Commit Graph

17 Commits

Author SHA1 Message Date
Jarek Prokop
23b8352956 Upgrade to Ruby 3.3.1.
Fix buffer overread vulnerability in StringIO.
  (CVE-2024-27280)
Fix RCE vulnerability with .rdoc_options in RDoc.
  (CVE-2024-27281)
Fix Arbitrary memory address read vulnerability with Regex search.
  (CVE-2024-27282)

Ruby bundled NKF, add appropriate `bundled` provide and test
License review and clarification

Upgrade by merging Fedora changes up to commit:
ff5301a5f3

Resolves: RHEL-33976
Resolves: RHEL-34130
Resolves: RHEL-34122
Resolves: RHEL-33872
2024-05-20 18:56:41 +02:00
Jarek Prokop
d97bc213ea Upgrade to Ruby 3.3.0.
Imported from Fedora @ 3008410

Resolves: RHEL-17089
2024-01-29 16:24:55 +01:00
Jarek Prokop
20188a8a3f Upgrade to Ruby 3.1.2 by merging Fedora Rawhide branch (commit: b7b5473).
Resolves: rhbz#2063773
2022-06-22 20:36:32 +02:00
Jarek Prokop
e036ecc271 Upgrade to Ruby 3.0.2.
- Fix command injection vulnerability in RDoc. (CVE-2021-31799)
- Fix FTP PASV command response can cause Net::FTP to connect to arbitrary host.
  (CVE-2021-31810)
- Fix StartTLS stripping vulnerability in Net::IMAP (CVE-2021-32066)
- Fix dependencies of gems with explicit source installed from a
  different source. (CVE-2020-36327)

Related: rhbz#1938942
2021-07-21 18:10:53 +02:00
Jarek Prokop
8475ee2d69 Upgrade to Ruby 3.0.1.
Rebased from Fedora rawhide, commit: 6b2ff68.

* Except "Fix FTBFS due to an incompatible load" as that is included as
  a separate commit to highlight the change.
* Add missing `rubygem-` prefix for bundled provide of 'connection_pool'.
* Pass ldflags to gem install via CONFIGURE_ARGS
* Remove IRB dependency from rubygem-rdoc.
* Fix flaky excon test suite.
* Properly support DWARF5 debug information.
  Related: rhbz#1920533
* Bundle OpenSSL into StdLib.
* Fix SEGFAULT in rubygem-shoulda-matchers test suite.
* Provide `gem.build_complete` file for binary gems.
* Re-enable test suite.
* ruby-default-gems have to depend on rubygem(io-console) due to
  reline.
* Fix SEGFAULT preventing rubygem-unicode to build on armv7hl.
* Add support for reworked RubyGems plugins.
* Use proper path for plugin wrappers.
* Extract RSS and REXML into separate subpackages, because they were
   moved from default gems to bundled gems.
* Drop Net::Telnet and XMLRPC packages, because they were dropped from
  Ruby.

Resolves: rhbz#1938942
2021-06-24 21:02:48 +02:00
Pavel Valena
0ac9ccaebf Upgrade to Ruby 2.7.3.
Resolves: rhbz#1947938
2021-04-21 10:55:36 +02:00
Vít Ondruch
f80c0b1d07 Upgrade to Ruby 2.7.2.
Related: rhbz#1947938
2021-04-21 10:55:36 +02:00
Jun Aruga
7916a42d9d Update to Ruby 2.7.1 by merging Fedora master branch (commit: 2981648)
Resolves: rhbz#1817135
2020-05-30 06:49:49 +02:00
Jun Aruga
86bf30d871 Update to Ruby 2.6.3 by merging Fedora master branch (commit: 1cc2a49)
Resolves: rhbz#1672575
2019-06-13 16:56:02 +02:00
Vít Ondruch
2cf4920fa3 Update to Ruby 2.5.5.
* Remove Patch25: ruby-2.6.0-Update-for-tzdata-2018f.patch; subsumed
* Remove Patch11: ruby-2.6.0-Try-to-update-cert.patch; subsumed
* Remove Patch19: ruby-2.6.0-net-http-net-ftp-fix-session-resumption-with
    -TLS-1.3.patch; subsumed

Resolves: rhbz#1688758
2019-04-18 07:39:17 +02:00
Pavel Valena
969334a6cf Synchronize fedora/f28 branch forcely.
- Update to Ruby 2.5.1.
- Conflict requirement needs to generate dependency.
- Revert "Use --with-setjmp-type=setjmp on aarch64 to work around gcc issue (#1545239)"
- Merge a difference between rawhide and f28.
2018-06-06 11:03:34 +02:00
Jun Aruga
cc7a37ba18 Upgrade to Ruby 2.5.0. 2018-01-04 14:40:18 +01:00
Jun Aruga
9474e3d4fe Upgrade to Ruby 2.5.0 (r61214). 2018-01-02 13:37:22 +01:00
Vít Ondruch
89f3ea9d4a Upgrade to Ruby 2.4.2.
Resolves: rhbz#1506785
2017-10-31 10:21:49 +01:00
Vít Ondruch
7bb9e86d8d Upgrade to Ruby 2.4.0. 2017-01-02 13:25:02 +01:00
Pavel Valena
026310447d Update to Ruby 2.3.1
* Remove Patch8:
     ruby-2.3.0-undef-BUILTIN_CHOOSE_EXPR_CONSTANT_P.patch; subsumed
 * Remove Patch10:
     ruby-2.3.1-remove-tests-depending-on-europe-moscow.patch; subsumed
     also removed "UTC=TZ " tests prefix
2016-08-31 15:11:03 +02:00
Pavel Valena
9ce30b769c Initial package 2016-02-17 19:05:04 +01:00