Monthly Archives: February 2013

Gitorious went down this morning

Our frontend web server went down at 6:24CET this morning, we will be updating this post as we bring the server back up. Here’s what we know right now: At 6:24 CET a Kernel oops occured. The alarms at our hosting provider went off, and the server was booted.  Since the file system keeping the […]

Improved and updated the Gitorious CE Installer (v2.4.9)

We’ve closed a number of recent security issues related to Ruby and Rails (which Gitorious depends on). The Community Edition Installer has lagged behind a bit but is, as of today, upgraded to install the latest version of Gitorious (v2.4.9). The update also includes our current recommended default settings plus some improvements to the installer itself. Short story: […]

2.4.9 fixes regression in 2.4.8

I inadvertently broke creating new projects with yesterday’s 2.4.8 release. I have deployed a fix on gitorious.org, and just tagged 2.4.9. 2.4.9 also addresses a bug in Gitorious’ log graph visualization. We made some sweeping changes yesterday, by changing attr_protected (which was the recent target of a Rails vulnerability) to attr_accessible – basically changing from […]

Gitorious v2.4.8 is released

Three new vulnerabilities have been fixed for Ruby on Rails, on which Gitorious is built. Read the original announcements for further details. All users running their own Gitorious servers should upgrade immediately. The steps for upgrading are, as usual: git fetch origin git merge v2.4.8 git submodule update bundle install touch tmp/restart.txt (assuming you’re using […]

Gitorious v2.4.7 was just released

This morning we discovered a vulnerability in Gitorious which made us write this advisory on our mailing list and release version 2.4.7 of Gitorious. All users running their own Gitorious servers should upgrade immediately. The steps for upgrading are, as usual: git fetch origin git merge v2.4.7 git submodule update bundle install touch tmp/restart.txt (assuming […]

Follow

Get every new post delivered to your Inbox.

Join 842 other followers