Bug#714562: opu: package libopenid-ruby/2.1.8debian-1+squeeze1

To: 714562@bugs.debian.org
Cc: Cédric Boutillier <boutil@debian.org>
Subject: Bug#714562: opu: package libopenid-ruby/2.1.8debian-1+squeeze1
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Tue, 02 Jul 2013 22:45:51 +0100
Message-id: <[🔎] 1372801551.1015.6.camel@jacala.jungle.funky-badger.org>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 714562@bugs.debian.org
In-reply-to: <1372624717.4580.10.camel@jacala.jungle.funky-badger.org>
References: <20130630202640.GA19191@spin> <1372624717.4580.10.camel@jacala.jungle.funky-badger.org>

Control: tags -1 + pending

On Sun, 2013-06-30 at 21:38 +0100, Adam D. Barratt wrote:
> On Sun, 2013-06-30 at 22:26 +0200, Cédric Boutillier wrote:
> > As a follow-up of a security bug [1], I have been advised to provide a
> > fix of this package through oldstable-proposed-updates. The proposed
> > update applies a patch from upstream which prevents possible XML denial
> > of service attacks by limiting the size of fetched file and disabling
> > XML entity expansion.
> 
> Please go ahead; thanks.

Flagged for acceptance.

Regards,

Adam

Reply to:

Prev by Date: Processed: Re: Bug#714562: opu: package libopenid-ruby/2.1.8debian-1+squeeze1
Next by Date: Bug#714324: pu: package grub2/1.99-27.1+deb7u1
Previous by thread: Bug#714794: marked as done (pu: package sikuli/1.0~x~rc3.tesseract3-dfsg1-5+deb7u1)
Next by thread: Processed: Re: Bug#714562: opu: package libopenid-ruby/2.1.8debian-1+squeeze1
Index(es):
- Date
- Thread