diff options
author | Tim Smith <tsmith@chef.io> | 2018-03-29 10:10:21 -0700 |
---|---|---|
committer | Tim Smith <tsmith@chef.io> | 2018-03-29 11:07:28 -0700 |
commit | 2b163f9e7af3af93b445b5340296305299453f29 (patch) | |
tree | 83a455ef4ff7e4818865ea1a63fc901ba741ab73 /omnibus | |
parent | ff4656d9ae70d2e8810ec0a45f322b394c31083d (diff) | |
download | chef-2b163f9e7af3af93b445b5340296305299453f29.tar.gz |
Bump Ruby to 2.5.1 and update release notesruby_and_libxml2_cves
https://www.ruby-lang.org/en/news/2018/03/28/http-response-splitting-in-webrick-cve-2017-17742/
https://www.ruby-lang.org/en/news/2018/03/28/unintentional-file-and-directory-creation-with-directory-traversal-cve-2018-6914/
https://www.ruby-lang.org/en/news/2018/03/28/large-request-dos-in-webrick-cve-2018-8777/
https://www.ruby-lang.org/en/news/2018/03/28/buffer-under-read-unpack-cve-2018-8778/
https://www.ruby-lang.org/en/news/2018/03/28/poisoned-nul-byte-unixsocket-cve-2018-8779/
https://www.ruby-lang.org/en/news/2018/03/28/poisoned-nul-byte-dir-cve-2018-8780/
https://www.ruby-lang.org/en/news/2018/02/17/multiple-vulnerabilities-in-rubygems/
Signed-off-by: Tim Smith <tsmith@chef.io>
Diffstat (limited to 'omnibus')
-rw-r--r-- | omnibus/Gemfile.lock | 12 |
1 files changed, 6 insertions, 6 deletions
diff --git a/omnibus/Gemfile.lock b/omnibus/Gemfile.lock index 446f5394a3..600a6d0428 100644 --- a/omnibus/Gemfile.lock +++ b/omnibus/Gemfile.lock @@ -18,7 +18,7 @@ GIT GIT remote: https://github.com/chef/omnibus-software - revision: 23282b98937a697f6c2009b2d22b5c5fdaf87c38 + revision: 75ae88adb7d6b51038d92d1cfb40dec5fded9650 branch: master specs: omnibus-software (4.0.0) @@ -31,13 +31,13 @@ GEM addressable (2.5.2) public_suffix (>= 2.0.2, < 4.0) awesome_print (1.8.0) - aws-sdk (2.11.22) - aws-sdk-resources (= 2.11.22) - aws-sdk-core (2.11.22) + aws-sdk (2.11.24) + aws-sdk-resources (= 2.11.24) + aws-sdk-core (2.11.24) aws-sigv4 (~> 1.0) jmespath (~> 1.0) - aws-sdk-resources (2.11.22) - aws-sdk-core (= 2.11.22) + aws-sdk-resources (2.11.24) + aws-sdk-core (= 2.11.24) aws-sigv4 (1.0.2) berkshelf (4.3.5) addressable (~> 2.3, >= 2.3.4) |