[ubuntu/plucky-proposed] puma 6.4.3-1ubuntu1 (Accepted)
Athos Ribeiro
athos.ribeiro at canonical.com
Fri Dec 20 18:55:14 UTC 2024
puma (6.4.3-1ubuntu1) plucky; urgency=medium
* Merge with Debian unstable (LP: #2085270). Remaining changes:
- d/p/0018-disable-test-failing-with-ruby3.2.patch: some tests are failing
because they take too long, they do not seem real regressions.
* Dropped changes:
- Fix autopkgtests:
+ d/p/0019-Fix-path-of-certs-used-by-test_puma_server_ssl.patch
+ debian/tests/test_puma_server_ssl: switch to ruby3.3.
[ Removed in 6.4.3-1 ]
- Fix FTBFS due to certs expiration:
+ d/p/0010-Update-all-certs.patch
+ d/p/0011-Fix-path-of-certs-useb-by-test_example_cert_expirati.patch
[ Fixed in 6.4.2-6 ]
- SECURITY UPDATE: header clobbering using underscores
+ debian/patches/CVE-2024-45614.patch: prevent underscores from
clobbering hyphen headers in lib/puma/const.rb, lib/puma/request.rb,
ext/puma_http11/org/jruby/puma/Http11.java, test/test_normalize.rb,
test/test_request_invalid.rb.
+ CVE-2024-45614
[ Fixed in 6.4.3 ]
Date: Fri, 20 Dec 2024 11:12:25 -0300
Changed-By: Athos Ribeiro <athos.ribeiro at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/puma/6.4.3-1ubuntu1
-------------- next part --------------
Format: 1.8
Date: Fri, 20 Dec 2024 11:12:25 -0300
Source: puma
Built-For-Profiles: noudeb
Architecture: source
Version: 6.4.3-1ubuntu1
Distribution: plucky
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Athos Ribeiro <athos.ribeiro at canonical.com>
Launchpad-Bugs-Fixed: 2085270
Changes:
puma (6.4.3-1ubuntu1) plucky; urgency=medium
.
* Merge with Debian unstable (LP: #2085270). Remaining changes:
- d/p/0018-disable-test-failing-with-ruby3.2.patch: some tests are failing
because they take too long, they do not seem real regressions.
* Dropped changes:
- Fix autopkgtests:
+ d/p/0019-Fix-path-of-certs-used-by-test_puma_server_ssl.patch
+ debian/tests/test_puma_server_ssl: switch to ruby3.3.
[ Removed in 6.4.3-1 ]
- Fix FTBFS due to certs expiration:
+ d/p/0010-Update-all-certs.patch
+ d/p/0011-Fix-path-of-certs-useb-by-test_example_cert_expirati.patch
[ Fixed in 6.4.2-6 ]
- SECURITY UPDATE: header clobbering using underscores
+ debian/patches/CVE-2024-45614.patch: prevent underscores from
clobbering hyphen headers in lib/puma/const.rb, lib/puma/request.rb,
ext/puma_http11/org/jruby/puma/Http11.java, test/test_normalize.rb,
test/test_request_invalid.rb.
+ CVE-2024-45614
[ Fixed in 6.4.3 ]
Checksums-Sha1:
d9bfa465971f36e70a40f02aa26fdaf9cbdbf0ea 2237 puma_6.4.3-1ubuntu1.dsc
e33794a53e3d0a4319352b367154ec3124b179cb 388116 puma_6.4.3.orig.tar.gz
6b226c2cf6e9fa5127aeb2e06f4f53869124f5a9 73212 puma_6.4.3-1ubuntu1.debian.tar.xz
dcfc8e4603aaedc2fa7a04b184b561b311b1bc4f 15452 puma_6.4.3-1ubuntu1_source.buildinfo
Checksums-Sha256:
ea3def57ace9ed2856f7cce4104d405f1364d858ba4b73a4a8ca73a853906524 2237 puma_6.4.3-1ubuntu1.dsc
5ed78b1a81a0932b69c974723d78515c56db5b05760b36149b53bc75a915de3b 388116 puma_6.4.3.orig.tar.gz
fed2bc851d46c9ecd2fa7f468ae65d5b48be9ad87ce1e9b504a7043c9435316f 73212 puma_6.4.3-1ubuntu1.debian.tar.xz
5eb6a00cb3f454c61e91065cc3c44194f0abd337ff63f45c97611fa4318a8813 15452 puma_6.4.3-1ubuntu1_source.buildinfo
Files:
c8025a1c2a7fb33141e419bcbc494a94 2237 web optional puma_6.4.3-1ubuntu1.dsc
2516ff65f8815abf82ad88719b298739 388116 web optional puma_6.4.3.orig.tar.gz
332c604e77f0b3278bd4b6372f800b0c 73212 web optional puma_6.4.3-1ubuntu1.debian.tar.xz
b647b462d076b58131404fa2dfb98560 15452 web optional puma_6.4.3-1ubuntu1_source.buildinfo
Original-Maintainer: Debian Ruby Team <pkg-ruby-extras-maintainers at lists.alioth.debian.org>
Vcs-Git: https://git.launchpad.net/~athos-ribeiro/ubuntu/+source/puma
Vcs-Git-Commit: c0231072ab50876115c1d7c7af2ef9cf182e1976
Vcs-Git-Ref: refs/heads/merge-lp2085270-plucky
More information about the plucky-changes
mailing list