all messages for Guix-related lists mirrored at yhetil.org
 help / color / mirror / code / Atom feed
* [bug#30876] [PATCH] gnu: ruby-sanitize: Update to 4.6.3.
@ 2018-03-20 14:09 Kei Kebreau
  2018-03-20 14:50 ` Thompson, David
  0 siblings, 1 reply; 3+ messages in thread
From: Kei Kebreau @ 2018-03-20 14:09 UTC (permalink / raw)
  To: 30876; +Cc: Kei Kebreau

This fixes CVE-2018-3740.

* gnu/packages/ruby.scm (ruby-sanitize): Update to 4.6.3.
---
 gnu/packages/ruby.scm | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/gnu/packages/ruby.scm b/gnu/packages/ruby.scm
index dcf4cda26..010dedde2 100644
--- a/gnu/packages/ruby.scm
+++ b/gnu/packages/ruby.scm
@@ -3082,7 +3082,7 @@ access the result as a Nokogiri parsed document.")
 (define-public ruby-sanitize
   (package
     (name "ruby-sanitize")
-    (version "4.0.0")
+    (version "4.6.3")
     (source (origin
               (method url-fetch)
               ;; The gem does not include the Rakefile, so we download the
@@ -3092,7 +3092,7 @@ access the result as a Nokogiri parsed document.")
               (file-name (string-append name "-" version ".tar.gz"))
               (sha256
                (base32
-                "055xnj38l60gxnnng76kpy2l2jbrp0byjdyq17jw79w7l4b40znr"))))
+                "1fmqppwif3cm8h79006jfzkdnlxxzlry9kzk03psk0d5xpg55ycc"))))
     (build-system ruby-build-system)
     (propagated-inputs
      `(("ruby-crass" ,ruby-crass)
-- 
2.16.2

^ permalink raw reply related	[flat|nested] 3+ messages in thread
* [bug#30876] [PATCH] gnu: ruby-sanitize: Update to 4.6.3.
  2018-03-20 14:09 [bug#30876] [PATCH] gnu: ruby-sanitize: Update to 4.6.3 Kei Kebreau
@ 2018-03-20 14:50 ` Thompson, David
  2018-03-20 15:21   ` bug#30876: " Kei Kebreau
  0 siblings, 1 reply; 3+ messages in thread
From: Thompson, David @ 2018-03-20 14:50 UTC (permalink / raw)
  To: Kei Kebreau; +Cc: 30876

On Tue, Mar 20, 2018 at 10:09 AM, Kei Kebreau <kkebreau@posteo.net> wrote:
> This fixes CVE-2018-3740.
>
> * gnu/packages/ruby.scm (ruby-sanitize): Update to 4.6.3.
> ---
>  gnu/packages/ruby.scm | 4 ++--
>  1 file changed, 2 insertions(+), 2 deletions(-)
>
> diff --git a/gnu/packages/ruby.scm b/gnu/packages/ruby.scm
> index dcf4cda26..010dedde2 100644
> --- a/gnu/packages/ruby.scm
> +++ b/gnu/packages/ruby.scm
> @@ -3082,7 +3082,7 @@ access the result as a Nokogiri parsed document.")
>  (define-public ruby-sanitize
>    (package
>      (name "ruby-sanitize")
> -    (version "4.0.0")
> +    (version "4.6.3")
>      (source (origin
>                (method url-fetch)
>                ;; The gem does not include the Rakefile, so we download the
> @@ -3092,7 +3092,7 @@ access the result as a Nokogiri parsed document.")
>                (file-name (string-append name "-" version ".tar.gz"))
>                (sha256
>                 (base32
> -                "055xnj38l60gxnnng76kpy2l2jbrp0byjdyq17jw79w7l4b40znr"))))
> +                "1fmqppwif3cm8h79006jfzkdnlxxzlry9kzk03psk0d5xpg55ycc"))))
>      (build-system ruby-build-system)
>      (propagated-inputs
>       `(("ruby-crass" ,ruby-crass)
> --
> 2.16.2

Looks good, thanks!

- Dave

^ permalink raw reply	[flat|nested] 3+ messages in thread
* bug#30876: [PATCH] gnu: ruby-sanitize: Update to 4.6.3.
  2018-03-20 14:50 ` Thompson, David
@ 2018-03-20 15:21   ` Kei Kebreau
  0 siblings, 0 replies; 3+ messages in thread
From: Kei Kebreau @ 2018-03-20 15:21 UTC (permalink / raw)
  To: Thompson, David; +Cc: 30876-done

[-- Attachment #1: Type: text/plain, Size: 1387 bytes --]

"Thompson, David" <dthompson2@worcester.edu> writes:

> On Tue, Mar 20, 2018 at 10:09 AM, Kei Kebreau <kkebreau@posteo.net> wrote:
>> This fixes CVE-2018-3740.
>>
>> * gnu/packages/ruby.scm (ruby-sanitize): Update to 4.6.3.
>> ---
>>  gnu/packages/ruby.scm | 4 ++--
>>  1 file changed, 2 insertions(+), 2 deletions(-)
>>
>> diff --git a/gnu/packages/ruby.scm b/gnu/packages/ruby.scm
>> index dcf4cda26..010dedde2 100644
>> --- a/gnu/packages/ruby.scm
>> +++ b/gnu/packages/ruby.scm
>> @@ -3082,7 +3082,7 @@ access the result as a Nokogiri parsed document.")
>>  (define-public ruby-sanitize
>>    (package
>>      (name "ruby-sanitize")
>> -    (version "4.0.0")
>> +    (version "4.6.3")
>>      (source (origin
>>                (method url-fetch)
>>                ;; The gem does not include the Rakefile, so we download the
>> @@ -3092,7 +3092,7 @@ access the result as a Nokogiri parsed document.")
>>                (file-name (string-append name "-" version ".tar.gz"))
>>                (sha256
>>                 (base32
>> -                "055xnj38l60gxnnng76kpy2l2jbrp0byjdyq17jw79w7l4b40znr"))))
>> +                "1fmqppwif3cm8h79006jfzkdnlxxzlry9kzk03psk0d5xpg55ycc"))))
>>      (build-system ruby-build-system)
>>      (propagated-inputs
>>       `(("ruby-crass" ,ruby-crass)
>> --
>> 2.16.2
>
> Looks good, thanks!
>
> - Dave

Thanks for reviewing! Pushed to master.

[-- Attachment #2: signature.asc --]
[-- Type: application/pgp-signature, Size: 832 bytes --]

^ permalink raw reply	[flat|nested] 3+ messages in thread
end of thread, other threads:[~2018-03-20 15:22 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2018-03-20 14:09 [bug#30876] [PATCH] gnu: ruby-sanitize: Update to 4.6.3 Kei Kebreau
2018-03-20 14:50 ` Thompson, David
2018-03-20 15:21   ` bug#30876: " Kei Kebreau

Code repositories for project(s) associated with this external index

	https://git.savannah.gnu.org/cgit/guix.git

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.