Bug#741118: wheezy-pu: package ruby-passenger/3.0.13debian-1+deb7u2

To: Felix Geyer <fgeyer@debian.org>, 741118@bugs.debian.org
Subject: Bug#741118: wheezy-pu: package ruby-passenger/3.0.13debian-1+deb7u2
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Tue, 11 Mar 2014 22:16:46 +0000
Message-id: <[🔎] 1394576206.4527.27.camel@jacala.jungle.funky-badger.org>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 741118@bugs.debian.org
In-reply-to: <[🔎] 20140308192507.6932.45753.reportbug@localhost6.localdomain6>
References: <[🔎] 20140308192507.6932.45753.reportbug@localhost6.localdomain6>

Control: tags -1 + confirmed

On Sat, 2014-03-08 at 20:25 +0100, Felix Geyer wrote:
> There is another minor security issue in ruby-passenger concerning
> insecure usage of temp files.
> CVE-2014-1831 and CVE-2014-1832 have been assigned for this issue.
> 
> I'd like to fix those by backporting the relevant upstream commits,
> see the attached debdiff.

Please go ahead; thanks.

Regards,

Adam

Reply to:

Follow-Ups:
- Bug#741118: wheezy-pu: package ruby-passenger/3.0.13debian-1+deb7u2
  - From: Felix Geyer <fgeyer@debian.org>

References:
- Bug#741118: wheezy-pu: package ruby-passenger/3.0.13debian-1+deb7u2
  - From: Felix Geyer <fgeyer@debian.org>

Prev by Date: Processed: Re: Bug#739946: wheezy-pu: package advi/1.10.2-1
Next by Date: Processed: Re: Bug#741118: wheezy-pu: package ruby-passenger/3.0.13debian-1+deb7u2
Previous by thread: Bug#741118: wheezy-pu: package ruby-passenger/3.0.13debian-1+deb7u2
Next by thread: Bug#741118: wheezy-pu: package ruby-passenger/3.0.13debian-1+deb7u2
Index(es):
- Date
- Thread