On Tue, 15 Aug 2017 07:40:59 +0200 Salvatore Bonaccorso <[email protected]> wrote:> If you fix the vulnerability please also make sure to include the > CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
This is already fixed in git 1:2.11.0-3+deb9u1. The patch in gitlab is extra step to prevent in case of a vulnerable git. Since debian already has the fixed version of git, I don't think we need to do anything to gitlab.
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Pkg-ruby-extras-maintainers mailing list [email protected] http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
