Debian Package Tracker - ruby-doorkeeper-openid-connect

general

source: ruby-doorkeeper-openid-connect (main)
version: 1.5.5-1
maintainer: Debian Ruby Extras Maintainers (archive) [DMD]
uploaders: Pirate Praveen [DMD]
arch: all
std-ver: 4.3.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

stable-bpo: 1.5.2-1~bpo9+1
testing: 1.5.2-1
unstable: 1.5.5-1

versioned links

1.5.2-1~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.5.2-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.5.5-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

ruby-doorkeeper-openid-connect

action needed

Marked for autoremoval on 23 April: #924747 high

Version 1.5.2-1 of ruby-doorkeeper-openid-connect is marked for autoremoval from testing on Tue 23 Apr 2019. It is affected by #924747. You should try to prevent the removal by fixing these RC bugs.

Created: 2019-03-23 Last update: 2019-04-19 15:30

A new upstream version is available: 1.6.0 high

A new upstream version 1.6.0 is available, you should consider packaging it.

Created: 2019-01-21 Last update: 2019-04-19 13:45

1 security issue in buster high

There is 1 open security issue in buster.

1 important issue:

CVE-2019-9837: Doorkeeper::OpenidConnect (aka the OpenID Connect extension for Doorkeeper) 1.4.x and 1.5.x before 1.5.4 has an open redirect via the redirect_uri field in an OAuth authorization request (that results in an error response) with the 'openid' scope and a prompt=none value. This allows phishing attacks against the authorization flow.

Please fix it.

Created: 2019-03-17 Last update: 2019-03-29 05:41

The package has not entered testing even though the delay is over normal

The package has not entered testing even though the 2-day delay is over. Check why.

Created: 2019-03-31 Last update: 2019-04-19 15:05

testing migrations

excuses:
- 26 days old (2 needed)
- Updating ruby-doorkeeper-openid-connect fixes old bugs: #924747
- Piuparts tested OK - https://piuparts.debian.org/sid/source/r/ruby-doorkeeper-openid-connect.html
- Required age reduced by 3 days because of autopkgtest
- Checking build-dependency on amd64
- Not touching package due to block request by freeze (please contact debian-release if update is needed)
- Not considered

news

[rss feed]

[2019-03-24] Accepted ruby-doorkeeper-openid-connect 1.5.5-1 (source) into unstable (Utkarsh Gupta) (signed by: Praveen Arimbrathodiyil)
[2019-01-26] Accepted ruby-doorkeeper-openid-connect 1.5.2-1~bpo9+1 (source all) into stretch-backports (Pirate Praveen) (signed by: Abhijith PA)
[2018-10-24] ruby-doorkeeper-openid-connect 1.5.2-1 MIGRATED to testing (Debian testing watch)
[2018-10-21] Accepted ruby-doorkeeper-openid-connect 1.5.2-1 (source) into unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2018-08-19] ruby-doorkeeper-openid-connect 1.3.0-1 MIGRATED to testing (Debian testing watch)
[2018-08-14] ruby-doorkeeper-openid-connect REMOVED from testing (Debian testing watch)
[2018-05-18] Accepted ruby-doorkeeper-openid-connect 1.3.0-1~bpo9+1 (source all) into stretch-backports, stretch-backports (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2018-03-24] ruby-doorkeeper-openid-connect 1.3.0-1 MIGRATED to testing (Debian testing watch)
[2018-03-18] Accepted ruby-doorkeeper-openid-connect 1.3.0-1 (source) into unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2017-10-04] ruby-doorkeeper-openid-connect 1.1.2-1 MIGRATED to testing (Debian testing watch)
[2017-08-19] ruby-doorkeeper-openid-connect REMOVED from testing (Debian testing watch)
[2017-06-20] ruby-doorkeeper-openid-connect 1.1.2-1 MIGRATED to testing (Debian testing watch)
[2017-03-29] Accepted ruby-doorkeeper-openid-connect 1.1.2-1 (source all) into unstable, unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)

bugs [bug history graph]

all: 0

links

homepage
lintian
buildd: logs, clang, reproducibility
popcon
debci
browse source code
edit tags
security tracker
screenshots

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1.5.5-1