[Bug 1139682] Re: Sync ruby-rack 1.4.1-2.1 (universe) from Debian unstable (main)

Sat Mar 2 10:19:18 UTC 2013

Ergh no it doesn't look that simple:

Rewriting shebang line of /build/ruby-rack-E3ossE/ruby-rack-1.4.1/debian/ruby-rack/usr/bin/rackup
/usr/bin/ruby1.8 -I/usr/lib/ruby/vendor_ruby /usr/lib/ruby/vendor_ruby/gem2deb/test_runner.rb
Running tests for ruby1.8 using debian/ruby-tests.rake ...
/usr/bin/ruby1.8 /usr/bin/bacon -I./lib:./test -w -a -q -t '^(?!Rack::Adapter|Rack::Session::Memcache|Rack::Server|Rack::Handler)'
/usr/lib/ruby/1.8/timeout.rb:60: [BUG] Segmentation fault
ruby 1.8.7 (2012-02-08 patchlevel 358) [x86_64-linux]

.E..................Aborted
rake aborted!

** Information type changed from Public to Public Security

** Tags added: ftbfs

-- 
You received this bug notification because you are a member of Ubuntu
Sponsors Team, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1139682

Title:
  Sync ruby-rack 1.4.1-2.1 (universe) from Debian unstable (main)

Status in “ruby-rack” package in Ubuntu:
  New

Bug description:
  Please sync ruby-rack 1.4.1-2.1 (universe) from Debian unstable (main)

  Changelog entries since current raring version 1.4.1-2:

  ruby-rack (1.4.1-2.1) unstable; urgency=high

    [ KURASHIKI Satoru ]
    * Non-maintainer upload.
    * Create cherry-picked patches for Security Fix (Closes: #700173 #700226).
      - CVE-2013-0262: 0004-Prevent-symlink-path-traversals.patch
      - CVE-2013-0263: 0005-Use-secure_compare-for-hmac-comparison.patch

    [ Youhei SASAKI ]
    * Create cherry-picked patches for Security Fix (Closes: #698440).
      - CVE-2012-6109: 0001-Fix-parsing-performance-for-unquoted-filenames.patch
      - CVE-2013-0183: 0002-multipart-parser-avoid-unbounded-gets-method.patch
      - CVE-2013-0184: 0003-Reimplement-auth-scheme-fix.patch

   -- KURASHIKI Satoru <lurdan at gmail.com>  Wed, 20 Feb 2013 20:56:31
  +0900

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/ruby-rack/+bug/1139682/+subscriptions