Your message dated Mon, 02 Dec 2013 12:04:07 +0000 with message-id <e1vnser-00069c...@franck.debian.org> and subject line Bug#730178: fixed in ruby1.9.1 1.9.3.484-1 has caused the Debian Bug report #730178, regarding ruby1.9.1: CVE-2013-4164 Heap Overflow in Floating Point Parsing to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 730178: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=730178 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: ruby1.9.1 Severity: grave Tags: security Hi, The follow vulnerability was published for ruby: CVE-2013-4164: Heap Overflow in Floating Point Parsing https://www.ruby-lang.org/en/news/2013/11/22/heap-overflow-in-floating-point-parsing-cve-2013-4164/
--- End Message ---
--- Begin Message ---Source: ruby1.9.1 Source-Version: 1.9.3.484-1 We believe that the bug you reported is fixed in the latest version of ruby1.9.1, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 730...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Antonio Terceiro <terce...@debian.org> (supplier of updated ruby1.9.1 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Mon, 25 Nov 2013 22:31:23 -0300 Source: ruby1.9.1 Binary: ruby1.9.1 libruby1.9.1 libruby1.9.1-dbg ruby1.9.1-dev libtcltk-ruby1.9.1 ruby1.9.1-examples ri1.9.1 ruby1.9.1-full ruby1.9.3 Architecture: source all amd64 Version: 1.9.3.484-1 Distribution: unstable Urgency: low Maintainer: Antonio Terceiro <terce...@debian.org> Changed-By: Antonio Terceiro <terce...@debian.org> Description: libruby1.9.1 - Libraries necessary to run Ruby 1.9.1 libruby1.9.1-dbg - Debugging symbols for Ruby 1.9.1 libtcltk-ruby1.9.1 - Tcl/Tk interface for Ruby 1.9.1 ri1.9.1 - Ruby Interactive reference (for Ruby 1.9.1) ruby1.9.1 - Interpreter of object-oriented scripting language Ruby ruby1.9.1-dev - Header files for compiling extension modules for the Ruby 1.9.1 ruby1.9.1-examples - Examples for Ruby 1.9 ruby1.9.1-full - Ruby 1.9.1 full installation ruby1.9.3 - Interpreter of object-oriented scripting language Ruby, version 1 Closes: 730178 Changes: ruby1.9.1 (1.9.3.484-1) unstable; urgency=low . * New upstream release + Includes fix for Heap Overflow in Floating Point Parsing (CVE-2013-4164) Closes: #730178 + drop debian/patches/2013-09-08-restore-rb_f_lambda-declaration.patch, already applied upstream. Checksums-Sha1: d969d465b1303a515fe3d693d68390f95a244a20 2648 ruby1.9.1_1.9.3.484-1.dsc 6ae80f424968b5ce661ee9b2bee1c21adc9ee67c 12576996 ruby1.9.1_1.9.3.484.orig.tar.gz 13f48a4705457c8576ed16ea5c733d5a2c01f0c5 56154 ruby1.9.1_1.9.3.484-1.debian.tar.gz 10500bdac03d47247db96e4463fdc5eae4e76ae5 249496 ruby1.9.1-examples_1.9.3.484-1_all.deb aa7e6f0139ef4d99fdee8ed1d1a7d850f1ff9422 1697050 ri1.9.1_1.9.3.484-1_all.deb 9d3674a5b3aed1f742a6bef516bb4d342c6a8cca 195030 ruby1.9.1-full_1.9.3.484-1_all.deb 125ab38f0dbc65506ef5ffa7ca77402ae366c0c1 195472 ruby1.9.3_1.9.3.484-1_all.deb 6c4b5a9622e03f8d95a14a492ae799a40a0b103f 231146 ruby1.9.1_1.9.3.484-1_amd64.deb 5c6a00546aa693206551417c491c8996e8601193 2946426 libruby1.9.1_1.9.3.484-1_amd64.deb 0e6a7cf16f770df28f42baff918b333b0d5eaa06 4266186 libruby1.9.1-dbg_1.9.3.484-1_amd64.deb 7adc3e2a88eb6401832d46bce964349801480f74 1064360 ruby1.9.1-dev_1.9.3.484-1_amd64.deb 1c6e367a65edefba37a6efcd98d2dfd312b005f3 1589964 libtcltk-ruby1.9.1_1.9.3.484-1_amd64.deb Checksums-Sha256: b4d6dcb3f34e05d5aa4c745fc404560ceea8f352071a58857b598ed461922fa6 2648 ruby1.9.1_1.9.3.484-1.dsc d684bc3a5ba72cda9ef30039f783c0f8cdc325bae5c8738c7bf05577cbe8f31d 12576996 ruby1.9.1_1.9.3.484.orig.tar.gz 6c09ac390fc062cc3f6521378102fa148fbd3fb8997c04ee7cf6058286704b5e 56154 ruby1.9.1_1.9.3.484-1.debian.tar.gz 127c48a7b8b46c286b7302973f5ec9f7dda7fb37ea6067f17b00df26d10a0945 249496 ruby1.9.1-examples_1.9.3.484-1_all.deb c7ed88f881e563a209db875509ce085efe2ce508a8adbe1ecac9064c6a65b459 1697050 ri1.9.1_1.9.3.484-1_all.deb 6cae44fdd0474594c8e1e4b891aafbb41a1ab04bae1c4eb551340883cea3987a 195030 ruby1.9.1-full_1.9.3.484-1_all.deb dd027e3f100840ab116f137c4d7d34f65a64df423099bfd487702b380f595d1d 195472 ruby1.9.3_1.9.3.484-1_all.deb 4da4b49191a841cdc39f65aa6f826c16d73426431441c64d269e574505aaf92d 231146 ruby1.9.1_1.9.3.484-1_amd64.deb 49527859492e3adf6202b80c2ade0fae641d185c5705f6ff0870fca069f1c06c 2946426 libruby1.9.1_1.9.3.484-1_amd64.deb 85114da19e20d930792aabfd9d5c54c459c18c3568df874fab2ae040820efdbb 4266186 libruby1.9.1-dbg_1.9.3.484-1_amd64.deb f821630de3266d1d4bdbf55898ea89e3b83bfe1cd6ef779dbfa70df8f2fab200 1064360 ruby1.9.1-dev_1.9.3.484-1_amd64.deb 173d9ef3dde265e0528760737d23e23730069d671541c72a45655e770b9f7258 1589964 libtcltk-ruby1.9.1_1.9.3.484-1_amd64.deb Files: dc6c51f7abe9094e59e9ba632ca36d36 2648 ruby optional ruby1.9.1_1.9.3.484-1.dsc 8ac0dee72fe12d75c8b2d0ef5d0c2968 12576996 ruby optional ruby1.9.1_1.9.3.484.orig.tar.gz 08e8b6226a7168ad7dab08dee1bed2be 56154 ruby optional ruby1.9.1_1.9.3.484-1.debian.tar.gz 662d072c3beaf7a7ab55aa8c0affde34 249496 ruby optional ruby1.9.1-examples_1.9.3.484-1_all.deb 60d4899265d96341f2c738e3102086bf 1697050 ruby optional ri1.9.1_1.9.3.484-1_all.deb b70f37cfa550b7f0a52848fa73ea46a8 195030 ruby optional ruby1.9.1-full_1.9.3.484-1_all.deb c9f01eb20ed77fbdf6309d92ff0df9f7 195472 ruby optional ruby1.9.3_1.9.3.484-1_all.deb 82eeaf91f6a660c4158051f5d6522fcb 231146 ruby optional ruby1.9.1_1.9.3.484-1_amd64.deb 5d0ddc75215ba7b0033ea1e0e5a54158 2946426 libs optional libruby1.9.1_1.9.3.484-1_amd64.deb ffcea994305ed98d72e74d1a81fcca15 4266186 debug extra libruby1.9.1-dbg_1.9.3.484-1_amd64.deb 7d52227329511b7ce6d2a6bdb95cbcb7 1064360 ruby optional ruby1.9.1-dev_1.9.3.484-1_amd64.deb 264356d9916428862faaff591dde279d 1589964 ruby optional libtcltk-ruby1.9.1_1.9.3.484-1_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.15 (GNU/Linux) iQIcBAEBCAAGBQJSnHHWAAoJEPwNsbvNRgvej7wP/3WUR7Y586N6IMOrOxAlHBrp a4ZWPiHAQYeMOLWglTK3mE+kVAxEQvA/DXAg7mDjCUjf7jQw1GKrfFGxcGqjPFk4 e8eIhsue24w0cA6QfSa/+upw6/fBNNS2SZbEMfx3pPx4t+6BtCUWj2RiprEyleb/ 94svDzEwAQmkEjEjsaMcs7EbcRb/3ENAGlpmLw3QIewbnApCcFO3wyMPUx37CSH9 rz3z7Kt/SDYdzoB5Io6yIeyHM9PTIG1V67NOzjkK74YrMIaP7iRwcm18VW8c+lRd hd2vcTMYkm+61Ysfi7DL7WLGHsdQpNkdsVmlTFTo73fg3YhNEGqZ5I967K9YLTD5 w/eVgfzt7MO754uRAMFbHwXcWnESpMX6O03bzqprLTOKsZmXe8nevpowm24JBhmp BZICJybu+EzUO0oLFIBTAZsusyOXA4QG4uakMIfD3kGvJoSixCFy9HcgZrBN9bU8 MCO7gaHqz34B4DDesJMibkwC/I+UevuIjIXq+wvVZgZzt2M6J/rERml/7bO/MMOt tc+8AVd5z9YkzkIG1+45ON/utN8OCWjGUJWkYpuCZRXwt2x4lQ9kSJzYLfejsOmQ khcsxBT9zhB2PwBN4Ib/raj3IHkFHUiJZovdHcStAJBfLVccY+1xk4qtVAuSMvPk aHZ62/YPmfnoAUw9cGoX =2yb3 -----END PGP SIGNATURE-----
--- End Message ---
