[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Accepted capi4hylafax 1:01.03.00.99.svn.300-1 (source sparc)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

Format: 1.7
Date: Wed, 23 Aug 2006 23:15:32 +0200
Source: capi4hylafax
Binary: capi4hylafax
Architecture: source sparc
Version: 1:01.03.00.99.svn.300-1
Distribution: unstable
Urgency: high
Maintainer: Lionel Elie Mamane <lmamane@debian.org>
Changed-By: Lionel Elie Mamane <lmamane@debian.org>
Description: 
 capi4hylafax - Faxing over CAPI 2.0 device
Closes: 382474
Changes: 
 capi4hylafax (1:01.03.00.99.svn.300-1) unstable; urgency=low
 .
   * New upstream release:
     - Fix for #358567 taken upstream
     - Fix for long (> 200 chars) lines in config files
     - Higher debbugging level
   * Bumped up Standards-Version
 .
 capi4hylafax (1:01.03.00.99.svn.297-4) UNRELEASED; urgency=high
 .
   * Don't let null characters from cidnumber prematurely terminate C
     string preparing command line for faxrcvd in c2faxrecv
     (closes: #382474).
     Also remove shell metacharacters while I'm at it. This probably fixes
     a security vulnerability (arbitrary remote command execution under
     uucp identity): the said command line contains untrusted
     sender-controlled data, the sender's identification (the TSI
     string). (The ITU T.30 specification restricts this string to a prefix
     '+' and digits only, but rumour has it an attacker can transmit
     arbitrary ASCII data, including null characters.)
Files: 
 dc7276e8c3b28efb084af14225565144 708 comm extra capi4hylafax_01.03.00.99.svn.300-1.dsc
 af2610c5219e89ef9dc47eead30276b4 533410 comm extra capi4hylafax_01.03.00.99.svn.300.orig.tar.gz
 964e9a7c78dea6b6e681bddf18b6cc99 153873 comm extra capi4hylafax_01.03.00.99.svn.300-1.diff.gz
 da0d046449d1772bd9dc14316a60bf51 227218 comm extra capi4hylafax_01.03.00.99.svn.300-1_sparc.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iEYEAREDAAYFAkTtQ4EACgkQscRzFz57S3OrHQCdF8mCckblBv6dMSos6cij6GV4
DIgAoJizTNXTwhiLeUQcpXL9YOHFpWLx
=0HKh
-----END PGP SIGNATURE-----


Accepted:
capi4hylafax_01.03.00.99.svn.300-1.diff.gz
  to pool/main/c/capi4hylafax/capi4hylafax_01.03.00.99.svn.300-1.diff.gz
capi4hylafax_01.03.00.99.svn.300-1.dsc
  to pool/main/c/capi4hylafax/capi4hylafax_01.03.00.99.svn.300-1.dsc
capi4hylafax_01.03.00.99.svn.300-1_sparc.deb
  to pool/main/c/capi4hylafax/capi4hylafax_01.03.00.99.svn.300-1_sparc.deb
capi4hylafax_01.03.00.99.svn.300.orig.tar.gz
  to pool/main/c/capi4hylafax/capi4hylafax_01.03.00.99.svn.300.orig.tar.gz
Reply to: