git: 25ac42027f62 - main - textproc/rubygem-nokogiri: update to 1.13.3
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Thu, 24 Feb 2022 07:51:51 UTC
The branch main has been updated by mfechner: URL: https://cgit.FreeBSD.org/ports/commit/?id=25ac42027f6251d7f8a7f1db4eb7226dc2504e03 commit 25ac42027f6251d7f8a7f1db4eb7226dc2504e03 Author: Matthias Fechner <mfechner@FreeBSD.org> AuthorDate: 2022-02-24 07:14:59 +0000 Commit: Matthias Fechner <mfechner@FreeBSD.org> CommitDate: 2022-02-24 07:51:45 +0000 textproc/rubygem-nokogiri: update to 1.13.3 This fixes a regression from: https://cgit.freebsd.org/ports/commit/?id=ef5f30e4deae Changelog: https://nokogiri.org/CHANGELOG.html#notes 1.13.3 / 2022-02-21¶ Fixed¶ [CRuby] Revert a HTML4 parser bug in libxml 2.9.13 (introduced in Nokogiri v1.13.2). The bug causes libxml2's HTML4 parser to fail to recover when encountering a bare < character in some contexts. This version of Nokogiri restores the earlier behavior, which is to recover from the parse error and treat the < as normal character data (which will be serialized as < in a text node). The bug (and the fix) is only relevant when the RECOVER parse option is set, as it is by default. [#2461] 1.13.2 / 2022-02-21¶ Security¶ [CRuby] Vendored libxml2 is updated from 2.9.12 to 2.9.13. This update addresses CVE-2022-23308. [CRuby] Vendored libxslt is updated from 1.1.34 to 1.1.35. This update addresses CVE-2021-30560. Please see GHSA-fq42-c5rg-92c2 for more information about these CVEs. Dependencies¶ [CRuby] Vendored libxml2 is updated from 2.9.12 to 2.9.13. Full changelog is available at https://download.gnome.org/sources/libxml2/2.9/libxml2-2.9.13.news [CRuby] Vendored libxslt is updated from 1.1.34 to 1.1.35. Full changelog is available at https://download.gnome.org/sources/libxslt/1.1/libxslt-1.1.35.news PR: 262159 Reported by: lysfjord.daniel@smokepit.net --- textproc/rubygem-nokogiri/Makefile | 4 ++-- textproc/rubygem-nokogiri/distinfo | 6 +++--- textproc/rubygem-nokogiri/files/patch-gemspec | 4 ++-- 3 files changed, 7 insertions(+), 7 deletions(-) diff --git a/textproc/rubygem-nokogiri/Makefile b/textproc/rubygem-nokogiri/Makefile index f853565f9eeb..0170b91d7732 100644 --- a/textproc/rubygem-nokogiri/Makefile +++ b/textproc/rubygem-nokogiri/Makefile @@ -1,5 +1,5 @@ PORTNAME= nokogiri -PORTVERSION= 1.13.1 +PORTVERSION= 1.13.3 CATEGORIES= textproc rubygems MASTER_SITES= RG @@ -10,7 +10,7 @@ LICENSE= MIT LICENSE_FILE= ${WRKSRC}/LICENSE.md BUILD_DEPENDS= ${RUN_DEPENDS} \ - rubygem-mini_portile2>=2.7.0<2.8:devel/rubygem-mini_portile2 + rubygem-mini_portile2>=2.8.0<2.9:devel/rubygem-mini_portile2 LIB_DEPENDS= libgcrypt.so:security/libgcrypt \ libgpg-error.so:security/libgpg-error \ libxml2.so:textproc/libxml2 diff --git a/textproc/rubygem-nokogiri/distinfo b/textproc/rubygem-nokogiri/distinfo index 9aa480f8ab07..abe7d58e7215 100644 --- a/textproc/rubygem-nokogiri/distinfo +++ b/textproc/rubygem-nokogiri/distinfo @@ -1,3 +1,3 @@ -TIMESTAMP = 1642778303 -SHA256 (rubygem/nokogiri-1.13.1.gem) = 2138bb8e1bd5f11c2dc57a6a7ed93ddce35825dae7d25262658d89a222571fff -SIZE (rubygem/nokogiri-1.13.1.gem) = 9598976 +TIMESTAMP = 1645686695 +SHA256 (rubygem/nokogiri-1.13.3.gem) = bf1b1bceff910abb0b7ad825535951101a0361b859c2ad1be155c010081ecbdc +SIZE (rubygem/nokogiri-1.13.3.gem) = 5492736 diff --git a/textproc/rubygem-nokogiri/files/patch-gemspec b/textproc/rubygem-nokogiri/files/patch-gemspec index b7be63942885..16aeab49a9e1 100644 --- a/textproc/rubygem-nokogiri/files/patch-gemspec +++ b/textproc/rubygem-nokogiri/files/patch-gemspec @@ -1,10 +1,10 @@ ---- nokogiri.gemspec.orig 2022-01-27 10:10:49 UTC +--- nokogiri.gemspec.orig 2022-02-24 07:18:52 UTC +++ nokogiri.gemspec @@ -29,7 +29,6 @@ Gem::Specification.new do |s| end if s.respond_to? :add_runtime_dependency then -- s.add_runtime_dependency(%q<mini_portile2>.freeze, ["~> 2.7.0"]) +- s.add_runtime_dependency(%q<mini_portile2>.freeze, ["~> 2.8.0"]) s.add_runtime_dependency(%q<racc>.freeze, ["~> 1.4"]) s.add_development_dependency(%q<bundler>.freeze, ["~> 2.2"]) s.add_development_dependency(%q<hoe-markdown>.freeze, ["~> 1.4"])