Bug#688945: unblock: condor/7.8.2~dfsg.1-1+deb7u1

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#688945: unblock: condor/7.8.2~dfsg.1-1+deb7u1
From: Michael Hanke <mih@debian.org>
Date: Thu, 27 Sep 2012 09:33:26 +0200
Message-id: <[🔎] 20120927073326.9831.317.reportbug@meiner>
Reply-to: Michael Hanke <mih@debian.org>, 688945@bugs.debian.org

Package: release.debian.org
Severity: normal
User: release.debian.org@packages.debian.org
Usertags: unblock

Please unblock package condor. thanks!

The version in unstable fixes four CVE issues that are present in the
current version in wheezy.

Changelog
---------

condor (7.8.2~dfsg.1-1+deb7u1) unstable; urgency=high

  * Security update. This release addresses four CVE issues (Closes: #688210):
    - Security Item: Some code that was no longer used was removed. The presence
      of this code could expose information which would allow an attacker to
      control another user's job. (CVE-2012-3493)
    - Security Item: Some code that was no longer used was removed. The presence
      of this code could have lead to a Denial-of-Service attack which would
      allow an attacker to remove another user's idle job. (CVE-2012-3491)
    - Security Item: Filesystem (FS) authentication was improved to check the
      UNIX permissions of the directory used for authentication. Without this,
      an attacker may have been able to impersonate another submitter on the
      same submit machine. (CVE-2012-3492)
    - Security item: Check setuid return value (CVE-2012-3490)

 -- Michael Hanke <mih@debian.org>  Wed, 26 Sep 2012 16:10:17 +0200

Debdiff
-------

% debdiff condor_7.8.2\~dfsg.1-1_i386.changes condor_7.8.2\~dfsg.1-1+deb7u1_i386.changes
File lists identical (after any substitutions)

Control files of package condor: lines which differ (wdiff format)
------------------------------------------------------------------
Installed-Size: [-12465-] {+12464+}
Version: [-7.8.2~dfsg.1-1-] {+7.8.2~dfsg.1-1+deb7u1+}

Control files of package condor-dbg: lines which differ (wdiff format)
----------------------------------------------------------------------
Depends: condor (= [-7.8.2~dfsg.1-1)-] {+7.8.2~dfsg.1-1+deb7u1)+}
Version: [-7.8.2~dfsg.1-1-] {+7.8.2~dfsg.1-1+deb7u1+}

Control files of package condor-dev: lines which differ (wdiff format)
----------------------------------------------------------------------
Version: [-7.8.2~dfsg.1-1-] {+7.8.2~dfsg.1-1+deb7u1+}

Control files of package condor-doc: lines which differ (wdiff format)
----------------------------------------------------------------------
Installed-Size: [-6132-] {+6133+}
Version: [-7.8.2~dfsg.1-1-] {+7.8.2~dfsg.1-1+deb7u1+}

Control files of package libclassad-dev: lines which differ (wdiff format)
--------------------------------------------------------------------------
Depends: libclassad3 (= [-7.8.2~dfsg.1-1)-] {+7.8.2~dfsg.1-1+deb7u1)+}
Installed-Size: [-2158-] {+2159+}
Version: [-7.8.2~dfsg.1-1-] {+7.8.2~dfsg.1-1+deb7u1+}

Control files of package libclassad3: lines which differ (wdiff format)
-----------------------------------------------------------------------
Version: [-7.8.2~dfsg.1-1-] {+7.8.2~dfsg.1-1+deb7u1+}



Added patches are attached.

unblock condor/7.8.2~dfsg.1-1+deb7u1

Reply to:

Follow-Ups:
- Bug#688945: unblock: condor/7.8.2~dfsg.1-1+deb7u1
  - From: Michael Hanke <mih@debian.org>
- Bug#688945: marked as done (unblock: condor/7.8.2~dfsg.1-1+deb7u1)
  - From: owner@bugs.debian.org (Debian Bug Tracking System)

Prev by Date: Processed: unblock xpra/0.3.10+dfsg-1
Next by Date: Bug#688945: unblock: condor/7.8.2~dfsg.1-1+deb7u1
Previous by thread: Processed: unblock xpra/0.3.10+dfsg-1
Next by thread: Bug#688945: unblock: condor/7.8.2~dfsg.1-1+deb7u1
Index(es):
- Date
- Thread