GNU bug report logs - #56304
[PATCH] gnu: ruby: Update to 3.1.2 [security fixes].

Previous Next

Package: guix-patches;

Reported by: Remco van 't Veer <remco <at> remworks.net>

Date: Wed, 29 Jun 2022 15:57:02 UTC

Severity: normal

Tags: patch

Done: Marius Bakke <marius <at> gnu.org>

Bug is archived. No further changes may be made.

To add a comment to this bug, you must first unarchive it, by sending
a message to control AT debbugs.gnu.org, with unarchive 56304 in the body.
You can then email your comments to 56304 AT debbugs.gnu.org in the normal way.

Toggle the display of automated, internal messages from the tracker.

View this report as an mbox folder, status mbox, maintainer mbox

Report forwarded to guix-patches <at> gnu.org:
bug#56304; Package guix-patches. (Wed, 29 Jun 2022 15:57:02 GMT) Full text and rfc822 format available.
Acknowledgement sent to Remco van 't Veer <remco <at> remworks.net>:
New bug report received and forwarded. Copy sent to guix-patches <at> gnu.org. (Wed, 29 Jun 2022 15:57:02 GMT) Full text and rfc822 format available.

Message #5 received at submit <at> debbugs.gnu.org (full text, mbox):

From: Remco van 't Veer <remco <at> remworks.net>
To: guix-patches <at> gnu.org
Cc: Remco van 't Veer <remco <at> remworks.net>
Subject: [PATCH] gnu: ruby: Update to 3.1.2 [security fixes].
Date: Wed, 29 Jun 2022 17:56:17 +0200

Includes fixes for: CVE-2022-28738, and CVE-2022-28739.

* gnu/packages/ruby.scm (ruby-3.1): Update to 3.1.2.
---
 gnu/packages/ruby.scm | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/gnu/packages/ruby.scm b/gnu/packages/ruby.scm
index 68e5d8dfd6..ef0224b179 100644
--- a/gnu/packages/ruby.scm
+++ b/gnu/packages/ruby.scm
@@ -28,6 +28,7 @@
 ;;; Copyright © 2021 EuAndreh <eu <at> euandre.org>
 ;;; Copyright © 2020 Tomás Ortín Fernández <tomasortin <at> mailbox.org>
 ;;; Copyright © 2021 Giovanni Biscuolo <g <at> xelera.eu>
+;;; Copyright © 2022 Remco van 't Veer <remco <at> remworks.net>
 ;;;
 ;;; This file is part of GNU Guix.
 ;;;
@@ -203,7 +204,7 @@ (define-public ruby-3.0
 (define-public ruby-3.1
   (package
     (inherit ruby-2.7)
-    (version "3.1.1")
+    (version "3.1.2")
     (source
      (origin
        (method url-fetch)
@@ -212,7 +213,7 @@ (define-public ruby-3.1
                            "/ruby-" version ".tar.xz"))
        (sha256
         (base32
-         "1akcl7vhmwfm6ybj7493kzy58ykh2r39ri9f4xfm2xmhg1msmvvs"))))))
+         "0amzqczgvr51ilcqfgw0n41hrfanzi0wh8k6am3x5dm1z0bx046a"))))))
 
 (define-public ruby-2.5
   (package
-- 
2.36.1
Reply sent to Marius Bakke <marius <at> gnu.org>:
You have taken responsibility. (Mon, 29 Aug 2022 14:47:02 GMT) Full text and rfc822 format available.
Notification sent to Remco van 't Veer <remco <at> remworks.net>:
bug acknowledged by developer. (Mon, 29 Aug 2022 14:47:02 GMT) Full text and rfc822 format available.

Message #10 received at 56304-done <at> debbugs.gnu.org (full text, mbox):

From: Marius Bakke <marius <at> gnu.org>
To: Remco van 't Veer <remco <at> remworks.net>, 56304-done <at> debbugs.gnu.org
Cc: Remco van 't Veer <remco <at> remworks.net>
Subject: Re: [bug#56304] [PATCH] gnu: ruby: Update to 3.1.2 [security fixes].
Date: Mon, 29 Aug 2022 16:46:32 +0200

[Message part 1 (text/plain, inline)]
Remco van 't Veer <remco <at> remworks.net> skriver:

> Includes fixes for: CVE-2022-28738, and CVE-2022-28739.
>
> * gnu/packages/ruby.scm (ruby-3.1): Update to 3.1.2.

Applied, thanks!

[signature.asc (application/pgp-signature, inline)]
bug archived. Request was from Debbugs Internal Request <help-debbugs <at> gnu.org> to internal_control <at> debbugs.gnu.org. (Tue, 27 Sep 2022 11:24:05 GMT) Full text and rfc822 format available.
This bug report was last modified 1 year and 205 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.