CVSROOT: /cvs Module name: ports Changes by: jer...@cvs.openbsd.org 2019/10/03 12:38:54
Modified files: lang/ruby/2.6 : Makefile distinfo lang/ruby/2.6/pkg: PLIST-main Log message: Update to Ruby 2.6.5, fixing the following vulnerabilities: * CVE-2019-16255: A code injection vulnerability of Shell#[] and Shell#test * CVE-2019-16254: HTTP response splitting in WEBrick (Additional fix) * CVE-2019-15845: A NUL injection vulnerability of File.fnmatch and File.fnmatch? * CVE-2019-16201: Regular Expression Denial of Service vulnerability of WEBrick.s Digest access authentication