diff mbox series

[mickledore,16/35] ruby: upgrade 3.2.1 -> 3.2.2

Message ID	f1741f1b2fe10d62331a11df6bbd312ae71bffa5.1683299764.git.steve@sakoman.com
State	New
Headers	show Return-Path: <steve@sakoman.com> ip: 209.85.215.177, mailfrom: steve@sakoman.com) From: Steve Sakoman <steve@sakoman.com> To: openembedded-core@lists.openembedded.org Subject: [OE-core][mickledore 16/35] ruby: upgrade 3.2.1 -> 3.2.2 Date: Fri, 5 May 2023 05:19:27 -1000 Message-Id: <f1741f1b2fe10d62331a11df6bbd312ae71bffa5.1683299764.git.steve@sakoman.com> In-Reply-To: <cover.1683299764.git.steve@sakoman.com> References: <cover.1683299764.git.steve@sakoman.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	[mickledore,01/35] connman: backport fix for CVE-2023-28488 \| expand [mickledore,01/35] connman: backport fix for CVE-2023-28488 [mickledore,02/35] tiff: Add fix for CVE-2022-4645 [mickledore,03/35] cve-extra-exclusions: linux-yocto: ignore fixed CVE-2023-1652 & CVE-2023-1829 [mickledore,04/35] cve-update-nvd2-native: added the missing http import [mickledore,05/35] cargo: Fix build on musl/riscv [mickledore,06/35] apr: upgrade 1.7.2 -> 1.7.3 [mickledore,07/35] bind: upgrade 9.18.12 -> 9.18.13 [mickledore,08/35] cracklib: upgrade 2.9.10 -> 2.9.11 [mickledore,09/35] libhandy: upgrade 1.8.1 -> 1.8.2 [mickledore,10/35] libpcap: upgrade 1.10.3 -> 1.10.4 [mickledore,11/35] libsdl2: upgrade 2.26.3 -> 2.26.5 [mickledore,12/35] mpg123: upgrade 1.31.2 -> 1.31.3 [mickledore,13/35] man-pages: upgrade 6.03 -> 6.04 [mickledore,14/35] mtools: upgrade 4.0.42 -> 4.0.43 [mickledore,15/35] pango: upgrade 1.50.13 -> 1.50.14 [mickledore,16/35] ruby: upgrade 3.2.1 -> 3.2.2 [mickledore,17/35] texinfo: upgrade 7.0.2 -> 7.0.3 [mickledore,18/35] wpebackend-fdo: upgrade 1.14.0 -> 1.14.2 [mickledore,19/35] Revert "xserver-xorg: backport fix for CVE-2023-1393" [mickledore,20/35] xserver-xorg: upgrade 21.1.7 -> 21.1.8 [mickledore,21/35] xwayland: upgrade 22.1.8 -> 23.1.1 [mickledore,22/35] vala: upgrade 0.56.4 -> 0.56.6 [mickledore,23/35] rust: Upgrade 1.68.1 -> 1.68.2 [mickledore,24/35] linux-firmware: upgrade 20230210 -> 20230404 [mickledore,25/35] mesa: upgrade 23.0.0 -> 23.0.2 [mickledore,26/35] libnotify: remove dependency dbus [mickledore,27/35] kernel-fitimage: Fix the default dtb config check [mickledore,28/35] kernel-devsrc: depend on python3-core instead of python3 [mickledore,29/35] libarchive: Enable acls, xattr for native as well as target [mickledore,30/35] populate_sdk_ext.bbclass: set METADATA_REVISION with an DISTRO override [mickledore,31/35] libpam: Fix the xtests/tst-pam_motd[1\|3] failures [mickledore,32/35] qemu: Add fix for powerpc instruction fallback issue [mickledore,33/35] oeqa/utils/metadata.py: Fix running oe-selftest running with no distro set [mickledore,34/35] kernel: improve initramfs bundle processing time [mickledore,35/35] update-alternatives.bbclass: fix old override syntax

Commit Message

Steve Sakoman May 5, 2023, 3:19 p.m. UTC

From: Wang Mingyu <wangmy@fujitsu.com>

Ruby 3.1.2

CVE-2022-28738: Double free in Regexp compilation..
CVE-2022-28739: Buffer overrun in String-to-Float conversion..

Signed-off-by: Wang Mingyu <wangmy@fujitsu.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
(cherry picked from commit b261bc704839b12769118f6f1c4207f3d19fe4fd)
Signed-off-by: Steve Sakoman <steve@sakoman.com>
---
 meta/recipes-devtools/ruby/{ruby_3.2.1.bb => ruby_3.2.2.bb} | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 rename meta/recipes-devtools/ruby/{ruby_3.2.1.bb => ruby_3.2.2.bb} (98%)

diff mbox series

Patch

diff --git a/meta/recipes-devtools/ruby/ruby_3.2.1.bb b/meta/recipes-devtools/ruby/ruby_3.2.2.bb
similarity index 98%
rename from meta/recipes-devtools/ruby/ruby_3.2.1.bb
rename to meta/recipes-devtools/ruby/ruby_3.2.2.bb
index 3f1bbc262b..481fe7c23d 100644
--- a/meta/recipes-devtools/ruby/ruby_3.2.1.bb
+++ b/meta/recipes-devtools/ruby/ruby_3.2.2.bb
@@ -51,7 +51,7 @@  do_configure:prepend() {
 
 DEPENDS:append:libc-musl = " libucontext"
 
-SRC_URI[sha256sum] = "13d67901660ee3217dbd9dd56059346bd4212ce64a69c306ef52df64935f8dbd"
+SRC_URI[sha256sum] = "96c57558871a6748de5bc9f274e93f4b5aad06cd8f37befa0e8d94e7b8a423bc"
 
 PACKAGECONFIG ??= ""
 PACKAGECONFIG += "${@bb.utils.filter('DISTRO_FEATURES', 'ipv6', d)}"