Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: NixOS/nixpkgs
base: 8ed299faacbf
Choose a base ref
...
head repository: NixOS/nixpkgs
compare: 13b0e47ed65c
Choose a head ref
  • 2 commits
  • 1 file changed
  • 2 contributors

Commits on Sep 8, 2017

  1. Use gem 2.6.10 (#23902) 

    (cherry picked from commit 162845d)
    @atrzaska @Mic92
    atrzaska authored and Mic92 committed Sep 8, 2017
    Configuration menu
    Copy the full SHA
    838cbd5 View commit details
    Browse the repository at this point in the history

  2. rubygems: 2.6.10 -> 2.6.13 

    Fixes a number of CVEs:

- a DNS request hijacking vulnerability. (CVE-2017-0902)
- an ANSI escape sequence vulnerability. (CVE-2017-0899)
- a DoS vulnerability in the query command. (CVE-2017-0900)
- a vulnerability in the gem installer that allowed a malicious gem to overwrite arbitrary files. (CVE-2017-0901)

(cherry picked from commit 9f51b3c)
    @peterhoeg @Mic92
    peterhoeg authored and Mic92 committed Sep 8, 2017
    Configuration menu
    Copy the full SHA
    13b0e47 View commit details
    Browse the repository at this point in the history