mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-02-11 11:13:04 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
0101023c28ec35db9b73ef4e8fb29a96cf2e17db
poky/meta/recipes-devtools/ruby/ruby
History
Divya Chellam 32d2b233c6 ruby: fix CVE-2025-27221 
In the URI gem before 1.0.3 for Ruby, the URI handling methods
(URI.join, URI#merge, URI#+) have an inadvertent leakage of
authentication credentials because userinfo is retained even
after changing the host.

Reference:
https://security-tracker.debian.org/tracker/CVE-2025-27221

Upstream-patches:
3675494839
2789182478

(From OE-Core rev: c77ff1288719d90ef257dfe28cb33b3768fc124a)

Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-05-28 08:46:32 -07:00
..
0001-extmk-fix-cross-compilation-of-external-gems.patch
ruby: update to v2.6.4
2019-10-23 16:30:36 +01:00
0001-template-Makefile.in-do-not-write-host-cross-cc-item.patch
ruby: fix Upstream-Status
2021-10-23 23:11:35 +01:00
0001-vm_dump.c-Define-REG_S1-and-REG_S2-for-musl-riscv.patch
ruby: Fix build on riscv/musl
2022-02-03 09:05:14 +00:00
0002-Obey-LDFLAGS-for-the-link-of-libruby.patch
ruby: update 2.7.2 -> 3.0.0
2021-02-09 08:56:10 +00:00
0002-template-Makefile.in-filter-out-f-prefix-map.patch
ruby: fix Upstream-Status
2021-10-23 23:11:35 +01:00
0003-rdoc-build-reproducible-documentation.patch
ruby: fix the reproducibility issue
2021-10-01 14:51:45 +01:00
0004-lib-mkmf.rb-sort-list-of-object-files-in-generated-M.patch
ruby: fix the reproducibility issue
2021-10-01 14:51:45 +01:00
0005-Mark-Gemspec-reproducible-change-fixing-784225-too.patch
ruby: upgrade 3.1.0 -> 3.1.1
2022-02-25 12:41:23 +00:00
0006-Make-gemspecs-reproducible.patch
ruby: upgrade 3.1.0 -> 3.1.1
2022-02-25 12:41:23 +00:00
CVE-2023-28755.patch
ruby: Fix CVE-2023-28755
2023-05-03 04:17:12 -10:00
CVE-2023-28756.patch
ruby: CVE-2023-28756 ReDoS vulnerability in Time
2023-04-26 04:03:21 -10:00
CVE-2023-36617_1.patch
ruby: fix CVE-2023-36617
2023-09-30 09:43:59 -10:00
CVE-2023-36617_2.patch
ruby: fix CVE-2023-36617
2023-09-30 09:43:59 -10:00
CVE-2024-27280.patch
ruby: fix CVE-2024-27280
2024-06-26 05:04:39 -07:00
CVE-2024-27281.patch
ruby: fix CVE-2024-27281
2024-04-21 06:33:34 -07:00
CVE-2024-27282.patch
ruby: backport fix for CVE-2024-27282
2024-07-24 07:51:58 -07:00
CVE-2024-41946.patch
ruby: fix CVE-2024-41946
2025-02-24 07:00:53 -08:00
CVE-2024-43398.patch
ruby: fix CVE-2024-43398
2025-04-18 08:30:51 -07:00
CVE-2024-49761-0001.patch
ruby: fix CVE-2024-49761
2025-01-18 06:21:02 -08:00
CVE-2024-49761-0002.patch
ruby: fix CVE-2024-49761
2025-01-18 06:21:02 -08:00
CVE-2024-49761-0003.patch
ruby: fix CVE-2024-49761
2025-01-18 06:21:02 -08:00
CVE-2024-49761-0004.patch
ruby: fix CVE-2024-49761
2025-01-18 06:21:02 -08:00
CVE-2024-49761-0005.patch
ruby: fix CVE-2024-49761
2025-01-18 06:21:02 -08:00
CVE-2024-49761-0006.patch
ruby: fix CVE-2024-49761
2025-01-18 06:21:02 -08:00
CVE-2024-49761-0007.patch
ruby: fix CVE-2024-49761
2025-01-18 06:21:02 -08:00
CVE-2024-49761-0008.patch
ruby: fix CVE-2024-49761
2025-01-18 06:21:02 -08:00
CVE-2024-49761-0009.patch
ruby: fix CVE-2024-49761
2025-01-18 06:21:02 -08:00
CVE-2025-27219.patch
ruby: Fix CVE-2025-27219
2025-03-19 07:13:17 -07:00
CVE-2025-27220.patch
ruby: Fix CVE-2025-27220
2025-03-13 08:50:03 -07:00
CVE-2025-27221-0001.patch
ruby: fix CVE-2025-27221
2025-05-28 08:46:32 -07:00
CVE-2025-27221-0002.patch
ruby: fix CVE-2025-27221
2025-05-28 08:46:32 -07:00
remove_has_include_macros.patch
ruby: update 3.0.3 -> 3.1.0
2022-01-12 21:09:02 +00:00
run-ptest
ruby: add ptest
2019-04-12 09:29:06 +01:00