debcrafters-packages team mailing list archive

Thread
Date

[Bug 2112275] Re: RM: rainbows -- ROM; rc buggy, unmaintained upstream

To: debcrafters-packages@xxxxxxxxxxxxxxxxxxx
From: Graham Inggs <2112275@xxxxxxxxxxxxxxxxxx>
Date: Sun, 01 Jun 2025 15:45:28 -0000
Reply-to: Bug 2112275 <2112275@xxxxxxxxxxxxxxxxxx>
Sender: noreply@xxxxxxxxxxxxx

Recent versions of ruby-sinatra have dropped rainbows, but have not
migrated yet.

ruby-sinatra (4.1.1-1) experimental; urgency=medium

  * New upstream version 4.1.1 (Closes: #1087290) (Fixes: CVE-2024-21510)
  * Bump Standards-Version to 4.7.0 (no changes needed)
  * Update build dependencies (drop rainbows, thin)
  * Ignore ruby3.1 test failures (ruby 3.1 has only logger 1.5 but sinatra
    need 1.6)
  * Remove X?-Ruby-Versions fields from d/control

 -- Pirate Praveen <praveen@xxxxxxxxxx>  Mon, 27 Jan 2025 18:13:14 +0100

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-21510

** Also affects: ruby-sinatra (Ubuntu)
   Importance: Undecided
       Status: New

-- 
You received this bug notification because you are a member of
Debcrafters packages, which is subscribed to curl in Ubuntu.
https://bugs.launchpad.net/bugs/2112275

Title:
  RM: rainbows -- ROM; rc buggy, unmaintained upstream

Status in curl package in Ubuntu:
  New
Status in rainbows package in Ubuntu:
  New
Status in ruby-sinatra package in Ubuntu:
  New
Status in rainbows package in Debian:
  Fix Released

Bug description:
  Imported from Debian bug http://bugs.debian.org/1103607:

  Package: ftp.debian.org
  Severity: normal
  X-Debbugs-Cc: rainbows@xxxxxxxxxxxxxxxxxxx, praveen@xxxxxxxxxx
  Control: affects -1 + src:rainbows
  User: ftp.debian.org@xxxxxxxxxxxxxxxxxxx
  Usertags: remove

  incompatible with rack 3 and unmaintained upstream

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/curl/+bug/2112275/+subscriptions

References

[Bug 2112275] [NEW] RM: rainbows -- ROM; rc buggy, unmaintained upstream
From: Graham Inggs, 2025-06-01