See attached. Please advise security team.
-----BEGIN PGP SIGNED MESSAGE----- Format: 1.7 Date: Wed, 29 Nov 2000 22:54:56 -0800 Source: slocate Binary: slocate Architecture: source i386 Version: 2.4-1 Distribution: stable unstable Urgency: high Maintainer: R Garth Wood <rgwood@debian.org> Changed-By: R Garth Wood <rgwood@debian.org> Description: slocate - a secure locate replacement Changes: slocate (2.4-1) stable unstable; urgency=high . * according to author the "S(ecure)Locate heap corruption" issue is resolved Closes #78190 * according to author slocate is now impervious to mtab being a link Closes #76543 * according to author there is now more than very little error checking (will this satisfy Wichert? Hell ya. ) Closes #71373 * according to author will not segfault on deep dirs Closes #71371 * copyright now gives props to the FSF Closes #71365 * /var/lib/slocate/* now removed in prerm Closes #66566 * now suidunregisters itself Closes #66206 * upgrade should be fine. I think this is a bug in the bts Closes #56351 Files: e2359805bab4d2c9f5ba4ab18955ea6e 623 utils optional slocate_2.4-1.dsc 185520e64e7b194b6d448f034e2f1c7a 35216 utils optional slocate_2.4.orig.tar.gz 891e6ebf41e8a3a14041c11f5483eeee 5967 utils optional slocate_2.4-1.diff.gz e9f964054502b1073ef439397c58c5a4 21904 utils optional slocate_2.4-1_i386.deb -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia Charset: noconv iQCVAwUBOiYHrbQMWmEtW6VJAQEO8AP/cRljSOj3WmBC1xPUkN3xBe0H3Tf7xtB5 wSCkiBV/1c6QZtqID3SMveRBHk5TWsZ+oC8uN4LmYEMYL5Y116EtqXxHI5j+0S7B Xnp8uwk0mMkR2ity8fZi7/eogk6EUULKRjAJweRuLPlvPk3Hzs0QTHFbdvarM2PI UJxmN3ovorI= =czH6 -----END PGP SIGNATURE-----
Attachment:
pgpnSH0LefaOC.pgp
Description: PGP signature