From 75480bda42d970836e9573b171e8e90564e427d2 Mon Sep 17 00:00:00 2001 From: Robert Kovacs Date: Fri, 14 Feb 2020 11:48:37 +0200 Subject: [PATCH 1/2] Update Nokogiri --- fog-azure-rm.gemspec | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/fog-azure-rm.gemspec b/fog-azure-rm.gemspec index c601f06b2..edccf73cc 100755 --- a/fog-azure-rm.gemspec +++ b/fog-azure-rm.gemspec @@ -32,7 +32,7 @@ Gem::Specification.new do |spec| spec.add_dependency 'azure_mgmt_traffic_manager', '~> 0.9.0' spec.add_dependency 'azure_mgmt_sql', '~> 0.9.0' spec.add_dependency 'azure_mgmt_key_vault', '~> 0.9.0' - spec.add_dependency 'azure-storage', '= 0.11.5.preview' + spec.add_dependency 'azure-storage', '= 0.15.0.preview' spec.add_dependency 'vhd', '0.0.4' spec.add_dependency 'mime-types', '~> 1.25' end From 7443887c78cf0fc13bfff4b5347a63aa5967c337 Mon Sep 17 00:00:00 2001 From: Robert Kovacs Date: Fri, 14 Feb 2020 11:54:33 +0200 Subject: [PATCH 2/2] Update Changelog --- CHANGELOG.md | 4 ++++ fog-azure-rm.gemspec | 2 +- 2 files changed, 5 insertions(+), 1 deletion(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 6424338ca..268403e81 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.5.4 + +**Fixed** +- Changed `azure-storage` dependency to `0.15.0.preview` in order to remove dependecy of Nokogiri gem (version ~> 1.6.0) that has multiple serious security vulnerabilities ## 0.5.3 **Fixed** diff --git a/fog-azure-rm.gemspec b/fog-azure-rm.gemspec index edccf73cc..057fd35e2 100755 --- a/fog-azure-rm.gemspec +++ b/fog-azure-rm.gemspec @@ -32,7 +32,7 @@ Gem::Specification.new do |spec| spec.add_dependency 'azure_mgmt_traffic_manager', '~> 0.9.0' spec.add_dependency 'azure_mgmt_sql', '~> 0.9.0' spec.add_dependency 'azure_mgmt_key_vault', '~> 0.9.0' - spec.add_dependency 'azure-storage', '= 0.15.0.preview' + spec.add_dependency 'azure-storage', '~> 0.15.0.preview' spec.add_dependency 'vhd', '0.0.4' spec.add_dependency 'mime-types', '~> 1.25' end