Bug#703926: tpu: libsocialweb/0.25.20-2.1
Package: release.debian.org
Severity: normal
User: release.debian.org@packages.debian.org
Usertags: tpu
Hi,
I want to put libsocialweb-0.25.20-2.1 to t-p-u to fix CVE-2012-4511.
diff -Nru libsocialweb-0.25.20/debian/changelog libsocialweb-0.25.20/debian/changelog
--- libsocialweb-0.25.20/debian/changelog 2012-06-22 12:08:40.000000000 +0900
+++ libsocialweb-0.25.20/debian/changelog 2013-03-25 08:47:37.000000000 +0900
@@ -1,3 +1,11 @@
+libsocialweb (0.25.20-2.1) testing-proposed-updates; urgency=low
+
+ * Non-maintainer upload.
+ * debian/patches
+ - add CVE-2012-4511.patch
+
+ -- Hideki Yamane <henrich@debian.org> Mon, 25 Mar 2013 08:46:56 +0900
+
libsocialweb (0.25.20-2) unstable; urgency=low
* MultiArch support
diff -Nru libsocialweb-0.25.20/debian/patches/CVE-2012-4511.patch libsocialweb-0.25.20/debian/patches/CVE-2012-4511.patch
--- libsocialweb-0.25.20/debian/patches/CVE-2012-4511.patch 1970-01-01 09:00:00.000000000 +0900
+++ libsocialweb-0.25.20/debian/patches/CVE-2012-4511.patch 2013-03-25 08:46:37.000000000 +0900
@@ -0,0 +1,18 @@
+Description: patch for CVE-2012-4511
+
+---
+Origin: upstream
+Bug-Debian: http://bugs.debian.org/690675
+Last-Update: 2013-03-25
+
+--- libsocialweb-0.25.20.orig/services/flickr/flickr.c
++++ libsocialweb-0.25.20/services/flickr/flickr.c
+@@ -255,7 +255,7 @@ online_notify (gboolean online, gpointer
+ SW_DEBUG (FLICKR, "Online: %s", online ? "yes" : "no");
+
+ if (online) {
+- got_tokens_cb (priv->proxy, TRUE, g_object_ref (service));
++ credentials_updated (service);
+ } else {
+ priv->authorised = FALSE;
+
diff -Nru libsocialweb-0.25.20/debian/patches/series libsocialweb-0.25.20/debian/patches/series
--- libsocialweb-0.25.20/debian/patches/series 2011-06-04 22:45:22.000000000 +0900
+++ libsocialweb-0.25.20/debian/patches/series 2013-03-25 08:45:19.000000000 +0900
@@ -1 +1,2 @@
01_detect_NM_and_ConnMan.patch
+CVE-2012-4511.patch
Reply to: