CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2017/09/02 15:29:47
Modified files:
lang/ruby/2.2 : Makefile distinfo
lang/ruby/2.3 : Makefile distinfo
lang/ruby/2.4 : Makefile distinfo
Log message:
Apply security patches provided by ruby-core to fix security issues
in rubygems for versions still supported upstream (2.2, 2.3, and 2.4).
No CVE numbers, but this fixes the following vulnerabilities:
* Fix a DNS request hijacking vulnerability.
* Fix an ANSI escape sequence vulnerability.
* Fix a DOS vulernerability in the query command.
* Fix a vulnerability in the gem installer that allowed a malicious
gem to overwrite arbitrary files.
