Bug#741587: wheezy-pu: package quassel/0.8.0-1+deb7u1

To: Felix Geyer <fgeyer@debian.org>, 741587@bugs.debian.org
Subject: Bug#741587: wheezy-pu: package quassel/0.8.0-1+deb7u1
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Tue, 01 Apr 2014 21:44:32 +0100
Message-id: <[🔎] 1396385072.4155.20.camel@jacala.jungle.funky-badger.org>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 741587@bugs.debian.org
In-reply-to: <20140314072832.17377.55295.reportbug@localhost6.localdomain6>
References: <20140314072832.17377.55295.reportbug@localhost6.localdomain6>

Control: tags -1 + confirmed

On Fri, 2014-03-14 at 08:28 +0100, Felix Geyer wrote:
> The quassel package in wheezy is affected by CVE-2013-6404:
> clients can access backlogs belonging to other users.
> 
> The security team has classified it as a minor security issues
> so I would like to fix it through a stable update.
> 
> See the attached debdiff that contains a backport of the
> upstream fix.

Please go ahead; thanks.

Regards,

Adam

Reply to:

Follow-Ups:
- Bug#741587: wheezy-pu: package quassel/0.8.0-1+deb7u1
  - From: Felix Geyer <fgeyer@debian.org>

Prev by Date: Bug#739569: marked as done (nmu: supertux_0.3.4-1)
Next by Date: Processed: Re: Bug#741587: wheezy-pu: package quassel/0.8.0-1+deb7u1
Previous by thread: Bug#739569: marked as done (nmu: supertux_0.3.4-1)
Next by thread: Processed: Re: Bug#741587: wheezy-pu: package quassel/0.8.0-1+deb7u1
Index(es):
- Date
- Thread