gnu: ruby-3.1: Upgrade to 3.1.4 [fixes CVE-2023-{28755, 28756}].

Fixes: CVE-2023-28755 (ReDoS vulnerability in URI), and CVE-2023-28756 (ReDoS vulnerability in Time). * gnu/packages/ruby.scm (ruby-3.1): Update to 3.1.4. Signed-off-by: Andreas Enge <andreas@enge.fr>
2023-03-31 07:37:08 +02:00 · 2023-03-31 07:37:08 +02:00 · 18e497d41f
commit 18e497d41f
parent cd0a8950e4
1 changed files with 2 additions and 2 deletions
--- a/gnu/packages/ruby.scm
+++ b/gnu/packages/ruby.scm
@ -231,7 +231,7 @@ a focus on simplicity and productivity.")
 (define-public ruby-3.1
  (package
    (inherit ruby-3.0)
-    (version "3.1.3")
+    (version "3.1.4")
    (source
     (origin
       (method url-fetch)
@ -240,7 +240,7 @@ a focus on simplicity and productivity.")
                           "/ruby-" version ".tar.xz"))
       (sha256
        (base32
-         "06ipqz45qcs0y1273gk2gwslxwd7jgighz3mzbddzg16k29n3qaf"))))))
+         "0kzr792rk9n9yrqlyrkc1a0cmbk5y194f7v7p4vwjdk0ww860v8v"))))))

 (define-public ruby-3.2
  (package