-
ruby-rack (1.5.2-1) unstable; urgency=low
* Team upload.
[ Cédric Boutillier ]
* debian/control: remove obsolete DM-Upload-Allowed flag
* use canonical URI in Vcs-* fields
[ Christian Hofstaedtler ]
* New upstream release.
* Removed all patches, already applied upstream.
-- Christian Hofstaedtler <email address hidden> Mon, 03 Jun 2013 15:56:09 +0200
-
ruby-rack (1.4.1-2.1) unstable; urgency=high
[ KURASHIKI Satoru ]
* Non-maintainer upload.
* Create cherry-picked patches for Security Fix (Closes: #700173 #700226).
- CVE-2013-0262: 0004-Prevent-symlink-path-traversals.patch
- CVE-2013-0263: 0005-Use-secure_compare-for-hmac-comparison.patch
[ Youhei SASAKI ]
* Create cherry-picked patches for Security Fix (Closes: #698440).
- CVE-2012-6109: 0001-Fix-parsing-performance-for-unquoted-filenames.patch
- CVE-2013-0183: 0002-multipart-parser-avoid-unbounded-gets-method.patch
- CVE-2013-0184: 0003-Reimplement-auth-scheme-fix.patch
-- KURASHIKI Satoru <email address hidden> Wed, 20 Feb 2013 20:56:31 +0900
-
ruby-rack (1.4.1-2) unstable; urgency=low
* Bump build dependency on gem2deb to >= 0.3.0~
-- Antonio Terceiro <email address hidden> Mon, 25 Jun 2012 15:07:51 -0300
