Upate puma (CVE-2020-5249)

Vidas P · Vidas P · commit 7f03b0ef726b · 2020-03-04T08:54:19.000+02:00
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -6,6 +6,8 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
 ## [current]
+### Fixed
+- Update puma (CVE-2020-5249)
 
 
 ## [0.9.7] - 2020-02-28
diff --git a/Gemfile b/Gemfile
@@ -137,7 +137,7 @@ group :development do
   end
 end
 
-gem 'puma', '~> 4.3.1'
+gem 'puma', '~> 4.3.3'
 
 ENV['DATABASE_ADAPTER'] ||=
   if ENV['RAILS_ENV'] == 'production'
diff --git a/Gemfile.lock b/Gemfile.lock
@@ -367,7 +367,7 @@ GEM
       pry (>= 0.10.4)
     psych (3.1.0)
     public_suffix (4.0.1)
-    puma (4.3.1)
+    puma (4.3.3)
       nio4r (~> 2.0)
     rack (2.0.8)
     rack-accept (0.4.5)
@@ -641,7 +641,7 @@ DEPENDENCIES
   pg (~> 1.1.4)
   pry-byebug (~> 3.7.0)
   pry-rails (~> 0.3.9)
-  puma (~> 4.3.1)
+  puma (~> 4.3.3)
   rack-livereload (~> 0.3.17)
   rack-timeout (~> 0.5.1)
   rails (~> 5.2.3)
