CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2019/10/03 12:38:54
Modified files:
lang/ruby/2.6 : Makefile distinfo
lang/ruby/2.6/pkg: PLIST-main
Log message:
Update to Ruby 2.6.5, fixing the following vulnerabilities:
* CVE-2019-16255: A code injection vulnerability of Shell#[] and Shell#test
* CVE-2019-16254: HTTP response splitting in WEBrick (Additional fix)
* CVE-2019-15845: A NUL injection vulnerability of File.fnmatch and
File.fnmatch?
* CVE-2019-16201: Regular Expression Denial of Service vulnerability of
WEBrick.s Digest access authentication
