Skip site navigation (1)Skip section navigation (2) 
Date:      Wed, 15 Jun 2011 15:13:26 -0600 (MDT)
From:      Phil Oleson <oz@nixil.net>
To:        FreeBSD-gnats-submit@FreeBSD.org
Subject:   ports/157911: Upgrade ruby18 to patchlevel 334
Message-ID:  <201106152113.p5FLDQwX065297@nixil.net>
Resent-Message-ID: <201106152120.p5FLKBDe092970@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help 

>Number:         157911
>Category:       ports
>Synopsis:       Upgrade ruby18 to patchlevel 334
>Confidential:   no
>Severity:       serious
>Priority:       high
>Responsible:    freebsd-ports-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          update
>Submitter-Id:   current-users
>Arrival-Date:   Wed Jun 15 21:20:11 UTC 2011
>Closed-Date:
>Last-Modified:
>Originator:     Phil Oleson
>Release:        FreeBSD 6.4-RELEASE-p8 i386
>Organization:
N/S
>Environment:
System: FreeBSD nixil.net 6.4-RELEASE-p8 FreeBSD 6.4-RELEASE-p8 #1 r101746: Mon Aug 30 10:34:40 MDT 2010 root@fc:/usr/src/sys/i386/compile/VKERN i386


>Description:
	lang/ruby18 is vulnerable to CVE-2011-1004
>How-To-Repeat:
	N/A
>Fix:

	Upgrade to 1.8.7-334

--- ruby18.diff begins here ---
--- lang/ruby18.orig/distinfo	2010-11-21 22:47:07.000000000 -0700
+++ lang/ruby18/distinfo	2011-06-14 16:45:05.000000000 -0600
@@ -1,2 +1,2 @@
-SHA256 (ruby/ruby-1.8.7-p302.tar.bz2) = 3537cc81cc2378a2bc319cd16c4237ddee14a2839cfd1515b27dce108d061a68
-SIZE (ruby/ruby-1.8.7-p302.tar.bz2) = 4184764
+SHA256 (ruby/ruby-1.8.7-p334.tar.bz2) = 3e7f1a15fb2c205ac9eb0da804983b83bf8c0ffeb2f146d1eb9e0579ea2507da
+SIZE (ruby/ruby-1.8.7-p334.tar.bz2) = 4190857
diff -ru ruby18.orig/pkg-plist ruby18/pkg-plist
--- lang/ruby18.orig/pkg-plist	2010-12-19 19:46:25.000000000 -0700
+++ lang/ruby18/pkg-plist	2011-06-14 16:42:03.000000000 -0600
@@ -391,6 +391,7 @@
 %%RUBY_LIBDIR%%/openssl/bn.rb
 %%RUBY_LIBDIR%%/openssl/buffering.rb
 %%RUBY_LIBDIR%%/openssl/cipher.rb
+%%RUBY_LIBDIR%%/openssl/config.rb
 %%RUBY_LIBDIR%%/openssl/digest.rb
 %%RUBY_LIBDIR%%/openssl/pkcs7.rb
 %%RUBY_LIBDIR%%/openssl/ssl.rb
--- Mk/bsd.ruby.mk.orig	2011-06-14 17:14:17.000000000 -0600
+++ Mk/bsd.ruby.mk	2011-06-14 17:14:37.000000000 -0600
@@ -173,7 +173,7 @@
 RUBY_RELVERSION=	1.8.7
 RUBY_PORTREVISION=	0
 RUBY_PORTEPOCH=		1
-RUBY_PATCHLEVEL=	302
+RUBY_PATCHLEVEL=	334
 
 .  if ${RUBY_PATCHLEVEL} == 0
 RUBY_VERSION?=		${RUBY_RELVERSION}
--- ruby18.diff ends here ---


>Release-Note:
>Audit-Trail:
>Unformatted:

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201106152113.p5FLDQwX065297>