| Summary: | ruby-rack new security issue CVE-2019-16782 | ||
|---|---|---|---|
| Product: | Mageia | Reporter: | David Walser <luigiwalser> |
| Component: | Security | Assignee: | Pascal Terjan <pterjan> |
| Status: | RESOLVED FIXED | QA Contact: | Sec team <security> |
| Severity: | normal | ||
| Priority: | Normal | CC: | mageia |
| Version: | 7 | ||
| Target Milestone: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Source RPM: | ruby-rack-2.0.6-1.mga7.src.rpm | CVE: | |
| Status comment: | Fixed in Bug 26688 | ||
| Bug Depends on: | 26688 | ||
| Bug Blocks: | |||
|
Description
David Walser
2019-12-20 21:52:59 CET
David Walser
2019-12-20 21:53:10 CET
Whiteboard:
(none) =>
MGA7TOO Assigning to Pascal because, in the absence of a registered maintainer, you have done the most recent commits for this package. Hope this is OK. Assignee:
bugsquad =>
pterjan
David Walser
2020-01-14 17:40:52 CET
Status comment:
(none) =>
Fixed upstream in 2.0.8 Fedora has issued an advisory for this on January 18: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/HZXMWILCICQLA2BYSP6I2CRMUG53YBLX/ openSUSE has issued an advisory for this on February 12: https://lists.opensuse.org/opensuse-updates/2020-02/msg00059.html Pascal upgraded Cauldron to 2.2.2 on March 28. Whiteboard:
MGA7TOO =>
(none)
David Walser
2020-05-26 23:33:28 CEST
Depends on:
(none) =>
26688 updated to version 2.0.8 to fix this bug. I kept the patch to fix 26688 too. ruby-rack-2.0.8-1.mga7 Assignee:
pterjan =>
qa-bugs We'll assign the newer bug to QA. Assignee:
qa-bugs =>
pterjan
David Walser
2020-05-27 22:31:43 CEST
Status comment:
Fixed upstream in 2.0.8 =>
Fixed in Bug 26688 Fixed in: https://advisories.mageia.org/MGASA-2020-0252.html Status:
NEW =>
RESOLVED |