git: 25ac42027f62 - main - textproc/rubygem-nokogiri: update to 1.13.3
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Thu, 24 Feb 2022 07:51:51 UTC
The branch main has been updated by mfechner:
URL: https://cgit.FreeBSD.org/ports/commit/?id=25ac42027f6251d7f8a7f1db4eb7226dc2504e03
commit 25ac42027f6251d7f8a7f1db4eb7226dc2504e03
Author: Matthias Fechner <mfechner@FreeBSD.org>
AuthorDate: 2022-02-24 07:14:59 +0000
Commit: Matthias Fechner <mfechner@FreeBSD.org>
CommitDate: 2022-02-24 07:51:45 +0000
textproc/rubygem-nokogiri: update to 1.13.3
This fixes a regression from:
https://cgit.freebsd.org/ports/commit/?id=ef5f30e4deae
Changelog:
https://nokogiri.org/CHANGELOG.html#notes
1.13.3 / 2022-02-21¶
Fixed¶
[CRuby] Revert a HTML4 parser bug in libxml 2.9.13 (introduced in Nokogiri v1.13.2). The bug causes libxml2's HTML4 parser to fail to recover when encountering a bare < character in some contexts. This version of Nokogiri restores the earlier behavior, which is to recover from the parse error and treat the < as normal character data (which will be serialized as < in a text node). The bug (and the fix) is only relevant when the RECOVER parse option is set, as it is by default. [#2461]
1.13.2 / 2022-02-21¶
Security¶
[CRuby] Vendored libxml2 is updated from 2.9.12 to 2.9.13. This update addresses CVE-2022-23308.
[CRuby] Vendored libxslt is updated from 1.1.34 to 1.1.35. This update addresses CVE-2021-30560.
Please see GHSA-fq42-c5rg-92c2 for more information about these CVEs.
Dependencies¶
[CRuby] Vendored libxml2 is updated from 2.9.12 to 2.9.13. Full changelog is available at https://download.gnome.org/sources/libxml2/2.9/libxml2-2.9.13.news
[CRuby] Vendored libxslt is updated from 1.1.34 to 1.1.35. Full changelog is available at https://download.gnome.org/sources/libxslt/1.1/libxslt-1.1.35.news
PR: 262159
Reported by: lysfjord.daniel@smokepit.net
---
textproc/rubygem-nokogiri/Makefile | 4 ++--
textproc/rubygem-nokogiri/distinfo | 6 +++---
textproc/rubygem-nokogiri/files/patch-gemspec | 4 ++--
3 files changed, 7 insertions(+), 7 deletions(-)
diff --git a/textproc/rubygem-nokogiri/Makefile b/textproc/rubygem-nokogiri/Makefile
index f853565f9eeb..0170b91d7732 100644
--- a/textproc/rubygem-nokogiri/Makefile
+++ b/textproc/rubygem-nokogiri/Makefile
@@ -1,5 +1,5 @@
PORTNAME= nokogiri
-PORTVERSION= 1.13.1
+PORTVERSION= 1.13.3
CATEGORIES= textproc rubygems
MASTER_SITES= RG
@@ -10,7 +10,7 @@ LICENSE= MIT
LICENSE_FILE= ${WRKSRC}/LICENSE.md
BUILD_DEPENDS= ${RUN_DEPENDS} \
- rubygem-mini_portile2>=2.7.0<2.8:devel/rubygem-mini_portile2
+ rubygem-mini_portile2>=2.8.0<2.9:devel/rubygem-mini_portile2
LIB_DEPENDS= libgcrypt.so:security/libgcrypt \
libgpg-error.so:security/libgpg-error \
libxml2.so:textproc/libxml2
diff --git a/textproc/rubygem-nokogiri/distinfo b/textproc/rubygem-nokogiri/distinfo
index 9aa480f8ab07..abe7d58e7215 100644
--- a/textproc/rubygem-nokogiri/distinfo
+++ b/textproc/rubygem-nokogiri/distinfo
@@ -1,3 +1,3 @@
-TIMESTAMP = 1642778303
-SHA256 (rubygem/nokogiri-1.13.1.gem) = 2138bb8e1bd5f11c2dc57a6a7ed93ddce35825dae7d25262658d89a222571fff
-SIZE (rubygem/nokogiri-1.13.1.gem) = 9598976
+TIMESTAMP = 1645686695
+SHA256 (rubygem/nokogiri-1.13.3.gem) = bf1b1bceff910abb0b7ad825535951101a0361b859c2ad1be155c010081ecbdc
+SIZE (rubygem/nokogiri-1.13.3.gem) = 5492736
diff --git a/textproc/rubygem-nokogiri/files/patch-gemspec b/textproc/rubygem-nokogiri/files/patch-gemspec
index b7be63942885..16aeab49a9e1 100644
--- a/textproc/rubygem-nokogiri/files/patch-gemspec
+++ b/textproc/rubygem-nokogiri/files/patch-gemspec
@@ -1,10 +1,10 @@
---- nokogiri.gemspec.orig 2022-01-27 10:10:49 UTC
+--- nokogiri.gemspec.orig 2022-02-24 07:18:52 UTC
+++ nokogiri.gemspec
@@ -29,7 +29,6 @@ Gem::Specification.new do |s|
end
if s.respond_to? :add_runtime_dependency then
-- s.add_runtime_dependency(%q<mini_portile2>.freeze, ["~> 2.7.0"])
+- s.add_runtime_dependency(%q<mini_portile2>.freeze, ["~> 2.8.0"])
s.add_runtime_dependency(%q<racc>.freeze, ["~> 1.4"])
s.add_development_dependency(%q<bundler>.freeze, ["~> 2.2"])
s.add_development_dependency(%q<hoe-markdown>.freeze, ["~> 1.4"])