Patch #34619
Update Nokogiri to 1.11
Status: | Closed | Start date: | ||
---|---|---|---|---|
Priority: | Normal | Due date: | ||
Assignee: | % Done: | 0% | ||
Category: | Gems support | |||
Target version: | 4.1.2 |
Description
A security issue CVE-2020-26247 has been fixed in Nokogiri 1.11.0.
https://nokogiri.org/CHANGELOG.html#v1110-2021-01-03
diff --git a/Gemfile b/Gemfile
index 88c71c4a7..a254636aa 100644
--- a/Gemfile
+++ b/Gemfile
@@ -13,7 +13,7 @@ gem 'roadie-rails', (RUBY_VERSION < '2.5' ? '~> 1.3.0' : '~> 2.2.0')
gem "mimemagic"
gem "mail", "~> 2.7.1"
gem 'csv', (RUBY_VERSION < '2.5' ? ['>= 3.1.1', '<= 3.1.5'] : '~> 3.1.1')
-gem "nokogiri", "~> 1.10.0"
+gem 'nokogiri', (RUBY_VERSION < '2.5' ? '~> 1.10.0' : '~> 1.11.1')
gem 'i18n', '~> 1.8.2'
gem "rbpdf", "~> 1.20.0"
gem 'addressable'
History
#1
Updated by Go MAEDA about 1 month ago
- Status changed from New to Resolved
- Assignee set to Go MAEDA
Committed the patch.
#2
Updated by Go MAEDA about 1 month ago
- Status changed from Resolved to Closed