Bug 263357

Summary:

lang/ruby32: Add upstream patches to fix recent vulnerabilities

Product:

Ports & Packages

Reporter:

Yasuhiro Kimura <yasu>

Component:

Individual Port(s)

Assignee:

Yasuhiro Kimura <yasu>

Status:

Closed FIXED

Severity:

Affects Only Me

Flags:

sunpoet: maintainer-feedback+

Priority:

---

Version:

Latest

Hardware:

Any

OS:

Any

Attachments:

Description	Flags
Patch file	none

Description Yasuhiro Kimura freebsd_committer

2022-04-17 02:51:43 UTC

Created attachment 233263 [details]
Patch file

Add upstream patches to fix recent vulnerabilities.

Security:       f22144d7-bad1-11ec-9cfe-0800270512f4
Security:       06ed6a49-bad4-11ec-9cfe-0800270512f4

Comment 1 Po-Chuan Hsieh freebsd_committer

2022-04-17 03:02:47 UTC

LGTM. Thanks!

Comment 2 commit-hook freebsd_committer

2022-04-17 04:09:09 UTC

A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=3d90d93bd56ee79ea165afecd38fd9fec6674d26

commit 3d90d93bd56ee79ea165afecd38fd9fec6674d26
Author:     Yasuhiro Kimura <yasu@FreeBSD.org>
AuthorDate: 2022-04-17 02:18:12 +0000
Commit:     Yasuhiro Kimura <yasu@FreeBSD.org>
CommitDate: 2022-04-17 04:07:45 +0000

    lang/ruby32: Add upstream patches to fix recent vulnerabilities

    PR:             263357
    Approved by:    sunpoet (ruby@)
    Security:       f22144d7-bad1-11ec-9cfe-0800270512f4
    Security:       06ed6a49-bad4-11ec-9cfe-0800270512f4

 Mk/bsd.ruby.mk                               |  2 +-
 lang/ruby32/files/patch-CVE-2022-28738 (new) | 66 ++++++++++++++++++++++++++++
 lang/ruby32/files/patch-CVE-2022-28739 (new) | 64 +++++++++++++++++++++++++++
 3 files changed, 131 insertions(+), 1 deletion(-)