Your message dated Mon, 09 Jul 2018 07:50:11 +0000 with message-id <e1fcqvz-000b6m...@fasolo.debian.org> and subject line Bug#901913: fixed in ruby-sprockets 3.7.0-1.1 has caused the Debian Bug report #901913, regarding CVE-2018-3760 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 901913: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=901913 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: ruby-sprockets Severity: grave Tags: security Hi, please see http://www.openwall.com/lists/oss-security/2018/06/19/2 Cheers, Moritz
--- End Message ---
--- Begin Message ---Source: ruby-sprockets Source-Version: 3.7.0-1.1 We believe that the bug you reported is fixed in the latest version of ruby-sprockets, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 901...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Salvatore Bonaccorso <car...@debian.org> (supplier of updated ruby-sprockets package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 05 Jul 2018 23:29:49 +0200 Source: ruby-sprockets Binary: ruby-sprockets Architecture: source Version: 3.7.0-1.1 Distribution: unstable Urgency: medium Maintainer: Debian Ruby Extras Maintainers <pkg-ruby-extras-maintain...@lists.alioth.debian.org> Changed-By: Salvatore Bonaccorso <car...@debian.org> Description: ruby-sprockets - Rack-based asset packaging system Closes: 901913 Changes: ruby-sprockets (3.7.0-1.1) unstable; urgency=medium . * Non-maintainer upload. * Do not respond to http requests asking for a `file://` (CVE-2018-3760) (Closes: #901913) Checksums-Sha1: 5ae72bd5567e3101f16b682bf3fcaaa4a262e0f7 2324 ruby-sprockets_3.7.0-1.1.dsc b6c7e5cb533fbbe269655dee4ab5b94311d31249 4352 ruby-sprockets_3.7.0-1.1.debian.tar.xz e899642ec412e89f427d9056256d9dacd06fbe1a 6191 ruby-sprockets_3.7.0-1.1_source.buildinfo Checksums-Sha256: 7d63d7a85b0f59ed681297c7001329fc99c74618dec8c707c4f232826900858c 2324 ruby-sprockets_3.7.0-1.1.dsc 7c35b46d19c5e4dde13a586e4709157cc8cf82c999d1efb8149cc4683c39da1c 4352 ruby-sprockets_3.7.0-1.1.debian.tar.xz d618e53aa45cbf4a54308d995b342b93df3073d60a1a2648e73723df9100b28f 6191 ruby-sprockets_3.7.0-1.1_source.buildinfo Files: 2fd2c98932bd20b336f5af810af50ca6 2324 ruby optional ruby-sprockets_3.7.0-1.1.dsc b6f03e4aa50b14bd5c75ab028520ee38 4352 ruby optional ruby-sprockets_3.7.0-1.1.debian.tar.xz 130b03151d7a9eed8428db9e7d2df1d1 6191 ruby optional ruby-sprockets_3.7.0-1.1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQKmBAEBCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAltAYHxfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk ZWJpYW4ub3JnAAoJEAVMuPMTQ89E2rEP/0L029m7YwOfgTlbR6uGeg/NC6xtQtKD 5keD6k7C/oJNJklmegu8XbnNMiSyINQQTL/Zakx6zUQOuYRPuNZ+61yFZSgqzT0C qzVqN7/qfUiqFgNJR1K0xdWz5EeZKDdyjXvd5r9e5VYIsfS/2ek9mPq6pihaymN8 o1KCqNeiGThaSeOkLEOikEKI3mNyvs6rbCAHuue27I+BEiLTwyYQS8GYARkUgR4m +doOQ5ib16tkpr+FCD7o9P+G2C3o8IKESlmnqnCZShTiqJwgpUIOKD4Ucp7qtbjo zrHAZmTwgokqdqjjcJt0fXSmZZyXJpQlyxF9EUl/lNAbCpcsXCoAgmVK4bcrC50W hFlh6qas2v8DSKUHZTEnB2Mwkv7kemnypkYR2fAsZr4sLJRUjiMl+85JWXdNEeeR 1Po8zwD++g1eJLj4slxqtbqwspt6MDlVItGSZFmn/9BDPQ/HpOoyVoQBkxepxKIY /YnbZpUzv4WPj1/BsheWcSfRCgkKiAs7PAYRqwdk1yc6QD6gCudpljSKAIlcfu2C WrpAdX79HPGNb84vHRTiBacbazFHGeymP02kZ5rFG+mrQyyQifs0fXDunbJyIeI+ Hv0fO3nimy4likx2pTivAt5azfVwzvRE+krv0qEjEUb39NZqnsgXNLO5fR/syTe9 AhZz5FYejshH =uRHF -----END PGP SIGNATURE-----
--- End Message ---
_______________________________________________ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
