[DRE-maint] Bug#882034: ruby-redis-store for jessie and stretch (#882034 CVE-2017-1000248). Proposed patch
Hi, On Fri, Dec 08, 2017 at 09:31:47AM +0100, Salvatore Bonaccorso wrote: > Hi Cédric, > Thanks a lot for fixing this in unstable and experimental, so we have > quarantee that it's fixed in next stable. For stretch: Can you fix the > issue via a point release? Sure. It is too late for the one coming this weekend, but I'll ask inclusion for the next Stretch update. > What do you mean by the version in jessie? AFAICT the package was not > renamed, and ruby-redis-store is not present in jessie, do I miss > something? Oops, sorry. Indeed there is no version of ruby-redis-store. I got confused with another package. Thanks! Cédric signature.asc Description: PGP signature ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] Bug#882034: ruby-redis-store for jessie and stretch (#882034 CVE-2017-1000248). Proposed patch
Hi Cédric, On Fri, Dec 01, 2017 at 10:44:22PM +0100, Cédric Boutillier wrote: > Hi, > > I have prepared a patch for Debian bug #882034 (CVE-2017-1000248) from > by adapting the upstream patch from > > https://github.com/redis-store/redis-store/pull/290 > > (which should be applied after > https://github.com/redis-store/redis-store/commit/bcd1c28cf10ff18b4352cdacbe04113af3fec68d, > not present in the version 1.1.6) > > Please find attached the debdiff for the version in Stretch. > It is the same as the change for 1.1.6-2 which went to unstable (without > the additional packaging change). > > As jessie has the same version, the debdiff will look the same except > the one line in the changelog with version number and suite. > > Do you ack this patch, and allow me to upload to security.debian.org? Sorry for not coming earlier back to you. Thanks a lot for fixing this in unstable and experimental, so we have quarantee that it's fixed in next stable. For stretch: Can you fix the issue via a point release? What do you mean by the version in jessie? AFAICT the package was not renamed, and ruby-redis-store is not present in jessie, do I miss something? Regards, Salvatore ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] Bug#872305: marked as done (diaspora: Package fails to install)
Your message dated Fri, 8 Dec 2017 15:12:09 +0530 with message-id <71d04bb8-b752-7efa-61d1-8497244e4...@riseup.net> and subject line has caused the Debian Bug report #872305, regarding diaspora: Package fails to install to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 872305: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=872305 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: diaspora Version: 0.6.0.1+debian-1 Severity: serious Dear maintainer, Diaspora package installation fails with the following error: Verifying we have all required libraries... su: Permission denied (Ignored) There was an error while trying to write to `/usr/share/diaspora/.bundle/config`. It is likely that you need to grant write permissions for that path. dpkg: error processing package diaspora (--configure): subprocess installed post-installation script returned error exit status 23 Errors were encountered while processing: diaspora The package is not usable due to this error. Regards, Joseph Nuthalapati signature.asc Description: OpenPGP digital signature --- End Message --- --- Begin Message --- Tried a lot to reproduce this bug but it is not reproducible. I don't see any permissions issues in the debian installation scripts either. Closing this. --- End Message --- ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-azure is marked for autoremoval from testing
ruby-azure 0.7.9-1 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] Bug#831448: gitlab: fails to install database
Hi, this bug still exists and is pretty annoying: Creating/updating beowulf user account... adduser: Der Benutzer »beowulf« existiert bereits. Programmende. Proceeding with existing beowulf user... Making beowulf owner of /var/lib/gitlab... Creating runtime directories for gitlab... Updating file permissions... Configuring hostname and email... Registering /usr/lib/tmpfiles.d/gitlab.conf via ucf /etc/systemd/system/gitlab-mailroom.service.d/override.conf already exist /etc/systemd/system/gitlab-unicorn.service.d/override.conf already exist /etc/systemd/system/gitlab-sidekiq.service.d/override.conf already exist /etc/systemd/system/gitlab-workhorse.service.d/override.conf already exist Registering /etc/gitlab-shell/config.yml via ucf Registering /etc/gitlab/gitlab.yml via ucf Registering /etc/gitlab/gitlab-debian.conf via ucf Reloading nginx configuration... dbconfig-common: writing config to /etc/dbconfig-common/gitlab.conf creating postgres user beowulf: already exists. resetting password: success. creating database gitlab_production: success. verifying database gitlab_production exists: success. dbconfig-common: flushing administrative password psql: FATAL: Datenbank »gitlab_production« existiert nicht dpkg: Fehler beim Bearbeiten des Paketes gitlab (--configure): Unterprozess installiertes post-installation-Skript gab den Fehlerwert 2 zurück Fehler traten auf beim Bearbeiten von: gitlab E: Sub-process /usr/bin/dpkg returned an error code (1) Is there a workaround of some kind or a way how i can help you to solve this? In the current status this package is pretty much unusable. -Martin ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-asana is marked for autoremoval from testing
ruby-asana 0.6.0-1 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-gitlab-flowdock-git-hook is marked for autoremoval from testing
ruby-gitlab-flowdock-git-hook 1.0.1-2 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-grape is marked for autoremoval from testing
ruby-grape 0.16.2-2 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-azure-core is marked for autoremoval from testing
ruby-azure-core 0.1.2-2 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-faraday-middleware is marked for autoremoval from testing
ruby-faraday-middleware 0.12.2-1 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-omniauth-google-oauth2 is marked for autoremoval from testing
ruby-omniauth-google-oauth2 0.4.1-1 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-flowdock is marked for autoremoval from testing
ruby-flowdock 0.7.1-1 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-fog-azure is marked for autoremoval from testing
ruby-fog-azure 0.0.2-1 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-github-api is marked for autoremoval from testing
ruby-github-api 0.14.2-1 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-multi-xml is marked for autoremoval from testing
ruby-multi-xml 0.5.5-2 is marked for autoremoval from testing on 2018-01-09 It is affected by these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-faraday-middleware-multi-json is marked for autoremoval from testing
ruby-faraday-middleware-multi-json 0.0.6-2 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-api-pagination is marked for autoremoval from testing
ruby-api-pagination 4.2.0-1 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-omniauth-github is marked for autoremoval from testing
ruby-omniauth-github 1.1.2-2 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-hipchat is marked for autoremoval from testing
ruby-hipchat 1.5.2-3 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] librarian-puppet is marked for autoremoval from testing
librarian-puppet 2.2.3-2 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-tinder is marked for autoremoval from testing
ruby-tinder 1.10.1-3 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-jeweler is marked for autoremoval from testing
ruby-jeweler 2.0.1-3 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-grape-msgpack is marked for autoremoval from testing
ruby-grape-msgpack 0.2.0-1 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-omniauth-gitlab is marked for autoremoval from testing
ruby-omniauth-gitlab 1.0.2-1 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-omniauth-facebook is marked for autoremoval from testing
ruby-omniauth-facebook 4.0.0-2 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-omniauth-oauth2-generic is marked for autoremoval from testing
ruby-omniauth-oauth2-generic 0.2.2-1 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-grape-logging is marked for autoremoval from testing
ruby-grape-logging 1.7.0-1 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-omniauth-wordpress is marked for autoremoval from testing
ruby-omniauth-wordpress 0.2.2-1 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-omniauth-authentiq is marked for autoremoval from testing
ruby-omniauth-authentiq 0.3.1-1 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-omniauth-oauth2 is marked for autoremoval from testing
ruby-omniauth-oauth2 1.4.0-1 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-oauth2 is marked for autoremoval from testing
ruby-oauth2 1.4.0-2 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-omniauth-azure-oauth2 is marked for autoremoval from testing
ruby-omniauth-azure-oauth2 0.0.6-1 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-omniauth-auth0 is marked for autoremoval from testing
ruby-omniauth-auth0 1.4.1-1 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
[DRE-maint] ruby-grape-route-helpers is marked for autoremoval from testing
ruby-grape-route-helpers 2.1.0-1 is marked for autoremoval from testing on 2018-01-09 It (build-)depends on packages with these RC bugs: 882718: ruby-multi-xml: ruby-multi-xml FTBFS: test failure ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
