(1.1.0+ds-4) unstable; urgency=high
+
+ * Add patch to really prevent network access in tests (Closes: #987650)
+Thanks Olivier Tilloy for the initial
+patch, adapted here.
+ * Remove duplicate build-dependency on gem2deb
+
+ -- Cédric Boutillier Tue, 04 May 2021 15:27:51 +0200
+
ruby
+
+ * Change (build-)dependencies from ruby-fog (removed from the archive) to
+ruby-fog-local (Closes: #924845)
+
+ -- Cédric Boutillier Sat, 23 Mar 2019 00:18:11 +0100
+
nanoc (4.11.0-2) unstable; urgency=medium
* Tighten ruby-hamster and ruby-ref dependency relation from Recommends
: #882034)
+
+ -- Cédric Boutillier <bou...@debian.org> Fri, 01 Dec 2017 17:22:29 +0100
+
ruby-redis-store (1.1.6-1) unstable; urgency=medium
* Upstream update
diff --git a/debian/patches/CVE-2017-1000248.patch
b/debian/patches/CVE-2017-1000248.patch
new file mode 100644
index 0
On Sat, Nov 25, 2017 at 09:57:45PM +0100, Cédric Boutillier wrote:
> On Sat, Nov 25, 2017 at 09:51:52AM +, Adam D. Barratt wrote:
> > The metadata for that bug indicates that it also affects the package in
> > unstable. Is that correct?
> It is correct. I am preparin
/changelog 2017-11-26 01:08:40.0 +0100
@@ -1,3 +1,12 @@
+ruby-ox (2.1.1-2+deb8u1) jessie; urgency=medium
+
+ * Team upload
+ * Add fix_parse_obj_segfault.patch picked from upstream
++ fix CVE-2017-15928: segmentation fault in parse_obj
+(Closes: #881445)
+
+ -- Cédric
+(Closes: #881445)
+
+ -- Cédric Boutillier <bou...@debian.org> Sun, 26 Nov 2017 01:08:40 +0100
+
ruby-ox (2.1.1-2) unstable; urgency=medium
* Team upload.
diff -Nru ruby-ox-2.1.1/debian/gbp.conf ruby-ox-2.1.1/debian/gbp.conf
--- ruby-ox-2.1.1/debian/gbp.conf 1970-01-01 01:00:00.000
closing too many files when mentos starts
+(Closes: #876768)
+
+ -- Cédric Boutillier <bou...@debian.org> Sat, 25 Nov 2017 21:48:18 +0100
+
ruby-pygments.rb (0.6.3-2) unstable; urgency=medium
* Team upload
diff -Nru ruby-pygments.rb-0.6.3/debian/gbp.conf
ruby-pygments.rb-0.6.3/debian/gb
Control: tags -1 - moreinfo
On Sat, Nov 25, 2017 at 09:51:52AM +, Adam D. Barratt wrote:
> The metadata for that bug indicates that it also affects the package in
> unstable. Is that correct?
It is correct. I am preparing a newer upstream version for unstable
which also fixes this issue.
) stretch; urgency=medium
+
+ * Relax dependency version in gem dependency on json.
+This fixes loading httparty with the gem command (Closes: #864723)
+
+ -- Cédric Boutillier <bou...@debian.org> Sat, 25 Nov 2017 00:30:18 +0100
+
ruby-httparty (0.13.7-1) unstable; urgency=medium
* Im
Hi,
Le 18 septembre 2017 00:25:55 GMT+08:00, "Adam D. Barratt"
a écrit :
>
>That currently looks okay for me too.
>
>If we're going for that weekend then it would be good to be able to
>announce as soon as feasible, as it would mean freezing p-u in two
>weekends time.
) unstable; urgency=medium
+
+ * Team upload
+ * Skip timing sensitive test (Closes: #853032)
+ * Fix Vcs-* URLs
+
+ -- Cédric Boutillier <bou...@debian.org> Tue, 07 Feb 2017 23:36:50 +0100
+
ruby-hamster (3.0.0-1) unstable; urgency=medium
* update to upstream version 3.0.0.
diff -Nr
Hi,
The press team is ok with the following dates:
> Jan 7th/8th
> Jan 14th/15th
> Jan 21st/22nd
Best,
Cédric
signature.asc
Description: PGP signature
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: unblock
Please unblock package ruby-httpclient
ruby-httpclient currently in Jessie FTBFS due to failing tests because
of a deprecated default SSL configuration (#768673).
The bug is fixed with
library, to avoid race condition when other threads try to create a
+connection (Closes: #770896)
+
+ -- Cédric Boutillier bou...@debian.org Tue, 25 Nov 2014 17:52:01 +0100
+
ruby-mysql2 (0.3.16-1) unstable; urgency=medium
[ Jérémy Bobbio ]
diff -Nru ruby-mysql2-0.3.16/debian/patches
of /dev/null, which may not absorb
+all writes and lead to an infinite loop.
+ * Add upstream patch correct_mysql_init.patch to correctly initialize the
+MySQL library, to avoid race condition when other threads try to create a
+connection (Closes: #770896)
+
+ -- Cédric Boutillier bou
+to fix tests with ruby-rabl-rails 0.4.x
+The new version of ruby-rabl-rails uses a slightly different layout, and
+files to require in tests should be updated.
+ * Tighten Build-Depends on ruby-rabl-rails to force a version greater than
+0.4.x
+
+ -- Cédric Boutillier bou...@debian.org Sat
:53.0 +0100
@@ -1,3 +1,11 @@
+ruby-bogus (0.1.5-3) unstable; urgency=medium
+
+ * Do not build-depend on ruby-activerecord-nulldb-adapter (not in Jessie)
+(It was used just for tests)
+ * Exclude tests using ruby-activerecord-nulldb-adapter
+
+ -- Cédric Boutillier bou...@debian.org Sat, 15 Nov
Hello,
A new version of libm4ri has entered unstable earlier today. The
reverse dependency polybori needs to be rebuilt against this new
version. libm4ri is not yet built everywhere, some dep-waits are needed
on mips*, sparc and kfreebsd-i386.
nmu polybori_0.8.3-3 . ALL . -m 'Rebuild against
Jonathan Wiltshire wrote:
This is a library transition. We stopped accepting library transitions
some weeks ago. Do you have a Really Good Reason (tm) for your upload?
I have some;
- libm4ri and libm4rie change their SONAME at every release. However,
the interface to the library hasn't
Dear Jonathan,
Thank you!
Could you please remember to open a binNMU bug next time so your mail
doesn't risk being lost on the list?
Well noted.
Best wishes,
Cédric
signature.asc
Description: Digital signature
upstream tarball to remove examples/NeHe as it does not have a
+clear license (Closes: #713820).
+ * Do not rely on Rake file to clean.
+
+ -- Cédric Boutillier bou...@debian.org Sun, 26 Jan 2014 15:00:58 +0100
+
ruby-opengl (0.60.1+dfsg1-2) unstable; urgency=low
* Bump build dependency
Package: release.debian.org
Severity: normal
User: release.debian@packages.debian.org
Usertags: rm
Hi!
As a member of the Ruby team, I am asking for the removal of rubygems
from the archive. This package is for ruby1.8 only, which is now
deprecated (newer Ruby interpreter have their own
fix_CVE-2013-1812 from upstream to limit fetching file
+size and disable XML entity expansion, preventing possible XML denial of
+service attacks [CVE-2013-1812] (Closes: #702217).
+
+ -- Cédric Boutillier bou...@debian.org Sun, 30 Jun 2013 21:58:30 +0200
+
libopenid-ruby (2.1.8debian-1
@@ -1,3 +1,10 @@
+ruby1.9.1 (1.9.3.194-7) unstable; urgency=high
+
+ * debian/patches/CVE-2013-0269.patch: fix possible denial of service and
+unsafe object creation vulnerability in JSON (Closes: #700471)
+
+ -- Cédric Boutillier bou...@debian.org Wed, 13 Feb 2013 14:56:19 +0100
+
ruby1.9.1
packages to extra
+
+ -- Cédric Boutillier bou...@debian.org Mon, 15 Oct 2012 22:16:06 +0200
+
ruby-net-sftp (1:2.0.5-2) unstable; urgency=low
* Add epoch to version in order to properly override the previous
diff -Nru ruby-net-sftp-2.0.5/debian/control ruby-net-sftp-2.0.5/debian/control
/unit conditional to the definition of MiniTest.
+Loading minitest/unit before Minitest is defined screens the definition of
+TestUnitResult, causing tests to fail (Closes: #684860).
+
+ -- Cédric Boutillier cedric.boutill...@gmail.com Wed, 12 Sep 2012 12:41:26 +0200
+
ruby-mocha (0.11.3-2
interpreter.
+ * Add 9900_debug_test_failures.patch
+ Make the test suite output more verbose, to get enough info if something
+ goes wrong during the build.
+ * Bump Standards-Version: to 3.9.3 (no changes needed)
+
+ -- Cédric Boutillier cedric.boutill...@gmail.com Wed, 04 Jul 2012 13:34:26
Team,
Cédric Boutillier
**
Proposition for the message to debian-devel-announce@:
Hi!
In about two months, Wheezy will be frozen. One of the goals of the Ruby
Team for Wheezy is to try to push as far as possible the transition
28 matches
Mail list logo