pkgsrc-Changes-HG archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
[pkgsrc/trunk]: pkgsrc/www/ruby-rest-client Update ruby-rest-client to 1.8.0,...
details: https://anonhg.NetBSD.org/pkgsrc/rev/bf585cefe36a
branches: trunk
changeset: 649016:bf585cefe36a
user: taca <taca%pkgsrc.org@localhost>
date: Sat Mar 28 04:12:16 2015 +0000
description:
Update ruby-rest-client to 1.8.0, security fix.
# 1.8.0
- Security: implement standards compliant cookie handling by adding a
dependency on http-cookie. This breaks compatibility, but was necessary to
address a session fixation / cookie disclosure vulnerability.
(#369 / CVE-2015-1820)
Previously, any Set-Cookie headers found in an HTTP 30x response would be
sent to the redirection target, regardless of domain. Responses now expose a
cookie jar and respect standards compliant domain / path flags in Set-Cookie
headers.
diffstat:
www/ruby-rest-client/Makefile | 5 +++--
www/ruby-rest-client/distinfo | 8 ++++----
2 files changed, 7 insertions(+), 6 deletions(-)
diffs (33 lines):
diff -r 194d2db27a93 -r bf585cefe36a www/ruby-rest-client/Makefile
--- a/www/ruby-rest-client/Makefile Fri Mar 27 23:45:29 2015 +0000
+++ b/www/ruby-rest-client/Makefile Sat Mar 28 04:12:16 2015 +0000
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.2 2015/03/13 17:36:10 taca Exp $
+# $NetBSD: Makefile,v 1.3 2015/03/28 04:12:16 taca Exp $
-DISTNAME= rest-client-1.7.3
+DISTNAME= rest-client-1.8.0
CATEGORIES= www
MAINTAINER= pkgsrc-users%NetBSD.org@localhost
@@ -11,6 +11,7 @@
DEPENDS+= ${RUBY_PKGPREFIX}-readline>=${RUBY_VERSION}:../../devel/ruby-readline
DEPENDS+= ${RUBY_PKGPREFIX}-mime-types>=1.16<3.0:../../mail/ruby-mime-types
DEPENDS+= ${RUBY_PKGPREFIX}-netrc>=0.7<1:../../net/ruby-netrc
+DEPENDS+= ${RUBY_PKGPREFIX}-http-cookie>=1.0.2<2:../../www/ruby-http-cookie
.include "../../lang/ruby/gem.mk"
.include "../../mk/bsd.pkg.mk"
diff -r 194d2db27a93 -r bf585cefe36a www/ruby-rest-client/distinfo
--- a/www/ruby-rest-client/distinfo Fri Mar 27 23:45:29 2015 +0000
+++ b/www/ruby-rest-client/distinfo Sat Mar 28 04:12:16 2015 +0000
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.2 2015/03/13 17:36:10 taca Exp $
+$NetBSD: distinfo,v 1.3 2015/03/28 04:12:16 taca Exp $
-SHA1 (rest-client-1.7.3.gem) = c080632d602ece2d8f1f579090da64234101c484
-RMD160 (rest-client-1.7.3.gem) = e4ede7aaa321aa9be5e4f1e80ba5a33781ba4b6c
-Size (rest-client-1.7.3.gem) = 124416 bytes
+SHA1 (rest-client-1.8.0.gem) = 271b57e37e69afbc1a02b455391d171379bdda8a
+RMD160 (rest-client-1.8.0.gem) = be9fab9a89955c9db281adbe9b1692d9f17a8b15
+Size (rest-client-1.8.0.gem) = 124928 bytes
Home |
Main Index |
Thread Index |
Old Index