[SCM] Debian package checker branch, master, updated. 2.3.1-26-g7928943

To: debian-lint-maint@lists.debian.org
Subject: [SCM] Debian package checker branch, master, updated. 2.3.1-26-g7928943
From: "Raphael Geissert" <atomo64@gmail.com>
Date: Wed, 27 Jan 2010 18:42:18 +0000
Message-id: <[🔎] E1NaCqI-0000GD-5y@alioth.debian.org>

The following commit has been merged in the master branch:
commit a7d19e620d517c989dd0d40d89c464251e55a7a0
Author: Raphael Geissert <atomo64@gmail.com>
Date:   Tue Jan 26 01:50:26 2010 -0600

    Add changelog entry for security fixes

diff --git a/debian/changelog b/debian/changelog
index 1a2733a..97d2677 100755
--- a/debian/changelog
+++ b/debian/changelog
@@ -4,6 +4,12 @@ lintian (2.3.2) UNRELEASED; urgency=low
     + Added:
       - conflicting-negation-in-source-relation
 
+  * checks/{control-files,files,menu-format,menus}:
+    + [RG] Fix CVE-2009-4014: format string vulnerabilities.
+  * checks/{fields,patch-systems}:
+    + [RG] Fix CVE-2009-4013: missing control files sanitation.
+  * checks/{files,patch-systems,po-debconf}:
+    + [RG] Fix CVE-2009-4015: arbitrary command execution.
   * checks/changelog-file:
     + [RA] Avoid Perl warning when the NEWS file ends immediately after
       the most recent entry.  (Closes: #563585)
@@ -24,6 +30,11 @@ lintian (2.3.2) UNRELEASED; urgency=low
   * checks/manpages:
     + [RA] Pass LOCPATH to subprocesses.
 
+  * collection/objdump-info:
+    + [RG] Fix CVE-2009-4015: arbitrary command execution.
+  * collection/source-control-file:
+    + [RG] Fix CVE-2009-4013: missing control files sanitation.
+
   * data/output/manual-references:
     + [JP] Refresh reference data against Policy 3.8.3, doc-base 0.9.5,
       developers-reference 3.4.3, and Python Policy 0.9.0.
@@ -39,6 +50,7 @@ lintian (2.3.2) UNRELEASED; urgency=low
   * frontend/lintian:
     + [RA] Set LOCPATH to LINTIAN_ROOT/locale or /var/lib/lintian/locale,
       whichever exist.
+    + [RG] Fix CVE-2009-4013: missing control files sanitation.
 
   * lib/Lintian/Collect.pm:
     + [ADB] Update the documentation to reflect the existence of
@@ -46,6 +58,9 @@ lintian (2.3.2) UNRELEASED; urgency=low
   * lib/Lintian/Collect/Binary.pm:
     + [ADB] Correct a reference in the documentation indicating that the 
       module collects data for source packages.
+  * lib/Lintian/Schedule.pm:
+    + [RG] Fix CVE-2009-4013: missing control files sanitation.
+    + [RG] Fix CVE-2009-4014: format string vulnerabilities.
   * lib/Spelling.pm:
     + [RA] Add additional spelling corrections.
     + [RA] Remove spelling correction for parameterize.  This is the
@@ -55,10 +70,14 @@ lintian (2.3.2) UNRELEASED; urgency=low
     + [RG] Add more spelling corrections.
   * lib/Util.pm:
     + [RA] Pass LOCPATH to subprocesses.
+    + [RG] Fix CVE-2009-4015: arbitrary command execution.
 
   * man/lintian.1:
     + [RA] Spelling fix.  Thanks, A. Costa.  (Closes: #564017)
 
+  * private/refresh-manual-refs:
+    + [RG] Fix CVE-2009-4015: arbitrary command execution.
+
   * reporting/{config,html_reports}:
     + [JP] Make it possible to keep a record of statistics of previous
       archive-wide Lintian executions.
@@ -66,6 +85,9 @@ lintian (2.3.2) UNRELEASED; urgency=low
     + [RA] Really fix the logic to optionally display the archive area of
       additional package entries under the same source package.
 
+  * unpack/unpack-{bin,src}pkg-l1:
+    + [RG] Fix CVE-2009-4013: missing control files sanitation.
+
  -- Russ Allbery <rra@debian.org>  Sun, 03 Jan 2010 13:06:34 -0800
 
 lintian (2.3.1) unstable; urgency=low

-- 
Debian package checker

Reply to:

Prev by Date: [SCM] Debian package checker branch, master, updated. 2.3.1-26-g7928943
Next by Date: [SCM] Debian package checker branch, master, updated. 2.3.1-26-g7928943
Previous by thread: [SCM] Debian package checker branch, master, updated. 2.3.1-26-g7928943
Next by thread: [SCM] Debian package checker branch, master, updated. 2.3.1-26-g7928943
Index(es):
- Date
- Thread