From 26bf4b3df3278a5bb645287eda013f60b1cc6d20 Mon Sep 17 00:00:00 2001 From: Alyssa Ross Date: Tue, 6 Nov 2018 09:14:45 +0000 Subject: [PATCH] riemann-dash: rack: 1.6.4 -> 1.6.11 CVE-2018-16470: https://seclists.org/oss-sec/2018/q4/128 CVE-2018-16471: https://seclists.org/oss-sec/2018/q4/129 --- pkgs/servers/monitoring/riemann-dash/Gemfile.lock | 4 ++-- pkgs/servers/monitoring/riemann-dash/gemset.nix | 6 ++++-- 2 files changed, 6 insertions(+), 4 deletions(-) diff --git a/pkgs/servers/monitoring/riemann-dash/Gemfile.lock b/pkgs/servers/monitoring/riemann-dash/Gemfile.lock index 1bfd80a897d..00375fa4e30 100644 --- a/pkgs/servers/monitoring/riemann-dash/Gemfile.lock +++ b/pkgs/servers/monitoring/riemann-dash/Gemfile.lock @@ -3,7 +3,7 @@ GEM specs: erubis (2.7.0) multi_json (1.3.6) - rack (1.6.4) + rack (1.6.11) rack-protection (1.5.3) rack riemann-dash (0.2.12) @@ -27,4 +27,4 @@ DEPENDENCIES riemann-dash (= 0.2.12) BUNDLED WITH - 1.11.2 + 1.16.4 diff --git a/pkgs/servers/monitoring/riemann-dash/gemset.nix b/pkgs/servers/monitoring/riemann-dash/gemset.nix index 8a4d3ba58cb..9298312f90e 100644 --- a/pkgs/servers/monitoring/riemann-dash/gemset.nix +++ b/pkgs/servers/monitoring/riemann-dash/gemset.nix @@ -16,10 +16,10 @@ rack = { source = { remotes = ["https://rubygems.org"]; - sha256 = "09bs295yq6csjnkzj7ncj50i6chfxrhmzg1pk6p0vd2lb9ac8pj5"; + sha256 = "1g9926ln2lw12lfxm4ylq1h6nl0rafl10za3xvjzc87qvnqic87f"; type = "gem"; }; - version = "1.6.4"; + version = "1.6.11"; }; rack-protection = { dependencies = ["rack"]; @@ -30,6 +30,7 @@ version = "1.5.3"; }; riemann-dash = { + dependencies = ["erubis" "multi_json" "sass" "sinatra" "webrick"]; source = { remotes = ["https://rubygems.org"]; sha256 = "1y2vh9vcl21b6k2wqgz1y8bbcrl07r43s6q2vkgp35z1b28xcszy"; @@ -46,6 +47,7 @@ version = "3.4.22"; }; sinatra = { + dependencies = ["rack" "rack-protection" "tilt"]; source = { remotes = ["https://rubygems.org"]; sha256 = "1b81kbr65mmcl9cdq2r6yc16wklyp798rxkgmm5pr9fvsj7jwmxp";