Update to Ruby 2.5.7, fixing the following vulnerabilities:

* CVE-2019-16255: A code injection vulnerability of Shell#[] and Shell#test * CVE-2019-16254: HTTP response splitting in WEBrick (Additional fix) * CVE-2019-15845: A NUL injection vulnerability of File.fnmatch and File.fnmatch? * CVE-2019-16201: Regular Expression Denial of Service vulnerability of WEBrick.s Digest access authentication
2019-10-03 18:39:26 +00:00 · 2019-10-03 18:39:26 +00:00 · 98377b0f7d
commit 98377b0f7d
parent f6c2326c22
2 changed files with 4 additions and 4 deletions
--- a/lang/ruby/2.5/Makefile
+++ b/lang/ruby/2.5/Makefile
@ -1,6 +1,6 @@
-# $OpenBSD: Makefile,v 1.10 2019/08/30 15:57:24 jeremy Exp $
+# $OpenBSD: Makefile,v 1.11 2019/10/03 18:39:26 jeremy Exp $

-VERSION =		2.5.6
+VERSION =		2.5.7
 SHARED_LIBS =		ruby25	0.0
 NEXTVER =		2.6

--- a/lang/ruby/2.5/distinfo
+++ b/lang/ruby/2.5/distinfo
@ -1,2 +1,2 @@
-SHA256 (ruby-2.5.6.tar.gz) = HX7QbGcwIM0SpzftaGRwVS6Omdcrgs08JtqjEVw2vqc=
-SIZE (ruby-2.5.6.tar.gz) = 17684288
+SHA256 (ruby-2.5.7.tar.gz) = Cy0NXjRRtqtFT4Gxv8oAdAfAVI3qQD8eui5CnaSt1tQ=
+SIZE (ruby-2.5.7.tar.gz) = 15669771