--- Begin Message ---
- To: Debian Bug Tracking System <submit@bugs.debian.org>
- Subject: O: pax -- Portable Archive Interchange (cpio, pax, tar)
- From: Thorsten Glaser <tg@mirbsd.de>
- Date: Tue, 07 Oct 2014 21:31:19 +0200
- Message-id: <20141007193119.5917.92899.reportbug@tglase.lan.tarent.de>
Package: wnpp
Severity: normal
I intend to orphan the pax package.
The package description is:
paxtar is an implementation of an archiving utility that reads
and writes several formats - traditional ones, the extended
formats specified in IEEE 1003.1, and the ar(5) format used
by deb(5) packages (MirBSD specific paxtar extension). The
pax interface was designed by IEEE 1003.2 as a compromise in
the chronic controversy over which of tar or cpio is best, but
this implementation offers paxcpio and paxtar for easy calling.
.
This is the MirBSD paxtar implementation supporting the formats
ar, bcpio, cpio, SVR4 cpio with and without CRC, old tar, and
ustar, but not the format known as pax yet. It has extensions
for removing non-numerical user and group IDs from the archive,
storing hardlinked files only once, setting ownership to the
superuser, anonymising inode and device information, changing
the mtime to zero, and producing GNU tar compatible trailing
slashes on ustar directory nodes. Its "ar" format is suitable
for operating on *.deb files, unlike that of GNU binutils.
.
Note that ACLs and Extended Attributes are not supported.
Also, on Debian GNU/Hurd and Debian GNU/Linux (but not
Debian GNU/kFreeBSD), size of archive members is limited
to the width of the "long" type, that is, 2 GiB on platforms
that do not have a 64-bit "long" type, due to a bug in the
GNU C library (Debian #317466).
--- End Message ---
--- Begin Message ---
- To: 764402-close@bugs.debian.org
- Subject: Bug#764402: fixed in pax 1:20160306-1
- From: Thorsten Glaser <tg@mirbsd.de>
- Date: Tue, 08 Mar 2016 12:20:47 +0000
- Message-id: <E1adGd5-0000zK-8S@franck.debian.org>
Source: pax
Source-Version: 1:20160306-1
We believe that the bug you reported is fixed in the latest version of
pax, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 764402@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Thorsten Glaser <tg@mirbsd.de> (supplier of updated pax package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Sun, 06 Mar 2016 22:08:00 +0100
Source: pax
Binary: pax
Architecture: source amd64
Version: 1:20160306-1
Distribution: unstable
Urgency: high
Maintainer: John Paul Adrian Glaubitz <glaubitz@physik.fu-berlin.de>
Changed-By: Thorsten Glaser <tg@mirbsd.de>
Description:
pax - Portable Archive Interchange (cpio, pax, tar)
Closes: 764402 774716
Changes:
pax (1:20160306-1) unstable; urgency=high
.
* New upstream version
- addresses CVE-2015-1193 and CVE-2015-1194 (Closes: #774716)
* Retake active maintainership with sponsors (Closes: #764402)
* Update tables.c from CVS incorporating lintian spelling fixes
* Bump S-V (no changes); add Homepage; SSL URIs for VCS (lintian)
Checksums-Sha1:
7deb71c2489a9007f2dcd9bda0132e9b844d0dc8 1791 pax_20160306-1.dsc
8bc9041cc85b510abfb1412dbc4e11bb95869501 111100 pax_20160306.orig.tar.xz
8feddf8fd9e1ea1c96b57ef6984c1a5bc446243f 6996 pax_20160306-1.debian.tar.xz
342e0620d7239188cbc12981450cd397d162db0c 113664 pax-dbgsym_20160306-1_amd64.deb
ed44687c5c78663a69fab1ed0222660006163c4b 81928 pax_20160306-1_amd64.deb
Checksums-Sha256:
f9ac72b7ffa1cfdbb50ade5856f1ce734f9648533aafc57d2c4f867a0e69e4ef 1791 pax_20160306-1.dsc
63366bd2b070653e3ae0a4d236136349997d90c85effc09311e09cd376369f7a 111100 pax_20160306.orig.tar.xz
9c65a90867531e50760cc1725cad9508ca4b7376f3258f9d9614eb61ef422856 6996 pax_20160306-1.debian.tar.xz
1d8dc1df570798e353c4f297125c35b79cb9f8367be984ed3b710882f00a9d43 113664 pax-dbgsym_20160306-1_amd64.deb
2f67bf927f5ea1cc5997315499c6228e2da5e473502b45a7b4b7681e23265d75 81928 pax_20160306-1_amd64.deb
Files:
a85de8df23e8e15318b8a0939606c57c 1791 utils optional pax_20160306-1.dsc
2a41414abcaaa78495b8a9bb0b857c91 111100 utils optional pax_20160306.orig.tar.xz
ec65e8777d6f138cbfab2d2e782de617 6996 utils optional pax_20160306-1.debian.tar.xz
f66f7c2b4cbb9f31ab639213eb4dfcd3 113664 debug extra pax-dbgsym_20160306-1_amd64.deb
2bce29059e1ea2b9f1eb7f883b2cc73c 81928 utils optional pax_20160306-1_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=hU/e
-----END PGP SIGNATURE-----
--- End Message ---