.tar.xz ./lang/ghc88/distinfo ghc-8.4.4-boot-x86_64-apple-darwin.tar.xz ./lang/ghc88/distinfo ghc-8.4.4-boot-x86_64-unknown-freebsd.tar.xz ./lang/ghc88/distinfo ghc-8.4.4-boot-x86_64-unknown-solaris2.tar.xz ./lang/gcc-aux/distinfo ada-bootstrap.i386.dragonfly.36A.tar.bz2 ./lang/gcc-aux/distinfo ada-bootstrap.i386.freebsd.100B.tar.bz2 ./lang/gcc-aux/distinfo ada-bootstrap.i386.freebsd.84.tar.bz2 ./lang/gcc-aux/distinfo ada-bootstrap.x86_64.dragonfly.36A.tar.bz2 ./lang/gcc-aux/distinfo ada-bootstrap.x86_64.freebsd.100B.tar.bz2 ./lang/gcc-aux/distinfo ada-bootstrap.x86_64.freebsd.84.tar.bz2 ./lang/gcc-aux/distinfo ada-bootstrap.x86_64.solaris.511.tar.bz2 ./lang/gcc6/distinfo ecj-4.5.jar ./lang/openjdk11/distinfo bootstrap-jdk-1.11.0.7.10-netbsd-9-aarch64-20200509.tar.xz ./lang/sun-jdk7/distinfo jdk-7u80-linux-x64.tar.gz ./lang/sun-jdk7/distinfo jdk-7u80-solaris-i586.tar.gz ./lang/sun-jdk7/distinfo jdk-7u80-solaris-x64.tar.gz
Revision 1.12 / (download) - annotate - [select for diffs], Thu Oct 7 14:21:12 2021 UTC (23 months, 2 weeks ago) by nia
Branch: MAIN
Changes since 1.11: +1 -2
lines
Diff to previous 1.11 (colored)
lang: Remove SHA1 hashes for distfiles
Revision 1.10.2.1 / (download) - annotate - [select for diffs], Mon Jul 12 12:40:18 2021 UTC (2 years, 2 months ago) by bsiegert
Branch: pkgsrc-2021Q2
Changes since 1.10: +5 -5
lines
Diff to previous 1.10 (colored) next main 1.11 (colored)
Pullup ticket #6483 - requested by taca lang/ruby26: security fix Revisions pulled up: - lang/ruby/rubyversion.mk 1.232 - lang/ruby26-base/distinfo 1.11 --- Module Name: pkgsrc Committed By: taca Date: Wed Jul 7 15:15:19 UTC 2021 Modified Files: pkgsrc/lang/ruby: rubyversion.mk pkgsrc/lang/ruby26-base: distinfo Log Message: lang/ruby26-base: update to 2.6.8 Ruby 2.6.8 has been released. This release includes security fixes. Please check the topics below for details. * CVE-2021-31810: Trusting FTP PASV responses vulnerability in Net::FTP * CVE-2021-32066: A StartTLS stripping vulnerability in Net::IMAP * CVE-2021-31799: A command injection vulnerability in RDoc We ordinally do not fix Ruby 2.6 except security fixes, but this release also includes some regressed bugs and build problem fixes. See the commit logs for details. Ruby 2.6 is now under the state of the security maintenance phase, until the end of March of 2022. After that date, maintenance of Ruby 2.6 will be ended. We recommend you start planning the migration to newer versions of Ruby, such as 3.0 or 2.7.
Revision 1.11 / (download) - annotate - [select for diffs], Wed Jul 7 15:15:19 2021 UTC (2 years, 2 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2021Q3-base
Branch point for: pkgsrc-2021Q3
Changes since 1.10: +5 -5
lines
Diff to previous 1.10 (colored)
lang/ruby26-base: update to 2.6.8 Ruby 2.6.8 has been released. This release includes security fixes. Please check the topics below for details. * CVE-2021-31810: Trusting FTP PASV responses vulnerability in Net::FTP * CVE-2021-32066: A StartTLS stripping vulnerability in Net::IMAP * CVE-2021-31799: A command injection vulnerability in RDoc We ordinally do not fix Ruby 2.6 except security fixes, but this release also includes some regressed bugs and build problem fixes. See the commit logs for details. Ruby 2.6 is now under the state of the security maintenance phase, until the end of March of 2022. After that date, maintenance of Ruby 2.6 will be ended. We recommend you start planning the migration to newer versions of Ruby, such as 3.0 or 2.7.
Revision 1.9.4.1 / (download) - annotate - [select for diffs], Thu Apr 15 07:10:45 2021 UTC (2 years, 5 months ago) by bsiegert
Branch: pkgsrc-2021Q1
Changes since 1.9: +6 -7
lines
Diff to previous 1.9 (colored) next main 1.10 (colored)
Pullup ticket #6443 - requested by taca
lang/ruby26-base: security fix, bugfix
Revisions pulled up:
- lang/ruby/rubyversion.mk 1.227-1.228
- lang/ruby26-base/ALTERNATIVES 1.2
- lang/ruby26-base/Makefile 1.13
- lang/ruby26-base/PLIST 1.5
- lang/ruby26-base/distinfo 1.10
- lang/ruby26-base/patches/patch-configure 1.3
- lang/ruby26-base/patches/patch-lib_webrick_httprequest.rb deleted
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Apr 11 12:16:20 UTC 2021
Modified Files:
pkgsrc/lang/ruby: rubyversion.mk
Log Message:
lang/ruby/rubyversion.mk: pass RUBY_RAILS_ACCEPTED
Pass RUBY_RAILS_ACCEPTED to MAKEFLAGS unless it isn't empty.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Apr 11 12:28:38 UTC 2021
Modified Files:
pkgsrc/lang/ruby: rubyversion.mk
pkgsrc/lang/ruby26-base: Makefile PLIST distinfo
pkgsrc/lang/ruby26-base/patches: patch-configure
Removed Files:
pkgsrc/lang/ruby26-base/patches: patch-lib_webrick_httprequest.rb
Log Message:
lang/ruby26-base: update to 2.6.7
Ruby 2.6.7 Released (2021-04-05)
This release includes security fixes. Please check the topics below for
details.
* CVE-2020-25613: Potential HTTP Request Smuggling Vulnerability in
WEBrick
* CVE-2021-28965: XML round-trip vulnerability in REXML
See the commit logs for details.
By this release, we end the normal maintenance phase of Ruby 2.6, and Ruby
2.6 enters the security maintenance phase. This means that we will no
longer backport any bug fixes to Ruby 2.6 except security fixes. The term
of the security maintenance phase is scheduled for a year. Ruby 2.6 reaches
EOL and its official support ends by the end of the security maintenance
phase. Therefore, we recommend that you start to plan upgrade to Ruby 2.7
or 3.0.
---
Module Name: pkgsrc
Committed By: taca
Date: Sun Apr 11 13:00:25 UTC 2021
Modified Files:
pkgsrc/lang/ruby26-base: ALTERNATIVES
Log Message:
lang/ruby26-base: fix ALTERNATIVES file
Revision 1.10 / (download) - annotate - [select for diffs], Sun Apr 11 12:28:37 2021 UTC (2 years, 5 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2021Q2-base
Branch point for: pkgsrc-2021Q2
Changes since 1.9: +6 -7
lines
Diff to previous 1.9 (colored)
lang/ruby26-base: update to 2.6.7 Ruby 2.6.7 Released (2021-04-05) This release includes security fixes. Please check the topics below for details. * CVE-2020-25613: Potential HTTP Request Smuggling Vulnerability in WEBrick * CVE-2021-28965: XML round-trip vulnerability in REXML See the commit logs for details. By this release, we end the normal maintenance phase of Ruby 2.6, and Ruby 2.6 enters the security maintenance phase. This means that we will no longer backport any bug fixes to Ruby 2.6 except security fixes. The term of the security maintenance phase is scheduled for a year. Ruby 2.6 reaches EOL and its official support ends by the end of the security maintenance phase. Therefore, we recommend that you start to plan upgrade to Ruby 2.7 or 3.0.
Revision 1.8.4.1 / (download) - annotate - [select for diffs], Wed Oct 21 19:58:57 2020 UTC (2 years, 11 months ago) by spz
Branch: pkgsrc-2020Q3
Changes since 1.8: +2 -1
lines
Diff to previous 1.8 (colored) next main 1.9 (colored)
Pullup ticket #6337 - requested by taca
lang/ruby26-base: security patch
Revisions pulled up:
- lang/ruby26-base/Makefile 1.11
- lang/ruby26-base/distinfo 1.9
- lang/ruby26-base/patches/patch-lib_webrick_httprequest.rb 1.1
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: taca
Date: Sun Oct 4 03:41:12 UTC 2020
Modified Files:
pkgsrc/lang/ruby26-base: Makefile distinfo
Added Files:
pkgsrc/lang/ruby26-base/patches: patch-lib_webrick_httprequest.rb
Log Message:
lang/ruby26-base: Add fix for CVE-2020-25613
Add fix for CVE-2020-25613.
Bump PKGREVISION.
To generate a diff of this commit:
cvs rdiff -u -r1.10 -r1.11 pkgsrc/lang/ruby26-base/Makefile
cvs rdiff -u -r1.8 -r1.9 pkgsrc/lang/ruby26-base/distinfo
cvs rdiff -u -r0 -r1.1 \
pkgsrc/lang/ruby26-base/patches/patch-lib_webrick_httprequest.rb
Revision 1.9 / (download) - annotate - [select for diffs], Sun Oct 4 03:41:12 2020 UTC (2 years, 11 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2021Q1-base,
pkgsrc-2020Q4-base,
pkgsrc-2020Q4
Branch point for: pkgsrc-2021Q1
Changes since 1.8: +2 -1
lines
Diff to previous 1.8 (colored)
lang/ruby26-base: Add fix for CVE-2020-25613 Add fix for CVE-2020-25613. Bump PKGREVISION.
Revision 1.7.2.1 / (download) - annotate - [select for diffs], Wed Apr 22 09:52:12 2020 UTC (3 years, 5 months ago) by bsiegert
Branch: pkgsrc-2020Q1
Changes since 1.7: +5 -5
lines
Diff to previous 1.7 (colored) next main 1.8 (colored)
Pullup ticket #6164 - requested by taca
lang/ruby26-base: security fix
Revisions pulled up:
- lang/ruby/rubyversion.mk 1.218
- lang/ruby26-base/Makefile 1.10
- lang/ruby26-base/PLIST 1.4
- lang/ruby26-base/distinfo 1.8
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Apr 1 15:21:57 UTC 2020
Modified Files:
pkgsrc/lang/ruby: rubyversion.mk
pkgsrc/lang/ruby26-base: Makefile PLIST distinfo
Log Message:
lang/ruby26-base: update to 2.6.6
Update ruby26-base (and ruby26 related packages) to 2.6.6.
2.6.6 (2020-03-31)
This release includes security fixes. Please check the topics below for
details.
* CVE-2020-16255: Unsafe Object Creation Vulnerability in JSON (Additional
fix)
* CVE-2020-10933: Heap exposure vulnerability in the socket library
Revision 1.8 / (download) - annotate - [select for diffs], Wed Apr 1 15:21:57 2020 UTC (3 years, 5 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2020Q3-base,
pkgsrc-2020Q2-base,
pkgsrc-2020Q2
Branch point for: pkgsrc-2020Q3
Changes since 1.7: +5 -5
lines
Diff to previous 1.7 (colored)
lang/ruby26-base: update to 2.6.6 Update ruby26-base (and ruby26 related packages) to 2.6.6. 2.6.6 (2020-03-31) This release includes security fixes. Please check the topics below for details. * CVE-2020-16255: Unsafe Object Creation Vulnerability in JSON (Additional fix) * CVE-2020-10933: Heap exposure vulnerability in the socket library
Revision 1.6.2.1 / (download) - annotate - [select for diffs], Sat Oct 5 19:53:04 2019 UTC (3 years, 11 months ago) by bsiegert
Branch: pkgsrc-2019Q3
Changes since 1.6: +5 -5
lines
Diff to previous 1.6 (colored) next main 1.7 (colored)
Pullup ticket #6066 - requested by taca
lang/ruby26-base: security fix
Revisions pulled up:
- lang/ruby/rubyversion.mk 1.211
- lang/ruby26-base/Makefile 1.4
- lang/ruby26-base/distinfo 1.7
- lang/ruby26/Makefile 1.2
---
Module Name: pkgsrc
Committed By: taca
Date: Wed Oct 2 13:44:34 UTC 2019
Modified Files:
pkgsrc/lang/ruby: rubyversion.mk
pkgsrc/lang/ruby26: Makefile
pkgsrc/lang/ruby26-base: Makefile distinfo
Log Message:
lang/ruby26: update to 2.6.5
Update ruby26-base and ruby26 packges to 2.6.5
pkgsrc chagnes
* fix warnings of pkglint.
Quote from release announce:
Ruby 2.6.5 (2019-10-01)
This release includes security fixes. Please check the topics below for
details.
* CVE-2019-16255: A code injection vulnerability of Shell#[] and Shell#test
* CVE-2019-16254: HTTP response splitting in WEBrick (Additional fix)
* CVE-2019-15845: A NUL injection vulnerability of File.fnmatch and
File.fnmatch?
* CVE-2019-16201: Regular Expression Denial of Service vulnerability of
WEBrick's Digest access authentication
Revision 1.7 / (download) - annotate - [select for diffs], Wed Oct 2 13:44:34 2019 UTC (3 years, 11 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2020Q1-base,
pkgsrc-2019Q4-base,
pkgsrc-2019Q4
Branch point for: pkgsrc-2020Q1
Changes since 1.6: +5 -5
lines
Diff to previous 1.6 (colored)
lang/ruby26: update to 2.6.5 Update ruby26-base and ruby26 packges to 2.6.5 pkgsrc chagnes * fix warnings of pkglint. Quote from release announce: Ruby 2.6.5 (2019-10-01) This release includes security fixes. Please check the topics below for details. * CVE-2019-16255: A code injection vulnerability of Shell#[] and Shell#test * CVE-2019-16254: HTTP response splitting in WEBrick (Additional fix) * CVE-2019-15845: A NUL injection vulnerability of File.fnmatch and File.fnmatch? * CVE-2019-16201: Regular Expression Denial of Service vulnerability of WEBrick's Digest access authentication
Revision 1.5.2.1 / (download) - annotate - [select for diffs], Thu Sep 5 13:53:35 2019 UTC (4 years ago) by bsiegert
Branch: pkgsrc-2019Q2
Changes since 1.5: +5 -5
lines
Diff to previous 1.5 (colored) next main 1.6 (colored)
Pullup ticket #6040 - requested by taca lang/ruby26-base: security fix Revisions pulled up: - lang/ruby/rubyversion.mk 1.208 - lang/ruby26-base/PLIST 1.3 - lang/ruby26-base/distinfo 1.6 --- Module Name: pkgsrc Committed By: taca Date: Wed Aug 28 14:23:21 UTC 2019 Modified Files: pkgsrc/lang/ruby: rubyversion.mk pkgsrc/lang/ruby26-base: PLIST distinfo Log Message: lang/ruby26: update to 2.6.4 Update lang/ruby26-base and lang/ruby26 to 2.6.4. Ruby 2.6.4 (2019-08-28) Ruby 2.6.4 has been released. This release includes a security fix of rdoc. Please check the topics below for details. * Multiple jQuery vulnerabilities in RDoc See the commit logs for changes in detail.
Revision 1.6 / (download) - annotate - [select for diffs], Wed Aug 28 14:23:21 2019 UTC (4 years ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2019Q3-base
Branch point for: pkgsrc-2019Q3
Changes since 1.5: +5 -5
lines
Diff to previous 1.5 (colored)
lang/ruby26: update to 2.6.4 Update lang/ruby26-base and lang/ruby26 to 2.6.4. Ruby 2.6.4 (2019-08-28) Ruby 2.6.4 has been released. This release includes a security fix of rdoc. Please check the topics below for details. * Multiple jQuery vulnerabilities in RDoc See the commit logs for changes in detail.
Revision 1.5 / (download) - annotate - [select for diffs], Wed Apr 17 16:33:10 2019 UTC (4 years, 5 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2019Q2-base
Branch point for: pkgsrc-2019Q2
Changes since 1.4: +5 -5
lines
Diff to previous 1.4 (colored)
lang/ruby26-base: update to 2.6.3
Update ruby26{,-base} to 2.6.3. Here is release announce:
Ruby 2.6.3 Released
Posted by naruse on 17 Apr 2019
Ruby 2.6.3 has been released.
This release adds support for New Japanese Era ãàØ滤¸ä (Reiwa). It updates
the Unicode version to 12.1 beta (#15195), and updates date library (#15742).
This release also includes some bug fixes. See details commit logs.
Revision 1.4 / (download) - annotate - [select for diffs], Sat Mar 16 14:39:35 2019 UTC (4 years, 6 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2019Q1-base,
pkgsrc-2019Q1
Changes since 1.3: +5 -9
lines
Diff to previous 1.3 (colored)
lang/ruby26-base: update to 2.6.2
Update ruby26{,-base} to 2.6.2.
Quote from release announce.
Ruby 2.6.2 (2019-03-13)
This release includes bug fixes and a security update of the bundled
RubyGems.
See details in Multiple vulnerabilities in RubyGems and the commit logs.
Revision 1.3 / (download) - annotate - [select for diffs], Thu Mar 14 09:57:54 2019 UTC (4 years, 6 months ago) by jperkin
Branch: MAIN
Changes since 1.2: +2 -2
lines
Diff to previous 1.2 (colored)
ruby26-base: Fix install on Darwin.
Revision 1.2 / (download) - annotate - [select for diffs], Tue Mar 12 04:19:09 2019 UTC (4 years, 6 months ago) by taca
Branch: MAIN
Changes since 1.1: +5 -1
lines
Diff to previous 1.1 (colored)
lang/ruby26-base: Add security patch for rubygems Add security patch for rubygems, fixing these problem. * CVE-2019-8320: Delete directory using symlink when decompressing tar * CVE-2019-8321: Escape sequence injection vulnerability in verbose * CVE-2019-8322: Escape sequence injection vulnerability in gem owner * CVE-2019-8323: Escape sequence injection vulnerability in API response handling * CVE-2019-8324: Installing a malicious gem may lead to arbitrary code execution * CVE-2019-8325: Escape sequence injection vulnerability in errors Bump PKGREVISION.
Revision 1.1 / (download) - annotate - [select for diffs], Sun Feb 3 13:41:33 2019 UTC (4 years, 7 months ago) by taca
Branch: MAIN
lang/ruby26-base: add Ruby 2.6.1 Add Ruby release 2.6.1. Ruby 2.6.0 (2018-12-25) New major features: * A new JIT compiler. * The RubyVM::AbstractSyntaxTree module. For more detail, please refer: <https://www.ruby-lang.org/en/news/2018/12/25/ruby-2-6-0-released/> Ruby 2.6.1 (2019-01-30) Major change: * Net::Protocol::BufferedIO#write raises NoMethodError when sending large multi-byte string has been fixed. For more detail, please refer: <https://www.ruby-lang.org/en/news/2019/01/30/ruby-2-6-1-released/>