[pkg-php-pear] Bug#744893: wheezy-pu: package php-getid3/1.9.3-1+deb7u1

David Prévot taffit at debian.org
Tue Apr 15 20:45:57 UTC 2014

Package: release.debian.org
Severity: normal
Tags: wheezy
User: release.debian.org at packages.debian.org
Usertags: pu


As agreed with the security team, we’d like to address CVE-2014-2053 in
stable (oldstable being not affected) via pu instead of a proper DSA
because php-getid3 is a leaf package in stable and the vulnerability
likely hard to be exposed in practice.

php-getid3 1.9.7-2 fixed the issue in unstable.



-- System Information:
Debian Release: jessie/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (500, 'oldstable'), (100, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.14-trunk-amd64 (SMP w/1 CPU core)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
-------------- next part --------------
A non-text attachment was scrubbed...
Name: php-getid3_1.9.3-1+deb7u1.diff
Type: text/x-diff
Size: 2231 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-php-pear/attachments/20140415/2d42b1df/attachment.diff>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-php-pear/attachments/20140415/2d42b1df/attachment.sig>

More information about the pkg-php-pear mailing list