-
ruby-rack (2.1.4-2) unstable; urgency=medium
* Revert "Drop all patches"
- Rack::Builder::parse_file#test_0006_strips
leading unicode byte order mark when present still
fails in i386 and stuff. Meh, I'll take a look later.
-- Utkarsh Gupta <email address hidden> Sun, 03 Jan 2021 17:49:29 +0530
-
ruby-rack (2.1.1-6) unstable; urgency=medium
[ Cédric Boutillier ]
* [ci skip] Update team name
* [ci skip] Add .gitattributes to keep unwanted files out
of the source package
[ Debian Janitor ]
* Apply multi-arch hints. + ruby-rack: Add :all qualifier
for ruby dependency.
[ Utkarsh Gupta ]
* When parsing cookies, only decode the values.
Patch utils to fix cookie parsing. (Fixes: CVE-2020-8184)
(Closes: #963477)
-- Utkarsh Gupta <email address hidden> Sat, 02 Jan 2021 17:42:02 +0530
-
ruby-rack (2.1.1-5) unstable; urgency=medium
* Add patch to use Dir.entries instead of Dir[glob] to prevent
user-specified glob metacharacters (Fixes: CVE-2020-8161)
-- Utkarsh Gupta <email address hidden> Thu, 21 May 2020 17:06:27 +0530