Ubuntu
ruby-rack package

Change logs for ruby-rack source package in Mantic

  1. Mantic (23.10)
  2. Change log 
  • ruby-rack (3.0.8-1) experimental; urgency=medium

  * New upstream release.
  * Declare compliance with Debian Policy 4.6.2
  * d/p/skip-random-failure.patch: removed, it does not seem to be failing
    anymore.

 -- Lucas Kanashiro <email address hidden>  Mon, 26 Jun 2023 17:35:11 -0300
  • ruby-rack (3.0.0-1ubuntu1) mantic; urgency=medium

  * debian/patches/Remove-leading-dot-to-fix-compatibility-with-latest-
    cgi-gem.patch: compatibility with ruby CGI >= 0.3.5.
    Closes: #1030442, LP: #2023576.

 -- Steve Langasek <email address hidden>  Mon, 12 Jun 2023 11:33:36 -0700
  • ruby-rack (3.0.0-1) experimental; urgency=medium

  * New upstream release.
  * d/p/0002-Make-tests-pass-on-hosts-that-have-no-ipv4-connectiv.patch:
    delete patch applied by upstream.
  * Refresh patches.
  * d/ruby-rack.docs: install README.md instead of README.rdoc.
  * d/control: add myself to the Uploaders list.
  * Do not install rackup manpage anymore. Remove:
    - d/rackup.1
    - d/ruby-rack.manpages
  * d/control: recommend ruby-rack-session and ruby-rackup.
  * d/t/control: add ruby-rackup as a test dependency of smoke-test.
  * d/t/smoke-test: content-type key needs to be in lowercase.
  * Do not depend on thin to run tests during build and autopkgtest time.

 -- Lucas Kanashiro <email address hidden>  Wed, 09 Nov 2022 17:26:10 -0300
  • ruby-rack (2.2.4-3ubuntu0.1) mantic-security; urgency=medium

  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2023-27539.patch: avoid ReDos
      in lib/rack/request.rb.
    - CVE-2023-27539
  * SECURITY UPDATE: Denial of service
    - debian/parches/CVE-2024-26141.patch: return an empty array
      when ranges are too large in lib/rack/utils.rb.
    - CVE-2024-26141
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2024-26146.patch: Fixing ReDoS in header parsing
      in lib/rack/utils.rb.
    - CVE-2024-26146

 -- Leonidas Da Silva Barbosa <email address hidden>  Tue, 05 Mar 2024 13:42:47 -0300
  • ruby-rack (2.2.4-3) unstable; urgency=high

  * Team upload
  * Fix test failures (Closes:  #1030442)
  * Fix CVE-2022-44570 CVE-2022-44571 CVE-2022-44572 (Closes:  #1029832)
  * Add Breaks for ruby-sinatra

 -- Sruthi Chandran <email address hidden>  Thu, 09 Feb 2023 11:47:17 +0100