Bug#738333: squeeze-pu: package suds/0.3.9-1+deb6u1
Package: release.debian.org
Severity: normal
Tags: squeeze
User: release.debian.org@packages.debian.org
Usertags: pu
Fixes a a minor security issue still affecting oldstable.
Ok to upload?
Cheers,
Moritz
diff -u suds-0.3.9/debian/changelog suds-0.3.9/debian/changelog
--- suds-0.3.9/debian/changelog
+++ suds-0.3.9/debian/changelog
@@ -1,3 +1,9 @@
+suds (0.3.9-1+deb6u1) oldstable; urgency=low
+
+ * Fix CVE-2013-2217 (Closes: #714340)
+
+ -- Moritz Muehlenhoff <jmm@debian.org> Sun, 09 Feb 2014 00:43:19 +0200
+
suds (0.3.9-1) unstable; urgency=low
* Initial release.
only in patch2:
unchanged:
--- suds-0.3.9.orig/suds/cache.py
+++ suds-0.3.9/suds/cache.py
@@ -30,6 +30,8 @@
except:
import pickle
+import tempfile
+
log = getLogger(__name__)
@@ -138,7 +140,7 @@
@type duration: {unit:value}
"""
if location is None:
- location = os.path.join(tmp(), 'suds')
+ location = tempfile.mkdtemp()
self.location = location
self.duration = (None, 0)
self.setduration(**duration)
Reply to: