python-apt_1.8.4.2_source.changes ACCEPTED into proposed-updates->stable-new
Mapping stable-security to proposed-updates.
Accepted:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 01 Dec 2020 20:18:12 +0100
Source: python-apt
Architecture: source
Version: 1.8.4.2
Distribution: buster-security
Urgency: high
Maintainer: APT Development Team <deity@lists.debian.org>
Changed-By: Julian Andres Klode <jak@debian.org>
Changes:
python-apt (1.8.4.2) buster-security; urgency=high
.
* SECURITY UPDATE: various memory and file descriptor leaks (LP: #1899193)
- python/arfile.cc, python/generic.h, python/tag.cc, python/tarfile.cc:
fix file descriptor and memory leaks
- python/apt_instmodule.cc, python/apt_instmodule.h, python/arfile.h:
Avoid reference cycle with control,data members in apt_inst.DebFile
objects
- tests/test_cve_2020_27351.py: Test cases for DebFile (others not easily
testable)
- CVE-2020-27351
* data/templates: Update mirror lists
Checksums-Sha1:
b391afdf3b056f4b54faa08bff5dc1d590f256a2 2459 python-apt_1.8.4.2.dsc
07901c78a7f09643519ed7d48c56b3311767c36a 344640 python-apt_1.8.4.2.tar.xz
ec68d41d6b7e73c5c4d06d7e2aa860a5f4de12cd 10051 python-apt_1.8.4.2_source.buildinfo
Checksums-Sha256:
2bd6d6272cf8401d21a7ab37c1974e7ba93e3659342a43c16eee9a06bcc84c4c 2459 python-apt_1.8.4.2.dsc
0899aa56e8d9e79ff6e7539391dddb8c9e2faf6231e9a862809d2eb11bc8280c 344640 python-apt_1.8.4.2.tar.xz
033994911ffc547cdc8b61d09101f4160f38c7a2d16dddc719646376fd9b1019 10051 python-apt_1.8.4.2_source.buildinfo
Files:
a63ad19840eef9bec15b6e2c8a2995d8 2459 python optional python-apt_1.8.4.2.dsc
4d02734bb20a962f2075e463fc288749 344640 python optional python-apt_1.8.4.2.tar.xz
f08dda69ca6a01b1fabcd53ec583ed7c 10051 python optional python-apt_1.8.4.2_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=CTOk
-----END PGP SIGNATURE-----
Thank you for your contribution to Debian.
Reply to: