CVS commit: [pkgsrc-2024Q2] pkgsrc/lang

["Benny Siegert" <bsiegert%netbsd.org@localhost>]

Module Name:    pkgsrc
Committed By:   bsiegert
Date:           Fri Aug  2 14:13:24 UTC 2024

Modified Files:
        pkgsrc/lang/ruby [pkgsrc-2024Q2]: rubyversion.mk
        pkgsrc/lang/ruby32-base [pkgsrc-2024Q2]: PLIST distinfo

Log Message:
Pullup ticket #6883 - requested by taca
lang/ruby32-base: security fix

Revisions pulled up:
- lang/ruby/rubyversion.mk                                      1.283
- lang/ruby32-base/PLIST                                        1.5
- lang/ruby32-base/distinfo                                     1.9

---
   Module Name: pkgsrc
   Committed By:        taca
   Date:                Sun Jul 28 15:36:49 UTC 2024

   Modified Files:
        pkgsrc/lang/ruby: rubyversion.mk
        pkgsrc/lang/ruby32-base: PLIST distinfo

   Log Message:
   lang/ruby32-base: update to 3.2.5

   From release announce:

   This release include many bug-fixes.  And we updated the version of bundled
   gem rexml to include the following security fix.  CVE-2024-39908: DoS in
   REXML.

   3.2.5 (2024-07-26)

   What's Changed

   * Bug #20421: String#index and String#byteindex don't clear $~ when offset >
     size (or bytesize)
   * Bug #20183: erb/escape.so cannot be loaded when --with-static-linked-ext
   * Rename data -> buffer for better readability. by ioquatix · Pull Request
     #7836
   * Improvements to IO::Buffer read/write/pread/pwrite. by ioquatix · Pull
     Request #7826
   * Fix io_buffer_get_string default length computation. by ioquatix · Pull
     Request #8427
   * Bug #20516: The version of rexml in ruby 3.3.2 has not been updated since
     3.2.6.
   * YJIT: Add a cargo job for Arm64 and remove .cirrus.yml by k0kubun · Pull
     Request #8679
   * [DOC] README.md: Remove Cirrus CI badge image. by junaruga · Pull Request
     #8785
   * Bug #20569: Instruction sequence generated from shareable_constant_value:
     literal files may not be serialized to binary
   * Bug #20180: Inconsistent evaluation of **{} depending on position in array
   * Bug #20493: Segfault on rb_io_getline_fast
   * Bug #20494: Non-default directories are not searched when checking for a
     gmp header
   * Bug #20515: --with-gmp is not working - GMP support won't be built
   * Bug #20499: Ruby builds on macOS store absolute paths for AR and NM in
     rbconfig since Ruby 3.2.3/3.3.0
   * Bug #20414: Fiber#raise should recurse to resumed_fiber rather than
     failing.
   * Bug #20393: after_fork_ruby clears all pending interrupts for both parent
     and child process.
   * Bug #20286: TracePoint does not emit thread_end event when thread exits
     with exception
   * Bug #20305: commit 1d2d25dcadda0764f303183ac091d0c87b432566 breaks
     grapheme_clusters
   * Bug #20239: Segmentation fault when using Regex on a large String
   * Bug #20311: Struct.new("A") memory leak?
   * Bug #20162: Memory leak when duplicating too complex object
   * Bug #20250: Crash with "Object ID seen, but not in mapping table: proc" error
   * Bug #20307: Hash#update from compare_by_identity hash can have unfrozen
     string keys
   * Bug #20169: GC.compact can raises EFAULT on IO
   * Bug #20292: Abort ruby by String#initialize
   * Bug #20296: Complex(:sym, exception: false) generate exception with weird
     timing
   * Bug #20431: Ruby 3.3.0 build fail with make: *** [io_buffer.o] Error 1
   * Bug #20304: Memory leak when setting Encoding.default_internal
   * Bug #20322: rb_enc_interned_str_cstr doesn't accept null pointer for
     encoding
   * Bug #20342: Top level public, private and ruby2_keywords do not work in
     wrapped load
   * Bug #20633: compile error at vm_insnhelper.c when
     HAVE_DECL_ATOMIC_SIGNAL_FENCE is 0
   * Bug #20030: Ripper.tokenize('"\\C-あ"') separates encoding valid string to
     encoding invalid string.
   * Bug #20517: Ripper.tokenize('"\\M-あ"') separates encoding valid string to
     encoding invalid string.
   * Bug #20468: Segfault on safe navigation in for target
   * Bug #20592: Interrupting Addrinfo causes Segmentation fault on alpine
   * Bug #20573: Warning.warn shouldn't be called for disabled warnings
   * Bug #19781: Stack consistency error with tailcall and YJIT enabled
   * Bug #19619: Numbered parameters don't work with method definition with
     parameters


To generate a diff of this commit:
cvs rdiff -u -r1.281 -r1.281.2.1 pkgsrc/lang/ruby/rubyversion.mk
cvs rdiff -u -r1.4 -r1.4.4.1 pkgsrc/lang/ruby32-base/PLIST
cvs rdiff -u -r1.8 -r1.8.2.1 pkgsrc/lang/ruby32-base/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/lang/ruby/rubyversion.mk
diff -u pkgsrc/lang/ruby/rubyversion.mk:1.281 pkgsrc/lang/ruby/rubyversion.mk:1.281.2.1
--- pkgsrc/lang/ruby/rubyversion.mk:1.281       Sat Jun 15 15:43:51 2024
+++ pkgsrc/lang/ruby/rubyversion.mk     Fri Aug  2 14:13:24 2024
@@ -1,4 +1,4 @@
-# $NetBSD: rubyversion.mk,v 1.281 2024/06/15 15:43:51 taca Exp $
+# $NetBSD: rubyversion.mk,v 1.281.2.1 2024/08/02 14:13:24 bsiegert Exp $
 #
 
 # This file determines which Ruby version is used as a dependency for
@@ -214,7 +214,7 @@ RUBY_VERSION_REQD?= ${PKGNAME_REQD:C/rub
 
 # current supported Ruby's version
 RUBY31_VERSION=                3.1.6
-RUBY32_VERSION=                3.2.4
+RUBY32_VERSION=                3.2.5
 RUBY33_VERSION=                3.3.3
 
 # current API compatible version; used for version of shared library
@@ -453,7 +453,7 @@ RUBY_POWER_ASSERT_VER=              2.0.3
 RUBY_PRIME_VER=                        0.1.2
 RUBY_RAKE_VER=                 13.0.6
 RUBY_RBS_VER=                  2.8.2
-RUBY_REXML_VER=                        3.2.5
+RUBY_REXML_VER=                        3.3.2
 RUBY_RSS_VER=                  0.2.9
 RUBY_TEST_UNIT_VER=            3.5.7
 RUBY_TYPEPROF_VER=             0.21.3

Index: pkgsrc/lang/ruby32-base/PLIST
diff -u pkgsrc/lang/ruby32-base/PLIST:1.4 pkgsrc/lang/ruby32-base/PLIST:1.4.4.1
--- pkgsrc/lang/ruby32-base/PLIST:1.4   Sun Jan 21 08:35:39 2024
+++ pkgsrc/lang/ruby32-base/PLIST       Fri Aug  2 14:13:24 2024
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.4 2024/01/21 08:35:39 taca Exp $
+@comment $NetBSD: PLIST,v 1.4.4.1 2024/08/02 14:13:24 bsiegert Exp $
 bin/bundle${RUBY_SUFFIX}
 bin/bundler${RUBY_SUFFIX}
 bin/erb${RUBY_SUFFIX}
@@ -2002,6 +2002,7 @@ ${GEM_HOME}/gems/rexml-${RUBY_REXML_VER}
 ${GEM_HOME}/gems/rexml-${RUBY_REXML_VER}/doc/rexml/tasks/tocs/master_toc.rdoc
 ${GEM_HOME}/gems/rexml-${RUBY_REXML_VER}/doc/rexml/tasks/tocs/node_toc.rdoc
 ${GEM_HOME}/gems/rexml-${RUBY_REXML_VER}/doc/rexml/tasks/tocs/parent_toc.rdoc
+${GEM_HOME}/gems/rexml-${RUBY_REXML_VER}/doc/rexml/tutorial.rdoc
 ${GEM_HOME}/gems/rexml-${RUBY_REXML_VER}/lib/rexml.rb
 ${GEM_HOME}/gems/rexml-${RUBY_REXML_VER}/lib/rexml/attlistdecl.rb
 ${GEM_HOME}/gems/rexml-${RUBY_REXML_VER}/lib/rexml/attribute.rb

Index: pkgsrc/lang/ruby32-base/distinfo
diff -u pkgsrc/lang/ruby32-base/distinfo:1.8 pkgsrc/lang/ruby32-base/distinfo:1.8.2.1
--- pkgsrc/lang/ruby32-base/distinfo:1.8        Thu Apr 25 15:06:11 2024
+++ pkgsrc/lang/ruby32-base/distinfo    Fri Aug  2 14:13:24 2024
@@ -1,8 +1,8 @@
-$NetBSD: distinfo,v 1.8 2024/04/25 15:06:11 taca Exp $
+$NetBSD: distinfo,v 1.8.2.1 2024/08/02 14:13:24 bsiegert Exp $
 
-BLAKE2s (ruby-3.2.4.tar.xz) = 7e70feebf7b4b48b277a117045269b1e22c17e0d9dd94280ac5f1716c8e9605e
-SHA512 (ruby-3.2.4.tar.xz) = fb0af37be4b6ad7b98ab9f8a508952238ee68b5828e3926331e4db52e2ebc1e6046f31114069322db0cd3bea7c9b82ace91c8564573ddcfa1f960877b237dbff
-Size (ruby-3.2.4.tar.xz) = 15175656 bytes
+BLAKE2s (ruby-3.2.5.tar.xz) = 9dfc05828c5dada6e0c014f865beece0ccd599b8dcf2cbaa5d52ea321f26ae2b
+SHA512 (ruby-3.2.5.tar.xz) = 092348b84b513aec62e63ec10b326370d0e3d1fa3126c59c03c84f28e2d7741a4772c461b077ec6a7dac3964a20f434655729e1acd50a3438755d7ad64073305
+Size (ruby-3.2.5.tar.xz) = 15189072 bytes
 SHA1 (patch-common.mk) = c23eed58427b2fd4ba8fdb3692f609701a666c6d
 SHA1 (patch-configure) = f3a143eda324bdfcaab51ee44274eaa445cf2767
 SHA1 (patch-ext_openssl_openssl__missing.h) = 3f8d79736fd14806dfaf76e333eec63ff3ff5890