[SCM] Debian packaging for XML-Security-C annotated tag, debian/1.6.1-5+deb7u2, created. debian/1.6.1-5+deb7u2

Russ Allbery rra at debian.org
Fri Jun 28 05:17:43 UTC 2013 

The annotated tag, debian/1.6.1-5+deb7u2 has been created
        at  2f9cc02bd63137b565373ed7c3fe43cccd582057 (tag)
   tagging  c27bcf6c347c9c1b8b15e68bf837c3b9cab0c347 (commit)
  replaces  debian/1.6.1-5+deb7u1
 tagged by  Russ Allbery
        on  Thu Jun 27 15:13:53 2013 -0700

- Shortlog ------------------------------------------------------------
Debian release 1.6.1-5+deb7u2

Format: 1.8
Date: Thu, 27 Jun 2013 13:54:03 -0700
Source: xml-security-c
Binary: libxml-security-c16 libxml-security-c-dev
Architecture: source i386
Version: 1.6.1-5+deb7u2
Distribution: stable-security
Urgency: high
Maintainer: Debian Shib Team <pkg-shibboleth-devel at lists.alioth.debian.org>
Changed-By: Russ Allbery <rra at debian.org>
Description:
 libxml-security-c-dev - C++ library for XML Digital Signatures (development)
 libxml-security-c16 - C++ library for XML Digital Signatures (runtime)
Closes: 714241
Changes:
 xml-security-c (1.6.1-5+deb7u2) stable-security; urgency=high
 .
   * The attempted fix to address CVE-2013-2154 introduced the possibility
     of a heap overflow, possibly leading to arbitrary code execution, in
     the processing of malformed XPointer expressions in the XML Signature
     Reference processing code.  Apply upstream patch to fix that heap
     overflow.  (Closes: #714241, CVE-2013-2210)
Checksums-Sha1:
 977b62ef10f823f351d16708885d112666b53e2c 1273 xml-security-c_1.6.1-5+deb7u2.dsc
 ba7f9c8b5c122ea213ab6b880e13952cace2b36f 12013 xml-security-c_1.6.1-5+deb7u2.debian.tar.gz
 6c3d73f2d99f2f6b1f6c7ba97820209f17d64437 375560 libxml-security-c16_1.6.1-5+deb7u2_i386.deb
 7a4a814816050ca5d6e62d67ad17fce18dc7b460 151332 libxml-security-c-dev_1.6.1-5+deb7u2_i386.deb
Checksums-Sha256:
 59988f7b72662a08e7d0f880d5141d2265d69bd03437058b056a60a2429060bc 1273 xml-security-c_1.6.1-5+deb7u2.dsc
 c0218aa7181316be9fa44753b09c81c5a327e5d6ed01d533f462a37325723789 12013 xml-security-c_1.6.1-5+deb7u2.debian.tar.gz
 05fdb7667ce34abb7cf2b7f3ea0f38820b4d6cbda9cd153842be9470079be733 375560 libxml-security-c16_1.6.1-5+deb7u2_i386.deb
 8f14e1257df217c479fddd63aaaa7345a772a1f359faf4e6f18beb1bc6170947 151332 libxml-security-c-dev_1.6.1-5+deb7u2_i386.deb
Files:
 abe39951fe713be307cd157ebf0fa964 1273 libs extra xml-security-c_1.6.1-5+deb7u2.dsc
 ab3cf5ffdde120bbdf4aebd3c88bb9c9 12013 libs extra xml-security-c_1.6.1-5+deb7u2.debian.tar.gz
 95959ea297072b19617efd9757b34182 375560 libs extra libxml-security-c16_1.6.1-5+deb7u2_i386.deb
 8ae52f2ded56659e2e1e984a62b3a55c 151332 libdevel extra libxml-security-c-dev_1.6.1-5+deb7u2_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAABCAAGBQJRzLkuAAoJEH2AMVxXNt51FCkH/iXrT+tn2z0R48Oe8wd3BY2z
VN/0iwf3F42RQI7Mjqv7+QEiEErtxes/yX+xI/iv5SWGd5odJ8Qv+j9apCib/ctZ
OKlA9cO0L2latn20lwRjYp4JdG+URVs+HCQhdxmJj0MKguSgATHgALggnJL4cPF1
PIKaBa3Tdv6ZB2+EkEZqvkrQvlOB5dUJMDwHnW7XOqQTR5Rqiw2fkmvdilvFlGro
aEzwRNjsQxxLtpfSGpBSqFtNAQJ1BlD1Knc4IaEsWl3sBY5YGQ2sR9UqsPeavk4Q
emsV6byD0HxiBVLq304EG0l0A4dlrVDcST+HgtWhDxk5NDX+bFzhlFzV3iJ4q7U=
=x3FN
-----END PGP SIGNATURE-----

Russ Allbery (1):
      Apply upstream patch for heap overflow (CVE-2013-2210)

-----------------------------------------------------------------------

-- 
Debian packaging for XML-Security-C

More information about the Pkg-shibboleth-devel mailing list