Your message dated Fri, 4 Jan 2019 14:04:39 +0530
with message-id <[email protected]>
and subject line already fixed
has caused the Debian Bug report #913003,
regarding ruby-rack: CVE-2018-16470: Possible DoS vulnerability in Rack
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
913003: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913003
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: ruby-rack
Version: 2.0.5-1
Severity: grave
Tags: patch security upstream
Hi,
The following vulnerability was published for ruby-rack, which is only
affecting experimental version. Filling with RC severity as the
vulernable version should not enter unstable.
CVE-2018-16470[0]:
Possible DoS vulnerability in Rack
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2018-16470
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16470
[1] https://www.openwall.com/lists/oss-security/2018/11/05/1
Regards,
Salvatore
--- End Message ---
--- Begin Message ---
Control: fixed -1 2.0.6-1
signature.asc
Description: OpenPGP digital signature
--- End Message ---
