Upgrade to Ruby 2.7.8.

Jarek Prokoprequested to merge
jackorp/centos_rpms_ruby:rhel8_rebase_ruby27.8 into stream-ruby-2.7-rhel-8.9.0

Merge Request Required Information

Summary of Changes

  • Fix HTTP response splitting in CGI. Resolves: CVE-2021-33621

  • Fix ReDoS vulnerability in URI. Resolves: CVE-2023-28755

  • Fix ReDoS vulnerability in Time. Resolves: CVE-2023-28756

  • Upgrade to Ruby 2.7.8. Resolves: rhbz#2149267

Also fixup the branch state after the import.

Scratch build passes for the whole module

RPM build: https://brew****rh.com/brew/taskinfo?taskID=52146064

Also see MR dependencies, there are fixup commits for packages included in the ruby 2.7 C8S module.

How to check this MR

There are a lot of deletions as a lot of unnecessary files ended up in the stream-ruby-2.7-rhel-8.9.0 ended up.

Use the specfile as the source of truth for which patches we actually care about.

Relevant changes in patches:

  • There are only changed patches to accommodate for the line count changes
  • The patch regarding to the tzdata package was removed as the fix is present in upstream.

Approved Development Ticket

All submissions to CentOS Stream must reference an approved ticket in Red Hat Jira. Please follow the CentOS Stream contribution documentation for how to file this ticket and have it approved.

See above for the "Resolves:" fields. Acks are TODO.

Edited by Jarek Prokop

Merge request reports