Your message dated Thu, 10 Apr 2025 21:30:40 +0000
with message-id <[email protected]>
and subject line Bug#1099067: fixed in ruby3.3 3.3.8-1
has caused the Debian Bug report #1099067,
regarding libruby3.3: libruby3.1t64 not removed after transition
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1099067: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1099067
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: libruby3.3
Version: 3.3.7-1
Severity: normal
Hi,
I just ran $(apt list '~o') on my system and was surprised to see
libruby3.1t64 to be still installed. When I tried to remove it, it
wanted to take several things with it, including libruby3.3. I had to
ask apt to install something that I already had and that was on the
removal list to keep things installed. So I suspect something provided
by libruby3.1t64 is no longer provided by libruby3.3 but apt doesn't
realize it should install the new binaries.
I'm not sure what the best solution is here, but it would be nice if
this would be handled automatically for users. libruby3.3 already seems
to depend on the real packages that libruby3.1t64 used to provide, but I
guess a version higher than the latest version of libruy3.1t64 could
help apt to figure it out.
Paul
paul@toba ~ $ sudo apt remove libruby3.1t64
The following packages were automatically installed and are no longer
required:
fonts-lato libjs-jquery-fancybox libjs-jquery-ui
ruby-hashie ruby-schash ruby-xmlrpc ssh
libjs-jquery-easing libjs-jquery-mousewheel ruby-ansi
ruby-net-telnet ruby-webrick rubygems-integration
Use 'sudo apt autoremove' to remove them.
REMOVING:
chake libruby3.1t64 ruby ruby-ed25519 ruby-rubygems
ruby-simplecov-html ruby3.3
itamae libruby3.3 ruby-bcrypt-pbkdf ruby-net-scp ruby-sdbm
ruby-specinfra
libruby rake ruby-docile ruby-net-ssh
ruby-simplecov ruby-thor
Summary:
Upgrading: 0, Installing: 0, Removing: 19, Not Upgrading: 0
Freed space: 63.9 MB
Continue? [Y/n] n
Abort.
paul@toba ~ $ sudo apt install chake libruby3.1t64-
chake is already the newest version (0.92-1).
Installing dependencies:
ruby-did-you-mean ruby-minitest ruby-power-assert ruby-test-unit
REMOVING:
libruby3.1t64
Summary:
Upgrading: 0, Installing: 4, Removing: 1, Not Upgrading: 0
Download size: 178 kB
Freed space: 24.9 MB
Continue? [Y/n]
-- System Information:
Debian Release: trixie/sid
APT prefers testing
APT policy: (990, 'testing')
Architecture: amd64 (x86_64)
Kernel: Linux 6.12.12-amd64 (SMP w/12 CPU threads; PREEMPT)
Kernel taint flags: TAINT_WARN
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8),
LANGUAGE=en_US:en
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages libruby3.3 depends on:
ii libc6 2.40-7
ii libcrypt1 1:4.4.38-1
ii libffi8 3.4.7-1
ii libgmp10 2:6.3.0+dfsg-3
ii libssl3t64 3.4.1-1
ii libyaml-0-2 0.2.5-2
ii rake 13.2.1-1
ii ruby-did-you-mean 1.6.3-2
ii ruby-minitest 5.25.4-2
ii ruby-net-telnet 0.2.0-1
ii ruby-test-unit 3.6.2-1
ii ruby-webrick 1.8.1-1
ii ruby-xmlrpc 0.3.3-2
ii zlib1g 1:1.3.dfsg+really1.3.1-1+b1
Versions of packages libruby3.3 recommends:
ii ruby-sdbm 1.0.0-5+b7
libruby3.3 suggests no packages.
-- no debconf information
OpenPGP_signature.asc
Description: OpenPGP digital signature
--- End Message ---
--- Begin Message ---
Source: ruby3.3
Source-Version: 3.3.8-1
Done: Lucas Kanashiro <[email protected]>
We believe that the bug you reported is fixed in the latest version of
ruby3.3, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Lucas Kanashiro <[email protected]> (supplier of updated ruby3.3 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Thu, 10 Apr 2025 15:59:06 -0300
Source: ruby3.3
Architecture: source
Version: 3.3.8-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Ruby Team
<[email protected]>
Changed-By: Lucas Kanashiro <[email protected]>
Closes: 1099067
Changes:
ruby3.3 (3.3.8-1) unstable; urgency=medium
.
* New upstream release.
- Fix CVE-2025-25186 in net-imap.
- Fix CVE-2025-27221 in URI.
+ d/p/CVE-2025-27221_*.patch: kept to fix the same issue in URI
vendorized version in lib/{rubygems,bundler}.
- Fix CVE-2025-27219 and CVE-2025-27220 in CGI.
+ d/p/CVE-2025-272{19,20}.patch: removed.
* d/control: make libruby3.3 depend on versioned ruby-{csv,ruby2-keywords}.
Those 2 gems used to have the same version in libruby3.1 and in their
own source packages, and when a user tried to upgrade from bookworm to
trixie the libruby3.1 was kept because it would satisfy the depedencies
without installing a new package.
Adding them with a version constraint to avoid keeping libruby3.1 around
after the upgrade to ruby3.3. (Closes: #1099067)
Checksums-Sha1:
5e94045f2f09fe1c42b49eef24187e01c5918c8e 2592 ruby3.3_3.3.8-1.dsc
4a0bba7c1d1e718391014b226d308cc1336eba5e 14507672 ruby3.3_3.3.8.orig.tar.xz
e0c9b358a920c64d23c6e1f1dac80baa1bdaa3ad 64516 ruby3.3_3.3.8-1.debian.tar.xz
Checksums-Sha256:
4fd9d7f628eb82afe2252494548522dba30ec717d3c3caab54f1ef4b280d8a42 2592
ruby3.3_3.3.8-1.dsc
e2e1233ad275b7623a05edf23a01192626d1da454bdfe353a28a87acd8ef015c 14507672
ruby3.3_3.3.8.orig.tar.xz
1feb62bdb13da504c93835803e4c1b5b432169892da499a815f10eeb061a495c 64516
ruby3.3_3.3.8-1.debian.tar.xz
Files:
ee787da402d85fde62f640f9bf614e94 2592 ruby optional ruby3.3_3.3.8-1.dsc
313ddd79a513aeeebfcc4bf10b55c861 14507672 ruby optional
ruby3.3_3.3.8.orig.tar.xz
006097ef6c83ab5e29caf0bfd0497d6d 64516 ruby optional
ruby3.3_3.3.8-1.debian.tar.xz
-----BEGIN PGP SIGNATURE-----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=sFE9
-----END PGP SIGNATURE-----
pgpSYuaAfB0Yb.pgp
Description: PGP signature
--- End Message ---
_______________________________________________
Pkg-ruby-extras-maintainers mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/pkg-ruby-extras-maintainers
