ruby-git - Debian Package Tracker

general

source: ruby-git (main)
version: 1.13.1-1
maintainer: Debian Ruby Extras Maintainers (archive) (DMD)
uploaders: Michael Schutte [DMD] – Paul van Tilburg [DMD]
arch: all
std-ver: 4.6.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 1.2.8-1
oldstable: 1.2.8-1
old-sec: 1.2.8-1+deb10u1
old-bpo: 1.6.0-1~bpo10+1
stable: 1.7.0-1
testing: 1.13.1-1
unstable: 1.13.1-1

versioned links

1.2.8-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.2.8-1+deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.6.0-1~bpo10+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.7.0-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.13.1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

ruby-git

action needed

A new upstream version is available: 1.18.0 high

A new upstream version 1.18.0 is available, you should consider packaging it.

Created: 2023-02-06 Last update: 2023-03-26 14:03

lintian reports 1 error high

Lintian reports 1 error about this package. You should make the package lintian clean getting rid of them.

Created: 2023-01-25 Last update: 2023-02-02 01:06

Fails to build during reproducibility testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2023-01-28 Last update: 2023-03-26 16:09

1 new commit since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit af32f25f3a8a24c2e803200c7152ed6b9d493e3e
Author: Daniel Leidert <dleidert@debian.org>
Date:   Wed Jan 25 05:38:13 2023 +0100

    Add TODO for Paris

Created: 2020-12-24 Last update: 2023-03-25 04:36

3 low-priority security issues in bullseye low

There are 3 open security issues in bullseye.

3 issues left for the package maintainer to handle:

CVE-2022-25648: (needs triaging) The package git before 1.11.0 are vulnerable to Command Injection via git argument injection. When calling the fetch(remote = 'origin', opts = {}) function, the remote parameter is passed to the git fetch subcommand in a way that additional flags can be set. The additional flags can be used to perform a command injection.
CVE-2022-46648: (needs triaging) ruby-git versions prior to v1.13.0 allows a remote authenticated attacker to execute an arbitrary ruby code by having a user to load a repository containing a specially crafted filename to the product. This vulnerability is different from CVE-2022-47318.
CVE-2022-47318: (needs triaging) ruby-git versions prior to v1.13.0 allows a remote authenticated attacker to execute an arbitrary ruby code by having a user to load a repository containing a specially crafted filename to the product. This vulnerability is different from CVE-2022-46648.

You can find information about how to handle these issues in the security team's documentation.

Created: 2022-07-04 Last update: 2023-01-30 23:07

news

[rss feed]

[2023-01-29] Accepted ruby-git 1.2.8-1+deb10u1 (source) into oldstable (Utkarsh Gupta)
[2023-01-27] ruby-git 1.13.1-1 MIGRATED to testing (Debian testing watch)
[2023-01-25] Accepted ruby-git 1.13.1-1 (source) into unstable (Daniel Leidert)
[2022-08-12] ruby-git REMOVED from testing (Debian testing watch)
[2021-09-12] ruby-git 1.9.1-1 MIGRATED to testing (Debian testing watch)
[2021-09-10] Accepted ruby-git 1.9.1-1 (source) into unstable (Daniel Leidert)
[2020-11-03] ruby-git 1.7.0-1 MIGRATED to testing (Debian testing watch)
[2020-11-01] Accepted ruby-git 1.7.0-1 (source) into unstable (Daniel Leidert)
[2020-04-07] ruby-git 1.6.0+0-1 MIGRATED to testing (Debian testing watch)
[2020-04-04] Accepted ruby-git 1.6.0+0-1 (source) into unstable (Antonio Terceiro)
[2020-03-20] Accepted ruby-git 1.6.0-1~bpo10+1 (source all) into buster-backports, buster-backports (Debian FTP Masters) (signed by: Hans-Christoph Steiner)
[2020-03-19] ruby-git 1.6.0-1 MIGRATED to testing (Debian testing watch)
[2020-03-13] Accepted ruby-git 1.6.0-1 (source) into unstable (Hans-Christoph Steiner)
[2014-11-05] ruby-git 1.2.8-1 MIGRATED to testing (Britney)
[2014-10-25] Accepted ruby-git 1.2.8-1 (source all) into unstable (Michael Schutte)
[2013-12-07] ruby-git 1.2.6-1 MIGRATED to testing (Debian testing watch)
[2013-12-01] Accepted ruby-git 1.2.6-1 (source all) (Michael Schutte)
[2011-06-27] ruby-git 1.2.5-2 MIGRATED to testing (Debian testing watch)
[2011-06-14] Accepted ruby-git 1.2.5-2 (source all) (Michael Schutte)

bugs [bug history graph]

all: 0

links

homepage
lintian (1, 0)
buildd: logs, reproducibility
popcon
browse source code
edit tags
other distros
security tracker
screenshots
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1.13.1-1