[DRE-maint] Bug#847157: gitlab: CVE-2016-9469

control: tags -1 pending On 2016, ഡിസംബർ 6 11:52:00 AM IST, Salvatore Bonaccorso wrote: >According to upstream all 8.13.0 through 8.13.7 are affected. Updated in git and people.debian.org/~praveen/gitlab. I'm waiting for current version in unstable to migrate before I

[DRE-maint] Processed: Re: Bug#847157: gitlab: CVE-2016-9469

Processing control commands: > tags -1 pending Bug #847157 [src:gitlab] gitlab: CVE-2016-9469 Added tag(s) pending. -- 847157: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=847157 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems

[DRE-maint] Bug#847157: gitlab: CVE-2016-9469

Source: gitlab Version: 8.13.3+dfsg1-2 Severity: grave Tags: security upstream Hi, the following vulnerability was published for gitlab. CVE-2016-9469[0]: |Denial-of-Service and Data Corruption Vulnerability in Issue and Merge |Request Trackers If you fix the vulnerability please also make

[DRE-maint] trocla is marked for autoremoval from testing

trocla 0.2.3-1 is marked for autoremoval from testing on 2017-01-11 It (build-)depends on packages with these RC bugs: 846090: ruby-moneta: ruby-moneta FTBFS in stretch due to build-dependency on mysql-server-5.7 ___ Pkg-ruby-extras-maintainers

[DRE-maint] ruby-upr is marked for autoremoval from testing

ruby-upr 0.3.0-2 is marked for autoremoval from testing on 2017-01-11 It (build-)depends on packages with these RC bugs: 846090: ruby-moneta: ruby-moneta FTBFS in stretch due to build-dependency on mysql-server-5.7 ___ Pkg-ruby-extras-maintainers

[DRE-maint] jekyll is marked for autoremoval from testing

jekyll 3.1.6+dfsg-3 is marked for autoremoval from testing on 2016-12-27 It is affected by these RC bugs: 846115: jekyll: FTBFS randomly (failing tests) ___ Pkg-ruby-extras-maintainers mailing list Pkg-ruby-extras-maintainers@lists.alioth.debian.org

[DRE-maint] ruby-clockwork is marked for autoremoval from testing

ruby-clockwork 1.2.0-3 is marked for autoremoval from testing on 2016-12-26 It is affected by these RC bugs: 846020: ruby-clockwork: FTBFS (Clockwork::DatabaseEvents::SyncPerformer::setup::when fails) ___ Pkg-ruby-extras-maintainers mailing list

[DRE-maint] reel_0.6.1-3_source.changes ACCEPTED into unstable

Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Mon, 05 Dec 2016 21:32:52 -0500 Source: reel Binary: reel Architecture: source Version: 0.6.1-3 Distribution: unstable Urgency: medium Maintainer: Debian Ruby Extras Maintainers

[DRE-maint] Processing of reel_0.6.1-3_source.changes

reel_0.6.1-3_source.changes uploaded successfully to localhost along with the files: reel_0.6.1-3.dsc reel_0.6.1-3.debian.tar.xz Greetings, Your Debian queue daemon (running on host usper.debian.org) ___ Pkg-ruby-extras-maintainers mailing

[DRE-maint] Processed: tagging 843631, tagging 843414, found 845926 in 0.99.2-1, found 846504 in 113.00.00-1 ...

Processing commands for cont...@bugs.debian.org: > tags 843631 + sid stretch Bug #843631 {Done: Jonas Smedegaard } [python-openssl] Downstream incompatibilities due to SSL_ST_* Bug #843783 {Done: Jonas Smedegaard } [python-openssl] deluge-gtk: fails to start:

[DRE-maint] Bug#847141: marked as done (ruby-json-pure, ruby-json: error when trying to install together)

Your message dated Mon, 05 Dec 2016 23:48:51 + with message-id and subject line Bug#847141: fixed in ruby-json 2.0.1+dfsg-3 has caused the Debian Bug report #847141, regarding ruby-json-pure,ruby-json: error when trying to install together to be marked as

[DRE-maint] Bug#847141: marked as done (ruby-json-pure, ruby-json: error when trying to install together)

Your message dated Mon, 05 Dec 2016 23:48:56 + with message-id and subject line Bug#847141: fixed in ruby-json-pure 2.0.2+dfsg-3 has caused the Debian Bug report #847141, regarding ruby-json-pure,ruby-json: error when trying to install together to be

[DRE-maint] ruby-json_2.0.1+dfsg-3_source.changes ACCEPTED into unstable

Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Mon, 05 Dec 2016 18:33:24 -0500 Source: ruby-json Binary: ruby-json Architecture: source Version: 2.0.1+dfsg-3 Distribution: unstable Urgency: medium Maintainer: Debian Ruby Extras Maintainers

[DRE-maint] ruby-json-pure_2.0.2+dfsg-3_source.changes ACCEPTED into unstable

Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Mon, 05 Dec 2016 18:27:35 -0500 Source: ruby-json-pure Binary: ruby-json-pure Architecture: source Version: 2.0.2+dfsg-3 Distribution: unstable Urgency: high Maintainer: Debian Ruby Extras Maintainers

[DRE-maint] Processing of ruby-json_2.0.1+dfsg-3_source.changes

ruby-json_2.0.1+dfsg-3_source.changes uploaded successfully to localhost along with the files: ruby-json_2.0.1+dfsg-3.dsc ruby-json_2.0.1+dfsg-3.debian.tar.xz Greetings, Your Debian queue daemon (running on host usper.debian.org) ___

[DRE-maint] Processing of ruby-json-pure_2.0.2+dfsg-3_source.changes

ruby-json-pure_2.0.2+dfsg-3_source.changes uploaded successfully to localhost along with the files: ruby-json-pure_2.0.2+dfsg-3.dsc ruby-json-pure_2.0.2+dfsg-3.debian.tar.xz Greetings, Your Debian queue daemon (running on host usper.debian.org)

[DRE-maint] Bug#847141: ruby-json-pure, ruby-json: error when trying to install together

Package: ruby-json-pure,ruby-json Severity: serious User: trei...@debian.org Usertags: edos-file-overwrite Control: found -1 2.0.1+dfsg-2 Control: found -1 2.0.2+dfsg-2 Hi, automatic installation tests of packages that share a file and at the same time do not conflict by their package dependency

[DRE-maint] Processed: ruby-json-pure, ruby-json: error when trying to install together

Processing control commands: > found -1 2.0.1+dfsg-2 Bug #847141 [ruby-json-pure,ruby-json] ruby-json-pure,ruby-json: error when trying to install together There is no source info for the package 'ruby-json-pure' at version '2.0.1+dfsg-2' with architecture '' Marked as found in versions

[DRE-maint] Bug#847114: gitlab: sidekiq service file needs to change from -q to -C

Package: gitlab Version: 8.13.3+dfsg1-2 Severity: important Dear Maintainer, sidekiq service file is using -q to set queues, as queues change sidekiq won't process new queues, changing the service file to use -C /etc/gitlab/sidekiq_queues.yml instead fixes this and makes it more future proof.

[DRE-maint] Processed: [bts-link] source package src:ruby-mini-magick

Processing commands for cont...@bugs.debian.org: > # > # bts-link upstream status pull for source package src:ruby-mini-magick > # see http://lists.debian.org/debian-devel-announce/2006/05/msg1.html > # > user bts-link-upstr...@lists.alioth.debian.org Setting user to

[DRE-maint] [bts-link] source package src:ruby-mini-magick

# # bts-link upstream status pull for source package src:ruby-mini-magick # see http://lists.debian.org/debian-devel-announce/2006/05/msg1.html # user bts-link-upstr...@lists.alioth.debian.org # remote status report for #835078 (http://bugs.debian.org/835078) # Bug title: ruby-mini-magick:

[DRE-maint] ruby-serverspec 2.37.2-1 MIGRATED to testing

FYI: The status of the ruby-serverspec source package in Debian's testing distribution has changed. Previous version: 2.18.0-1 Current version: 2.37.2-1 -- This email is automatically generated once a day. As the installation of new packages into testing happens multiple times a day you

[DRE-maint] reel 0.6.1-2 MIGRATED to testing

FYI: The status of the reel source package in Debian's testing distribution has changed. Previous version: (not in testing) Current version: 0.6.1-2 -- This email is automatically generated once a day. As the installation of new packages into testing happens multiple times a day you will

[DRE-maint] ruby-specinfra 2.66.0-1 MIGRATED to testing

FYI: The status of the ruby-specinfra source package in Debian's testing distribution has changed. Previous version: 2.35.1-1 Current version: 2.66.0-1 -- This email is automatically generated once a day. As the installation of new packages into testing happens multiple times a day you

[DRE-maint] ruby-grape-entity 0.6.0-1 MIGRATED to testing

FYI: The status of the ruby-grape-entity source package in Debian's testing distribution has changed. Previous version: 0.5.1-2 Current version: 0.6.0-1 -- This email is automatically generated once a day. As the installation of new packages into testing happens multiple times a day you

[DRE-maint] berkshelf-api 2.2.0-1 MIGRATED to testing

FYI: The status of the berkshelf-api source package in Debian's testing distribution has changed. Previous version: (not in testing) Current version: 2.2.0-1 -- This email is automatically generated once a day. As the installation of new packages into testing happens multiple times a day

[DRE-maint] Bug#591419: librmagick-ruby should not be installable with imagemagick

On 03.12.2016 [10:24:19 -0200], Antonio Terceiro wrote: > On Fri, Dec 02, 2016 at 11:12:21AM -0800, Nishanth Aravamudan wrote: > > Package: ruby-rmagick > > Version: 2.15.4+dfsg-2 > > Followup-For: Bug #591419 > > User: ubuntu-de...@lists.ubuntu.com > > Usertags: origin-ubuntu zesty ubuntu-patch >

[DRE-maint] Bug#591419: librmagick-ruby should not be installable with imagemagick

On Mon, Dec 05, 2016 at 09:18:07AM +0100, Nish Aravamudan wrote: > > However, I fail to see how this would fix the issue, since it won't help > > with the very problem that a new version of ImageMagick that has no > > SONAME bump breaks ruby-rmagick. > > So you're right that it does not "fix" the