RFS: ruby-hiera / CVE-2014-3248
Hello,
I have updated ruby-hiera to 1.3.4, this is a fix for CVE-2014-3248:
ruby-hiera (1.3.4-1) unstable; urgency=high
.
* Team upload.
* d/control:
- removed version depend on mcollective-common, puppet-common. fits for all
debian releases.
- added ruby-json to depends, included json backend needs ruby-json
* Imported Upstream version 1.3.4
- fixes CVE-2014-3248
Could any dd please have a look? - Stable is also affected, I will prepare the stable
update and inform security team.
Thanks,
Jonas
Reply to: