[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
02/03: gnu: ruby-3.1: Upgrade to 3.1.4 [fixes CVE-2023-{28755, 28756}].
From: |
guix-commits |
Subject: |
02/03: gnu: ruby-3.1: Upgrade to 3.1.4 [fixes CVE-2023-{28755, 28756}]. |
Date: |
Fri, 19 May 2023 05:18:47 -0400 (EDT) |
andreas pushed a commit to branch master
in repository guix.
commit 18e497d41f47589e93dea04b313b13eec2e9f0f1
Author: Remco van 't Veer <remco@remworks.net>
AuthorDate: Fri Mar 31 07:37:08 2023 +0200
gnu: ruby-3.1: Upgrade to 3.1.4 [fixes CVE-2023-{28755, 28756}].
Fixes: CVE-2023-28755 (ReDoS vulnerability in URI), and
CVE-2023-28756 (ReDoS vulnerability in Time).
* gnu/packages/ruby.scm (ruby-3.1): Update to 3.1.4.
Signed-off-by: Andreas Enge <andreas@enge.fr>
---
gnu/packages/ruby.scm | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/gnu/packages/ruby.scm b/gnu/packages/ruby.scm
index b2a37a2d43..92224958ec 100644
--- a/gnu/packages/ruby.scm
+++ b/gnu/packages/ruby.scm
@@ -231,7 +231,7 @@ a focus on simplicity and productivity.")
(define-public ruby-3.1
(package
(inherit ruby-3.0)
- (version "3.1.3")
+ (version "3.1.4")
(source
(origin
(method url-fetch)
@@ -240,7 +240,7 @@ a focus on simplicity and productivity.")
"/ruby-" version ".tar.xz"))
(sha256
(base32
- "06ipqz45qcs0y1273gk2gwslxwd7jgighz3mzbddzg16k29n3qaf"))))))
+ "0kzr792rk9n9yrqlyrkc1a0cmbk5y194f7v7p4vwjdk0ww860v8v"))))))
(define-public ruby-3.2
(package