Bug#697483: tpu: rpm/4.10.0-5+deb7u1

To: Salvatore Bonaccorso <carnil@debian.org>, 697483@bugs.debian.org
Subject: Bug#697483: tpu: rpm/4.10.0-5+deb7u1
From: Julien Cristau <jcristau@debian.org>
Date: Sun, 6 Jan 2013 14:48:54 +0100
Message-id: <20130106134854.GH5676@radis.cristau.org>
Reply-to: Julien Cristau <jcristau@debian.org>, 697483@bugs.debian.org
In-reply-to: <20130105235424.7928.93084.reportbug@elende.valinor.li>
References: <20130105235424.7928.93084.reportbug@elende.valinor.li>

On Sun, Jan  6, 2013 at 00:54:24 +0100, Salvatore Bonaccorso wrote:

> Package: release.debian.org
> Severity: normal
> User: release.debian.org@packages.debian.org
> Usertags: unblock
> 
> Hi Release Team
> 
> rpm in testing (4.10.0-5) is also affected by CVE-2012-6088: Signature
> checking function returned success on (possibly malicious) rpm
> packages. See #697375.
> 
> After confirming by Michal[1] I uploaded the fix for unstable (with
> 4.10.1-2.1) and now would like to ask for an unblock for an upload to
> t-p-u. I'm attaching the debdiff to this report.
> 
>  [1]: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697375#27
> 
> unblock rpm/4.10.0-5+deb7u1
> 
Go ahead, thanks.

Cheers,
Julien

Attachment: signature.asc
Description: Digital signature

Reply to:

Follow-Ups:
- Bug#697483: tpu: rpm/4.10.0-5+deb7u1
  - From: Salvatore Bonaccorso <carnil@debian.org>

References:
- Bug#697483: tpu: rpm/4.10.0-5+deb7u1
  - From: Salvatore Bonaccorso <carnil@debian.org>

Prev by Date: Bug#697500: marked as done (unblock: dh-ocaml/1.0.7)
Next by Date: Processed: tagging 697483
Previous by thread: Bug#697483: tpu: rpm/4.10.0-5+deb7u1
Next by thread: Bug#697483: tpu: rpm/4.10.0-5+deb7u1
Index(es):
- Date
- Thread