| Age | Commit message (Collapse) | Author |
|---|
|
includes security fixes, see
https://www.ruby-lang.org/en/news/2021/07/07/ruby-3-0-2-released/
|
|
includes one security fix, see
- https://www.ruby-lang.org/en/news/2021/04/05/ruby-3-0-1-released/
- https://www.ruby-lang.org/en/news/2021/04/05/xml-round-trip-vulnerability-in-rexml-cve-2021-28965/
|
|
|
|
includes one security fix, see
https://www.ruby-lang.org/en/news/2020/09/29/http-request-smuggling-cve-2020-25613/
|
|
includes security fixes, see
https://www.ruby-lang.org/en/news/2020/03/31/ruby-2-7-1-released/
|
|
|
|
includes security fixes for the following vulnerabilities:
- https://www.ruby-lang.org/en/news/2019/10/01/code-injection-shell-test-cve-2019-16255/
- https://www.ruby-lang.org/en/news/2019/10/01/http-response-splitting-in-webrick-cve-2019-16254/
- https://www.ruby-lang.org/en/news/2019/10/01/nul-injection-file-fnmatch-cve-2019-15845/
- https://www.ruby-lang.org/en/news/2019/10/01/webrick-regexp-digestauth-dos-cve-2019-16201/
|
|
includes security fixes, see
https://www.ruby-lang.org/en/news/2019/08/28/ruby-2-6-4-released/
|
|
|
|
|
|
|
|
|
|
includes security fixes, see
https://www.ruby-lang.org/en/news/2018/10/17/ruby-2-5-2-released/
|
|
|
|
|
|
includes the security fix for CVE-2017-17405, see
https://www.ruby-lang.org/en/news/2017/12/14/ruby-2-4-3-released/
|
|
security fixes, see
https://www.ruby-lang.org/en/news/2017/09/14/ruby-2-4-2-released/
|
|
|
|
|
|
|
|
|
|
|
|
includes one security fix for the Fiddle extension, see
https://www.ruby-lang.org/en/news/2015/12/16/unsafe-tainted-string-usage-in-fiddle-and-dl-cve-2015-7551/
|
|
|
|
update includes a security fix for CVE-2015-1855, see
https://www.ruby-lang.org/en/news/2015/04/13/ruby-openssl-hostname-matching-vulnerability/
|
|
includes a security fix for DoS vulnerability of REXML. See
https://www.ruby-lang.org/en/news/2014/11/13/rexml-dos-cve-2014-8090/
|
|
security fixes, see
https://www.ruby-lang.org/en/news/2014/10/27/ruby-2-1-4-released/
|
|
|
|
|
|
|
|
includes one security fix, see
http://www.ruby-lang.org/en/news/2013/05/14/taint-bypass-dl-fiddle-cve-2013-2065/
|
|
to avoid warnings and get a sane gem system, ruby should be
build with libyaml support.
- install opt/libyaml before doing the ruby update
Thanks to Danny for providing the libyaml port.
|
|
Update includes a security fix, see
http://www.ruby-lang.org/en/news/2013/02/06/rdoc-xss-cve-2013-0256/
|
|
Security fix, see
http://www.ruby-lang.org/en/news/2012/10/12/cve-2012-4464-cve-2012-4466/
|
|
Security fix, see
http://www.ruby-lang.org/en/news/2012/04/20/ruby-1-9-3-p194-is-released/
|
|
|
|
Update encloses one security fix, see
http://www.ruby-lang.org/en/news/2012/02/16/ruby-1-9-3-p125-is-released/
|
|
|
|
includes a security fix, see
http://www.ruby-lang.org/en/news/2011/02/18/fileutils-is-vulnerable-to-symlink-race-attacks/
|
|
|
|
|
|
|
|
|
|
|
|
See http://www.ruby-lang.org/en/news/2008/06/20/arbitrary-code-execution-vulnerabilities/
|
|
|
|
|
|
|
|
|
