Updated to Ruby 2.6.5.

Resolves several security vulnerabilities:

- CVE-2019-16255: A code injection vulnerability of Shell#[] and
  Shell#test
- CVE-2019-16254: HTTP response splitting in WEBrick (Additional fix)
- CVE-2019-15845: A NUL injection vulnerability of File.fnmatch and
  File.fnmatch?
- CVE-2019-16201: Regular Expression Denial of Service vulnerability of
  WEBrick’s Digest access authentication

[Details](https://is.gd/qWSrzR)

This commit is contained in:

Brooke Kuhlmann

2019-10-01 17:51:03 -06:00

parent f8619eedc8

commit 40bd5dea2d

1 changed files with 1 additions and 1 deletions

2

.ruby-version

View File

@@ -1 +1 @@
 .6.4
 .6.5

Updated to Ruby 2.6.5.

2 .ruby-version Unescape Escape View File

2

.ruby-version

View File