-
ruby-rack (2.1.1-5ubuntu0.1) groovy-security; urgency=medium
* SECURITY UPDATE: Cookie forgery.
- debian/patches/CVE-2020-8184.patch: When parsing cookies, only
decode the values.
- CVE-2020-8184
-- Eduardo Barretto <email address hidden> Thu, 01 Apr 2021 16:20:01 +0200
-
ruby-rack (2.1.1-5) unstable; urgency=medium
* Add patch to use Dir.entries instead of Dir[glob] to prevent
user-specified glob metacharacters (Fixes: CVE-2020-8161)
-- Utkarsh Gupta <email address hidden> Thu, 21 May 2020 17:06:27 +0530
-
ruby-rack (2.1.1-4) unstable; urgency=medium
* Remove ruby-minitest-global-expectations from Depends
* Add ruby-minitest-global-expectations for tests
-- Utkarsh Gupta <email address hidden> Fri, 10 Apr 2020 18:37:00 +0530
-
ruby-rack (2.0.7-2) unstable; urgency=medium
* Team upload
* Re-upload to unstable
* Add salsa-ci.yml
* Bump Standards-Version to 4.4.0
* Bump debhelper-compat to 12
-- Utkarsh Gupta <email address hidden> Tue, 03 Sep 2019 00:22:18 +0530
