diff options
author | Armin Kuster <akuster808@gmail.com> | 2018-05-03 09:00:59 -0700 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2018-05-07 15:56:29 +0100 |
commit | 7003a36ef3f686af97798ff6f4bc7b3473f937de (patch) | |
tree | c43282a9ffdce46364ef1423898173af3a6b080c /meta/lib | |
parent | 02fe324eb6913b27961e8e30c5510c89733dd011 (diff) | |
download | openembedded-core-7003a36ef3f686af97798ff6f4bc7b3473f937de.tar.gz |
ruby: Update to 2.4.4
The dot releases are maint only.
2.4.4 included:
CVE-2017-17742: HTTP response splitting in WEBrick
CVE-2018-6914: Unintentional file and directory creation with directory traversal in tempfile and tmpdir
CVE-2018-8777: DoS by large request in WEBrick
CVE-2018-8778: Buffer under-read in String#unpack
CVE-2018-8779: Unintentional socket creation by poisoned NUL byte in UNIXServer and UNIXSocket
CVE-2018-8780: Unintentional directory traversal by poisoned NUL byte in Dir
2.4.3 includes:
CVE-2017-17405: Command injection vulnerability in Net::FTP
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Diffstat (limited to 'meta/lib')
0 files changed, 0 insertions, 0 deletions