Accepted tomboy 0.8.1-2 (source i386)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Wed, 14 Nov 2007 05:34:45 +0100
Source: tomboy
Binary: tomboy
Architecture: source i386
Version: 0.8.1-2
Distribution: unstable
Urgency: high
Maintainer: Sebastian Dröge <slomo@debian.org>
Changed-By: Sebastian Dröge <slomo@debian.org>
Description:
tomboy - desktop note taking program using Wiki style links
Changes:
tomboy (0.8.1-2) unstable; urgency=high
.
* debian/patches/02_CVE-2005-4790-insecure-search-path.patch:
+ SECURITY, CVE-2005-4790:
Multiple untrusted search path vulnerabilities in SUSE Linux 9.3 and
10.0, and possibly other distributions, cause the working directory to
be added to LD_LIBRARY_PATH, which might allow local users to execute
arbitrary code via (1) beagle, (2) tomboy, or (3) blam.
NOTE: in August 2007, the tomboy vector was reported for other
distributions.
Patch taken from upstream SVN.
* debian/tomboy.menu:
+ Fix section. It's now "Applications/Data Management".
Files:
953aa5efc2c9edbf5a03bcbccdcfa23c 1124 gnome optional tomboy_0.8.1-2.dsc
e65191ba39888385300ed62c591c0a3e 88459 gnome optional tomboy_0.8.1-2.diff.gz
bb942e48029038440ed256f725538f1e 2894076 gnome optional tomboy_0.8.1-2_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFHO9XSBsBdh1vkHyERAlV7AJ4vI7lwgtbqPjby1sQQ5JujuLRc7gCdFFRi
mzHeeECfWDUIx9qVORmuUHQ=
=1lBP
-----END PGP SIGNATURE-----
Accepted:
tomboy_0.8.1-2.diff.gz
to pool/main/t/tomboy/tomboy_0.8.1-2.diff.gz
tomboy_0.8.1-2.dsc
to pool/main/t/tomboy/tomboy_0.8.1-2.dsc
tomboy_0.8.1-2_i386.deb
to pool/main/t/tomboy/tomboy_0.8.1-2_i386.deb
Reply to: