maintainer-feedback requested: [Bug 232431] lang/ruby25: Update to 2.5.3 (fixes CVE-2018-1639[56]) and etc

bugzilla-noreply at freebsd.org bugzilla-noreply at freebsd.org
Fri Oct 19 03:13:29 UTC 2018


Bugzilla Automation <bugzilla at FreeBSD.org> has asked freebsd-ruby mailing list
<ruby at FreeBSD.org> for maintainer-feedback:
Bug 232431: lang/ruby25: Update to 2.5.3 (fixes CVE-2018-1639[56]) and etc
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=232431



--- Description ---
* Update to 2.5.3. It fixes following vulnerabilities.
  - CVE-2018-16395
  - CVE-2018-16396
* To fix portlint warnings,
  - Move USERS upward.
  - Regenerate patch by 'make makepatch'.
* Stop using obsolete MLINKS and do what is really expected.
  - When this port is default ruby version, create symlinks 
${MANPREFIX}/man/man1/{erb,irb,ri,rub}.1.gz that point to 
{erb,irb,ri,rub}25.1.gz.
* Sort INSTALLED_SCRIPTS.

Bug #232427 adds entry to VuXML that describe vulnerabilities fixed with this
version. So please commit it together.


More information about the freebsd-ruby mailing list