mirror/guix
1
0
Fork 0
mirror of https://git.savannah.gnu.org/git/guix.git synced 2025-01-19 14:07:01 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

gnu: ruby-3.1: Upgrade to 3.1.4 [fixes CVE-2023-{28755, 28756}].

Browse source 
Fixes: CVE-2023-28755 (ReDoS vulnerability in URI), and
CVE-2023-28756 (ReDoS vulnerability in Time).

* gnu/packages/ruby.scm (ruby-3.1): Update to 3.1.4.

Signed-off-by: Andreas Enge <andreas@enge.fr>
This commit is contained in:
Remco van 't Veer 2023-03-31 07:37:08 +02:00 committed by Andreas Enge
parent cd0a8950e4
commit 18e497d41f
No known key found for this signature in database
GPG key ID: F7D5C9BF765C61E3
1 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
gnu/packages/ruby.scm
View file

@ -231,7 +231,7 @@ (define-public ruby-3.0
(define-public ruby-3.1
(package
(inherit ruby-3.0)
(version "3.1.3")
(version "3.1.4")
(source
(origin
(method url-fetch)
@ -240,7 +240,7 @@ (define-public ruby-3.1
"/ruby-" version ".tar.xz"))
(sha256
(base32
"06ipqz45qcs0y1273gk2gwslxwd7jgighz3mzbddzg16k29n3qaf"))))))
"0kzr792rk9n9yrqlyrkc1a0cmbk5y194f7v7p4vwjdk0ww860v8v"))))))
(define-public ruby-3.2
(package