You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The Arch Linux core package tzdata adds a SECURITY file in /usr/share/tzinfo since tzdata version 2021c-1.
This file is basically a note to report security-related bugs to the right person:
Please report any sensitive security-related bugs via email to the
tzdb designated coordinators, currently Paul Eggert
<eggert@cs.ucla.edu> and Tim Parenti <tim@timtimeonline.com>.
Put "tzdb security" at the start of your email's subject line.
We prefer communications to be in English.
[...]
tzinfo wants to use this file, which leads to an error.
How to reproduce:
Using Ruby IRB:
>> require'tzinfo'=>true
>> TZInfo::Timezone.all.find_all{|tz| tz.current_period.abbreviation == :some_abbrev}TZInfo::InvalidTimezoneIdentifier(Thefile'/usr/share/zoneinfo/SECURITY'does not startwiththeexpectedheader.(loadingSECURITY))
Information:
tool
version
ruby
2.6.2p47
tzinfo
2.0.4
tzdata
2021c-1 and above
linux kernel
5.18.10-arch1-1
Fix:
I propose this PR to exclude the SECURITY file from beeing used by tzinfo.
The text was updated successfully, but these errors were encountered:
Problem:
The Arch Linux core package tzdata adds a
SECURITYfile in/usr/share/tzinfosince tzdata version2021c-1.This file is basically a note to report security-related bugs to the right person:
tzinfowants to use this file, which leads to an error.How to reproduce:
Using Ruby IRB:
Information:
Fix:
I propose this PR to exclude the
SECURITYfile from beeing used bytzinfo.The text was updated successfully, but these errors were encountered: