[PATCH] gnu: ruby: Update to 2.7.7. [security fixes].

Done

Details

2 participants

Efraim Flashner
Remco van 't Veer

Owner: unassigned

Submitted by: Remco van 't Veer

Severity: normal

Remco van 't Veer wrote on 25 Nov 2022 20:23

Recipients:(address . guix-patches@gnu.org)(name . Remco van 't Veer)(address . remco@remworks.net)

Message-ID:20221125192327.28511-1-remco@remworks.net

Fixes: CVE-2021-33621: HTTP response splitting in CGI.

* gnu/packages/ruby.scm (ruby-2.7-fixed): Update to 2.7.7.

---

gnu/packages/ruby.scm | 4 ++--

1 file changed, 2 insertions(+), 2 deletions(-)

Toggle diff (24 lines)diff --git a/gnu/packages/ruby.scm b/gnu/packages/ruby.scm
index b53aa02ef3..37d18061f8 100644
--- a/gnu/packages/ruby.scm
+++ b/gnu/packages/ruby.scm
@@ -194,7 +194,7 @@ (define-public ruby-2.7
 (define ruby-2.7-fixed
   (package
     (inherit ruby-2.7)
-    (version "2.7.6")
+    (version "2.7.7")
     (source
      (origin
        (inherit (package-source ruby-2.7))
@@ -203,7 +203,7 @@ (define ruby-2.7-fixed
                            "/ruby-" version ".tar.gz"))
        (sha256
         (base32
-         "042xrdk7hsv4072bayz3f8ffqh61i8zlhvck10nfshllq063n877"))))))
+         "143vih5jzmrd2r5h94pa3qzml0ldii0qzs6g09jg6zqxd7djf0g1"))))))
 
 (define-public ruby-3.0
   (package
-- 
2.38.1

Efraim Flashner wrote on 27 Nov 2022 12:02

Recipients:(name . Remco van 't Veer)(address . remco@remworks.net)(address . 59582-done@debbugs.gnu.org)

Message-ID:Y4NDzQM3Rzk9FS4E@3900XT

Thanks. Patch pushed!

-- 
Efraim Flashner   <efraim@flashner.co.il>   ????? ?????
GPG key = A28B F40C 3E55 1372 662D  14F7 41AA E7DC CA3D 8351
Confidentiality cannot be guaranteed on emails sent or received unencrypted

Closed

Your comment

This issue is archived.

To comment on this conversation send an email to 59582@debbugs.gnu.org

is:open	open issues
is:done	closed issues
submitter:<who>	search issue submitter
author:<who>	search by message author
date:yesterday..now	search by issue date
mdate:3m..2d	search by message date