nocebo/diaspora
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Bump rubyzip

Browse source 
Fixes CVE-2018-1000544
This commit is contained in:
Benjamin Neff 2018-10-05 01:19:38 +02:00 committed by Dennis Schubert
parent fc6893d4fc
commit 56bb4be9d3
No known key found for this signature in database
GPG key ID: 5A0304BEA7966D7E
2 changed files with 4 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
Gemfile
View file

@ -199,7 +199,7 @@ gem "logging-rails", "0.6.0", require: "logging/rails"
# Reading and writing zip files
gem "rubyzip", "1.2.1", require: "zip"
gem "rubyzip", "1.2.2", require: "zip"
# Prevent occasions where minitest is not bundled in
# packaged versions of ruby. See following issues/prs:

6
Gemfile.lock
View file

@ -618,7 +618,7 @@ GEM
ruby-oembed (0.12.0)
ruby-progressbar (1.9.0)
ruby_dep (1.5.0)
rubyzip (1.2.1)
rubyzip (1.2.2)
rufus-scheduler (3.4.2)
et-orbi (~> 1.0)
rugged (0.27.0)
@ -872,7 +872,7 @@ DEPENDENCIES
rspec-rails (= 3.7.2)
rubocop (= 0.54.0)
ruby-oembed (= 0.12.0)
rubyzip (= 1.2.1)
rubyzip (= 1.2.2)
sass-rails (= 5.0.7)
secure_headers (= 5.0.5)
shoulda-matchers (= 3.1.2)
@ -900,4 +900,4 @@ DEPENDENCIES
will_paginate (= 3.1.6)
BUNDLED WITH
1.16.4
1.16.5