Bug#882802: jessie-pu: package ruby-ox/2.1.1-2+b2

To: Cédric Boutillier <boutil@debian.org>, 882802@bugs.debian.org
Subject: Bug#882802: jessie-pu: package ruby-ox/2.1.1-2+b2
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Sat, 02 Dec 2017 19:35:38 +0000
Message-id: <[🔎] 1512243338.2278.70.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 882802@bugs.debian.org
In-reply-to: <151173531966.25523.1326886712407723901.reportbug@esfahan>
References: <151173531966.25523.1326886712407723901.reportbug@esfahan> <151173531966.25523.1326886712407723901.reportbug@esfahan>

Control: tags -1 + pending

On Sun, 2017-11-26 at 23:28 +0100, Cédric Boutillier wrote:
> this update fixes bug #881445 [CVE-2017-15928]
> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=881445
> by cherrypicking a patch from upstream, to crash of the ruby
> interpreter
> on a parse error.
> 
> Debdiff attached.
> 
> As mentioned in
> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=882724#10
> since the debdiffs are identical for jessie and stretch,
> except for version numbers and suite, the upload to jessie will
> follow shortly this report.
> 

Flagged for acceptance.

Regards,

Adam

Reply to:

Prev by Date: Processed: Re: Bug#882802: jessie-pu: package ruby-ox/2.1.1-2+b2
Next by Date: Bug#882503: jessie-pu: package sam2p/0.49.2-3
Previous by thread: Processed: Re: Bug#882961: jessie-pu: package pdns/3.4.1-4+deb8u8
Next by thread: Processed: Re: Bug#882802: jessie-pu: package ruby-ox/2.1.1-2+b2
Index(es):
- Date
- Thread