[DRE-maint] About the security issues affecting ruby-rest-client in Wheezy

Ola Lundqvist opal at debian.org
Thu May 26 10:21:11 UTC 2016 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Hello dear maintainer(s),

The Debian LTS team recently reviewed the security issue(s) affecting your
package in Wheezy:
https://security-tracker.debian.org/tracker/CVE-2015-1820

We decided that we would not prepare a wheezy security update (usually
because the security impact is low and that we concentrate our limited
resources on higher severity issues and on the most widely used packages).
That said the wheezy users would most certainly benefit from a fixed
package.

One of the main reasons for not doing the update was that the fix provided
in later versions fore a dependeny on a package that is not available in
wheezy.

If you want to work on such an update, you're welcome to do so. Please
try to follow the workflow we have defined here:
https://wiki.debian.org/LTS/Development

If that workflow is a burden to you, feel free to just prepare an
updated source package and send it to debian-lts at lists.debian.org (via a
debdiff, or with an URL pointing to the source package, or even with a
pointer to your packaging repository), and the members of the LTS team
will take care of the rest. However please make sure to submit a tested
package.

Thank you very much.

Ola Lundqvist,
  on behalf of the Debian LTS team.

- -- 
 --------------------- Ola Lundqvist ---------------------------
/  opal at debian.org                     Folkebogatan 26          \
|  ola at inguza.com                      654 68 KARLSTAD          |
|  http://inguza.com/                  +46 (0)70-332 1551       |
\  gpg/f.p.: 22F2 32C6 B1E0 F4BF 2B26  0A6A 5E90 DCFA 9426 876F /
 ---------------------------------------------------------------
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQIcBAEBCAAGBQJXRs4WAAoJEF6Q3PqUJodvYi4P/RNuSoLvVeUQtxQ5ir5otUbh
gRO5cdt8eBONFuaGlJTj7vg4Fqhx1LSOHE00V7nCkUujGA2d3L1Mtgi3thqjw2JJ
mX+ilBImqGdpDcKAFBMrOGGnVVQclcB2hmt8FoMHFZrFH4V7NZoCjmLISRL7Hkb9
KaOWRSuu+vooreoIcqr2ro2NPei6KUc/IQLg2U5XfhAZjDrZ/JaSJmzjA3xWzBUJ
ZCq78zBiRQXLVjFWQ4fS5lgFKkDbJQ/8dJxxC1R9LccPzXbWrAaE8MyODO4jBbTi
IHwaq3PBCPA73AUSFYirgiyAMRWQhJCcb3mHJZXB3ajFgFhMaoxcG/5lz03FfFo0
5MwoFHqdnm/RpEb1vQ41lF7eUSTNZB7W65gX1a83d4e4HirkojjWCOqIf8TEQZCZ
ro05jSbAbgfGRjhhfU16F99Qj9a1BeJyGkZeSWlCoWVpFCREuvCihksz29k3Zlx2
V3rwg30QGpcAOGqAmYI0EMw5Z/x8E+aps3MIFki7U8xaXSD4sJqhqD2B9y115cfQ
296hRiup1og6KbvI39/c9MzK7qX1i5THqQNtjbURhVkgowCnSdwpgHbJUgGJo08a
Q2aSVkeMnD7uyofLi2sDA28XzSd2n8lk3KK4Kfed6jsEmj3I5CL3VZSCAOo6t2oF
xHrSDI39gZUKVsVnXJMC
=8cZI
-----END PGP SIGNATURE-----

More information about the Pkg-ruby-extras-maintainers mailing list