Accepted spip 3.2.4-1+deb10u1 (source) into proposed-updates->stable-new, proposed-updates

To: debian-changes@lists.debian.org
Subject: Accepted spip 3.2.4-1+deb10u1 (source) into proposed-updates->stable-new, proposed-updates
From: David Prévot <taffit@debian.org>
Date: Sat, 28 Sep 2019 18:35:56 +0000
Message-id: <[🔎] E1iEHZU-0006DI-53@fasolo.debian.org>
Mail-followup-to: debian-devel@lists.debian.org
Reply-to: debian-devel@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Mon, 16 Sep 2019 11:45:48 -1000
Source: spip
Architecture: source
Version: 3.2.4-1+deb10u1
Distribution: buster-security
Urgency: medium
Maintainer: David Prévot <taffit@debian.org>
Changed-By: David Prévot <taffit@debian.org>
Changes:
 spip (3.2.4-1+deb10u1) buster-security; urgency=medium
 .
   * Backport security fixes from 3.2.5
     - Critical security fix, allowing unidentified visitor to modify any
       published content and execute other modifications in database
       [CVE-2019-16391]
     - Other security fixes:
       + better sanitization on redirections [CVE-2019-16393]
       + don’t disclose if user exists when resetting password [CVE-2019-16394]
       + better error message sanitization on login page [CVE-2019-16392]
     - Update security screen to 1.3.12
   * Add d/gbp.conf for buster
   * Add CVE ID to previous changelog entry
   * Refresh patch headers
Checksums-Sha1:
 6f4fca9dbe7062dd674a358551623e24ef890fee 1513 spip_3.2.4-1+deb10u1.dsc
 e52f6bf2165a5b636de71ff55393bf9195a4ff51 6221452 spip_3.2.4.orig.tar.xz
 1ac5043d5a7005f59482a4edb13380b5fd4ebb04 75296 spip_3.2.4-1+deb10u1.debian.tar.xz
 b773b46e6894412d13358e3279836c5215a62dab 7658 spip_3.2.4-1+deb10u1_amd64.buildinfo
Checksums-Sha256:
 d54785b76bebc70230f75ea0cf871897e7fdc1ca92977e3dd43f000efbc373de 1513 spip_3.2.4-1+deb10u1.dsc
 aa3d58380731e1b92d120b19603f2ee9171a4280276308fc6529d5723f34a3f1 6221452 spip_3.2.4.orig.tar.xz
 2d73e3c7cdc217c4d946fd6c00ee06de76a661a057e5ad6cf5ce66a6f9fb6532 75296 spip_3.2.4-1+deb10u1.debian.tar.xz
 6b348a60efcd0a6dd6d7ae436eabb0e6cfcdd9d7955462395922a86639a5b5f4 7658 spip_3.2.4-1+deb10u1_amd64.buildinfo
Files:
 ee06afc5fd3054437ab6f71c56100352 1513 web optional spip_3.2.4-1+deb10u1.dsc
 e217cd6c3c023c9c2687d021481b5451 6221452 web optional spip_3.2.4.orig.tar.xz
 e3d56138ed30f60d076e209595ed0a6b 75296 web optional spip_3.2.4-1+deb10u1.debian.tar.xz
 b396892ac8a9c69e44f08d6e2fdc35a9 7658 web optional spip_3.2.4-1+deb10u1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----

iQFGBAEBCAAwFiEEeHVNB7wJXHRI941mBYwc+UT2vTwFAl2B5PkSHHRhZmZpdEBk
ZWJpYW4ub3JnAAoJEAWMHPlE9r08OagH+wUcQqR3+3vFPqLG7arWKBDlKXFWKPjW
1AOK2FciU0cpEnBm1yGUAM9D7w+soGEMGQl/3gufIzurITd9bVcwfkZispNO8ECB
4pbEh44OlaUNs2YRYRqGDI+CfFTWEiwzNPfRRTmKv1gNe/Iok7hbFscdsAqWIwAX
lLqedxA0WPFQdy463DO08mesUXe9PDVyB1M9t4VtALoub2ONA/ufW15mzHDtghJh
Pww+DYkJxlXvLVhvzMhdogVUX+2/PPkf7PHJNqknslGrxswU/mFL26WXQGhXKXre
owBuB/WIgKoQKGyn1DPlTAPf/0QZ4LrHYMaL3eeSOzL7LGRMgZIQNY8=
=P89i
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: Accepted linux-signed-i386 4.19.67+2+deb10u1 (source) into proposed-updates->stable-new, proposed-updates
Next by Date: Accepted e2fsprogs 1.43.4-2+deb9u1 (source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
Previous by thread: Accepted linux-signed-i386 4.19.67+2+deb10u1 (source) into proposed-updates->stable-new, proposed-updates
Next by thread: Accepted e2fsprogs 1.43.4-2+deb9u1 (source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
Index(es):
- Date
- Thread