Accepted ia32-libs 20110117 (source amd64)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Mon, 17 Jan 2011 15:47:37 +0000
Source: ia32-libs
Binary: ia32-libs ia32-libs-dev
Architecture: source amd64
Version: 20110117
Distribution: unstable
Urgency: low
Maintainer: Debian ia32-libs Team <pkg-ia32-libs-maintainers@lists.alioth.debian.org>
Changed-By: Thijs Kinkhorst <thijs@debian.org>
Description:
ia32-libs - ia32 shared libraries for use on amd64 and ia64 systems
ia32-libs-dev - ia32 development files for use on amd64 and ia64 systems
Closes: 610089
Changes:
ia32-libs (20110117) unstable; urgency=low
.
* Do not disable secure APT when downloading packages (closes: #610089)
* Add security repository next to the regular Debian mirror.
.
* Packages updated:
.
[ cyrus-sasl2 (2.1.23.dfsg1-7) unstable; urgency=low ]
.
[ Luca Capello ]
* Fix for (#601977), the idea coming from Gaudenz Steinlin
<gaudenz@debian.org>:
+ debian/control:
- cyrus-sasl2-dbg Depends: on one of the two GSSAPI dbg packages.
- new cyrus-sasl2-mit-dbg package which Conflicts: with
cyrus-sasl2-heimdal-dbg.
- cyrus-sasl2-heimdal-dbg now Conflicts: with cyrus-sasl2-mit-dbg.
+ debian/cyrus-sasl2-heimdal-dbg.preinst:
- remove, useless.
+ debian/cyrus-sasl2-heimdal-dbg.postrm:
- remove, useless.
+ debian/cyrus-sasl2-mit-dbg.dirs:
- create /usr/lib/debug/usr/lib/sasl2/.
+ debian/rules:
- mv MIT libgssapiv2.so.2.0.23 into cyrus-sasl2-mit-dbg.
.
[ Roberto C. Sanchez ]
* Thanks to Luca Capello for providing the patch.
.
[ dbus (1.2.24-4) unstable; urgency=high ]
.
* debian/patches/12-CVE-2010-4352-reject-deeply-nested-variants.patch
- Fixes CVE-2010-4352: sending messages with excessively-nested variants
can crash the bus. The existing restriction to 64-levels of nesting
previously only applied to the static type signature; now it also
applies to dynamic nesting using variants.
Patch cherry-picked from upstream Git.
* Urgency high for the security fix.
.
[ isdnutils (1:3.9.20060704+dfsg.2-4.1) testing-proposed-updates; urgency=low ]
.
* Non-maintainer upload.
* debian/{ipppd,isdnvboxserver,isdnvboxserver}.postinst: Call MAKEDEV in
/dev not via search path (#604219, #604211, #597926, #604216).
Thanks to Alexander Reichle-Schmehl for the patch.
.
[ krb5 (1.8.3+dfsg-4) unstable; urgency=medium ]
.
* Ignore PACs without a server signature generated by OS X Open
Directory rather than failing authentication, #604925
.
[ krb5 (1.8.3+dfsg-3) unstable; urgency=emergency ]
.
* MITKRB5-SA-2010-007
* CVE-2010-1324: An unauthenticated attacker can inject arbitrary
content into an existing GSS connection that appears to be integrity
protected from the legitimate peer under some circumstances
* GSS applications may accept a PAC produced by an attacker as if it
were signed by a KDC
* CVE-2010-1323: attackers have a 1/256 chance of being able to
produce krb_safe messages that appear to be from legitimate remote
sources. Other than use in KDC database copies this may not be a
huge issue only because no one actually uses krb_safe
messages. Similarly, an attacker can force clients to display
challenge/response values of the attacker's choice.
* CVE-2010-4020: An attacker may be able to generate what is
accepted as a ad-signedpath or ad-kdc-issued checksum with 1/256
probability
* New Vietnamese debconf translations, Thanks Clytie Siddall,
#601533
* Update standards version to 3.9.1 (no changes required
.
[ libasyncns (0.3-1.1) unstable; urgency=low ]
.
* Non-maintainer upload.
* libasyncns/asyncns.c: Fix data alignment issue on armel, backported from
upstream. (#566139)
.
[ libx11 (2:1.3.3-4) unstable; urgency=low ]
.
* Cherry-pick patches from upstream, 1.3-branch:
- man: Fix typo in Makefile
- Bug 27465 - Rewritten fi_FI.UTF-8 Compose file
- Fix typo in new fi_FI.UTF-8 that was reported by "make check"
- man: Redirect users from XKeycodeToKeysym to XkbKeycodeToKeysym #25732
- man: Fix return value specification of XkbKeyActionEntry
- man: Return value of XkbGetState is Status and not Bool
- man: Add missing geometry component flag
- man: Correct the XkbAllAccessXEventsMask mask name
- Fix manual typos.
- Allow X11 users to compose anarchism
- Clarify requirements in XRestackWindows man page
- Fix typo that made configure always report "none" for man page suffix
- Define FILE_MAN_DIR_SUFFIX so XCompose shadow page has correct path
- Compose.man: default user compose file is .XCompose, not .Xcompose
- Make Compose-comma map to Ogonek for A and E in UTF-8 locales.
- Make Compose-comma map to ogonek for I and U in UTF-8 locales.
- NLS: Add o/ Compose sequence
- nls: Switch one of the interrobang sequences to gnaborretni
- Bug 29773: aliases for nb_NO.utf8 and nn_NO.utf8
.
[ libxi (2:1.3-6) unstable; urgency=medium ]
.
* WireToEvent: Set display member of all events as well (cherry-pick from
upstream).
.
[ libxml2 (2.7.8.dfsg-2) unstable; urgency=low ]
.
* xpath.c: Fix a double-freeing error in XPath processing code.
(CVE-2010-4494). #607922.
.
[ openldap (2.4.23-7) unstable; urgency=low ]
.
* Updated vietnamese translation, thanks Clytie Siddall
(#601537, #598575)
* Updated portuguese translation, thanks Traduz (#599760)
* Updated danish translation, thanks Joe Dalton (#599835)
.
[ openssl (0.9.8o-4) unstable; urgency=low ]
.
* Fix CVE-2010-4180 (#529221)
.
[ sane-backends (1.0.21-9) unstable; urgency=low ]
.
* debian/patches/fix_epson2_cancel.patch:
+ Added; fix handling of scanner errors by sending a cancel command
(#597922).
.
[ sane-backends (1.0.21-8) unstable; urgency=low ]
.
* debian/patches/fix_epson2_commands.patch:
+ Added; fix list of supported commands for levels D1 and D2
(#582066).
.
[ util-linux (2.17.2-5) unstable; urgency=low ]
.
* Merge in all those NMUs that were never pushed to me in bugs.
.
[ util-linux (2.17.2-4) unstable; urgency=low ]
.
[Miklos Szeredi]
.
* mount: don't canonicalize "spec" with --no-canonicalize option.
#593336
.
[Karel Zak]
.
* fdisk: fix freespace boundaries calculation on SGI disklabel.
#510130
.
[LaMont Jones]
.
* Deliver agetty as both agetty and getty, preferring agetty.
#117596
* Declare source format (1.0)
* use debconf (iff installed) to warn about noauto fileysstems with non-zero
pass numbers. #566072
* update lintian-overrides, actually install them in the deb
Checksums-Sha1:
dc6c06ca1311cd89b97c4c3a636092c782c44fed 1526 ia32-libs_20110117.dsc
0d1fe96a938e5cdbf42392cbed007cbea5a35229 336493121 ia32-libs_20110117.tar.gz
af879a3b7ff3b5db011157cd54dc7b3b6641d5b9 34214006 ia32-libs_20110117_amd64.deb
6f95dba105053dc554adfee3784344302a9e902c 13064278 ia32-libs-dev_20110117_amd64.deb
Checksums-Sha256:
fc4fa19b91d1dbef7facc743be17205a0863cb1f6af9575b6a13a4d68a755368 1526 ia32-libs_20110117.dsc
9837e0d653d61cb8f00ba6851aa433b97866da5b1fc3028ca46db2c766b3a0b5 336493121 ia32-libs_20110117.tar.gz
32d5e34cdcb9d67b0cc9393c5e4b1118b2494a553440727f09683b74b9a600f5 34214006 ia32-libs_20110117_amd64.deb
2ade1bbc9bc96ef590a6bb2fb14c14dde03db4b640377e6bdbc389a9995d6566 13064278 ia32-libs-dev_20110117_amd64.deb
Files:
da3e395be06fc0bb241613eb764c43dc 1526 libs optional ia32-libs_20110117.dsc
0c929a31120e74fa38d759025646c85d 336493121 libs optional ia32-libs_20110117.tar.gz
230ef034d5469ca780b09109360e248d 34214006 libs optional ia32-libs_20110117_amd64.deb
b3eda10a7d0e2493017c59a2ac736ea4 13064278 libdevel extra ia32-libs-dev_20110117_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iQEcBAEBAgAGBQJNNc5HAAoJEOxfUAG2iX576mMIANIqrAYV7Z/7ArNXU6cVSpd1
9Wv0ZYuBAyfX55LS+GDlMRD3kJuemYSd3SIQw9rtatI+3nHeyDlJuljU6OCgvnIs
/hgkX/C4IWpermTPZnHOL2QvA6HBcGb2BdkLR+0Gd4Twk0ZRbVv2hPKwdik90gGz
kZfp1RWmc/3fVGi+2yhvxArkSRkLA1DtX32oTE0ZjkdtxusMfTiDu77fQJlgExWd
o4klcIWBJW74/AFBYmE6463h85u1f1LebnbvjYHCdeoEDaootnl8EDvoRhWaQiQd
1lxFVzd7OU6NmjxL+ZuKarssqih6VJ+SADJT9jqjOW1H5gwW9M29sxsgczAzG/s=
=2gKt
-----END PGP SIGNATURE-----
Accepted:
ia32-libs-dev_20110117_amd64.deb
to main/i/ia32-libs/ia32-libs-dev_20110117_amd64.deb
ia32-libs_20110117.dsc
to main/i/ia32-libs/ia32-libs_20110117.dsc
ia32-libs_20110117.tar.gz
to main/i/ia32-libs/ia32-libs_20110117.tar.gz
ia32-libs_20110117_amd64.deb
to main/i/ia32-libs/ia32-libs_20110117_amd64.deb
Reply to: