From 49b4d4f70832d0228b004884c12455d16f3a4c6a Mon Sep 17 00:00:00 2001 From: Remco van 't Veer Date: Fri, 25 Nov 2022 20:23:27 +0100 Subject: [PATCH] gnu: ruby: Update to 2.7.7. [security fixes]. Fixes: CVE-2021-33621: HTTP response splitting in CGI. * gnu/packages/ruby.scm (ruby-2.7-fixed): Update to 2.7.7. Signed-off-by: Efraim Flashner --- gnu/packages/ruby.scm | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/gnu/packages/ruby.scm b/gnu/packages/ruby.scm index b53aa02ef3..37d18061f8 100644 --- a/gnu/packages/ruby.scm +++ b/gnu/packages/ruby.scm @@ -194,7 +194,7 @@ (define-public ruby-2.7 (define ruby-2.7-fixed (package (inherit ruby-2.7) - (version "2.7.6") + (version "2.7.7") (source (origin (inherit (package-source ruby-2.7)) @@ -203,7 +203,7 @@ (define ruby-2.7-fixed "/ruby-" version ".tar.gz")) (sha256 (base32 - "042xrdk7hsv4072bayz3f8ffqh61i8zlhvck10nfshllq063n877")))))) + "143vih5jzmrd2r5h94pa3qzml0ldii0qzs6g09jg6zqxd7djf0g1")))))) (define-public ruby-3.0 (package