87244aa155
This fixes a DNS spoofing vulnerability in Ruby's resolver lib. (CVE-2008-1447) A DoS vulnerability in WEBrick(CVE-2008-3656), problems with Ruby's safelevel implementation (CVE-2008-3655) and a taint check problem in Ruby's dynamic loader (CVE-2008-3657) got fixed as well. This also contains a fix for the REXML DoS issue. (CVE-2008-3790) More information: http://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby/ http://www.ruby-lang.org/en/news/2008/08/23/dos-vulnerability-in-rexml/ Tested by Jeremy Evans and jcs@. Thanks!
13 lines
434 B
Plaintext
13 lines
434 B
Plaintext
$OpenBSD: patch-configure,v 1.4 2008/09/28 15:43:05 bernd Exp $
|
|
--- configure.orig Mon Aug 11 02:38:35 2008
|
|
+++ configure Wed Sep 3 10:30:36 2008
|
|
@@ -17211,7 +17211,7 @@ if test "$enable_shared" = 'yes'; then
|
|
;;
|
|
openbsd*)
|
|
SOLIBS='$(LIBS)'
|
|
- LIBRUBY_SO='lib$(RUBY_INSTALL_NAME).so.$(MAJOR).'`expr ${MINOR} \* 10 + ${TEENY}`
|
|
+ LIBRUBY_SO='lib$(RUBY_INSTALL_NAME).so.'${LIBruby_VERSION}
|
|
;;
|
|
solaris*)
|
|
SOLIBS='$(LIBS)'
|