Upgrade Ruby to 2.7.3 (#16004)

* Upgrade Ruby to 2.7.3 https://www.ruby-lang.org/en/news/2021/04/05/ruby-2-7-3-released/ includes security fixes to - CVE-2021-28965: XML round-trip vulnerability in REXML - CVE-2021-28966: Path traversal in Tempfile on Windows * Update rexml to 3.2.5 https://www.ruby-lang.org/en/news/2021/04/05/xml-round-trip-vulnerability-in-rexml-cve-2021-28965/
2021-04-09 00:31:36 +00:00 · 2021-04-09 00:31:36 +00:00 · acd8edcdee
commit acd8edcdee
parent 1189a308c9
3 changed files with 4 additions and 4 deletions
--- a/.ruby-version
+++ b/.ruby-version
@ -1 +1 @@
-2.7.2
+2.7.3
--- a/2
+++ b/2
@ -26,7 +26,7 @@ RUN ARCH= && \
 	mv node-v$NODE_VER-linux-$ARCH /opt/node

 # Install Ruby
-ENV RUBY_VER="2.7.2"
+ENV RUBY_VER="2.7.3"
 RUN apt-get update && \
  apt-get install -y --no-install-recommends build-essential \
    bison libyaml-dev libgdbm-dev libreadline-dev libjemalloc-dev \
--- a/Gemfile.lock
+++ b/Gemfile.lock
@ -436,7 +436,7 @@ GEM
    parallel (1.20.1)
    parallel_tests (3.6.0)
      parallel
-    parser (3.0.0.0)
+    parser (3.0.1.0)
      ast (~> 2.4.1)
    parslet (2.0.0)
    pastel (0.8.0)
@ -529,7 +529,7 @@ GEM
    responders (3.0.1)
      actionpack (>= 5.0)
      railties (>= 5.0)
-    rexml (3.2.4)
+    rexml (3.2.5)
    rotp (6.2.0)
    rpam2 (4.0.2)
    rqrcode (1.2.0)
 @ -1 +1 @@
 .7.2
 .7.3