Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted ruby-rack-cors 0.4.0-1+deb9u2 (source all) into oldstable
Date: Thu, 01 Oct 2020 07:40:14 +0000
Signed by: Utkarsh Gupta <utkarsh@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Thu, 01 Oct 2020 12:24:44 +0530
Source: ruby-rack-cors
Binary: ruby-rack-cors
Architecture: source all
Version: 0.4.0-1+deb9u2
Distribution: stretch-security
Urgency: high
Maintainer: Debian Ruby Extras Maintainers <pkg-ruby-extras-maintainers@lists.alioth.debian.org>
Changed-By: Utkarsh Gupta <utkarsh@debian.org>
Description:
 ruby-rack-cors - enable Cross-Origin Resource Sharing in Rack apps
Changes:
 ruby-rack-cors (0.4.0-1+deb9u2) stretch-security; urgency=high
 .
   * Non-maintainer upload by the LTS team.
   * Fix CVE-2019-18978: This package allowed ../ directory traversal
     to access private resources because resource matching did not
     ensure that pathnames were in a canonical format.
Checksums-Sha1:
 e22a2506536e4583b998b123ed177e1cf9efa2a0 2153 ruby-rack-cors_0.4.0-1+deb9u2.dsc
 6a29c595f7ee83391ca1f98735321db31eb74dab 47596 ruby-rack-cors_0.4.0.orig.tar.gz
 2d4eb30f762d4c3565e0c288af8a58d848ad1fa3 4808 ruby-rack-cors_0.4.0-1+deb9u2.debian.tar.xz
 5ffda86ee2518e2691b4c8f31ae9261e59a1e08d 9808 ruby-rack-cors_0.4.0-1+deb9u2_all.deb
 7c02616aac049884eae521ee92ae346d51d042bc 7558 ruby-rack-cors_0.4.0-1+deb9u2_amd64.buildinfo
Checksums-Sha256:
 14ea7442cbad622e84c542e435e4b468c18842b3ece99d71cdca9ad009728a49 2153 ruby-rack-cors_0.4.0-1+deb9u2.dsc
 1fa07dfdda85cb1eb0787b52f083c3aa4f264e1105cd5355650a38e2891705cb 47596 ruby-rack-cors_0.4.0.orig.tar.gz
 77497bc1b4efa1e616b9d50777eded3c9208fd84a9dd62ce011950162221ac95 4808 ruby-rack-cors_0.4.0-1+deb9u2.debian.tar.xz
 4f0c85165b0f4ee1a1414f5a5d794d7214e4f92685a5b24d15fcbe75f816861a 9808 ruby-rack-cors_0.4.0-1+deb9u2_all.deb
 c6de46bc794e8cbe26439b9e179339a6f3257f3a43913574ca9de91c6c4dde4a 7558 ruby-rack-cors_0.4.0-1+deb9u2_amd64.buildinfo
Files:
 12cecfc1f09ccb20283e783775d3ecb8 2153 ruby optional ruby-rack-cors_0.4.0-1+deb9u2.dsc
 723761bd5664421c46851bd07a630c90 47596 ruby optional ruby-rack-cors_0.4.0.orig.tar.gz
 081a436ff3690747ceffb746b865fcee 4808 ruby optional ruby-rack-cors_0.4.0-1+deb9u2.debian.tar.xz
 bb6c3c0e5b89594d3b304a3478032d2d 9808 ruby optional ruby-rack-cors_0.4.0-1+deb9u2_all.deb
 e21b5d0c7389da21533a55f497f018aa 7558 ruby optional ruby-rack-cors_0.4.0-1+deb9u2_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----

iQJHBAEBCAAxFiEEbJ0QSEqa5Mw4X3xxgj6WdgbDS5YFAl91gYITHHV0a2Fyc2hA
ZGViaWFuLm9yZwAKCRCCPpZ2BsNLlmJ+EAC7yIlh5iMBiFxBx46Qn40Z3cM+/Jwp
tEWDPlvshwXkKaIIGdOrEh6DgNp7jbz6Rh147kHXygp7W70IWlUAlW+jT21Mi4va
5jqYC2xwZC9mvzdMZX9HSeu8LOT1eLSkJyAmY358fRk3Eq876eIhR85VIK5AIPJf
x9MGsiHoIFTG+Ly6Y+Xgvq32jLHGqYhf0+r/bzpE+ddG8nbUNLoOt2PQruxbDsJF
9Swqy0lssQ6PCN5U9MZf2QskKpz2A+SklLK7kTDGXY6gViRulrw124x5Kl/j59ED
yV7q/61j3/b+rH729v8g/9sZyzsL/lu3gTqibG10ppHNM8YUY502X8c09iBmkkSx
nOJJJuUv8St/922gN4/++oJ/msS+848OKT5qd8/vwhOit4kPGaVnAf/jc+DqUy0/
xDINb9YMVqOQRKDlFpUwlebtRZSZsVpI0a4mpKfERzWIGQbi3yFGlUtVp0C0NLNR
nD5eQyaE+QzDFVk3fhpBF6kFobBzlnBmziPhuDfztcQxKv8ODvFUzc1GIa5lesKg
sTx/V05nxdyjmN/VY4dydoq093VsGsOwg78Ld03IMsQMAuZgxImKFgD/xn2EGYja
nX8mgERuPMR+7ikwkgXDlQ43JsYohBfjHMtYL6/Ics8TUlJ/Msxe3fT1hcCawpO7
5G2zadzjesxWng==
=l6CX
-----END PGP SIGNATURE-----

News for package ruby-rack-cors