[DRE-maint] Bug#986800: CVE-2021-30163 CVE-2021-30164

Adi Kriegisch adi at kriegisch.at
Wed Jul 7 17:53:35 BST 2021 

Tags: security, patch

Dear maintainers,

I took the patches from upstream and rebased them; so far everything works
fine on our systems. I'd very much apprechiate an officially patched
version in buster-backports.

CVE-2021-31863: https://www.redmine.org/projects/redmine/repository/revisions/20854
CVE-2021-31864: https://www.redmine.org/projects/redmine/repository/revisions/20946
CVE-2021-31865: https://www.redmine.org/projects/redmine/repository/revisions/20970
CVE-2021-31866: https://www.redmine.org/projects/redmine/repository/revisions/20962

best regards,
    Adi Kriegisch
-------------- next part --------------
A non-text attachment was scrubbed...
Name: CVE-2021-31863.patch
Type: text/x-diff
Size: 2774 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-ruby-extras-maintainers/attachments/20210707/778ad79c/attachment-0004.patch>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: CVE-2021-31864.patch
Type: text/x-diff
Size: 2839 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-ruby-extras-maintainers/attachments/20210707/778ad79c/attachment-0005.patch>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: CVE-2021-31865.patch
Type: text/x-diff
Size: 587 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-ruby-extras-maintainers/attachments/20210707/778ad79c/attachment-0006.patch>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: CVE-2021-31866.patch
Type: text/x-diff
Size: 4302 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-ruby-extras-maintainers/attachments/20210707/778ad79c/attachment-0007.patch>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-ruby-extras-maintainers/attachments/20210707/778ad79c/attachment-0001.sig>

More information about the Pkg-ruby-extras-maintainers mailing list