Your message dated Thu, 01 Sep 2016 07:19:23 +0000
with message-id <e1bfmht-0001eb...@franck.debian.org>
and subject line Bug#834843: fixed in ruby-doorkeeper 4.2.0-3
has caused the Debian Bug report #834843,
regarding ruby-doorkeeper: CVE-2016-6582
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
834843: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=834843
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Source: ruby-doorkeeper
Version: 3.1.0-1
Severity: grave
Tags: security upstream patch
Forwarded: https://github.com/doorkeeper-gem/doorkeeper/issues/875
Hi,
the following vulnerability was published for ruby-doorkeeper.
CVE-2016-6582[0]:
Doorkeeper does not revoke tokens and wrong auth/auth method
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2016-6582
Regards,
Salvatore
--- End Message ---
--- Begin Message ---
Source: ruby-doorkeeper
Source-Version: 4.2.0-3
We believe that the bug you reported is fixed in the latest version of
ruby-doorkeeper, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 834...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Pirate Praveen <prav...@debian.org> (supplier of updated ruby-doorkeeper
package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Thu, 01 Sep 2016 12:38:26 +0530
Source: ruby-doorkeeper
Binary: ruby-doorkeeper
Architecture: source
Version: 4.2.0-3
Distribution: unstable
Urgency: medium
Maintainer: Debian Ruby Extras Maintainers
<pkg-ruby-extras-maintain...@lists.alioth.debian.org>
Changed-By: Pirate Praveen <prav...@debian.org>
Description:
ruby-doorkeeper - OAuth 2 provider for Rails and Grape
Closes: 834843
Changes:
ruby-doorkeeper (4.2.0-3) unstable; urgency=medium
.
* Reupload to unstable (Closes: #834843)
Checksums-Sha1:
b28ae9ae72b6c70d365ee693de65919f4c04d623 2102 ruby-doorkeeper_4.2.0-3.dsc
554f62cee58524bd7f5eb8ce081f8f7a63ca6a9e 2604
ruby-doorkeeper_4.2.0-3.debian.tar.xz
Checksums-Sha256:
f32d84c234d852871ed2a6a308b4296cd0335f3291ffd80f3895a73b665ad5ff 2102
ruby-doorkeeper_4.2.0-3.dsc
1681f2c7a8b6c2a53133bcb4ab6677766048018c9bf50372ba7812c4e72a9121 2604
ruby-doorkeeper_4.2.0-3.debian.tar.xz
Files:
e8dd7ef6742de06afc53232d0d8f8536 2102 ruby optional ruby-doorkeeper_4.2.0-3.dsc
b5fddc7453392ec6323361c92b6878d2 2604 ruby optional
ruby-doorkeeper_4.2.0-3.debian.tar.xz
-----BEGIN PGP SIGNATURE-----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=Bj/7
-----END PGP SIGNATURE-----
--- End Message ---
