From 5e3367886d44d572c50053aa5e0d27af8b4d3770 Mon Sep 17 00:00:00 2001 From: Leo Maroni Date: Sun, 23 Sep 2018 18:46:07 +0200 Subject: [PATCH] Update jekyll to 3.8.4 security bug in ffi v1.9.23 (CVE-2018-1000201); update ffi to 1.9.25 by jekyll update --- Gemfile | 2 +- Gemfile.lock | 18 +++++++++--------- 2 files changed, 10 insertions(+), 10 deletions(-) diff --git a/Gemfile b/Gemfile index 9553537..7b626fa 100644 --- a/Gemfile +++ b/Gemfile @@ -8,7 +8,7 @@ source "https://rubygems.org" # # This will help ensure the proper Jekyll version is running. # Happy Jekylling! -gem "jekyll", "~> 3.8.1" +gem "jekyll", "~> 3.8.4" # If you want to use GitHub Pages, remove the "gem "jekyll"" above and diff --git a/Gemfile.lock b/Gemfile.lock index 866c19e..0c08d61 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -8,13 +8,13 @@ GEM em-websocket (0.5.1) eventmachine (>= 0.12.9) http_parser.rb (~> 0.6.0) - eventmachine (1.2.6) - ffi (1.9.23) + eventmachine (1.2.7) + ffi (1.9.25) forwardable-extended (2.6.0) http_parser.rb (0.6.0) i18n (0.9.5) concurrent-ruby (~> 1.0) - jekyll (3.8.1) + jekyll (3.8.4) addressable (~> 2.4) colorator (~> 1.0) em-websocket (~> 0.5) @@ -33,7 +33,7 @@ GEM sass (~> 3.4) jekyll-watch (2.0.0) listen (~> 3.0) - kramdown (1.16.2) + kramdown (1.17.0) liquid (4.0.0) listen (3.1.5) rb-fsevent (~> 0.9, >= 0.9.4) @@ -42,14 +42,14 @@ GEM mercenary (0.3.6) pathutil (0.16.1) forwardable-extended (~> 2.6) - public_suffix (3.0.2) + public_suffix (3.0.3) rb-fsevent (0.10.3) rb-inotify (0.9.10) ffi (>= 0.5.0, < 2) - rouge (3.1.1) + rouge (3.2.1) ruby_dep (1.5.0) safe_yaml (1.0.4) - sass (3.5.6) + sass (3.6.0) sass-listen (~> 4.0.0) sass-listen (4.0.0) rb-fsevent (~> 0.9, >= 0.9.4) @@ -59,9 +59,9 @@ PLATFORMS ruby DEPENDENCIES - jekyll (~> 3.8.1) + jekyll (~> 3.8.4) jekyll-feed (~> 0.6) tzinfo-data BUNDLED WITH - 1.16.1 + 1.16.2