Your message dated Mon, 06 Jan 2014 03:20:40 +0000
with message-id <[email protected]>
and subject line Bug#733209: fixed in ruby-will-paginate 3.0.5-1
has caused the Debian Bug report #733209,
regarding ruby-will-paginate: CVE-2013-6459: XSS vulnerabilities
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
733209: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=733209
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: ruby-will-paginate
Severity: important
Tags: security upstream fixed-upstream
Hi,
the following vulnerability was published for ruby-will-paginate.
CVE-2013-6459[0]:
XSS vulnerabilities
It is fixed in a new upstream version 3.0.5[1].
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6459
http://security-tracker.debian.org/tracker/CVE-2013-6459
[1] https://github.com/mislav/will_paginate/releases/tag/v3.0.5
Please adjust the affected versions in the BTS as needed.
Regards,
Salvatore
--- End Message ---
--- Begin Message ---
Source: ruby-will-paginate
Source-Version: 3.0.5-1
We believe that the bug you reported is fixed in the latest version of
ruby-will-paginate, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Christian Hofstaedtler <[email protected]> (supplier of updated
ruby-will-paginate package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Mon, 06 Jan 2014 03:32:10 +0100
Source: ruby-will-paginate
Binary: ruby-will-paginate
Architecture: source all
Version: 3.0.5-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Ruby Extras Maintainers
<[email protected]>
Changed-By: Christian Hofstaedtler <[email protected]>
Description:
ruby-will-paginate - Pagination for Rails
Closes: 733209
Changes:
ruby-will-paginate (3.0.5-1) unstable; urgency=medium
.
* Team upload.
.
[ Cédric Boutillier ]
* use canonical URI in Vcs-* fields
* debian/copyright: use DEP5 copyright-format/1.0 official URL for
Format field
.
[ Christian Hofstaedtler ]
* Drop transitional packages
* Update (Build-)Depends for ruby2.0, drop ruby1.8
* Bump Standards-Version to 3.9.5 (no changes)
* New upstream release, fixing CVE-2013-6459 (Closes: #733209)
Checksums-Sha1:
00677ef191f78876351d19bde2d02ca5fd47b3f6 2110 ruby-will-paginate_3.0.5-1.dsc
7c682e61c78c6b8a1ad8d10a65d038fc83388545 32537
ruby-will-paginate_3.0.5.orig.tar.gz
e69d1897e94ab6a5ed5bc0958de82c15e508e133 3411
ruby-will-paginate_3.0.5-1.debian.tar.gz
eec02999fb1c2a8159be84b7483f7c4d31ff1948 17870
ruby-will-paginate_3.0.5-1_all.deb
Checksums-Sha256:
0e9ebbff76bac4803d57341f66e3464e21b20b865e992882304c9b255d332713 2110
ruby-will-paginate_3.0.5-1.dsc
ab56530e5f97365731536a7db03d34a24f98f59fed98497e581e611845efd3b1 32537
ruby-will-paginate_3.0.5.orig.tar.gz
67fade869f0499f343b6e13d04ebfa2dad631036fa29804431042a5c08aad190 3411
ruby-will-paginate_3.0.5-1.debian.tar.gz
aa5f0c3d1f6f55e816c8453304ac4c67ad5061063fcf5becc7bcc4471212fcd4 17870
ruby-will-paginate_3.0.5-1_all.deb
Files:
d72bd6d08387d9712c47a445657d7d15 2110 ruby optional
ruby-will-paginate_3.0.5-1.dsc
9f023b1fda5cfda697efbc673e7d3d92 32537 ruby optional
ruby-will-paginate_3.0.5.orig.tar.gz
19c890a2f5c41a7be20b1299b2ca815f 3411 ruby optional
ruby-will-paginate_3.0.5-1.debian.tar.gz
f576a587b292a772135d7bcf0369d103 17870 ruby optional
ruby-will-paginate_3.0.5-1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.15 (GNU/Linux)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=GnKl
-----END PGP SIGNATURE-----
--- End Message ---
_______________________________________________
Pkg-ruby-extras-maintainers mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
