[tryton-debian] Bug#749073: squeeze-pu: package suds/0.3.9-1+deb6u2 Bug#749073
Mathias Behrle
mathiasb at m9s.biz
Mon May 26 16:08:32 UTC 2014
Package: release.debian.org
Severity: normal
Tags: squeeze
User: release.debian.org at packages.debian.org
Usertags: pu
X-Debbugs-CC: maintainers at debian.tryton.org
Dear release managers,
the original fix for CVE-2013-2217 was missing a proper cleanup of the
cache directories in tmp (#749073), which can lead to saturation of
the subdirectory limit (~32000 on ext3).
I would like to upload suds_0.3.9-1+deb6u2 with this patch backported from
https://bitbucket.org/jurko/suds/issue/15/insecure-temporary-directory-use
https://bitbucket.org/jurko/suds/commits/3126ac3a406c37f9982f01ad0ca4ed42cf9a47cb
https://bitbucket.org/jurko/suds/commits/aee4b2f0318f4b4545a1da826149edaa2c047460
Debdiff attached.
Thanks for considering,
Mathias
--
Mathias Behrle
PGP/GnuPG key availabable from any keyserver, ID: 0x8405BBF6
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/tryton-debian/attachments/20140526/0f6f4f76/attachment-0002.sig>
More information about the tryton-debian
mailing list