summary refs log tree commit diff
diff options
context:
space:
mode:
authorKei Kebreau <kkebreau@posteo.net>2018-03-20 10:07:00 -0400
committerKei Kebreau <kkebreau@posteo.net>2018-03-20 11:20:33 -0400
commitf812145e3e4aebf183b5e4e718662c37d3d20e3c (patch)
tree74c9c3648b9f1b87c4cd36d2afb4387e6652ac86
parent32745b71e1a91cf59985dab473c1356297ee7bf1 (diff)
downloadguix-f812145e3e4aebf183b5e4e718662c37d3d20e3c.tar.gz
gnu: ruby-sanitize: Update to 4.6.3.
This fixes CVE-2018-3740.

* gnu/packages/ruby.scm (ruby-sanitize): Update to 4.6.3.
-rw-r--r--gnu/packages/ruby.scm4
1 files changed, 2 insertions, 2 deletions
diff --git a/gnu/packages/ruby.scm b/gnu/packages/ruby.scm
index dcf4cda26a..010dedde24 100644
--- a/gnu/packages/ruby.scm
+++ b/gnu/packages/ruby.scm
@@ -3082,7 +3082,7 @@ access the result as a Nokogiri parsed document.")
 (define-public ruby-sanitize
   (package
     (name "ruby-sanitize")
-    (version "4.0.0")
+    (version "4.6.3")
     (source (origin
               (method url-fetch)
               ;; The gem does not include the Rakefile, so we download the
@@ -3092,7 +3092,7 @@ access the result as a Nokogiri parsed document.")
               (file-name (string-append name "-" version ".tar.gz"))
               (sha256
                (base32
-                "055xnj38l60gxnnng76kpy2l2jbrp0byjdyq17jw79w7l4b40znr"))))
+                "1fmqppwif3cm8h79006jfzkdnlxxzlry9kzk03psk0d5xpg55ycc"))))
     (build-system ruby-build-system)
     (propagated-inputs
      `(("ruby-crass" ,ruby-crass)