about summary refs log tree commit diff
path: root/spec
diff options
context:
space:
mode:
authorYamagishi Kazutoshi <ykzts@desire.sh>2018-04-02 06:43:08 +0900
committerEugen Rochko <eugen@zeonfederated.com>2018-04-01 23:43:08 +0200
commitf464f98fd3b8ef33b3afa5acf09e829c046134de (patch)
treedea37ef5ec3f5d855a68dfd1229715701549b79a /spec
parent6a895e1ab3d69cd018423460518a1e16307999ad (diff)
Update Ruby to version 2.4.4 (#6964)
https://www.ruby-lang.org/en/news/2018/03/28/ruby-2-4-4-released/

> This release includes some bug fixes and some security fixes.
>
> - CVE-2017-17742: HTTP response splitting in WEBrick
> - CVE-2018-6914: Unintentional file and directory creation with directory traversal in tempfile and tmpdir
> - CVE-2018-8777: DoS by large request in WEBrick
> - CVE-2018-8778: Buffer under-read in String#unpack
> - CVE-2018-8779: Unintentional socket creation by poisoned NUL byte in UNIXServer and UNIXSocket
> - CVE-2018-8780: Unintentional directory traversal by poisoned NUL byte in Dir
> - Multiple vulnerabilities in RubyGems
Diffstat (limited to 'spec')
0 files changed, 0 insertions, 0 deletions