Debian Package Tracker - ruby-rack-cors

general

source: ruby-rack-cors (main)
version: 1.1.1-1
maintainer: Debian Ruby Extras Maintainers (archive) (DMD)
uploaders: Pirate Praveen [DMD]
arch: all
std-ver: 4.5.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 0.2.9-1
o-o-sec: 0.2.9-1+deb8u1
oldstable: 0.4.0-1+deb9u1
old-sec: 0.4.0-1+deb9u2
old-bpo: 1.0.1-2~bpo9+1
stable: 1.0.2-1
stable-bpo: 1.1.1-1~bpo10+1
testing: 1.1.1-1
unstable: 1.1.1-1

versioned links

0.2.9-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.2.9-1+deb8u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.4.0-1+deb9u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.4.0-1+deb9u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.0.1-2~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.0.2-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.1.1-1~bpo10+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.1.1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

ruby-rack-cors

action needed

1 security issue in buster high

There is 1 open security issue in buster.

1 important issue:

CVE-2019-18978: An issue was discovered in the rack-cors (aka Rack CORS Middleware) gem before 1.0.4 for Ruby. It allows ../ directory traversal to access private resources because resource matching does not ensure that pathnames are in a canonical format.

Please fix it.

Created: 2019-11-15 Last update: 2020-10-01 17:27

Fails to build during reproducibility testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2020-10-11 Last update: 2021-01-19 01:08

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 1.1.1-2, distribution UNRELEASED) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit 03c6f9afb3ecf6bee8fe104748326ec368c5d3d5
Author: Cédric Boutillier <boutil@debian.org>
Date:   Thu Sep 3 20:37:31 2020 +0000

    [ci skip] Add .gitattributes to keep unwanted files out of the source package

commit 27dd7713a6d358dbe756608e607bd017d5f3fc27
Author: Cédric Boutillier <boutil@debian.org>
Date:   Tue Sep 1 14:05:28 2020 +0000

    [ci skip] Update team name

commit 7deade0f3b4731c61385af73fd30f0d0c7b1630f
Author: Debian Janitor <janitor@jelmer.uk>
Date:   Sat Mar 14 20:57:09 2020 +0000

    Set upstream metadata fields: Bug-Database, Bug-Submit, Repository, Repository-Browse.
    
    Fixes: lintian: upstream-metadata-file-is-missing
    See-also: https://lintian.debian.org/tags/upstream-metadata-file-is-missing.html

Created: 2020-03-15 Last update: 2021-01-16 23:40

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.5.1 instead of 4.5.0).

Created: 2020-11-17 Last update: 2020-11-17 05:41

news

[rss feed]

[2020-10-01] Accepted ruby-rack-cors 0.4.0-1+deb9u2 (source all) into oldstable (Utkarsh Gupta)
[2020-02-25] Accepted ruby-rack-cors 1.1.1-1~bpo10+1 (source all) into buster-backports, buster-backports (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2020-02-17] ruby-rack-cors 1.1.1-1 MIGRATED to testing (Debian testing watch)
[2020-02-15] Accepted ruby-rack-cors 1.1.1-1 (source) into unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2020-02-06] Accepted ruby-rack-cors 0.2.9-1+deb8u1 (source all) into oldoldstable (Brian May)
[2019-12-17] ruby-rack-cors REMOVED from testing (Debian testing watch)
[2018-06-22] ruby-rack-cors 1.0.2-1 MIGRATED to testing (Debian testing watch)
[2018-06-20] Accepted ruby-rack-cors 1.0.2-1 (source) into unstable (Hari Govind S) (signed by: Praveen Arimbrathodiyil)
[2018-05-22] Accepted ruby-rack-cors 1.0.1-2~bpo9+1 (source all) into stretch-backports, stretch-backports (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2018-02-27] ruby-rack-cors 1.0.1-2 MIGRATED to testing (Debian testing watch)
[2018-02-22] Accepted ruby-rack-cors 1.0.1-2 (source) into unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2017-09-30] Accepted ruby-rack-cors 1.0.1-1 (source) into experimental (Sruthi Chandran) (signed by: Praveen Arimbrathodiyil)
[2017-08-11] Accepted ruby-rack-cors 0.4.0-1+deb9u1 (source all) into proposed-updates->stable-new, proposed-updates (Moritz Muehlenhoff) (signed by: Moritz Mühlenhoff)
[2017-07-03] ruby-rack-cors 0.4.1-1 MIGRATED to testing (Debian testing watch)
[2017-06-27] Accepted ruby-rack-cors 0.4.1-1 (source) into unstable (Sruthi Chandran) (signed by: Praveen Arimbrathodiyil)
[2015-07-19] ruby-rack-cors 0.4.0-1 MIGRATED to testing (Britney)
[2015-07-13] Accepted ruby-rack-cors 0.4.0-1 (source all) into unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2015-05-05] ruby-rack-cors 0.3.1-2 MIGRATED to testing (Britney)
[2015-04-29] Accepted ruby-rack-cors 0.3.1-2 (source all) into unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2015-04-03] Accepted ruby-rack-cors 0.3.1-1 (source all) into experimental (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2014-05-05] ruby-rack-cors 0.2.9-1 MIGRATED to testing (Debian testing watch)
[2014-04-24] Accepted ruby-rack-cors 0.2.9-1 (source all) (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2013-05-05] ruby-rack-cors 0.2.7-1 MIGRATED to testing (Debian testing watch)
[2013-04-01] Accepted ruby-rack-cors 0.2.7-1 (source all) (Praveen Arimbrathodiyil)

bugs [bug history graph]

all: 0

links

homepage
lintian
buildd: logs, clang, reproducibility
popcon
browse source code
edit tags
other distros
security tracker
screenshots
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1.1.1-1