[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

CVE-2018-1000074: rubygems, jruby & ruby1.9.11

Hi Santiago,

I just triaged rubygems & jruby for wheezy re. CVE-2018-1000074 and
noticed that ruby1.9.1 is also vulnerable. You still have this latter
package reserved in dla-needed.txt since March 18th.

Can you let me know whether you still wish to work on this package
or whether you would — in addition — like to take the same underlying
issue in rubygems and jruby as well?

If not, no problem, and I will handle all three cases ASAP. Just let
me know.

Best wishes,

     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk

Reply to: