xml-security-c_1.6.1-5+deb7u2~bpo60+1_i386.changes ACCEPTED into squeeze-backports->backports-policy
Debian FTP Masters
ftpmaster at ftp-master.debian.org
Sat Jun 29 21:34:20 UTC 2013
Accepted:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Tue, 18 Jun 2013 10:39:10 -0700
Source: xml-security-c
Binary: libxml-security-c16 libxml-security-c-dev
Architecture: source i386
Version: 1.6.1-5+deb7u2~bpo60+1
Distribution: squeeze-backports
Urgency: high
Maintainer: Debian Shib Team <pkg-shibboleth-devel at lists.alioth.debian.org>
Changed-By: Russ Allbery <rra at debian.org>
Description:
libxml-security-c-dev - C++ library for XML Digital Signatures (development)
libxml-security-c16 - C++ library for XML Digital Signatures (runtime)
Closes: 714241
Changes:
xml-security-c (1.6.1-5+deb7u2~bpo60+1) squeeze-backports; urgency=high
.
* Backport to oldstable.
* Revert the change to use multiarch and force a non-multiarch libdir.
* Relax versioned dependency on libssl-dev to build on squeeze.
.
xml-security-c (1.6.1-5+deb7u2) stable-security; urgency=high
.
* The attempted fix to address CVE-2013-2154 introduced the possibility
of a heap overflow, possibly leading to arbitrary code execution, in
the processing of malformed XPointer expressions in the XML Signature
Reference processing code. Apply upstream patch to fix that heap
overflow. (Closes: #714241, CVE-2013-2210)
Checksums-Sha1:
b155274c7ab371ff383d921c470f2df16600fb32 1743 xml-security-c_1.6.1-5+deb7u2~bpo60+1.dsc
ac091a646ca7d2d9097e5f18c47512493021e1b2 12572 xml-security-c_1.6.1-5+deb7u2~bpo60+1.debian.tar.gz
a31a62166de332724aef737bbdda960c096c0306 384488 libxml-security-c16_1.6.1-5+deb7u2~bpo60+1_i386.deb
e0d2a4dc269b37163e511e1c696d8bee6f550eb4 151404 libxml-security-c-dev_1.6.1-5+deb7u2~bpo60+1_i386.deb
Checksums-Sha256:
8da62d81f133460d687ec046dae67a794b05fdf8b11fd0db97930cd098d7d1e6 1743 xml-security-c_1.6.1-5+deb7u2~bpo60+1.dsc
5b89b36598db3896682014b14a9dc173a4ca4ac00ab6afceeba34606c54dcb8f 12572 xml-security-c_1.6.1-5+deb7u2~bpo60+1.debian.tar.gz
0cea5e2d1b27c023a5648182ca94caa354143821965a51397450493a82472988 384488 libxml-security-c16_1.6.1-5+deb7u2~bpo60+1_i386.deb
e1ed07c7446f50aeb44cc3667c9a80a1d37d3cfc0d339f86a3b11086924ee130 151404 libxml-security-c-dev_1.6.1-5+deb7u2~bpo60+1_i386.deb
Files:
9d9dec491431b7f20dd9e1d1d59f352a 1743 libs extra xml-security-c_1.6.1-5+deb7u2~bpo60+1.dsc
8e3dd81068339452f4b2c17410d56d09 12572 libs extra xml-security-c_1.6.1-5+deb7u2~bpo60+1.debian.tar.gz
829e1f43077c64107494a919738af81d 384488 libs extra libxml-security-c16_1.6.1-5+deb7u2~bpo60+1_i386.deb
efbac6cc2111dfff7c650626dcbfe0b3 151404 libdevel extra libxml-security-c-dev_1.6.1-5+deb7u2~bpo60+1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
iQEcBAEBCAAGBQJRz0uJAAoJEH2AMVxXNt51bhQH/1WeOiDL2HBzIGYAfEVvRpX3
A+p2+sHdtcmOyEutOlufkhBNbqeX5kb9HAZGLWj9ymrvLFHWOvn0AF+k2H5Kj42t
T30/9ZwsbeWq5KlL/ruWQ7u8VW7LsDi1k9O8yOZZVfQ6cnWqjr29HZA24z6BOAAl
QjXPn9m2MpMFmXjujnsS4FbiAIfCOqdBAYhafLds3wkVWquUTHHRzqxVeNVyAcZP
2yemlMKd1x4wkULvJu9X4MD1gLb1t95HoN0x6IC0p2E57fAxdqEBCBOZ87K7xrRg
so/IsAInW8RxSLJbA90x8eodepTrb0jSY3X8h+tQ4/B5rc9TOR0dpztSaX6Roh8=
=KPf5
-----END PGP SIGNATURE-----
Thank you for your contribution to Debian.
More information about the Pkg-shibboleth-devel
mailing list