Accepted:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Format: 1.8
Date: Sun, 28 Jan 2018 00:17:36 +0900
Source: ruby-rr
Binary: ruby-rr
Architecture: source all
Version: 1.2.1-2
Distribution: unstable
Urgency: medium
Maintainer: Debian Ruby Extras Maintainers
Changed-By: TANIGUCHI Takaki
ruby-rr_1.2.1-2_amd64.changes uploaded successfully to localhost
along with the files:
ruby-rr_1.2.1-2.dsc
ruby-rr_1.2.1-2.debian.tar.xz
ruby-rr_1.2.1-2_all.deb
ruby-rr_1.2.1-2_amd64.buildinfo
Greetings,
Your Debian queue daemon (running on host usper.debian.org)
Accepted:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Format: 1.8
Date: Sat, 27 Jan 2018 23:12:37 +0900
Source: ruby-rr
Binary: ruby-rr
Architecture: source all
Version: 1.2.1-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Ruby Extras Maintainers
Changed-By: TANIGUCHI Takaki
Processing commands for cont...@bugs.debian.org:
> retitle 888523 ruby-omniauth: CVE-2017-18076: security issue in returning
> post parameters from session in callback phase
Bug #888523 [src:ruby-omniauth] ruby-omniauth: security issue in returning post
parameters from session in callback phase
ruby-rr_1.2.1-1_amd64.changes uploaded successfully to localhost
along with the files:
ruby-rr_1.2.1-1.dsc
ruby-rr_1.2.1.orig.tar.gz
ruby-rr_1.2.1-1.debian.tar.xz
ruby-rr_1.2.1-1_all.deb
ruby-rr_1.2.1-1_amd64.buildinfo
Greetings,
Your Debian queue daemon (running on host usper.d
Processing control commands:
> fixed -1 1.6.1-1
Bug #888523 [src:ruby-omniauth] ruby-omniauth: security issue in returning post
parameters from session in callback phase
Marked as fixed in versions ruby-omniauth/1.6.1-1.
--
888523: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=888523
Debian
Source: ruby-omniauth
Version: 1.2.1-1
Severity: important
Tags: security upstream fixed-upstream
Forwarded: https://github.com/omniauth/omniauth/pull/867
Control: fixed -1 1.6.1-1
For tracking this security issue in ruby-omniauth:
> Request phase of omniauth store request.params in session which
On വെള്ളി 26 ജനുവരി 2018 07:32 വൈകു, Salvatore Bonaccorso wrote:
> See
> https://about.gitlab.com/2018/01/16/gitlab-10-dot-3-dot-4-released/
> for which several go back to 8.9.0 versions.
>
> There are three CVEs out of
> https://security-tracker.debian.org/tracker/source-package/gitlab
> belongin
Source: gitlab
Version: 8.13.11+dfsg1-12
Severity: grave
Tags: upstream security
Hi
See
https://about.gitlab.com/2018/01/16/gitlab-10-dot-3-dot-4-released/
for which several go back to 8.9.0 versions.
There are three CVEs out of
https://security-tracker.debian.org/tracker/source-package/gitlab
FYI: The status of the ruby-gnome2 source package
in Debian's testing distribution has changed.
Previous version: 3.2.1-2
Current version: 3.2.1-5
--
This email is automatically generated once a day. As the installation of
new packages into testing happens multiple times a day you will rec
10 matches
Mail list logo