tarrien/Mastodon
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Update Ruby to version 2.4.4 (#6964)

Browse Source 
https://www.ruby-lang.org/en/news/2018/03/28/ruby-2-4-4-released/

> This release includes some bug fixes and some security fixes.
>
> - CVE-2017-17742: HTTP response splitting in WEBrick
> - CVE-2018-6914: Unintentional file and directory creation with directory traversal in tempfile and tmpdir
> - CVE-2018-8777: DoS by large request in WEBrick
> - CVE-2018-8778: Buffer under-read in String#unpack
> - CVE-2018-8779: Unintentional socket creation by poisoned NUL byte in UNIXServer and UNIXSocket
> - CVE-2018-8780: Unintentional directory traversal by poisoned NUL byte in Dir
> - Multiple vulnerabilities in RubyGems
This commit is contained in:
Yamagishi Kazutoshi
2018-04-02 06:43:08 +09:00
committed by Eugen Rochko
parent 6a895e1ab3
commit f464f98fd3
3 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
.ruby-version
View File

@@ -1 +1 @@
2.5.0 2.5.1

2
.travis.yml
View File

@@ -39,7 +39,7 @@ addons:
- yarn - yarn
rvm: rvm:
- 2.4.2 - 2.4.3
- 2.5.0 - 2.5.0
services: services:

2
Dockerfile
View File

@@ -1,4 +1,4 @@
FROM ruby:2.4.3-alpine3.6 FROM ruby:2.4.4-alpine3.6
LABEL maintainer="https://github.com/tootsuite/mastodon" \ LABEL maintainer="https://github.com/tootsuite/mastodon" \
description="Your self-hosted, globally interconnected microblogging community" description="Your self-hosted, globally interconnected microblogging community"