-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sun, 11 Aug 2019 13:00:50 +0530 Source: gitlab Architecture: source Version: 11.11.7+dfsg-1 Distribution: experimental Urgency: medium Maintainer: Debian Ruby Extras Maintainers <pkg-ruby-extras-maintainers@lists.alioth.debian.org> Changed-By: Pirate Praveen <praveen@debian.org> Closes: 933785 Changes: gitlab (11.11.7+dfsg-1) experimental; urgency=medium . [ Pirate Praveen ] * New upstream security release 11.11.7+dfsg (Closes: #933785) (Fixes: CVE-2019-5470, CVE-2019-5469, CVE-2019-5468, CVE-2019-5466, CVE-2019-5465, CVE-2019-5464, CVE-2019-5463, CVE-2019-5462, CVE-2019-5461) * Use packaged version of node-d3 * Refresh patches * Bump standards version to 4.4.0 * Install security.txt * Update embedded rails version to 5.1.7 * Add ruby-omniauth-openid-connect, ruby-sassc and ruby-jaeger-client as new dependencies. * Embed omniauth-ultraauth, omniauth-salesforce, apollo_upload_server, sassc-rails, gitlab-labkit * Update dependency on ruby-sidekiq and ruby-nokogiri, gitaly, ruby-fog-google, ruby-batch-loader, ruby-gitaly-proto, ruby-grpc . [ Dmitry Smirnov ] * CI: dropped .git directory and added job to build on Buster. . [ Pirate Praveen ] * Update minimum version of gitaly * Switch to packaged version of webpack * Use packaged versions of node-worker-loader, node-cache-loader, node-imports-loader, node-exports-loader, node-url-loader, node-raw-loader and node-file-loader * Remove upstream-file-list.new in clean Checksums-Sha1: cbd22954b147d04e61009b7438670161b389c271 2354 gitlab_11.11.7+dfsg-1.dsc 63f7d5e069af4ef2507e80056761bdb1937be5a6 68198484 gitlab_11.11.7+dfsg.orig.tar.xz 1144c0d5f7902abcdbe8fefdb0a477859be8ce18 1267156 gitlab_11.11.7+dfsg-1.debian.tar.xz 696cccb0495af5fb2f10bae162ea312be85776ad 8996 gitlab_11.11.7+dfsg-1_amd64.buildinfo Checksums-Sha256: 05807c7a0566125d3d1e13607b2c54133e21de4ba62b598d363a4f9e5ea847cd 2354 gitlab_11.11.7+dfsg-1.dsc 0eaf0e308b93dca7a73e295eef7424e30da70a645507c5c689dc25d7e94ebc80 68198484 gitlab_11.11.7+dfsg.orig.tar.xz 116703cfd7691ec09b924ec0a48f263b4b1d4b7c4b65bdc84c222b68586aca54 1267156 gitlab_11.11.7+dfsg-1.debian.tar.xz 0ee24feacae2ebf4b36916572916be10d49d95786cabda0e288ad89ca43404b8 8996 gitlab_11.11.7+dfsg-1_amd64.buildinfo Files: 6485f4e1cd373e3a2741c10832fa0907 2354 net optional gitlab_11.11.7+dfsg-1.dsc 820cf3049b99049d6206e63004ba2067 68198484 net optional gitlab_11.11.7+dfsg.orig.tar.xz aed7eae63652e582bcd45f573797be0a 1267156 net optional gitlab_11.11.7+dfsg-1.debian.tar.xz 973364e748f5315e39535212b46b781a 8996 net optional gitlab_11.11.7+dfsg-1_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE/OFtr184QaN6dPMgC3aSB2Kmt4UFAl1Pz+gACgkQC3aSB2Km t4U2Xw//VHh1hyuB4IgbdGJAKht3U6H7Xl6qijKQwn4xHNwOJxsy3VXB+whAbdxa aBAjI+Krmi7PIV+nLZstZnDaVSdjhsXfJPaAD5Eb5e8dElvEmdtUsInAyvdCa6v0 Lr+m2603yJzX3Wi+3hOAi0nouhTExD161tkYo2FU0677ntSyLLKKmkUYz+3QyF4d 0NqB5Jt4PfW4q2K628kVtD732gxStXlhaDraK9Tu2bgTo9XnIkNTBe5reF7ALawO K4FEB8kPNgNsfR3+0I8d1LeTDMiT74YCtpOv/mir2JezLEgicrAMx5RnnFgVuOVl H75WxsyDKzWpRfGjMC4XSSnEBkJVMwjqovJDrzvv7tL66yLiNOPh2/X9jd1L6x9q WEXGMDrdqSUIQRBDvWz0gGrphEG5WXz0oXTF/esMAR78VJ/HSuQIl0VnfUu8+vML hB3tGsjeE0PZNEQQZWCvnMHOsicpnByYbjZ3WKj+UHwuQO+ugmP6PhKDl6tPEjoR 8vX8NPIiJX3LPDRj/S95Z+x3VRGHYwNd7zLgtzJDhrIMG7npHmD4uZ+oJeEBLhd1 mO4ipz09GQbMntRix7VU1sCP6MHJHEOivS9Y1XwuzqVB7OOewMRYe1A4DDV0nlFM KIRxvL+SOPQm9B8t2ptNTTg9EvyWCQn9RgGleKgTvFD0J51fVGo= =aUtL -----END PGP SIGNATURE-----