ruby: security bump to version 2.1.4

Fixes:
CVE-2014-8080 - Denial of service XML expansion

And change default ext/openssl settings WRT CVE-2014-3566.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>

diff --git a/package/ruby/ruby.hash b/package/ruby/ruby.hash
index 3d17e8c4a84a9245894a91fc2efef78a5463f53b..8d5d1338b8a3c5b4a9cac32665ec756476033420 100644 (file)
--- a/package/ruby/ruby.hash
+++ b/package/ruby/ruby.hash
@@ -1,2 +1,2 @@
-# From https://www.ruby-lang.org/en/downloads/
-md5    74a37b9ad90e4ea63c0eed32b9d5b18f        ruby-2.1.3.tar.gz
+# From https://www.ruby-lang.org/en/news/2014/10/27/ruby-2-1-4-released/
+sha256 bf9952cdeb3a0c6a5a27745c9b4c0e5e264e92b669b2b08efb363f5156549204        ruby-2.1.4.tar.gz

diff --git a/package/ruby/ruby.mk b/package/ruby/ruby.mk
index e633ee44f90f358a24ffab1c0bfb1f424ba12f00..36f6d3f59bfe88f42780b71a6b39c61be1a24c0b 100644 (file)
--- a/package/ruby/ruby.mk
+++ b/package/ruby/ruby.mk
@@ -5,7 +5,7 @@
 ################################################################################
 
 RUBY_VERSION_MAJOR = 2.1
-RUBY_VERSION = $(RUBY_VERSION_MAJOR).3
+RUBY_VERSION = $(RUBY_VERSION_MAJOR).4
 RUBY_VERSION_EXT = 2.1.0
 RUBY_SITE = http://cache.ruby-lang.org/pub/ruby/$(RUBY_VERSION_MAJOR)
 RUBY_DEPENDENCIES = host-pkgconf host-ruby