all messages for Guix-related lists mirrored at yhetil.org
 help / color / mirror / code / Atom feed
* [PATCH 0/1]: Replace ruby with ruby-2.3.2.
@ 2016-11-18 23:32 Ben Woodcroft
  2016-11-18 23:32 ` [PATCH] gnu: ruby: Replace with 2.3.2 [fixes CVE-2015-3900] Ben Woodcroft
  0 siblings, 1 reply; 5+ messages in thread
From: Ben Woodcroft @ 2016-11-18 23:32 UTC (permalink / raw)
  To: guix-devel

Hi there,

Ruby 2.3.2 was just released, and since it entails >300 rebuilds it is a good
candidate for staging I think.

I do not know of an easy way to check exactly which security fixes have been
applied beyond text searching the CHANGELOG, which isn't optimal so I believe
there are other fixes that have been applied beyond the one mentioned in the
commit message.

In pushing the update to staging, to avoid problems during the merge, is it
best to push this patch and then a second doing the actual update to staging?

Thanks,
ben

^ permalink raw reply	[flat|nested] 5+ messages in thread

end of thread, other threads:[~2016-11-21 16:06 UTC | newest]

Thread overview: 5+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2016-11-18 23:32 [PATCH 0/1]: Replace ruby with ruby-2.3.2 Ben Woodcroft
2016-11-18 23:32 ` [PATCH] gnu: ruby: Replace with 2.3.2 [fixes CVE-2015-3900] Ben Woodcroft
2016-11-19 15:28   ` Leo Famulari
2016-11-20  7:00     ` Ben Woodcroft
2016-11-20 15:28       ` Leo Famulari

Code repositories for project(s) associated with this external index

	https://git.savannah.gnu.org/cgit/guix.git

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.