maintainer-feedback requested: [Bug 232438] lang/ruby23: Update to 2.4.8 (fixes CVE-2018-1639[56]) and etc
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Fri Oct 19 07:30:36 UTC 2018
Bugzilla Automation <bugzilla at FreeBSD.org> has asked freebsd-ruby mailing list
<ruby at FreeBSD.org> for maintainer-feedback:
Bug 232438: lang/ruby23: Update to 2.4.8 (fixes CVE-2018-1639[56]) and etc
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=232438
--- Description ---
* Update to 2.4.8. It fixes following vulnerabilities.
- CVE-2018-16395
- CVE-2018-16396
* To fix portlint warnings,
- Reorder variable definitions in Makefile.
- Regenerate patch by 'make makepatch'.
* Stop using obsolete MLINKS and do what is really expected.
- When this port is default ruby version, create symlinks
${MANPREFIX}/man/man1/{erb,irb,ri,rub}.1.gz that point to
{erb,irb,ri,rub}23.1.gz.
* Sort INSTALLED_SCRIPTS.
Bug #232427 adds entry to VuXML that describe vulnerabilities fixed with this
version. So please commit it together.
More information about the freebsd-ruby
mailing list