Your message dated Sat, 21 Feb 2015 15:19:55 +0000 with message-id <e1ypbqv-0001gw...@franck.debian.org> and subject line Bug#774748: fixed in ruby-redcloth 4.2.9-4 has caused the Debian Bug report #774748, regarding ruby-redcloth: CVE-2012-6684 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 774748: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774748 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: ruby-redcloth Severity: grave Tags: security This was assigned CVE-2012-6684 (only recently, but since the bug was initially discovered in 2012, it received an ID from back then): http://co3k.org/blog/redcloth-unfixed-xss-en Cheers, Moritz
--- End Message ---
--- Begin Message ---Source: ruby-redcloth Source-Version: 4.2.9-4 We believe that the bug you reported is fixed in the latest version of ruby-redcloth, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 774...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Antonio Terceiro <terce...@debian.org> (supplier of updated ruby-redcloth package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sat, 07 Feb 2015 23:30:26 -0200 Source: ruby-redcloth Binary: ruby-redcloth Architecture: source Version: 4.2.9-4 Distribution: unstable Urgency: high Maintainer: Debian Ruby Extras Maintainers <pkg-ruby-extras-maintain...@lists.alioth.debian.org> Changed-By: Antonio Terceiro <terce...@debian.org> Description: ruby-redcloth - Textile module for Ruby Closes: 774748 Changes: ruby-redcloth (4.2.9-4) unstable; urgency=high . * Team upload. * debian/ruby-tests.rb → debian/ruby-tests.rake: fix recipe to run tests during build. * 0001-Filter-out-javascript-links-when-using-filter_html-o.patch: - block javascript: links Closes: #774748 [CVE-2012-6684] Checksums-Sha1: cfd1336d2b4140c0279d31700954e2c0c91f3a70 2090 ruby-redcloth_4.2.9-4.dsc 68d4b5e8b9fb61e84594ccc478bb5201083efbc6 5932 ruby-redcloth_4.2.9-4.debian.tar.xz Checksums-Sha256: 22e7fe6f76ba3632a1ec173126cd81c9400eceb2e50201a6b6eeceda79313158 2090 ruby-redcloth_4.2.9-4.dsc 05892b0a7dd5a87585ce1ef8447ff38d59f4e2620624f07447bf28e6d7adef24 5932 ruby-redcloth_4.2.9-4.debian.tar.xz Files: be80c21b1bf3a51280f926b4dd1771eb 2090 ruby optional ruby-redcloth_4.2.9-4.dsc b9b9cfe78e388630df3b8811b7d91583 5932 ruby optional ruby-redcloth_4.2.9-4.debian.tar.xz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJU6JNAAAoJEPwNsbvNRgvehGoP/3vujKn4F5Eexn1Y+pSimaGx vWYZEAs7L0olML1mXXqUpsLbG0H0Sz6XFldYYU6mTZe8U04Xjp1Hvxqr0cLs72ms zh2J5wc5PfAPV+sp4Hq/Gu+l3TjUk0WF3llOwVdHTxQsnvAP/8AFI6S98/um2Tiu FYKdatFrj26yOJ9lzuuCyOPyaUc5wyPjHZ8EiKEFplko3zLbfNPMpW6EMSYMNMjz UrblUdbgyD5msdoXY0GpmeuEDNmR14Le5ohqT7uAWuVNjFAuqG1Z1poNryZLK+vL X1p7X2rWIOB7lFxqXhYxfmroU8bRVQyTLu0heWs3AUngZsiB5ZFSCbuom4WWUS1G VdGTn9tAOFfdfG2yFg6LOik42qSZwaL3PCOJDT1UVcT4fbBhKjuoOmkOx27WpQPF ulad8FuwBGhX6wjoUrbmOtzS47mh+BzusjE+WrCr8HZsodufju/y6lS+ZklUUj5o 5FSk4JADQnHQdMVa/2MdbOURtx6d8TMtyrXSTMEV5a6JmbYCVozP/xqS67a9vGsw /RBprXip2jxg0k8htVn0uyNImL7icmGaz0zw5OGa2u2nsYGQ75eLvl0Nap5GYyMM vIwoQEDZFbQ+5zAW/fh+7LdGT6VF6YnZ1hCT+lrVxZq820+kvu7IuBvEXFTr94Ri vbrwlwZcHDqp4mQM6pXz =C+ez -----END PGP SIGNATURE-----
--- End Message ---
