Browse Source

Update Ruby to version 2.4.4 (#6964)

https://www.ruby-lang.org/en/news/2018/03/28/ruby-2-4-4-released/

> This release includes some bug fixes and some security fixes.
>
> - CVE-2017-17742: HTTP response splitting in WEBrick
> - CVE-2018-6914: Unintentional file and directory creation with directory traversal in tempfile and tmpdir
> - CVE-2018-8777: DoS by large request in WEBrick
> - CVE-2018-8778: Buffer under-read in String#unpack
> - CVE-2018-8779: Unintentional socket creation by poisoned NUL byte in UNIXServer and UNIXSocket
> - CVE-2018-8780: Unintentional directory traversal by poisoned NUL byte in Dir
> - Multiple vulnerabilities in RubyGems
Yamagishi Kazutoshi 6 months ago
parent
commit
f464f98fd3
3 changed files with 3 additions and 3 deletions
  1. 1
    1
      .ruby-version
  2. 1
    1
      .travis.yml
  3. 1
    1
      Dockerfile

+ 1
- 1
.ruby-version View File

@@ -1 +1 @@
1
-2.5.0
1
+2.5.1

+ 1
- 1
.travis.yml View File

@@ -39,7 +39,7 @@ addons:
39 39
       - yarn
40 40
 
41 41
 rvm:
42
-  - 2.4.2
42
+  - 2.4.3
43 43
   - 2.5.0
44 44
 
45 45
 services:

+ 1
- 1
Dockerfile View File

@@ -1,4 +1,4 @@
1
-FROM ruby:2.4.3-alpine3.6
1
+FROM ruby:2.4.4-alpine3.6
2 2
 
3 3
 LABEL maintainer="https://github.com/tootsuite/mastodon" \
4 4
       description="Your self-hosted, globally interconnected microblogging community"