5 Commits

Author	SHA1	Message	Date
Hitendra Prajapati	88ccb9dabb	ruby: fix CVE-2024-27281 ... References: https://github.com/ruby/ruby/pull/10316 https://security-tracker.debian.org/tracker/CVE-2024-27281 Upstream-Status: Backport from da7a0c7553 (From OE-Core rev: 16685f3b2d22eac20f0134cbd589c3b23a187084) Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>	2024-07-17 05:36:13 -07:00
Mingli Yu	d0e754f058	ruby: Fix CVE-2023-36617 ... Backport two patches [1] [2] to fix CVE-2023-36617 [3]. [1] 9010ee2536 [2] 9d7bcef1e6 [3] https://www.ruby-lang.org/en/news/2023/06/29/redos-in-uri-CVE-2023-36617/ (From OE-Core rev: 959b2e5deae18969ffe1e9d90c901928bc47e332) Signed-off-by: Mingli Yu <mingli.yu@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>	2024-07-09 06:02:55 -07:00
Richard Purdie	7412af2d39	Revert "python3/ruby/shadow: Revert add libxcrypt-native dependency" ... This reverts commit c6198e1b1c3e3a3413b6ff9f014b40114f1850db. This reverts commit 167c2c9f15c1bfe401c0512e420a76fa1379c012. This reverts commit 65532fc751dc00e5568e256166f7b259d3a3c06c. The dependencies should not be a -native in the target case. Revert these whilst the proper patch is worked out. (From OE-Core rev: 54eccb76eb8ba2086a56a30dfbb8aba06b02865a) Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2023-05-29 13:32:55 +01:00
Markus Volk	0f44ebfef9	ruby: add libxcrypt-native dependency ... crypt.h is otherwise taken from the host machine (From OE-Core rev: 167c2c9f15c1bfe401c0512e420a76fa1379c012) Signed-off-by: Markus Volk <f_l_k@t-online.de> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2023-05-28 09:09:47 +01:00
Wang Mingyu	d1c86d713e	ruby: upgrade 3.2.1 -> 3.2.2 ... (From OE-Core rev: b261bc704839b12769118f6f1c4207f3d19fe4fd) Signed-off-by: Wang Mingyu <wangmy@fujitsu.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>	2023-04-13 11:56:07 +01:00