Control: retitle -1 test using GCM with IV option fails after fix for
CVE-2016-7798
Hi,
Checking when the package stopped to pass autopkgtests, I could trace
the issue to the fix of #842432 in ruby2.3 to avoid IV reuse in GCM
mode. The title of the failing test
Processing control commands:
> retitle -1 test using GCM with IV option fails after fix for CVE-2016-7798
Bug #880276 [src:ruby-encryptor] ruby-encryptor: FTBFS: ERROR: Test "ruby2.3"
failed: Invalid gemspec in [encryptor.gemspec]: No such file or directory - git
Changed Bug title to 'test using
Package: release.debian.org
Severity: normal
Tags: stretch
User: release.debian@packages.debian.org
Usertags: pu
Hi,
this update fixes bug #881445 [CVE-2017-15928]
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=881445
by cherrypicking a patch from upstream, to crash of the ruby
Accepted:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Sun, 26 Nov 2017 00:43:17 +0100
Source: ruby-oj
Binary: ruby-oj
Architecture: source
Version: 3.3.9-1~exp1
Distribution: experimental
Urgency: medium
Maintainer: Debian Ruby Extras Maintainers
Source: ruby-multi-xml
Version: 0.5.5-2
Severity: serious
Tags: buster sid
Some recent change in unstable makes ruby-multi-xml FTBFS:
https://tests.reproducible-builds.org/debian/history/ruby-multi-xml.html
https://tests.reproducible-builds.org/debian/rb-pkg/unstable/amd64/ruby-multi-xml.html
ruby-oj_3.3.9-1~exp1_source.changes uploaded successfully to localhost
along with the files:
ruby-oj_3.3.9-1~exp1.dsc
ruby-oj_3.3.9.orig.tar.gz
ruby-oj_3.3.9-1~exp1.debian.tar.xz
ruby-oj_3.3.9-1~exp1_source.buildinfo
Greetings,
Your Debian queue daemon (running on host
Processing commands for cont...@bugs.debian.org:
> fixed 864723 ruby-httparty/0.15.6-1~exp1
Bug #864723 [ruby-httparty] ruby-httparty: gemfile references json ~> 1.8 which
is not available
The source ruby-httparty and version 0.15.6-1~exp1 do not appear to match any
binary packages
Marked as
Accepted:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Sat, 25 Nov 2017 10:41:34 +0100
Source: ruby-httparty
Binary: ruby-httparty
Architecture: source
Version: 0.15.6-1~exp1
Distribution: experimental
Urgency: medium
Maintainer: Debian Ruby Extras Maintainers
ruby-httparty_0.15.6-1~exp1_source.changes uploaded successfully to localhost
along with the files:
ruby-httparty_0.15.6-1~exp1.dsc
ruby-httparty_0.15.6.orig.tar.gz
ruby-httparty_0.15.6-1~exp1.debian.tar.xz
ruby-httparty_0.15.6-1~exp1_source.buildinfo
Greetings,
Your Debian queue
Accepted:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Mon, 13 Nov 2017 12:45:05 +0100
Source: ruby-gpgme
Binary: ruby-gpgme
Architecture: source amd64
Version: 2.0.14-1~bpo9+1
Distribution: stretch-backports
Urgency: medium
Maintainer: Debian Ruby Extras Maintainers
Package: release.debian.org
Severity: normal
Tags: stretch
User: release.debian@packages.debian.org
Usertags: pu
Hi,
The current package in stretch provides a Ruby library that cannot be
loaded properly with Ruby 'gem' tool, because of a too strict versioned
dependency on the json Ruby
(Resending to fix the mail headers, sorry. Please reply to this one,
not the previous one.)
Hi. You're receiving this mail because you fall into one or more of the
following categories:
* Are associated with the curl package (To)
* Have been involved in discussions I found in the BTS about
12 matches
Mail list logo