Your message dated Fri, 27 Jan 2023 12:50:51 +0000 with message-id <[email protected]> and subject line Bug#1029726: fixed in ruby-cfpropertylist 2.2.8-1.2 has caused the Debian Bug report #1029726, regarding ruby-cfpropertylist: Injects Enumerable::Enumerator into global namespace, breaks unrelated software to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [email protected] immediately.) -- 1029726: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029726 Debian Bug Tracking System Contact [email protected] with problems
--- Begin Message ---Package: ruby-cfpropertylist Version: 2.2.8-1.1 Severity: serious Tags: patch upstream Justification: Breaks unrelated software While the infamous "Showing diffs returns 500" problem on Debian packaged gitlab, it was noticed that the current version of ruby-cfpropertylist in Debian injects an Enumerable::Enumerator class into the global namespace, thus breaking unrelated software. It can be reproduced by: require 'cfpropertylist' class FakeParser include Enumerable def parse() Enumerator.new { |x| x << :hi } end end FakeParser.new.parse.to_a This has been fixed upstream in [1]. I would like to prepare an NMU containing: - the unreleased changes available on salsa - cherry-picking the fix from upstream [1] https://github.com/ckruse/CFPropertyList/commit/c450984de42ded990a9edd30ce9d7ee0e5e0b103 -- System Information: Debian Release: bookworm/sid APT prefers testing-debug APT policy: (500, 'testing-debug'), (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable-debug'), (500, 'proposed-updates'), (500, 'testing'), (500, 'stable'), (500, 'oldstable'), (400, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 6.0.0-6-amd64 (SMP w/4 CPU threads; PREEMPT) Kernel taint flags: TAINT_PROPRIETARY_MODULE, TAINT_WARN, TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) Versions of packages ruby-cfpropertylist depends on: ii ruby 1:3.1 ruby-cfpropertylist recommends no packages. ruby-cfpropertylist suggests no packages. -- no debconf information
--- End Message ---
--- Begin Message ---Source: ruby-cfpropertylist Source-Version: 2.2.8-1.2 Done: Jakob Haufe <[email protected]> We believe that the bug you reported is fixed in the latest version of ruby-cfpropertylist, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [email protected], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Jakob Haufe <[email protected]> (supplier of updated ruby-cfpropertylist package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [email protected]) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 27 Jan 2023 12:17:48 +0100 Source: ruby-cfpropertylist Architecture: source Version: 2.2.8-1.2 Distribution: unstable Urgency: medium Maintainer: Debian Ruby Team <[email protected]> Changed-By: Jakob Haufe <[email protected]> Closes: 1029726 Changes: ruby-cfpropertylist (2.2.8-1.2) unstable; urgency=medium . * Non-maintainer upload . [ Cédric Boutillier ] * Bump debhelper compatibility level to 9 * Use https:// in Vcs-* fields * Bump Standards-Version to 3.9.7 (no changes needed) * Run wrap-and-sort on packaging files . [ Utkarsh Gupta ] * Add salsa-ci.yml . [ Debian Janitor ] * Use secure copyright file specification URI. * Use secure URI in debian/watch. * Use secure URI in Homepage field. * Bump debhelper from old 9 to 12. * Set debhelper-compat version in Build-Depends. * Remove unnecessary 'Testsuite: autopkgtest' header. * Set upstream metadata fields: Bug-Database, Bug-Submit, Repository, Repository-Browse. * Update Vcs-* headers from URL redirect. * Use canonical URL in Vcs-Git. * Apply multi-arch hints. + ruby-cfpropertylist: Add :any qualifier for ruby dependency. * Update watch file format version to 4. . [ Jakob Haufe ] * Drop 1.8 compatibility (Closes: #1029726) * Ack NMU by Holger Levsen * Drop ruby-interpreter dependency * Add R³: no Checksums-Sha1: 9b3ca59b1efb14491d938aac098c96bd4a1f1de5 2065 ruby-cfpropertylist_2.2.8-1.2.dsc 08f06c20a93b4ec50d96bb3be946f8d54520ecc5 3552 ruby-cfpropertylist_2.2.8-1.2.debian.tar.xz b5040b6e8a222425872c8d01eddeed8ddf4124d2 12718 ruby-cfpropertylist_2.2.8-1.2_source.buildinfo Checksums-Sha256: 940aac3f4d5386cce15342fcc77527a8ba391d9bd13efb77d7baaf7a407cc774 2065 ruby-cfpropertylist_2.2.8-1.2.dsc df193e6976ef3911460bb751c828933729b044492638d3966ca5dc453459d2ef 3552 ruby-cfpropertylist_2.2.8-1.2.debian.tar.xz 0ccf941d522e348b20c60108aef9e689b77dcd0b49f648e68528dd024da14ca8 12718 ruby-cfpropertylist_2.2.8-1.2_source.buildinfo Files: ccd95072f3a64cef7f6ce01aab67273a 2065 ruby optional ruby-cfpropertylist_2.2.8-1.2.dsc 4160510c13eb18f372df82a564d44224 3552 ruby optional ruby-cfpropertylist_2.2.8-1.2.debian.tar.xz 3428a2a3162a7a6ab1e1f2a7fd4beacc 12718 ruby optional ruby-cfpropertylist_2.2.8-1.2_source.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEe/X2rDZDH11A3BN6TPKyGPVNrj0FAmPTw0sACgkQTPKyGPVN rj04ug//XyF5dIgPSkyao95G9oVcv1lKONSlnGy6uEQ44CkIgj+q9MFrCBVLfgkP c3ugG7/+Y+2F8A94oROqOCGo+Y2PPCUde6N36dw62VaqjZcDGkHdeeW2NdSYLYjT /5Np/871OLpP5Ol7UUHfVi4xJnEMLCoxf7rBaL6Vo3NtFNJaDrlmXxkGZe9BcWE7 0IrG106UismTpZmbkPU9kCJUzMShKTE5K9/koEJ0YslkeSPQU7fCo42uJT+bY1RV AaPkFugSzCXTKmK5iYrrk7Q+hSrf6t5Ixf4aXotqK6tHMKoWKV/XsC9nqNcFPJPg VLGIUTsspy9DuOvsYUN8TvoZ8MWJlpZdrUS0Q0p8xBBRIDnEPP+mIW2MgyORiHDZ LS8olt86otaxIL7LGR+81wt57dT2ISenSyw0vfDJUHW+OEO9HUYYKoH+if5vQjD5 dSqVcJB6IsYu86QjYqnqd24YgQzBSxTo2W/LrfofsNimWe8t17bD2bzf+NsVff5r eKjKSKzso+gJcxUCbm2E/vaMKk5M47w9qTaI8FkZYF+mBp9VmyBg5ezVdejR4Y+s 3QIbzbSa88Wx951f6Z1I66q8tzc3KtjSSKYiZtQ4JHXMPv1MK5ox+ZKDeAdUrkg7 UOGnWcUEAd8rO/Y6i1kMyEnMzHhZ0q89P0jVexrgfoCAVvEOZ/U= =S8xp -----END PGP SIGNATURE-----
--- End Message ---

