Commit graph

15 commits

Author SHA1 Message Date
Sergey Matveychuk
705fca86db - Fix a ruby vulnerabuility in the safe level settings.
Based on:	ports/87816
Submitted by:	Phil Oleson <oz@nixil.net>

Security:	http://vuxml.FreeBSD.org/1daea60a-4719-11da-b5c6-0004614cc33d.html
2005-10-27 19:40:25 +00:00
Simon L. B. Nielsen
575be647d6 Fix arbitrary command execution in XMLRPC server.
PR:		ports/82855
Submitted by:	Renato Botelho <freebsd@galle.com.br>
Obtained from:	Ruby CVS
Approved by:	maintainer timeout (1 day; security)
With hat:	secteam
Security:	CAN-2005-1992
Security:	http://vuxml.FreeBSD.org/594eb447-e398-11d9-a8bd-000cf18bbe54.html
2005-07-03 10:26:31 +00:00
Jeremy Messenger
7df9b2b2b4 Disable threads again; it has caused the more troubles. This time, it has
${PTHREAD_CFLAGS} and ${PTHREAD_LIBS} include in the build to kill the
headache of old '_r' and can't run with something like ruby-opengl, ruby-sdl,
ruby-gtk2 and etc on FreeBSD 4.x or older 5.x. With this commit should solve
those issues. It is recommend you to rebuild any apps that depend on
lang/ruby18, so see the UPDATING for detail.

Remove the 'BROKEN' on the other ports that knu has added them few weeks ago.
Some of them have been tested, so if one of them is still broke then please
let us know and one of us will re-add the 'BROKEN'.

This changes was worked by lofi and me. lofi did everything on FreeBSD 4.x
and I did others. lofi, thanks for help!

Tested by:	many people
Tested on:	i386 (FreeBSD 4.x, 5.x and 6.x), amd64 (FreeBSD 5.x and 6.x),
		and sparc64 (FreeBSD 5.x and 6.x)
Not test on:	ia64 and alpha
Approved by:	portmgr (kris)
2005-02-25 00:17:28 +00:00
Akinori MUSHA
50db8ccf3a Update lang/ruby18 to 1.8.2-preview4.
* Please upgrade sysutils/portupgrade prior to this one, or pkgdb(1)
  may coredump with a double free() problem from a misuse of the DL
  module.  In that case, reinstall sysutils/portupgrade manually.
2004-12-23 20:30:09 +00:00
Simon L. B. Nielsen
23003b8825 Fix DoS in the Ruby CGI module.
Obtained from:	ruby CVS
Reviewed by:	trhodes
OK'ed by:	maintainer silence
With hat:	secteam
2004-11-25 15:25:33 +00:00
Akinori MUSHA
790c513316 Update lang/ruby18 to 1.8.2-preview2. 2004-08-12 08:57:52 +00:00
Akinori MUSHA
4e8d069e3f Pull in the latest change to mkmf.rb to avoid build error when
devel/readline is installed.
2004-07-13 07:03:54 +00:00
Akinori MUSHA
940b7f1c39 Update lang/ruby18 and lang/ruby16-shim-ruby18 to 1.8.1-preview3. 2003-12-15 06:35:48 +00:00
Marcel Moolenaar
b2958437a1 Fix the build on ia64:
The __libc_ia64_register_backing_store_base variable is defined on
Linux (in glibc) to allow processes to obtain the base of the RSE
backing store. On FreeBSD we do not have such a variable. We also
do not yet have a different interface for processes to use. So, for
now, hardcode the base address of the RSE backing store as it is
on FreeBSD. There's little chance this will change in the future,
so it's not that evil.

Approved by: portmgr (kris)
2003-11-27 07:39:33 +00:00
Akinori MUSHA
004219de73 The dl module seems to cause coredump on Pentium4 boxen when compiled
with gcc 3.3 with a -mcpu or -march flag (even -mcpu=pentiumpro, which
is the default CPU cflag that bsd.cpu.mk sets, leads ruby to coredump).

Although currently I'm not sure if gcc 3.3's optimization has a bug or
it is that it just exposed the dl module's hidden bug, disable those
flags to work around the problem for the moment.
2003-07-19 16:11:15 +00:00
Akinori MUSHA
e53d063604 Update lang/ruby-devel to 1.8.0-preview3.
ruby-csv, drb, rexml and yaml are now part of the ruby 1.8 standard
distribution.
2003-06-23 10:16:13 +00:00
Akinori MUSHA
27f96357e1 Add a patch to fix coredump that occurs when you run ruby with the
verbose flag on. (ruby -v -e 'begin;end')

PORTREVISION is not bumped since this is not a significant problem for
most people.
2003-04-19 19:36:28 +00:00
Akinori MUSHA
be5a93f9f9 Fix the build of lang/ruby_static-devel, i.e. the build of
archiver/ruby-zlib with lang/ruby-devel in the correct way.

The cause of this problem is that FreeBSD's make(1) got a bit too
sensitive about a mixture of `target:' and `target::'.
2002-11-27 17:14:23 +00:00
Akinori MUSHA
58a1c86076 Update lang/ruby-devel to the latest snapshot as of 2002-11-22.
Add a DEBUG knob here too.
2002-11-22 12:49:49 +00:00
Akinori MUSHA
7b91b71640 Add a patch for tempfile.rb from CVS and bump PORTREVISION. 2002-11-18 20:38:39 +00:00