Bug#641062: pu: package quassel/0.6.3-2

To: Thomas Mueller <thomas.mueller@tmit.eu>, 641062@bugs.debian.org
Subject: Bug#641062: pu: package quassel/0.6.3-2
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Sun, 11 Sep 2011 20:15:46 +0100
Message-id: <[🔎] 1315768546.3482.18.camel@hathi.jungle.funky-badger.org>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 641062@bugs.debian.org
In-reply-to: <[🔎] 20110909225429.21234.93009.reportbug@localhost.localdomain>
References: <[🔎] 20110909225429.21234.93009.reportbug@localhost.localdomain>

tag 641062 + squeeze confirmed
thanks

On Sat, 2011-09-10 at 00:54 +0200, Thomas Mueller wrote:
> A security issue within quassel was reported:
> http://security-tracker.debian.org/tracker/TEMP-0640960-84D05E

This is now CVE-2011-3354.

> The quassel chat server can crash in case of some requests:
> http://bugs.quassel-irc.org/issues/1095
> 
> This issue has been discussed with SecurityTeam on IRC with pabs.
> We agreed to do a regular stable upload as the criticality is not that high.
> 
> Upstream provided a fix with 0.7.3, which has already been accepted in unstable.
> Backport of the fix to 0.6.3 has been finished and is ready for upload to stable.
> 
> Please find the debdiff attached.

Please go ahead; thanks.

Regards,

Adam

Reply to:

Follow-Ups:
- Processed: Re: Bug#641062: pu: package quassel/0.6.3-2
  - From: owner@bugs.debian.org (Debian Bug Tracking System)
- Bug#641062: pu: package quassel/0.6.3-2
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>

References:
- Bug#641062: pu: package quassel/0.6.3-2
  - From: Thomas Mueller <thomas.mueller@tmit.eu>

Prev by Date: Re: Bug#637384: pu: package lintian/2.4.3+squeeze1
Next by Date: Processed: Re: Bug#641062: pu: package quassel/0.6.3-2
Previous by thread: Bug#641062: pu: package quassel/0.6.3-2
Next by thread: Processed: Re: Bug#641062: pu: package quassel/0.6.3-2
Index(es):
- Date
- Thread