diff options
| author | Remco van 't Veer <remco@remworks.net> | 2023-03-31 07:30:58 +0200 |
|---|---|---|
| committer | Andreas Enge <andreas@enge.fr> | 2023-05-19 10:54:53 +0200 |
| commit | cd0a8950e460d73999a2d1e3424b024b0ead6b7f (patch) | |
| tree | 779649c71908833377f06eeed8e1a87a144bbbb3 | |
| parent | 26b6c913cdb39c2ac8881af2853aa864eb605cca (diff) | |
| download | guix-cd0a8950e460d73999a2d1e3424b024b0ead6b7f.tar.gz | |
gnu: ruby-3.0: Upgrade to 3.0.6 [fixes CVE-2023-{28755, 28756}].
Fixes: CVE-2023-28755 (ReDoS vulnerability in URI), and CVE-2023-28756 (ReDoS vulnerability in Time). * gnu/packages/ruby.scm (ruby-3.0): Update to 3.0.6. Signed-off-by: Andreas Enge <andreas@enge.fr>
| -rw-r--r-- | gnu/packages/ruby.scm | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/gnu/packages/ruby.scm b/gnu/packages/ruby.scm index 1dcd5f76a5..b2a37a2d43 100644 --- a/gnu/packages/ruby.scm +++ b/gnu/packages/ruby.scm @@ -29,7 +29,7 @@ ;;; Copyright © 2020 Tomás Ortín Fernández <tomasortin@mailbox.org> ;;; Copyright © 2021 Giovanni Biscuolo <g@xelera.eu> ;;; Copyright © 2022 Philip McGrath <philip@philipmcgrath.com> -;;; Copyright © 2022 Remco van 't Veer <remco@remworks.net> +;;; Copyright © 2022, 2023 Remco van 't Veer <remco@remworks.net> ;;; Copyright © 2022 Taiju HIGASHI <higashi@taiju.info> ;;; Copyright © 2023 Yovan Naumovski <yovan@gorski.stream> ;;; @@ -214,7 +214,7 @@ a focus on simplicity and productivity.") (define-public ruby-3.0 (package (inherit ruby-2.7) - (version "3.0.5") + (version "3.0.6") (source (origin (method url-fetch) @@ -223,7 +223,7 @@ a focus on simplicity and productivity.") "/ruby-" version ".tar.xz")) (sha256 (base32 - "1pnxbdkkh2miq9nqfq2qscvh76nprzg0r620d9ckdzih42xbaz6g")))) + "1lfvgm6jbspmwmc3haww83l1l8vl1airzi08ljrcz19dws9yxjxm")))) (inputs (modify-inputs (package-inputs ruby-2.7) (replace "openssl" openssl))))) |