Re: Please consider bzip2 1.0.2-7 for sarge

To: Anibal Monsalve Salazar <anibal@debian.org>
Cc: debian-release@lists.debian.org
Subject: Re: Please consider bzip2 1.0.2-7 for sarge
From: Steve Langasek <vorlon@debian.org>
Date: Sun, 29 May 2005 22:00:56 -0700
Message-id: <[🔎] 20050530050056.GG5115@mauritius.dodds.net>
Mail-followup-to: Anibal Monsalve Salazar <anibal@debian.org>, debian-release@lists.debian.org
In-reply-to: <[🔎] 20050529004727.GA2036@debianrules.debiancolombia.org>
References: <[🔎] 20050529004727.GA2036@debianrules.debiancolombia.org>

On Sun, May 29, 2005 at 10:47:27AM +1000, Anibal Monsalve Salazar wrote:
> Please consider bzip2 1.0.2-7 for sarge. It fixes security vulnerability
> CAN-2005-1260, RC bug #310803, and #293581.

> Closes: 293581 310803
> Changes: 
>  bzip2 (1.0.2-7) unstable; urgency=high
>  .
>    * Fixed "CAN-2005-1260 decompression bomb vulnerability", closes: #310803.
>      Patch by Martin Pitt <martin.pitt@ubuntu.com>.
>    * Fixed "Example provided in documentation causes data loss", closes:
>      #293581. Patch by Adam Borowski <kilobyte@mimuw.edu.pl>.

Approved,

Thanks,
-- 
Steve Langasek
postmodern programmer

Attachment: signature.asc
Description: Digital signature

Reply to:

References:
- Please consider bzip2 1.0.2-7 for sarge
  - From: Anibal Monsalve Salazar <anibal@debian.org>

Prev by Date: Re: Please let oregano into testing again
Next by Date: Re: dump_0.4b37-2
Previous by thread: Please consider bzip2 1.0.2-7 for sarge
Next by thread: kernel updates accepted for sarge
Index(es):
- Date
- Thread