Skip to content

Commit 5a3b107

Browse files
author
Jan van der Pas
committed
Update ruby 2.4.x to 2.4.8
Mitigates the following vulnerabilities: - CVE-2019-16255: A code injection vulnerability of Shell#[] and Shell#test - CVE-2019-16254: HTTP response splitting in WEBrick (Additional fix) - CVE-2019-15845: A NUL injection vulnerability of File.fnmatch and File.fnmatch? - CVE-2019-16201: Regular Expression Denial of Service vulnerability of WEBrick’s Digest access authentication
1 parent 5c9e21c commit 5a3b107

File tree

4 files changed

+8
-8
lines changed

4 files changed

+8
-8
lines changed

2.4/alpine3.10/Dockerfile

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -12,8 +12,8 @@ RUN set -eux; \
1212
} >> /usr/local/etc/gemrc
1313

1414
ENV RUBY_MAJOR 2.4
15-
ENV RUBY_VERSION 2.4.7
16-
ENV RUBY_DOWNLOAD_SHA256 a249193c7e79b891a4783f951cad8160fa5fe985c385b4628db8e9913bff1f98
15+
ENV RUBY_VERSION 2.4.8
16+
ENV RUBY_DOWNLOAD_SHA256 a2a8f53ef14b891821dbbf67b081d7b9e223007a347000ff4a86a226a4708272
1717
ENV RUBYGEMS_VERSION 3.0.3
1818

1919
# some of ruby's build scripts are written in ruby

2.4/alpine3.9/Dockerfile

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -12,8 +12,8 @@ RUN set -eux; \
1212
} >> /usr/local/etc/gemrc
1313

1414
ENV RUBY_MAJOR 2.4
15-
ENV RUBY_VERSION 2.4.7
16-
ENV RUBY_DOWNLOAD_SHA256 a249193c7e79b891a4783f951cad8160fa5fe985c385b4628db8e9913bff1f98
15+
ENV RUBY_VERSION 2.4.8
16+
ENV RUBY_DOWNLOAD_SHA256 a2a8f53ef14b891821dbbf67b081d7b9e223007a347000ff4a86a226a4708272
1717
ENV RUBYGEMS_VERSION 3.0.3
1818

1919
# some of ruby's build scripts are written in ruby

2.4/buster/Dockerfile

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -9,8 +9,8 @@ RUN set -eux; \
99
} >> /usr/local/etc/gemrc
1010

1111
ENV RUBY_MAJOR 2.4
12-
ENV RUBY_VERSION 2.4.7
13-
ENV RUBY_DOWNLOAD_SHA256 a249193c7e79b891a4783f951cad8160fa5fe985c385b4628db8e9913bff1f98
12+
ENV RUBY_VERSION 2.4.8
13+
ENV RUBY_DOWNLOAD_SHA256 a2a8f53ef14b891821dbbf67b081d7b9e223007a347000ff4a86a226a4708272
1414
ENV RUBYGEMS_VERSION 3.0.3
1515

1616
# some of ruby's build scripts are written in ruby

2.4/stretch/Dockerfile

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -9,8 +9,8 @@ RUN set -eux; \
99
} >> /usr/local/etc/gemrc
1010

1111
ENV RUBY_MAJOR 2.4
12-
ENV RUBY_VERSION 2.4.7
13-
ENV RUBY_DOWNLOAD_SHA256 a249193c7e79b891a4783f951cad8160fa5fe985c385b4628db8e9913bff1f98
12+
ENV RUBY_VERSION 2.4.8
13+
ENV RUBY_DOWNLOAD_SHA256 a2a8f53ef14b891821dbbf67b081d7b9e223007a347000ff4a86a226a4708272
1414
ENV RUBYGEMS_VERSION 3.0.3
1515

1616
# some of ruby's build scripts are written in ruby

0 commit comments

Comments
 (0)