summary refs log tree commit diff
path: root/gnu/packages/ruby.scm
diff options
context:
space:
mode:
authorRemco van 't Veer <remco@remworks.net>2023-03-31 07:37:08 +0200
committerAndreas Enge <andreas@enge.fr>2023-05-19 11:04:25 +0200
commit18e497d41f47589e93dea04b313b13eec2e9f0f1 (patch)
tree75c2a1c9e023135314883e2205640daefc66fe02 /gnu/packages/ruby.scm
parentcd0a8950e460d73999a2d1e3424b024b0ead6b7f (diff)
downloadguix-18e497d41f47589e93dea04b313b13eec2e9f0f1.tar.gz
gnu: ruby-3.1: Upgrade to 3.1.4 [fixes CVE-2023-{28755, 28756}].
Fixes: CVE-2023-28755 (ReDoS vulnerability in URI), and
CVE-2023-28756 (ReDoS vulnerability in Time).

* gnu/packages/ruby.scm (ruby-3.1): Update to 3.1.4.

Signed-off-by: Andreas Enge <andreas@enge.fr>
Diffstat (limited to 'gnu/packages/ruby.scm')
-rw-r--r--gnu/packages/ruby.scm4
1 files changed, 2 insertions, 2 deletions
diff --git a/gnu/packages/ruby.scm b/gnu/packages/ruby.scm
index b2a37a2d43..92224958ec 100644
--- a/gnu/packages/ruby.scm
+++ b/gnu/packages/ruby.scm
@@ -231,7 +231,7 @@ a focus on simplicity and productivity.")
 (define-public ruby-3.1
   (package
     (inherit ruby-3.0)
-    (version "3.1.3")
+    (version "3.1.4")
     (source
      (origin
        (method url-fetch)
@@ -240,7 +240,7 @@ a focus on simplicity and productivity.")
                            "/ruby-" version ".tar.xz"))
        (sha256
         (base32
-         "06ipqz45qcs0y1273gk2gwslxwd7jgighz3mzbddzg16k29n3qaf"))))))
+         "0kzr792rk9n9yrqlyrkc1a0cmbk5y194f7v7p4vwjdk0ww860v8v"))))))
 
 (define-public ruby-3.2
   (package