[Pkg-shadow-devel] Bug#1041547: fixed in shadow 1:4.13+dfsg1-2

Milo Mak milomak at gmail.com
Fri Aug 2 18:20:26 BST 2024 

seems the shadow package does not exist

# apt-cache policy shadow
N: Unable to locate package shadow

extract of /etc/apt/sources.list

deb http://debian.proxad.net/debian/ stable main contrib non-free 
non-free-firmware
deb http://debian.proxad.net/debian/ testing main contrib non-free 
non-free-firmware
deb http://debian.proxad.net/debian/ sid main contrib non-free 
non-free-firmware


On Wed, 27 Sep 2023 07:11:14 +0000 Debian FTP Masters wrote:
 > Source: shadow
 > Source-Version: 1:4.13+dfsg1-2
 > Done: Balint Reczey
 >
 > We believe that the bug you reported is fixed in the latest version of
 > shadow, which is due to be installed in the Debian FTP archive.
 >
 > A summary of the changes between this version and the previous one is
 > attached.
 >
 > Thank you for reporting the bug, which will now be closed. If you
 > have further comments please address them to 1041547 at bugs.debian.org,
 > and the maintainer will reopen the bug report if appropriate.
 >
 > Debian distribution maintenance software
 > pp.
 > Balint Reczey (supplier of updated shadow package)
 >
 > (This message was generated automatically at their request; if you
 > believe that there is a problem with it please contact the archive
 > administrators by mailing ftpmaster at ftp-master.debian.org)
 >
 >
 > -----BEGIN PGP SIGNED MESSAGE-----
 > Hash: SHA512
 >
 > Format: 1.8
 > Date: Tue, 26 Sep 2023 22:01:52 +0200
 > Source: shadow
 > Built-For-Profiles: noudeb
 > Architecture: source
 > Version: 1:4.13+dfsg1-2
 > Distribution: unstable
 > Urgency: medium
 > Maintainer: Shadow package maintainers
 > Changed-By: Balint Reczey
 > Closes: 1034482 1040064 1041547 1051062 1051827
 > Changes:
 > shadow (1:4.13+dfsg1-2) unstable; urgency=medium
 > .
 > [ Balint Reczey ]
 > * debian/gitlab-ci.yml: Use sudo to fix reprotest test
 > * debian/login.pam: Drop reference to Debian Etch (Closes: #1040064)
 > * debian/NEWS: Fix false claim about PREVENT_NO_AUTH affecting 
authentication.
 > Also drop setting PREVENT_NO_AUTH in shipped login.defs. (Closes: 
#1041547)
 > * Cherry-pick upstream patch to fix gpasswd passwd leak
 > (CVE-2023-4641) (Closes: #1051062)
 > * Cherry-pick upstream patch to fix chfn vulnerability allowing 
injection of
 > control characters into some /etc/passwd fields.
 > (CVE-2023-29383) (Closes: #1034482)
 > .
 > [ Gioele Barabucci ]
 > * Support build profile
 > `xsltproc`, `docbook` and all other XML-related packages are not needed
 > when the `` build profile is active, as long as `./configure` is
 > called with `--disable-man`. (Closes: #1051827)
 > Checksums-Sha1:
 > c296cd50c74c5b50d050e1ac23085ac10ea87b83 2447 shadow_4.13+dfsg1-2.dsc
 > 62928d4593fc88611ac506f4e7c0c8e2cd2a1d12 82300 
shadow_4.13+dfsg1-2.debian.tar.xz
 > d439a6fd94c942288dabd2be42bd002f122c85ce 8923 
shadow_4.13+dfsg1-2_source.buildinfo
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/pkg-shadow-devel/attachments/20240802/d751036e/attachment.htm>

More information about the Pkg-shadow-devel mailing list