diff options
author | Armin Kuster <akuster808@gmail.com> | 2018-05-03 09:00:59 -0700 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2018-05-07 15:57:37 +0100 |
commit | 3befe6d7b7fa8c8481519aa8dd0cae52207ad339 (patch) | |
tree | e045819c35f123c513acc483c5f08687a125235a /meta/recipes-devtools/ruby/ruby_2.4.4.bb | |
parent | 41943e4fbaee9b4cf5378bbee5e49e533dc05f48 (diff) | |
download | poky-3befe6d7b7fa8c8481519aa8dd0cae52207ad339.tar.gz |
ruby: Update to 2.4.4
The dot releases are maint only.
2.4.4 included:
CVE-2017-17742: HTTP response splitting in WEBrick
CVE-2018-6914: Unintentional file and directory creation with directory traversal in tempfile and tmpdir
CVE-2018-8777: DoS by large request in WEBrick
CVE-2018-8778: Buffer under-read in String#unpack
CVE-2018-8779: Unintentional socket creation by poisoned NUL byte in UNIXServer and UNIXSocket
CVE-2018-8780: Unintentional directory traversal by poisoned NUL byte in Dir
2.4.3 includes:
CVE-2017-17405: Command injection vulnerability in Net::FTP
(From OE-Core rev: 7003a36ef3f686af97798ff6f4bc7b3473f937de)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-devtools/ruby/ruby_2.4.4.bb')
-rw-r--r-- | meta/recipes-devtools/ruby/ruby_2.4.4.bb | 52 |
1 files changed, 52 insertions, 0 deletions
diff --git a/meta/recipes-devtools/ruby/ruby_2.4.4.bb b/meta/recipes-devtools/ruby/ruby_2.4.4.bb new file mode 100644 index 0000000000..61fcedbf82 --- /dev/null +++ b/meta/recipes-devtools/ruby/ruby_2.4.4.bb | |||
@@ -0,0 +1,52 @@ | |||
1 | require ruby.inc | ||
2 | |||
3 | SRC_URI += " \ | ||
4 | file://ruby-CVE-2017-9224.patch \ | ||
5 | file://ruby-CVE-2017-9226.patch \ | ||
6 | file://ruby-CVE-2017-9227.patch \ | ||
7 | file://ruby-CVE-2017-9228.patch \ | ||
8 | file://ruby-CVE-2017-9229.patch \ | ||
9 | " | ||
10 | |||
11 | SRC_URI[md5sum] = "d50e00ccc1c9cf450f837b92d3ed3e88" | ||
12 | SRC_URI[sha256sum] = "254f1c1a79e4cc814d1e7320bc5bdd995dc57e08727d30a767664619a9c8ae5a" | ||
13 | |||
14 | # it's unknown to configure script, but then passed to extconf.rb | ||
15 | # maybe it's not really needed as we're hardcoding the result with | ||
16 | # 0001-socket-extconf-hardcode-wide-getaddr-info-test-outco.patch | ||
17 | UNKNOWN_CONFIGURE_WHITELIST += "--enable-wide-getaddrinfo" | ||
18 | |||
19 | PACKAGECONFIG ??= "" | ||
20 | PACKAGECONFIG += "${@bb.utils.filter('DISTRO_FEATURES', 'ipv6', d)}" | ||
21 | |||
22 | PACKAGECONFIG[valgrind] = "--with-valgrind=yes, --with-valgrind=no, valgrind" | ||
23 | PACKAGECONFIG[gmp] = "--with-gmp=yes, --with-gmp=no, gmp" | ||
24 | PACKAGECONFIG[ipv6] = ",--enable-wide-getaddrinfo," | ||
25 | |||
26 | EXTRA_AUTORECONF += "--exclude=aclocal" | ||
27 | |||
28 | EXTRA_OECONF = "\ | ||
29 | --disable-versioned-paths \ | ||
30 | --disable-rpath \ | ||
31 | --disable-dtrace \ | ||
32 | --enable-shared \ | ||
33 | --enable-load-relative \ | ||
34 | " | ||
35 | |||
36 | do_install() { | ||
37 | oe_runmake 'DESTDIR=${D}' install | ||
38 | } | ||
39 | |||
40 | PACKAGES =+ "${PN}-ri-docs ${PN}-rdoc" | ||
41 | |||
42 | SUMMARY_${PN}-ri-docs = "ri (Ruby Interactive) documentation for the Ruby standard library" | ||
43 | RDEPENDS_${PN}-ri-docs = "${PN}" | ||
44 | FILES_${PN}-ri-docs += "${datadir}/ri" | ||
45 | |||
46 | SUMMARY_${PN}-rdoc = "RDoc documentation generator from Ruby source" | ||
47 | RDEPENDS_${PN}-rdoc = "${PN}" | ||
48 | FILES_${PN}-rdoc += "${libdir}/ruby/*/rdoc ${bindir}/rdoc" | ||
49 | |||
50 | FILES_${PN} += "${datadir}/rubygems" | ||
51 | |||
52 | BBCLASSEXTEND = "native" | ||