diff options
| author | Ross Burton <ross.burton@arm.com> | 2024-07-19 14:25:20 +0100 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2024-07-21 11:08:11 +0100 |
| commit | bea8a284b1e32ed55a7f1c05746e6032b44e3897 (patch) | |
| tree | 16a5f66d56471777efa8e9c1bdf11d08a221753c /scripts/lib/wic/plugins/source/bootimg-partition.py | |
| parent | bc60068577b9dfecb9d33740987b8b4f283a4fa2 (diff) | |
| download | poky-bea8a284b1e32ed55a7f1c05746e6032b44e3897.tar.gz | |
ruby: upgrade 3.3.0 -> 3.3.4
3.3.4:
This release fixes a regression in Ruby 3.3.3 that dependencies are missing in
the gemspec of some bundled gems: net-pop, net-ftp, net-imap, and prime [Bug
like Heroku. If your bundle install runs correctly now, you may not have this
issue.
3.3.3:
This release includes:
RubyGems 3.5.11
Bundler 2.5.11
REXML 3.2.8
strscan 3.0.9
--dump=prism_parsetree is replaced by --parser=prism --dump=parsetree
Invalid encoding symbols raise SyntaxError instead of EncodingError
Memory leak fix in Ripper parsing
Bugfixes for YJIT, **{}, Ripper.tokenize, RubyVM::InstructionSequence#to_binary,
--with-gmp, and some build environments
3.3.2:
This release includes many bug-fixes. See the GitHub releases for further details.
3.3.1:
This release includes security fixes. Please check the topics below for details.
CVE-2024-27282: Arbitrary memory address read vulnerability with Regex search
CVE-2024-27281: RCE vulnerability with .rdoc_options in RDoc
CVE-2024-27280: Buffer overread vulnerability in StringIO
(From OE-Core rev: 498ee932187b9c09d14892783eb92ae03fbfd533)
Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'scripts/lib/wic/plugins/source/bootimg-partition.py')
0 files changed, 0 insertions, 0 deletions