ruby-rack (2.2.13-1~deb12u1) bookworm-security; urgency=medium
* New upstream version 2.2.13.
- Fixes: CVE-2025-27610, CVE-2025-27111, CVE-2025-25184.
- Closes: #1100444, #1099546, #1098257.
* Drop patches that have been applied in v2.2.13.
-- Utkarsh Gupta <utkarsh@debian.org> Thu, 20 Mar 2025 09:27:37 +0530
ruby-rack (2.2.6.4-1+deb12u1) bookworm-security; urgency=medium
* Non-maintainer upload.
* CVE-2024-25126: ReDoS in Content Type header parsing
* CVE-2024-26141: Reject Range headers which are too large
* CVE-2024-26146: ReDoS in Accept header parsing
* Closes: #1064516
-- Adrian Bunk <bunk@debian.org> Thu, 02 May 2024 23:39:36 +0300
ruby-rack (2.2.6.4-1) unstable; urgency=medium
* Team Upload
* New upstream version 2.2.6.4 (Fixes: CVE-2023-27530, CVE-2023-27539)
* Refresh patches (remove patches applied upstream)
-- Pirate Praveen <praveen@debian.org> Fri, 24 Mar 2023 01:32:43 +0530
ruby-rack (2.2.4-3) unstable; urgency=high
* Team upload
* Fix test failures (Closes: #1030442)
* Fix CVE-2022-44570 CVE-2022-44571 CVE-2022-44572 (Closes: #1029832)
* Add Breaks for ruby-sinatra
-- Sruthi Chandran <srud@debian.org> Thu, 09 Feb 2023 11:47:17 +0100
ruby-rack (2.2.4-2) unstable; urgency=medium
* Team Upload
* eliminate lintian warning: ruby-interpreter-is-deprecated
* eliminate lintian warning: update-debian-copyright
-- HIGUCHI Daisuke (VDR dai) <dai@debian.org> Tue, 09 Aug 2022 11:57:23 +0900
ruby-rack (2.2.4-1) unstable; urgency=medium
* Team Upload
* New upstream version 2.2.4 (Fixes: CVE-2022-30122, CVE-2022-30123)
* Bump Standards-Version to 4.6.1 (no changes needed)
-- Pirate Praveen <praveen@debian.org> Fri, 01 Jul 2022 11:59:23 +0530
ruby-rack (2.2.3-4) unstable; urgency=medium
* Add ruby-webrick as an explicit dependency.
- it's not embedded as of ruby3.0. (:
-- Utkarsh Gupta <utkarsh@debian.org> Mon, 24 Jan 2022 18:45:39 +0530
ruby-rack (2.2.3-3) unstable; urgency=medium
* Reupload to unstable
-- Pirate Praveen <praveen@debian.org> Mon, 24 Jan 2022 16:37:33 +0530
ruby-rack (2.2.3-2) experimental; urgency=medium
* Team Upload
* Merge changes from master branch
* Refresh patches
* Update watch file standard to 4
-- Pirate Praveen <praveen@debian.org> Mon, 24 Jan 2022 14:00:19 +0530
ruby-rack (2.1.4-5) unstable; urgency=medium
* Team upload
* Switch to gem-install layout for bundle --local compatibility
-- Pirate Praveen <praveen@debian.org> Mon, 24 Jan 2022 00:48:23 +0530
ruby-rack (2.1.4-4) unstable; urgency=medium
* Team upload
[ Debian Janitor ]
* Remove constraints unnecessary since buster
[ Cédric Boutillier ]
* Build-depend on ruby-webrick (Closes: #996353)
* Bump debhelper compatibility level to 13
* Bump Standards-Version to 4.6.0 (no changes needed)
-- Cédric Boutillier <boutil@debian.org> Wed, 17 Nov 2021 11:49:13 +0100
ruby-rack (2.1.4-3) unstable; urgency=medium
* Team upload.
* Fix tests when run on ipv6-only hosts (Closes: #979432)
-- Antonio Terceiro <terceiro@debian.org> Sat, 27 Feb 2021 09:30:57 -0300
ruby-rack (2.2.3-1) experimental; urgency=medium
* Team upload
* New upstream version 2.2.3
* Refresh patches
-- Pirate Praveen <praveen@debian.org> Sat, 30 Jan 2021 15:29:45 +0530
ruby-rack (2.1.4-2) unstable; urgency=medium
* Revert "Drop all patches"
- Rack::Builder::parse_file#test_0006_strips
leading unicode byte order mark when present still
fails in i386 and stuff. Meh, I'll take a look later.
-- Utkarsh Gupta <utkarsh@debian.org> Sun, 03 Jan 2021 17:49:29 +0530
ruby-rack (2.1.4-1) unstable; urgency=medium
[ Pirate Praveen ]
* New upstream version 2.1.4
* Bump Standards-Version to 4.5.1 (no changes needed)
* Drop patches applied upstream
[ Utkarsh Gupta ]
* Drop all patches
-- Utkarsh Gupta <utkarsh@debian.org> Sun, 03 Jan 2021 17:25:43 +0530
ruby-rack (2.1.1-6) unstable; urgency=medium
[ Cédric Boutillier ]
* [ci skip] Update team name
* [ci skip] Add .gitattributes to keep unwanted files out
of the source package
[ Debian Janitor ]
* Apply multi-arch hints. + ruby-rack: Add :all qualifier
for ruby dependency.
[ Utkarsh Gupta ]
* When parsing cookies, only decode the values.
Patch utils to fix cookie parsing. (Fixes: CVE-2020-8184)
(Closes: #963477)
-- Utkarsh Gupta <utkarsh@debian.org> Sat, 02 Jan 2021 17:42:02 +0530
ruby-rack (2.1.1-5) unstable; urgency=medium
* Add patch to use Dir.entries instead of Dir[glob] to prevent
user-specified glob metacharacters (Fixes: CVE-2020-8161)
-- Utkarsh Gupta <utkarsh@debian.org> Thu, 21 May 2020 17:06:27 +0530
ruby-rack (2.1.1-4) unstable; urgency=medium
* Remove ruby-minitest-global-expectations from Depends
* Add ruby-minitest-global-expectations for tests
-- Utkarsh Gupta <utkarsh@debian.org> Fri, 10 Apr 2020 18:37:00 +0530
ruby-rack (2.1.1-3) unstable; urgency=medium
* Add patch to skip random failure
(probably fixed in later upstream version)
-- Utkarsh Gupta <utkarsh@debian.org> Fri, 10 Apr 2020 04:21:09 +0530
ruby-rack (2.1.1-2) unstable; urgency=medium
[ Debian Janitor ]
* Set upstream metadata fields: Bug-Database, Bug-Submit, Repository,
Repository-Browse.
[ Utkarsh Gupta ]
* Shoot to unstable
* Enable tests :D
* Add BD on ruby-minitest-global-expectations
* Add runtime dependency on ruby-minitest-global-expectations
* Fix package wrt cme
* Use AUTOPKGTEST_TMP in tests as ADTTMP is deprecated
* Add myself as an uploader
* Add Rules-Requires-Root: no
* Add Breaks for ruby-rack-oauth2
-- Utkarsh Gupta <utkarsh@debian.org> Fri, 10 Apr 2020 03:43:38 +0530
ruby-rack (2.1.1-1) experimental; urgency=medium
* Team upload
* New upstream version 2.1.1
* Bump Standards-Version to 4.4.1 (no changes needed)
* Switch test to minitest (but disable tests because build deps not packaged)
* Switch to github tarballs for tests
* Upload to experimental because autopkgtest for berkshelf-api coquelicot
nanoc rails redmine ruby-acts-as-api ruby-faye ruby-grape ruby-moneta
ruby-omniauth ruby-rack-attack ruby-rack-oauth2 ruby-rack-openid
ruby-voight-kampff failed and rebuilds of berkshelf-api coquelicot nanoc
redmine ruby-grape ruby-omniauth ruby-rack-oauth2 ruby-warden failed
-- Pirate Praveen <praveen@debian.org> Sun, 12 Jan 2020 20:00:24 +0530
ruby-rack (2.0.7-2) unstable; urgency=medium
* Team upload
* Re-upload to unstable
* Add salsa-ci.yml
* Bump Standards-Version to 4.4.0
* Bump debhelper-compat to 12
-- Utkarsh Gupta <guptautkarsh2102@gmail.com> Tue, 03 Sep 2019 00:22:18 +0530
# Older entries have been removed from this changelog.
# To read the complete changelog use `apt changelog ruby-rack`.
Generated by dwww version 1.15 on Tue Sep 2 04:03:52 CEST 2025.