From 49b4d4f70832d0228b004884c12455d16f3a4c6a Mon Sep 17 00:00:00 2001
From: Remco van 't Veer <remco@remworks.net>
Date: Fri, 25 Nov 2022 20:23:27 +0100
Subject: gnu: ruby: Update to 2.7.7. [security fixes].

Fixes: CVE-2021-33621: HTTP response splitting in CGI.

* gnu/packages/ruby.scm (ruby-2.7-fixed): Update to 2.7.7.

Signed-off-by: Efraim Flashner <efraim@flashner.co.il>
---
 gnu/packages/ruby.scm | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'gnu')

diff --git a/gnu/packages/ruby.scm b/gnu/packages/ruby.scm
index b53aa02ef3..37d18061f8 100644
--- a/gnu/packages/ruby.scm
+++ b/gnu/packages/ruby.scm
@@ -194,7 +194,7 @@ (define-public ruby-2.7
 (define ruby-2.7-fixed
   (package
     (inherit ruby-2.7)
-    (version "2.7.6")
+    (version "2.7.7")
     (source
      (origin
        (inherit (package-source ruby-2.7))
@@ -203,7 +203,7 @@ (define ruby-2.7-fixed
                            "/ruby-" version ".tar.gz"))
        (sha256
         (base32
-         "042xrdk7hsv4072bayz3f8ffqh61i8zlhvck10nfshllq063n877"))))))
+         "143vih5jzmrd2r5h94pa3qzml0ldii0qzs6g09jg6zqxd7djf0g1"))))))
 
 (define-public ruby-3.0
   (package
-- 
cgit v1.2.3