Skip to content

Commit

Permalink
redmine: 5.1.4 -> 5.1.5
Browse files Browse the repository at this point in the history 
Update Redmine and used gems. Also, remove x86_64-linux from bundler
platforms because the gem dependencies are messed up.

Updating gems fixes the following CVEs:

  * CVE-2024-53985
  * CVE-2024-53986
  * CVE-2024-53987
  * CVE-2024-53988
  * CVE-2024-53989

The following vulnerabilities remain:

  * CVE-2024-54133
  * GHSA-r95h-9x8f-r3f7

Signed-off-by: Felix Singer <[email protected]>
  • Loading branch information
@felixsinger
felixsinger committed Dec 21, 2024
1 parent dba9da8 commit e0d4495
Show file tree
Hide file tree
Showing 4 changed files with 66 additions and 65 deletions.
46 changes: 23 additions & 23 deletions pkgs/by-name/re/redmine/Gemfile.lock
View file
Original file line number Diff line number Diff line change
Expand Up @@ -78,17 +78,17 @@ GEM
regexp_parser (>= 1.5, < 3.0)
xpath (~> 3.2)
chunky_png (1.4.0)
commonmarker (0.23.10)
commonmarker (0.23.11)
concurrent-ruby (1.3.4)
crass (1.0.6)
css_parser (1.19.1)
css_parser (1.21.0)
addressable
csv (3.2.9)
date (3.4.0)
date (3.4.1)
deckar01-task_list (2.3.2)
html-pipeline
docile (1.4.1)
erubi (1.13.0)
erubi (1.13.1)
ffi (1.17.0)
globalid (1.2.1)
activesupport (>= 6.1)
Expand All @@ -98,12 +98,12 @@ GEM
htmlentities (4.3.4)
i18n (1.14.6)
concurrent-ruby (~> 1.0)
json (2.7.5)
json (2.9.1)
language_server-protocol (3.17.0.3)
listen (3.9.0)
rb-fsevent (~> 0.10, >= 0.10.3)
rb-inotify (~> 0.9, >= 0.9.10)
logger (1.6.1)
logger (1.6.4)
loofah (2.23.1)
crass (~> 1.0.2)
nokogiri (>= 1.12.0)
Expand All @@ -117,9 +117,9 @@ GEM
method_source (1.1.0)
mini_magick (4.12.0)
mini_mime (1.1.5)
mini_portile2 (2.8.7)
minitest (5.25.1)
mocha (2.5.0)
mini_portile2 (2.8.8)
minitest (5.25.4)
mocha (2.7.1)
ruby2_keywords (>= 0.0.5)
mysql2 (0.5.6)
net-imap (0.3.7)
Expand All @@ -133,16 +133,16 @@ GEM
net-smtp (0.3.4)
net-protocol
nio4r (2.7.4)
nokogiri (1.15.6)
nokogiri (1.15.7)
mini_portile2 (~> 2.8.2)
racc (~> 1.4)
parallel (1.26.3)
parser (3.3.5.1)
parser (3.3.6.0)
ast (~> 2.4.1)
racc
pg (1.5.9)
public_suffix (6.0.1)
puma (6.4.3)
puma (6.5.0)
nio4r (~> 2.0)
racc (1.8.1)
rack (2.2.10)
Expand All @@ -167,9 +167,9 @@ GEM
activesupport (>= 5.0.0)
minitest
nokogiri (>= 1.6)
rails-html-sanitizer (1.6.0)
rails-html-sanitizer (1.6.2)
loofah (~> 2.21)
nokogiri (~> 1.14)
nokogiri (>= 1.15.7, != 1.16.7, != 1.16.6, != 1.16.5, != 1.16.4, != 1.16.3, != 1.16.2, != 1.16.1, != 1.16.0.rc1, != 1.16.0)
railties (6.1.7.10)
actionpack (= 6.1.7.10)
activesupport (= 6.1.7.10)
Expand All @@ -186,10 +186,10 @@ GEM
rbpdf-font (~> 1.19.0)
rbpdf-font (1.19.1)
redcarpet (3.6.0)
regexp_parser (2.9.2)
regexp_parser (2.9.3)
request_store (1.5.1)
rack (>= 1.4)
rexml (3.3.9)
rexml (3.4.0)
roadie (5.2.1)
css_parser (~> 1.4)
nokogiri (~> 1.15)
Expand All @@ -213,7 +213,7 @@ GEM
rubocop-ast (>= 1.28.1, < 2.0)
ruby-progressbar (~> 1.7)
unicode-display_width (>= 2.4.0, < 3.0)
rubocop-ast (1.33.1)
rubocop-ast (1.37.0)
parser (>= 3.3.1.0)
rubocop-performance (1.19.1)
rubocop (>= 1.7.0, < 2.0)
Expand All @@ -229,7 +229,7 @@ GEM
sanitize (6.1.3)
crass (~> 1.0.2)
nokogiri (>= 1.12.0)
selenium-webdriver (4.26.0)
selenium-webdriver (4.27.0)
base64 (~> 0.2)
logger (~> 1.4)
rexml (~> 3.2, >= 3.2.5)
Expand All @@ -251,11 +251,11 @@ GEM
sqlite3 (1.6.9)
mini_portile2 (~> 2.8.0)
thor (1.3.2)
timeout (0.4.1)
timeout (0.4.3)
tzinfo (2.0.6)
concurrent-ruby (~> 1.0)
unicode-display_width (2.6.0)
webrick (1.9.0)
webrick (1.9.1)
websocket (1.2.11)
websocket-driver (0.7.6)
websocket-extensions (>= 0.1.0)
Expand All @@ -266,7 +266,7 @@ GEM
xpath (3.2.0)
nokogiri (~> 1.8)
yard (0.9.37)
zeitwerk (2.6.18)
zeitwerk (2.7.1)

PLATFORMS
ruby
Expand Down Expand Up @@ -319,7 +319,7 @@ DEPENDENCIES
yard

RUBY VERSION
ruby 3.1.6p260
ruby 3.3.5p100

BUNDLED WITH
2.5.9
2.5.22
Loading

0 comments on commit e0d4495

Please sign in to comment.