[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Accepted wml 2.0.11-1etch1 (source i386)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Fri, 08 Feb 2008 23:11:21 +0100
Source: wml
Binary: wml
Architecture: source i386
Version: 2.0.11-1etch1
Distribution: stable-security
Urgency: high
Maintainer: Frank Lichtenheld <djpig@debian.org>
Changed-By: Frank Lichtenheld <djpig@debian.org>
Description: 
 wml        - off-line HTML generation toolkit
Closes: 463907
Changes: 
 wml (2.0.11-1etch1) stable-security; urgency=high
 .
   * Non-maintainer upload by security team.
   * CVE-2008-0665, CVE-2008-0666:
     Fix insecure temporary file creations in eperl and ipp
     backends and a similar issue in the wmg.cgi contrib file
     leading to possible symlink attacks.
     If you already use wmg.cgi please update your copy (Closes: #463907).
     Patch by Nico Golde and Frank Lichtenheld.
   * Add libpng-dev to build-depends since apparently it was previously
     compiled against it.
Files: 
 3c12d2b00552d3db815957c01c73b2cf 656 web optional wml_2.0.11-1etch1.dsc
 3242a88ced8598120cf6aba2bf9f69c4 24577 web optional wml_2.0.11-1etch1.diff.gz
 be10fe25928ce83aadf119d98eb5cd43 451672 web optional wml_2.0.11-1etch1_i386.deb
 a26feebf4e59e9a6940f54c69dde05b5 3115230 web optional wml_2.0.11.orig.tar.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFHrOyoXm3vHE4uyloRAvQ8AKDnPciCI2DenvjBYj6/LKI+FdovdgCfe4/9
szTGceCOPTAd1rzn6M9VE1E=
=lOZi
-----END PGP SIGNATURE-----


Accepted:
wml_2.0.11-1etch1.diff.gz
  to pool/main/w/wml/wml_2.0.11-1etch1.diff.gz
wml_2.0.11-1etch1.dsc
  to pool/main/w/wml/wml_2.0.11-1etch1.dsc
wml_2.0.11-1etch1_i386.deb
  to pool/main/w/wml/wml_2.0.11-1etch1_i386.deb
Reply to: