Security fix for jquery-jplayer 2.1.0-1

To: debian-release@lists.debian.org
Cc: Vincent Bernat <bernat@luffy.cx>
Subject: Security fix for jquery-jplayer 2.1.0-1
From: Pau Garcia i Quiles <pgquiles@elpauer.org>
Date: Sat, 27 Apr 2013 01:31:49 +0200
Message-id: <[🔎] CAKcBokvz_HGh851+f5B6jP4aKQATrui=FcDJ_o7k029xvZT_VQ@mail.gmail.com>

Hello,

Wheezy contains my package jquery-jplayer 2.1.0-1, which is affected by a few security issues which have been recently fixed upstream. One of the issues is CVE-2013-1942. Two other issues, although important, did not get a CVE number.

I have backported the patches and created jquery-jplayer 2.1.0-2. Debdiff is attached.

Is it OK to upload this to the archive?

Thank you

(CC'ing my sponsor, Vicent Bernat)

--
Pau Garcia i Quiles
http://www.elpauer.org
(Due to my workload, I may need 10 days to answer)

Attachment: jquery-jplayer_2.1.0-1_to_2.1.0-2.debdiff
Description: Binary data

Reply to:

Follow-Ups:
- Re: Security fix for jquery-jplayer 2.1.0-1
  - From: "Thijs Kinkhorst" <thijs@debian.org>

Prev by Date: Processed: Re: Bug#706047: unblock bacula/5.2.6+dfsg-9
Next by Date: Re: Bug#706110: libgnome{, vfs}2-common: fails to upgrade from squeeze: prerm failure: gconf-schemas: not found
Previous by thread: Processed: Re: Bug#706209: unblock: ejabberd 2.1.10-5
Next by thread: Re: Security fix for jquery-jplayer 2.1.0-1
Index(es):
- Date
- Thread