Accepted libpar-packer-perl 1.006-1+squeeze1 (source amd64)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Sun, 18 Dec 2011 20:44:15 +0100
Source: libpar-packer-perl
Binary: libpar-packer-perl
Architecture: amd64 source
Version: 1.006-1+squeeze1
Distribution: stable
Urgency: low
Maintainer: Debian Perl Group <pkg-perl-maintainers@lists.alioth.debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Closes: 650706
Description:
libpar-packer-perl - utility for creating PAR archives and stand-alone executables
Changes:
libpar-packer-perl (1.006-1+squeeze1) stable; urgency=low
.
* Team upload.
* Add create-safe-temporary-directories.patch patch.
Fixes CVE-2011-4114: PAR packed files are extracted to unsafe and
predictable temporary directories. (Closes: #650706)
* Bump (Build-)Depends on libpar-perl.
Bump the dependencies to libpar-perl (>= 1.000-1+squeeze1) as this
version contains the other half of the fix for CVE-2011-4114.
* Add run_all_tests_using_a_nonce_PAR_TMPDIR.patch.
Run all tests using a nonce PAR_TMPDIR (a leftover /tmp/par-USER
directory from previous builds may now be considered "unsafe")
Checksums-Sha1:
01ea0ea6429563d89ca5501c49da3152c26b88b8 1810918 libpar-packer-perl_1.006-1+squeeze1_amd64.deb
36eda1efa5b30d5b93c2748270e9f1acd6123859 2457 libpar-packer-perl_1.006-1+squeeze1.dsc
0c4a09f8c6e44adfe815a0459faf0bd5cf3ca1e8 8716 libpar-packer-perl_1.006-1+squeeze1.debian.tar.gz
Checksums-Sha256:
500b2f38a1512c19798a00851ecafee85420496f20d5caf074aae373de367de7 1810918 libpar-packer-perl_1.006-1+squeeze1_amd64.deb
150eda4af4dd01f348e9426846fcd83a00d8e627e1d5d82f61d3f931d779c38c 2457 libpar-packer-perl_1.006-1+squeeze1.dsc
6ed0d2805398c4e7dc4654da73a19e1257a2aed677917042f80bdd2f34a3ac72 8716 libpar-packer-perl_1.006-1+squeeze1.debian.tar.gz
Files:
a26fa5f9dfe6e629921c93179bc96c0d 1810918 perl optional libpar-packer-perl_1.006-1+squeeze1_amd64.deb
fcdb17f24ed411cf970a40b72aace4fe 2457 perl optional libpar-packer-perl_1.006-1+squeeze1.dsc
167e60d47773f4a30ebd7a4c11c9b935 8716 perl optional libpar-packer-perl_1.006-1+squeeze1.debian.tar.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)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=x5Yv
-----END PGP SIGNATURE-----
Accepted:
libpar-packer-perl_1.006-1+squeeze1.debian.tar.gz
to main/libp/libpar-packer-perl/libpar-packer-perl_1.006-1+squeeze1.debian.tar.gz
libpar-packer-perl_1.006-1+squeeze1.dsc
to main/libp/libpar-packer-perl/libpar-packer-perl_1.006-1+squeeze1.dsc
libpar-packer-perl_1.006-1+squeeze1_amd64.deb
to main/libp/libpar-packer-perl/libpar-packer-perl_1.006-1+squeeze1_amd64.deb
Reply to: