[debian-edu-commits] [Git][debian-edu/upstream/sitesummary][master] release as 0.1.55
Mike Gabriel (@sunweaver)
gitlab at salsa.debian.org
Wed Aug 23 09:48:02 BST 2023
Mike Gabriel pushed to branch master at Debian Edu / upstream / sitesummary
Commits:
39eefedb by Mike Gabriel at 2023-08-23T10:46:18+02:00
release as 0.1.55
- - - - -
1 changed file:
- debian/changelog
Changes:
=====================================
debian/changelog
=====================================
@@ -1,3 +1,16 @@
+sitesummary (0.1.55) unstable; urgency=medium
+
+ [ Guido Berhoerster ]
+ * Fix insecure temporary file and directory creation, error checking.
+ Seurely create a temporary directory using mktemp and check for errors both
+ when creating the directory and wehn changing the current working directory.
+ Place the tarball inside the temporary directory instead of using a predictable
+ file name in /tmp which may lead to a symlink attack. Ensure the temporary
+ directory is always removed. (Closes: #1050289).
+ * Use quoting for fragments.
+
+ -- Mike Gabriel <sunweaver at debian.org> Wed, 23 Aug 2023 10:43:16 +0200
+
sitesummary (0.1.54) unstable; urgency=medium
[ Guido Berhoerster ]
View it on GitLab: https://salsa.debian.org/debian-edu/upstream/sitesummary/-/commit/39eefedbfc626dec1fd06b8bb55c8fd6a0d19a18
--
View it on GitLab: https://salsa.debian.org/debian-edu/upstream/sitesummary/-/commit/39eefedbfc626dec1fd06b8bb55c8fd6a0d19a18
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-edu-commits/attachments/20230823/73e27d39/attachment-0001.htm>
More information about the debian-edu-commits
mailing list