From owner-freebsd-ruby@FreeBSD.ORG  Mon Jun  1 06:24:27 2015
Return-Path: <owner-freebsd-ruby@FreeBSD.ORG>
Delivered-To: freebsd-ruby@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 1FAEF47A
 for <freebsd-ruby@FreeBSD.org>; Mon,  1 Jun 2015 06:24:27 +0000 (UTC)
 (envelope-from bugzilla-noreply@freebsd.org)
Received: from kenobi.freebsd.org (kenobi.freebsd.org
 [IPv6:2001:1900:2254:206a::16:76])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 092391C1D
 for <freebsd-ruby@FreeBSD.org>; Mon,  1 Jun 2015 06:24:27 +0000 (UTC)
 (envelope-from bugzilla-noreply@freebsd.org)
Received: from bugs.freebsd.org ([127.0.1.118])
 by kenobi.freebsd.org (8.14.9/8.14.9) with ESMTP id t516OQgm001408
 for <freebsd-ruby@FreeBSD.org>; Mon, 1 Jun 2015 06:24:26 GMT
 (envelope-from bugzilla-noreply@freebsd.org)
From: bugzilla-noreply@freebsd.org
To: freebsd-ruby@FreeBSD.org
Subject: [Bug 200504] www/rubygem-rest-client: Multiple security
 vulnerabilities (CVE-2015-1820, CVE-2015-3448)
Date: Mon, 01 Jun 2015 06:24:27 +0000
X-Bugzilla-Reason: CC
X-Bugzilla-Type: changed
X-Bugzilla-Watch-Reason: None
X-Bugzilla-Product: Ports & Packages
X-Bugzilla-Component: Individual Port(s)
X-Bugzilla-Version: Latest
X-Bugzilla-Keywords: needs-patch, security
X-Bugzilla-Severity: Affects Only Me
X-Bugzilla-Who: delphij@FreeBSD.org
X-Bugzilla-Status: In Progress
X-Bugzilla-Priority: ---
X-Bugzilla-Assigned-To: mmoll@freebsd.org
X-Bugzilla-Target-Milestone: ---
X-Bugzilla-Flags: maintainer-feedback?
X-Bugzilla-Changed-Fields: cc
Message-ID: <bug-200504-26641-VfIdGw4xt8@https.bugs.freebsd.org/bugzilla/>
In-Reply-To: <bug-200504-26641@https.bugs.freebsd.org/bugzilla/>
References: <bug-200504-26641@https.bugs.freebsd.org/bugzilla/>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 7bit
X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/
Auto-Submitted: auto-generated
MIME-Version: 1.0
X-BeenThere: freebsd-ruby@freebsd.org
X-Mailman-Version: 2.1.20
Precedence: list
List-Id: FreeBSD-specific Ruby discussions <freebsd-ruby.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-ruby>,
 <mailto:freebsd-ruby-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-ruby/>
List-Post: <mailto:freebsd-ruby@freebsd.org>
List-Help: <mailto:freebsd-ruby-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-ruby>,
 <mailto:freebsd-ruby-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 01 Jun 2015 06:24:27 -0000

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=200504

Xin LI <delphij@FreeBSD.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |delphij@FreeBSD.org

--- Comment #3 from Xin LI <delphij@FreeBSD.org> ---
(In reply to commit-hook from comment #2)
Thanks!

Could you please also document the issue in vuxml (feel ask ports-secteam@ if
help is needed or you want us to do it for you)?

Also, how big will the change be?  Can it be backported to the branch (it seems
like many Ruby applications does not like big version jumps)?

-- 
You are receiving this mail because:
You are on the CC list for the bug.