CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2017/09/02 15:34:12
Modified files:
devel/ruby-gems: Makefile
devel/ruby-gems/patches:
patch-lib_rubygems_commands_setup_command_rb
patch-lib_rubygems_specification_rb
Added files:
devel/ruby-gems/patches:
patch-lib_rubygems_commands_query_command_rb
patch-lib_rubygems_installer_rb
patch-lib_rubygems_text_rb
Log message:
Backport security patches in rubygems 2.6.13 to 1.8.24. No CVE numbers,
but this fixes the following vulnerabilities:
* Fix a DNS request hijacking vulnerability.
* Fix an ANSI escape sequence vulnerability.
* Fix a DOS vulernerability in the query command.
* Fix a vulnerability in the gem installer that allowed a malicious
gem to overwrite arbitrary files.
