======================================== Fri, 12 Jul 2002 - Debian 2.2r7 released ======================================== stable/main/binary-alpha/xsane_0.50-5.1_alpha.deb stable/main/binary-sparc/xsane_0.50-5.1_sparc.deb stable/main/binary-powerpc/xsane_0.50-5.1_powerpc.deb stable/main/binary-m68k/xsane_0.50-5.1_m68k.deb stable/main/binary-arm/xsane_0.50-5.1_arm.deb stable/main/source/xsane_0.50-5.1.diff.gz stable/main/binary-i386/xsane_0.50-5.1_i386.deb stable/main/source/xsane_0.50-5.1.dsc xsane (0.50-5.1) stable; urgency=high * Non-maintainer upload by Security Team * Fixed several temporary file vulnerabilities by introducing /tmp/xsane-${LOGNAME:-$UID} as location for all temporary files, created securely upon startup. stable/main/binary-alpha/wmtv_0.6.5-3potato3_alpha.deb stable/main/binary-i386/wmtv_0.6.5-3potato3_i386.deb stable/main/binary-arm/wmtv_0.6.5-3potato3_arm.deb stable/main/source/wmtv_0.6.5-3potato3.dsc stable/main/binary-powerpc/wmtv_0.6.5-3potato3_powerpc.deb stable/main/binary-sparc/wmtv_0.6.5-3potato3_sparc.deb stable/main/source/wmtv_0.6.5-3potato3.diff.gz stable/main/binary-m68k/wmtv_0.6.5-3potato3_m68k.deb wmtv (0.6.5-3potato3) stable; urgency=high * Source rebuild to fix archive fuckup and to let the security update propagate into stable/sparc * From 0.6.5-2potato2: Fixed possible symlinks attacks and buffer overflows * From 0.6.5-2potato1: Fixed local root vulnerability by dropping privileges before executing an external viewer stable/main/binary-sparc/vrweb_1.5-5.1_sparc.deb vrweb (1.5-5.1) stable; urgency=high * Non-maintainer upload by the security team * Upgrade zlib to 1.1.3 and apply patch for double-free bug stable/main/binary-powerpc/vrweb_1.5-5.1_powerpc.deb vrweb (1.5-5.1) stable; urgency=high * Non-maintainer upload by the security team * Upgrade zlib to 1.1.3 and apply patch for double-free bug stable/main/binary-m68k/vrweb_1.5-5.1_m68k.deb vrweb (1.5-5.1) stable; urgency=high * Non-maintainer upload by the security team * Upgrade zlib to 1.1.3 and apply patch for double-free bug stable/main/binary-arm/vrweb_1.5-5.1_arm.deb vrweb (1.5-5.1) stable; urgency=high * Non-maintainer upload by the security team * Upgrade zlib to 1.1.3 and apply patch for double-free bug stable/main/binary-alpha/vrweb_1.5-5.1_alpha.deb vrweb (1.5-5.1) stable; urgency=high * Non-maintainer upload by the security team * Upgrade zlib to 1.1.3 and apply patch for double-free bug stable/main/source/vrweb_1.5-5.1.dsc stable/main/binary-i386/vrweb_1.5-5.1_i386.deb stable/main/source/vrweb_1.5-5.1.diff.gz vrweb (1.5-5.1) stable; urgency=high * Non-maintainer upload by the security team * Upgrade zlib to 1.1.3 and apply patch for double-free bug stable/main/binary-sparc/uucp_1.06.1-11potato3_sparc.deb uucp (1.06.1-11potato3) stable; urgency=high * Fix potential buffer overflow in uucpd. Thanks to Matthew Grant for pointing it out and providing a patch. * Fix uucp crontab problem: The old crontab was mangled upon upgrade. Make a new one in /etc/cron.d/uucp and ignore the old one. Inform user to fix manually via debconf (closes in potato: #134545). * Depend on debconf (see point above). Requires some changes to {post,pre}{rm,inst} and rules file. * Make everything below /etc/uucp/ (including) owned by root in new installs. stable/main/binary-powerpc/uucp_1.06.1-11potato3_powerpc.deb uucp (1.06.1-11potato3) stable; urgency=high * Fix potential buffer overflow in uucpd. Thanks to Matthew Grant for pointing it out and providing a patch. * Fix uucp crontab problem: The old crontab was mangled upon upgrade. Make a new one in /etc/cron.d/uucp and ignore the old one. Inform user to fix manually via debconf (closes in potato: #134545). * Depend on debconf (see point above). Requires some changes to {post,pre}{rm,inst} and rules file. * Make everything below /etc/uucp/ (including) owned by root in new installs. stable/main/binary-m68k/uucp_1.06.1-11potato3_m68k.deb uucp (1.06.1-11potato3) stable; urgency=high * Fix potential buffer overflow in uucpd. Thanks to Matthew Grant for pointing it out and providing a patch. * Fix uucp crontab problem: The old crontab was mangled upon upgrade. Make a new one in /etc/cron.d/uucp and ignore the old one. Inform user to fix manually via debconf (closes in potato: #134545). * Depend on debconf (see point above). Requires some changes to {post,pre}{rm,inst} and rules file. * Make everything below /etc/uucp/ (including) owned by root in new installs. stable/main/binary-arm/uucp_1.06.1-11potato3_arm.deb uucp (1.06.1-11potato3) stable; urgency=high * Fix potential buffer overflow in uucpd. Thanks to Matthew Grant for pointing it out and providing a patch. * Fix uucp crontab problem: The old crontab was mangled upon upgrade. Make a new one in /etc/cron.d/uucp and ignore the old one. Inform user to fix manually via debconf (closes in potato: #134545). * Depend on debconf (see point above). Requires some changes to {post,pre}{rm,inst} and rules file. * Make everything below /etc/uucp/ (including) owned by root in new installs. stable/main/binary-alpha/uucp_1.06.1-11potato3_alpha.deb uucp (1.06.1-11potato3) stable; urgency=high * Fix potential buffer overflow in uucpd. Thanks to Matthew Grant for pointing it out and providing a patch. * Fix uucp crontab problem: The old crontab was mangled upon upgrade. Make a new one in /etc/cron.d/uucp and ignore the old one. Inform user to fix manually via debconf (closes in potato: #134545). * Depend on debconf (see point above). Requires some changes to {post,pre}{rm,inst} and rules file. * Make everything below /etc/uucp/ (including) owned by root in new installs. stable/main/source/uucp_1.06.1-11potato3.diff.gz stable/main/binary-i386/uucp_1.06.1-11potato3_i386.deb stable/main/source/uucp_1.06.1-11potato3.dsc uucp (1.06.1-11potato3) stable; urgency=high * Fix potential buffer overflow in uucpd. Thanks to Matthew Grant for pointing it out and providing a patch. * Fix uucp crontab problem: The old crontab was mangled upon upgrade. Make a new one in /etc/cron.d/uucp and ignore the old one. Inform user to fix manually via debconf (closes in potato: #134545). * Depend on debconf (see point above). Requires some changes to {post,pre}{rm,inst} and rules file. * Make everything below /etc/uucp/ (including) owned by root in new installs. stable/main/binary-i386/sudo_1.6.2p2-2.2_i386.deb stable/main/binary-powerpc/sudo_1.6.2p2-2.2_powerpc.deb stable/main/source/sudo_1.6.2p2-2.2.diff.gz stable/main/binary-alpha/sudo_1.6.2p2-2.2_alpha.deb stable/main/binary-sparc/sudo_1.6.2p2-2.2_sparc.deb stable/main/source/sudo_1.6.2p2-2.2.dsc stable/main/binary-arm/sudo_1.6.2p2-2.2_arm.deb stable/main/binary-m68k/sudo_1.6.2p2-2.2_m68k.deb sudo (1.6.2p2-2.2) stable; urgency=high * Non-maintainer upload by Security Team * Fix buffer overflow in prompt expansion stable/main/binary-sparc/qpopper_2.53-7_sparc.deb qpopper (2.53-7) stable; urgency=high * The previous upload leaked build-depends on libgdbmg1-dev and mail-transport-agent, that causes m68k build failure. * Moved from priority optional to extra. stable/main/binary-powerpc/qpopper_2.53-7_powerpc.deb qpopper (2.53-7) stable; urgency=high * The previous upload leaked build-depends on libgdbmg1-dev and mail-transport-agent, that causes m68k build failure. * Moved from priority optional to extra. stable/main/binary-m68k/qpopper_2.53-7_m68k.deb qpopper (2.53-7) stable; urgency=high * The previous upload leaked build-depends on libgdbmg1-dev and mail-transport-agent, that causes m68k build failure. * Moved from priority optional to extra. stable/main/binary-arm/qpopper_2.53-7_arm.deb qpopper (2.53-7) stable; urgency=high * The previous upload leaked build-depends on libgdbmg1-dev and mail-transport-agent, that causes m68k build failure. * Moved from priority optional to extra. stable/main/binary-alpha/qpopper_2.53-7_alpha.deb qpopper (2.53-7) stable; urgency=high * The previous upload leaked build-depends on libgdbmg1-dev and mail-transport-agent, that causes m68k build failure. * Moved from priority optional to extra. stable/main/source/qpopper_2.53-7.diff.gz stable/main/binary-i386/qpopper_2.53-7_i386.deb stable/main/source/qpopper_2.53-7.dsc qpopper (2.53-7) stable; urgency=high * The previous upload leaked build-depends on libgdbmg1-dev and mail-transport-agent, that causes m68k build failure. * Moved from priority optional to extra. stable/main/binary-sparc/listar_0.129a-2.potato2_sparc.deb stable/main/binary-sparc/listar-cgi_0.129a-2.potato2_sparc.deb listar (0.129a-2.potato2) stable; urgency=high * SECURITY: Applied argv security fixes from the Ecartis tree. stable/main/binary-powerpc/listar-cgi_0.129a-2.potato2_powerpc.deb stable/main/binary-powerpc/listar_0.129a-2.potato2_powerpc.deb listar (0.129a-2.potato2) stable; urgency=high * SECURITY: Applied argv security fixes from the Ecartis tree. stable/main/binary-m68k/listar_0.129a-2.potato2_m68k.deb stable/main/binary-m68k/listar-cgi_0.129a-2.potato2_m68k.deb listar (0.129a-2.potato2) stable; urgency=high * SECURITY: Applied argv security fixes from the Ecartis tree. stable/main/binary-arm/listar-cgi_0.129a-2.potato2_arm.deb stable/main/binary-arm/listar_0.129a-2.potato2_arm.deb listar (0.129a-2.potato2) stable; urgency=high * SECURITY: Applied argv security fixes from the Ecartis tree. stable/main/binary-alpha/listar-cgi_0.129a-2.potato2_alpha.deb stable/main/binary-alpha/listar_0.129a-2.potato2_alpha.deb listar (0.129a-2.potato2) stable; urgency=high * SECURITY: Applied argv security fixes from the Ecartis tree. stable/main/binary-i386/listar-cgi_0.129a-2.potato2_i386.deb stable/main/source/listar_0.129a-2.potato2.diff.gz stable/main/binary-i386/listar_0.129a-2.potato2_i386.deb stable/main/source/listar_0.129a-2.potato2.dsc listar (0.129a-2.potato2) stable; urgency=high * SECURITY: Applied argv security fixes from the Ecartis tree. stable/main/source/imp_2.2.6-0.potato.5.tar.gz stable/main/source/imp_2.2.6-0.potato.5.dsc stable/main/binary-all/imp_2.2.6-0.potato.5_all.deb imp (2:2.2.6-0.potato.5) stable; urgency=high * Fixed postgres bug introduced by php4 security update, closes: #128110. * Fixed cross site scripting security bug, closes: #141941. stable/main/binary-all/horde_1.2.6-0.potato.5_all.deb stable/main/source/horde_1.2.6-0.potato.5.tar.gz stable/main/source/horde_1.2.6-0.potato.5.dsc horde (2:1.2.6-0.potato.5) stable; urgency=high * Cross site scripting vulneraility fixed, closes: #142209. stable/main/binary-sparc/ethereal_0.8.0-3potato_sparc.deb ethereal (0.8.0-3potato) stable; urgency=low * Security upload: - asn1.c: fixes zero-length g_malloc that could have caused problems. - asn1.c: fixes possible buffer overflow. (those are backports of 0.9.3) stable/main/binary-powerpc/ethereal_0.8.0-3potato_powerpc.deb ethereal (0.8.0-3potato) stable; urgency=low * Security upload: - asn1.c: fixes zero-length g_malloc that could have caused problems. - asn1.c: fixes possible buffer overflow. (those are backports of 0.9.3) stable/main/binary-m68k/ethereal_0.8.0-3potato_m68k.deb ethereal (0.8.0-3potato) stable; urgency=low * Security upload: - asn1.c: fixes zero-length g_malloc that could have caused problems. - asn1.c: fixes possible buffer overflow. (those are backports of 0.9.3) stable/main/binary-arm/ethereal_0.8.0-3potato_arm.deb ethereal (0.8.0-3potato) stable; urgency=low * Security upload: - asn1.c: fixes zero-length g_malloc that could have caused problems. - asn1.c: fixes possible buffer overflow. (those are backports of 0.9.3) stable/main/binary-alpha/ethereal_0.8.0-3potato_alpha.deb ethereal (0.8.0-3potato) stable; urgency=low * Security upload: - asn1.c: fixes zero-length g_malloc that could have caused problems. - asn1.c: fixes possible buffer overflow. (those are backports of 0.9.3) stable/main/binary-i386/ethereal_0.8.0-3potato_i386.deb stable/main/source/ethereal_0.8.0-3potato.dsc stable/main/source/ethereal_0.8.0-3potato.diff.gz ethereal (0.8.0-3potato) stable; urgency=low * Security upload: - asn1.c: fixes zero-length g_malloc that could have caused problems. - asn1.c: fixes possible buffer overflow. (those are backports of 0.9.3) stable/main/binary-sparc/erlang_49.1-10.1_sparc.deb erlang (49.1-10.1) stable; urgency=high * Non-maintainer upload by the Security Team * Apply patch for double-free bug to included copy of zlib stable/main/binary-powerpc/erlang_49.1-10.1_powerpc.deb erlang (49.1-10.1) stable; urgency=high * Non-maintainer upload by the Security Team * Apply patch for double-free bug to included copy of zlib stable/main/binary-i386/erlang_49.1-10.1_i386.deb stable/main/binary-all/erlang-java_49.1-10.1_all.deb stable/main/source/erlang_49.1-10.1.dsc stable/main/binary-all/erlang-erl_49.1-10.1_all.deb stable/main/source/erlang_49.1-10.1.diff.gz stable/main/binary-all/erlang-base_49.1-10.1_all.deb erlang (49.1-10.1) stable; urgency=high * Non-maintainer upload by the Security Team * Apply patch for double-free bug to included copy of zlib stable/main/source/custom_1.9962-3.dsc stable/main/binary-all/custom_1.9962-3_all.deb stable/main/source/custom_1.9962-3.diff.gz custom (1.9962-3) stable; urgency=medium * New upload to fix a maintainer-side time warp (Fixes Bug#103300) stable/main/binary-sparc/cupsys_1.0.4-12_sparc.deb stable/main/binary-sparc/libcupsys1_1.0.4-12_sparc.deb stable/main/binary-sparc/libcupsys1-dev_1.0.4-12_sparc.deb stable/main/binary-sparc/cupsys-bsd_1.0.4-12_sparc.deb cupsys (1.0.4-12) stable; urgency=high * Remove lpd backend for security reasons. stable/main/binary-powerpc/libcupsys1-dev_1.0.4-12_powerpc.deb stable/main/binary-powerpc/cupsys-bsd_1.0.4-12_powerpc.deb stable/main/binary-powerpc/libcupsys1_1.0.4-12_powerpc.deb stable/main/binary-powerpc/cupsys_1.0.4-12_powerpc.deb cupsys (1.0.4-12) stable; urgency=high * Remove lpd backend for security reasons. stable/main/binary-m68k/libcupsys1-dev_1.0.4-12_m68k.deb stable/main/binary-m68k/cupsys-bsd_1.0.4-12_m68k.deb stable/main/binary-m68k/cupsys_1.0.4-12_m68k.deb stable/main/binary-m68k/libcupsys1_1.0.4-12_m68k.deb cupsys (1.0.4-12) stable; urgency=high * Remove lpd backend for security reasons. stable/main/binary-arm/libcupsys1-dev_1.0.4-12_arm.deb stable/main/binary-arm/cupsys-bsd_1.0.4-12_arm.deb stable/main/binary-arm/libcupsys1_1.0.4-12_arm.deb stable/main/binary-arm/cupsys_1.0.4-12_arm.deb cupsys (1.0.4-12) stable; urgency=high * Remove lpd backend for security reasons. stable/main/binary-alpha/cupsys-bsd_1.0.4-12_alpha.deb stable/main/binary-alpha/libcupsys1-dev_1.0.4-12_alpha.deb stable/main/binary-alpha/cupsys_1.0.4-12_alpha.deb stable/main/binary-alpha/libcupsys1_1.0.4-12_alpha.deb cupsys (1.0.4-12) stable; urgency=high * Remove lpd backend for security reasons. stable/main/binary-i386/libcupsys1_1.0.4-12_i386.deb stable/main/source/cupsys_1.0.4-12.diff.gz stable/main/binary-i386/cupsys_1.0.4-12_i386.deb stable/main/binary-i386/cupsys-bsd_1.0.4-12_i386.deb stable/main/binary-i386/libcupsys1-dev_1.0.4-12_i386.deb stable/main/source/cupsys_1.0.4-12.dsc cupsys (1.0.4-12) stable; urgency=high * Remove lpd backend for security reasons. stable/main/binary-alpha/snake4_1.0.10-1.0.1_alpha.deb snake4 (1.0.10-1.0.1) stable; urgency=low * Binary-only non-maintainer upload for alpha; no source changes. * recompile to fix timestamps stable/main/binary-sparc/apache-perl_1.3.9-14.1-1.21.20000309-1_sparc.deb apache-perl (1.3.9-14.1-1.21.20000309-1) stable-security; urgency=high * Update to Apache package version 1.3.9-14.1. Fixes security problems including CERT VU#944335 (chunked encoding). stable/main/binary-m68k/apache-perl_1.3.9-14.1-1.21.20000309-1_m68k.deb apache-perl (1.3.9-14.1-1.21.20000309-1) stable-security; urgency=high * Update to Apache package version 1.3.9-14.1. Fixes security problems including CERT VU#944335 (chunked encoding). stable/main/binary-i386/apache-perl_1.3.9-14.1-1.21.20000309-1_i386.deb apache-perl (1.3.9-14.1-1.21.20000309-1) stable-security; urgency=high * Update to Apache package version 1.3.9-14.1. Fixes security problems including CERT VU#944335 (chunked encoding). stable/main/binary-arm/apache-perl_1.3.9-14.1-1.21.20000309-1_arm.deb apache-perl (1.3.9-14.1-1.21.20000309-1) stable-security; urgency=high * Update to Apache package version 1.3.9-14.1. Fixes security problems including CERT VU#944335 (chunked encoding). stable/main/binary-alpha/apache-perl_1.3.9-14.1-1.21.20000309-1_alpha.deb apache-perl (1.3.9-14.1-1.21.20000309-1) stable-security; urgency=high * Update to Apache package version 1.3.9-14.1. Fixes security problems including CERT VU#944335 (chunked encoding). stable/main/source/apache-perl_1.3.9-14.1-1.21.20000309-1.tar.gz stable/main/binary-powerpc/apache-perl_1.3.9-14.1-1.21.20000309-1_powerpc.deb stable/main/source/apache-perl_1.3.9-14.1-1.21.20000309-1.dsc apache-perl (1.3.9-14.1-1.21.20000309-1) stable-security; urgency=high * Update to Apache package version 1.3.9-14.1. Fixes security problems including CERT VU#944335 (chunked encoding). stable/main/binary-m68k/apache-common_1.3.9-14.1_m68k.deb stable/main/binary-m68k/apache_1.3.9-14.1_m68k.deb stable/main/binary-m68k/apache-dev_1.3.9-14.1_m68k.deb apache (1.3.9-14.1) stable; urgency=high * Non-maintainer upload by security team * Add patch to fix CERT VU#944335 stable/main/binary-alpha/apache-dev_1.3.9-14.1_alpha.deb stable/main/binary-powerpc/apache-dev_1.3.9-14.1_powerpc.deb stable/main/binary-sparc/apache_1.3.9-14.1_sparc.deb stable/main/binary-powerpc/apache-common_1.3.9-14.1_powerpc.deb stable/main/source/apache_1.3.9-14.1.diff.gz stable/main/binary-alpha/apache_1.3.9-14.1_alpha.deb stable/main/binary-alpha/apache-common_1.3.9-14.1_alpha.deb stable/main/binary-arm/apache-dev_1.3.9-14.1_arm.deb stable/main/binary-i386/apache-dev_1.3.9-14.1_i386.deb stable/main/binary-all/apache-doc_1.3.9-14.1_all.deb stable/main/binary-arm/apache-common_1.3.9-14.1_arm.deb stable/main/binary-i386/apache-common_1.3.9-14.1_i386.deb stable/main/binary-i386/apache_1.3.9-14.1_i386.deb stable/main/source/apache_1.3.9-14.1.dsc stable/main/binary-sparc/apache-dev_1.3.9-14.1_sparc.deb stable/main/binary-powerpc/apache_1.3.9-14.1_powerpc.deb stable/main/binary-arm/apache_1.3.9-14.1_arm.deb stable/main/binary-sparc/apache-common_1.3.9-14.1_sparc.deb apache (1.3.9-14.1) stable; urgency=high * Non-maintainer upload by security team * Add patch to fix CERT VU#944335 stable/main/binary-sparc/analog_5.22-0potato4_sparc.deb analog (2:5.22-0potato4) stable; urgency=medium * Added PROGRESSFREQ to the list of forbidden commands in the fom interface, which avoids a DOS attack that could fill up the log partition. http://www.analog.cx/security5.html for details stable/main/binary-powerpc/analog_5.22-0potato4_powerpc.deb analog (2:5.22-0potato4) stable; urgency=medium * Added PROGRESSFREQ to the list of forbidden commands in the fom interface, which avoids a DOS attack that could fill up the log partition. http://www.analog.cx/security5.html for details stable/main/binary-m68k/analog_5.22-0potato4_m68k.deb analog (2:5.22-0potato4) stable; urgency=medium * Added PROGRESSFREQ to the list of forbidden commands in the fom interface, which avoids a DOS attack that could fill up the log partition. http://www.analog.cx/security5.html for details stable/main/binary-arm/analog_5.22-0potato4_arm.deb analog (2:5.22-0potato4) stable; urgency=medium * Added PROGRESSFREQ to the list of forbidden commands in the fom interface, which avoids a DOS attack that could fill up the log partition. http://www.analog.cx/security5.html for details stable/main/binary-alpha/analog_5.22-0potato4_alpha.deb analog (2:5.22-0potato4) stable; urgency=medium * Added PROGRESSFREQ to the list of forbidden commands in the fom interface, which avoids a DOS attack that could fill up the log partition. http://www.analog.cx/security5.html for details stable/main/binary-sparc/analog_5.22-0potato4_i386.deb stable/main/source/analog_5.22-0potato4_i386.dsc stable/main/source/analog_5.22-0potato4_i386.diff.gz analog (2:5.22-0potato4) stable; urgency=medium * Added PROGRESSFREQ to the list of forbidden commands in the fom interface, which avoids a DOS attack that could fill up the log partition. http://www.analog.cx/security5.html for details ======================================= Wed, 3 Apr 2002 - Debian 2.2r6 released ======================================= Removed the following packages from stable: amiga-fdisk-bf | 0.04-4 | source (Closed bugs: 137753) xaw95 | 1.1-4.6 | i386, m68k (Closed bugs: 133275) (Reason: not built from source) libnspr3 | M14-2 | alpha, i386, m68k, powerpc, sparc libnspr3-dev | M14-2 | alpha, i386, m68k, powerpc, sparc (Closed bugs: 133274) (Reason: not built from source; superseded by libnspr4{,-dev}) everybuddy | 0.0.7-3 | source, alpha, arm, i386, m68k, powerpc, sparc (Reason: requested by Stable Release Manager) "The current maintainer, Michael D. Ivey, told me that the potato version is so out-dated that it doesn't work with any current protocol, thus is completely useless. There may even be security implications, that are dubious. The current maintainer has agreed to remove the package from stable." pine | 3.96M-5.0 | source pine396-diffs | 5 | source, all pine396-src | 3 | source, all pine4 | 4.21-1 | source pine4-diffs | 2 | source, all pine4-src | 1 | source, all (Reason: requested by Stable Release Manager) "These PINE packages contain security problems and the maintainer agrees that it would be best to remove them from the stable directory entirely. People who still want to use PINE should check the pine-tracker package." communicator | 1:4.72-29 | powerpc navigator | 1:4.70-27 | powerpc netscape | 1:4.72-29 | powerpc netscape-base-4 | 1:4.72-29 | powerpc netscape-base-46 | 4.6-9 | powerpc netscape-smotif-46 | 4.6-9 | powerpc (Closed bugs: 66350) (Reason: Requested by maintainer. Obsolete, buggy & security problems) Sync: libncurses4 4.2-9 powerpc libncurses4-dev 4.2-9 powerpc stable/main/binary-sparc/xtell_1.91.2_sparc.deb xtell (1.91.2) stable; urgency=high * fixed unterminated string bug in reverse DNS lookup and another one in checking for given tty filename - this fixes security issue with possible writing into files owned by nobody stable/main/binary-powerpc/xtell_1.91.2_powerpc.deb xtell (1.91.2) stable; urgency=high * fixed unterminated string bug in reverse DNS lookup and another one in checking for given tty filename - this fixes security issue with possible writing into files owned by nobody stable/main/binary-m68k/xtell_1.91.2_m68k.deb xtell (1.91.2) stable; urgency=high * fixed unterminated string bug in reverse DNS lookup and another one in checking for given tty filename - this fixes security issue with possible writing into files owned by nobody stable/main/binary-arm/xtell_1.91.2_arm.deb xtell (1.91.2) stable; urgency=high * fixed unterminated string bug in reverse DNS lookup and another one in checking for given tty filename - this fixes security issue with possible writing into files owned by nobody stable/main/binary-alpha/xtell_1.91.2_alpha.deb xtell (1.91.2) stable; urgency=high * fixed unterminated string bug in reverse DNS lookup and another one in checking for given tty filename - this fixes security issue with possible writing into files owned by nobody stable/main/binary-i386/xtell_1.91.2_i386.deb stable/main/source/xtell_1.91.2.dsc stable/main/source/xtell_1.91.2.tar.gz xtell (1.91.2) stable; urgency=high * fixed unterminated string bug in reverse DNS lookup and another one in checking for given tty filename - this fixes security issue with possible writing into files owned by nobody stable/contrib/binary-m68k/xmysqladmin_1.0-7_m68k.deb xmysqladmin (1.0-7) unstable frozen; urgency=low * Compilerbug causes xmysqladmin to segfault, removing -O2 optimisation. Closes: #56495, #59356 stable/main/binary-powerpc/xcin_2.5.2-1_powerpc.deb xcin (2.5.2-1) stable unstable; urgency=low * New upstream release. stable/main/binary-arm/xcin_2.5.2-1_arm.deb xcin (2.5.2-1) stable; urgency=low * New upstream release. stable/main/binary-alpha/xcin_2.5.2-1_alpha.deb xcin (2.5.2-1) stable unstable; urgency=low * New upstream release. stable/main/binary-sparc/xchat-text_1.4.3-1_sparc.deb stable/main/binary-sparc/xchat_1.4.3-1_sparc.deb stable/main/binary-sparc/xchat-gnome_1.4.3-1_sparc.deb xchat (1.4.3-1) stable; urgency=high * Fixed "Xchat 1.4.2 and 1.4.3 IRC session hijacking vulnerability", (http://www.securityfocus.com/archive/1/249113); patch provided by upstream author, Peter Zelezny . stable/main/binary-powerpc/xchat-text_1.4.3-1_powerpc.deb stable/main/binary-powerpc/xchat_1.4.3-1_powerpc.deb stable/main/binary-powerpc/xchat-gnome_1.4.3-1_powerpc.deb xchat (1.4.3-1) stable; urgency=high * Fixed "Xchat 1.4.2 and 1.4.3 IRC session hijacking vulnerability", (http://www.securityfocus.com/archive/1/249113); patch provided by upstream author, Peter Zelezny . stable/main/binary-m68k/xchat-gnome_1.4.3-1_m68k.deb stable/main/binary-m68k/xchat_1.4.3-1_m68k.deb stable/main/binary-m68k/xchat-text_1.4.3-1_m68k.deb xchat (1.4.3-1) stable; urgency=high * Fixed "Xchat 1.4.2 and 1.4.3 IRC session hijacking vulnerability", (http://www.securityfocus.com/archive/1/249113); patch provided by upstream author, Peter Zelezny . stable/main/binary-arm/xchat-gnome_1.4.3-1_arm.deb stable/main/binary-arm/xchat_1.4.3-1_arm.deb stable/main/binary-arm/xchat-text_1.4.3-1_arm.deb xchat (1.4.3-1) stable; urgency=high * Fixed "Xchat 1.4.2 and 1.4.3 IRC session hijacking vulnerability", (http://www.securityfocus.com/archive/1/249113); patch provided by upstream author, Peter Zelezny . stable/main/binary-alpha/xchat_1.4.3-1_alpha.deb stable/main/binary-alpha/xchat-gnome_1.4.3-1_alpha.deb stable/main/binary-alpha/xchat-text_1.4.3-1_alpha.deb xchat (1.4.3-1) stable; urgency=high * Fixed "Xchat 1.4.2 and 1.4.3 IRC session hijacking vulnerability", (http://www.securityfocus.com/archive/1/249113); patch provided by upstream author, Peter Zelezny . stable/main/source/xchat_1.4.3-1.dsc stable/main/binary-i386/xchat-gnome_1.4.3-1_i386.deb stable/main/binary-i386/xchat_1.4.3-1_i386.deb stable/main/source/xchat_1.4.3-1.diff.gz stable/main/binary-all/xchat-common_1.4.3-1_all.deb stable/main/binary-i386/xchat-text_1.4.3-1_i386.deb xchat (1.4.3-1) stable; urgency=high * Fixed "Xchat 1.4.2 and 1.4.3 IRC session hijacking vulnerability", (http://www.securityfocus.com/archive/1/249113); patch provided by upstream author, Peter Zelezny . stable/main/binary-powerpc/snmpd_4.1.1-2.2_powerpc.deb stable/main/binary-powerpc/libsnmp4.1-dev_4.1.1-2.2_powerpc.deb stable/main/binary-powerpc/libsnmp4.1_4.1.1-2.2_powerpc.deb stable/main/binary-powerpc/snmp_4.1.1-2.2_powerpc.deb ucd-snmp (4.1.1-2.2) stable; urgency=high * Non-maintainer upload by security team * Undo the sbuf changes to restore binary compatibility * Update config.sub so this builds on alpha machines stable/main/binary-powerpc/wmtv_0.6.5-2potato2_powerpc.deb stable/main/binary-sparc/wmtv_0.6.5-2potato2_sparc.deb stable/main/binary-m68k/wmtv_0.6.5-2potato2_m68k.deb stable/main/source/wmtv_0.6.5-2potato2.dsc stable/main/binary-arm/wmtv_0.6.5-2potato2_arm.deb stable/main/binary-alpha/wmtv_0.6.5-2potato2_alpha.deb stable/main/source/wmtv_0.6.5-2potato2.diff.gz stable/main/binary-i386/wmtv_0.6.5-2potato2_i386.deb wmtv (0.6.5-2potato2) stable; urgency=high * Fixed possible symlinks attacks and buffer overflows. stable/main/source/uucp_1.06.1-11potato2.dsc stable/main/binary-i386/uucp_1.06.1-11potato2_i386.deb stable/main/binary-powerpc/uucp_1.06.1-11potato2_powerpc.deb stable/main/binary-alpha/uucp_1.06.1-11potato2_alpha.deb stable/main/source/uucp_1.06.1-11potato2.diff.gz stable/main/binary-sparc/uucp_1.06.1-11potato2_sparc.deb stable/main/binary-arm/uucp_1.06.1-11potato2_arm.deb stable/main/binary-m68k/uucp_1.06.1-11potato2_m68k.deb uucp (1.06.1-11potato2) stable; urgency=high * Fixed exploit that allowed to gain uid.guid uucp.uucp again: The patch used in 1.06.1-11potato1 did fix the original exploit but not variations of it. Reversed old patch and using the one by Ian Taylor. Hopefully this fixes the issue correctly. stable/main/source/ucd-snmp_4.1.1-2.2.diff.gz stable/main/binary-i386/libsnmp4.1-dev_4.1.1-2.2_i386.deb stable/main/binary-arm/snmpd_4.1.1-2.2_arm.deb stable/main/binary-arm/libsnmp4.1-dev_4.1.1-2.2_arm.deb stable/main/binary-alpha/snmpd_4.1.1-2.2_alpha.deb stable/main/binary-sparc/snmpd_4.1.1-2.2_sparc.deb stable/main/binary-alpha/libsnmp4.1-dev_4.1.1-2.2_alpha.deb stable/main/binary-arm/libsnmp4.1_4.1.1-2.2_arm.deb stable/main/binary-m68k/snmp_4.1.1-2.2_m68k.deb stable/main/binary-arm/snmp_4.1.1-2.2_arm.deb stable/main/binary-m68k/libsnmp4.1_4.1.1-2.2_m68k.deb stable/main/binary-i386/libsnmp4.1_4.1.1-2.2_i386.deb stable/main/binary-sparc/libsnmp4.1_4.1.1-2.2_sparc.deb stable/main/binary-i386/snmp_4.1.1-2.2_i386.deb stable/main/binary-m68k/snmpd_4.1.1-2.2_m68k.deb stable/main/binary-sparc/snmp_4.1.1-2.2_sparc.deb stable/main/source/ucd-snmp_4.1.1-2.2.dsc stable/main/binary-i386/snmpd_4.1.1-2.2_i386.deb stable/main/binary-alpha/libsnmp4.1_4.1.1-2.2_alpha.deb stable/main/binary-alpha/snmp_4.1.1-2.2_alpha.deb stable/main/binary-m68k/libsnmp4.1-dev_4.1.1-2.2_m68k.deb stable/main/binary-sparc/libsnmp4.1-dev_4.1.1-2.2_sparc.deb ucd-snmp (4.1.1-2.2) stable; urgency=high * Non-maintainer upload by security team * Undo the sbuf changes to restore binary compatibility * Update config.sub so this builds on alpha machines stable/contrib/binary-m68k/tkseti_2.12-2_m68k.deb tkseti (2.12-2) frozen unstable; urgency=low * Make tkseti depend on wish instead of tcl/tk, Closes: #62667 stable/main/source/sudo_1.6.2p2-2.1.dsc stable/main/binary-m68k/sudo_1.6.2p2-2.1_m68k.deb stable/main/binary-powerpc/sudo_1.6.2p2-2.1_powerpc.deb stable/main/source/sudo_1.6.2p2-2.1.diff.gz stable/main/binary-sparc/sudo_1.6.2p2-2.1_sparc.deb stable/main/binary-alpha/sudo_1.6.2p2-2.1_alpha.deb stable/main/binary-arm/sudo_1.6.2p2-2.1_arm.deb stable/main/binary-i386/sudo_1.6.2p2-2.1_i386.deb sudo (1.6.2p2-2.1) stable; urgency=high * Non-maintainer upload by Security Team * sudo will not longer send mail as root if it detects abuse. This is due to a bugfix which fixes root hole. The user can potentially kill the sendmail process, though. This is based on work by Sebastian Krahmer from SuSE. stable/main/binary-sparc/squid-cgi_2.2.5-4_sparc.deb stable/main/binary-sparc/squidclient_2.2.5-4_sparc.deb stable/main/binary-sparc/squid_2.2.5-4_sparc.deb squid (2.2.5-4) stable; urgency=medium * Upload to address the problems as identified in the 2.4 series. o ftp://user@pass overflow: not vulnerable o HTCP cannot be turned off if compiled in: not vulnerable, the debian package has had the "turn off HTCP" patch for ages o SNMP memory leak potential DOS: applied patch for squid 2.4.STABLE3 stable/main/binary-powerpc/squid_2.2.5-4_powerpc.deb stable/main/binary-powerpc/squidclient_2.2.5-4_powerpc.deb stable/main/binary-powerpc/squid-cgi_2.2.5-4_powerpc.deb squid (2.2.5-4) stable; urgency=medium * Upload to address the problems as identified in the 2.4 series. o ftp://user@pass overflow: not vulnerable o HTCP cannot be turned off if compiled in: not vulnerable, the debian package has had the "turn off HTCP" patch for ages o SNMP memory leak potential DOS: applied patch for squid 2.4.STABLE3 stable/main/binary-m68k/squid_2.2.5-4_m68k.deb stable/main/binary-m68k/squid-cgi_2.2.5-4_m68k.deb stable/main/binary-m68k/squidclient_2.2.5-4_m68k.deb squid (2.2.5-4) stable; urgency=medium * Upload to address the problems as identified in the 2.4 series. o ftp://user@pass overflow: not vulnerable o HTCP cannot be turned off if compiled in: not vulnerable, the debian package has had the "turn off HTCP" patch for ages o SNMP memory leak potential DOS: applied patch for squid 2.4.STABLE3 stable/main/binary-arm/squid-cgi_2.2.5-4_arm.deb stable/main/binary-arm/squidclient_2.2.5-4_arm.deb stable/main/binary-arm/squid_2.2.5-4_arm.deb squid (2.2.5-4) stable; urgency=medium * Upload to address the problems as identified in the 2.4 series. o ftp://user@pass overflow: not vulnerable o HTCP cannot be turned off if compiled in: not vulnerable, the debian package has had the "turn off HTCP" patch for ages o SNMP memory leak potential DOS: applied patch for squid 2.4.STABLE3 stable/main/binary-alpha/squidclient_2.2.5-4_alpha.deb stable/main/binary-alpha/squid_2.2.5-4_alpha.deb stable/main/binary-alpha/squid-cgi_2.2.5-4_alpha.deb squid (2.2.5-4) stable; urgency=medium * Upload to address the problems as identified in the 2.4 series. o ftp://user@pass overflow: not vulnerable o HTCP cannot be turned off if compiled in: not vulnerable, the debian package has had the "turn off HTCP" patch for ages o SNMP memory leak potential DOS: applied patch for squid 2.4.STABLE3 stable/main/binary-i386/squid-cgi_2.2.5-4_i386.deb stable/main/binary-i386/squidclient_2.2.5-4_i386.deb stable/main/source/squid_2.2.5-4.dsc stable/main/binary-i386/squid_2.2.5-4_i386.deb stable/main/source/squid_2.2.5-4.diff.gz squid (2.2.5-4) stable; urgency=medium * Upload to address the problems as identified in the 2.4 series. o ftp://user@pass overflow: not vulnerable o HTCP cannot be turned off if compiled in: not vulnerable, the debian package has had the "turn off HTCP" patch for ages o SNMP memory leak potential DOS: applied patch for squid 2.4.STABLE3 stable/main/binary-alpha/sendmail-wide_8.9.3+3.2W-23_alpha.deb sendmail-wide (8.9.3+3.2W-23) stable; urgency=high * follow sendmail 8.9.3-23 * fix segfault problem stable/main/binary-sparc/smbclient_2.0.7-5_sparc.deb stable/main/binary-sparc/samba_2.0.7-5_sparc.deb stable/main/binary-sparc/samba-common_2.0.7-5_sparc.deb stable/main/binary-sparc/swat_2.0.7-5_sparc.deb stable/main/binary-sparc/smbfs_2.0.7-5_sparc.deb samba (2.0.7-5) stable; urgency=high * Add Build-Depends line; the previous upload was missing potentially important library linkage on some architectures. * Fix debian/rules to use xxx-linux instead of xxx-linux-gnu; config.sub doesn't grok the latter, causing printing to break (closes: #127444) stable/main/binary-powerpc/smbclient_2.0.7-5_powerpc.deb stable/main/binary-powerpc/samba_2.0.7-5_powerpc.deb stable/main/binary-powerpc/smbfs_2.0.7-5_powerpc.deb stable/main/binary-powerpc/swat_2.0.7-5_powerpc.deb stable/main/binary-powerpc/samba-common_2.0.7-5_powerpc.deb samba (2.0.7-5) stable; urgency=high * Add Build-Depends line; the previous upload was missing potentially important library linkage on some architectures. * Fix debian/rules to use xxx-linux instead of xxx-linux-gnu; config.sub doesn't grok the latter, causing printing to break (closes: #127444) stable/main/binary-m68k/samba-common_2.0.7-5_m68k.deb stable/main/binary-m68k/smbfs_2.0.7-5_m68k.deb stable/main/binary-m68k/smbclient_2.0.7-5_m68k.deb stable/main/binary-m68k/swat_2.0.7-5_m68k.deb stable/main/binary-m68k/samba_2.0.7-5_m68k.deb samba (2.0.7-5) stable; urgency=high * Add Build-Depends line; the previous upload was missing potentially important library linkage on some architectures. * Fix debian/rules to use xxx-linux instead of xxx-linux-gnu; config.sub doesn't grok the latter, causing printing to break (closes: #127444) stable/main/binary-arm/swat_2.0.7-5_arm.deb stable/main/binary-arm/samba-common_2.0.7-5_arm.deb stable/main/binary-arm/samba_2.0.7-5_arm.deb stable/main/binary-arm/smbclient_2.0.7-5_arm.deb stable/main/binary-arm/smbfs_2.0.7-5_arm.deb samba (2.0.7-5) stable; urgency=high * Add Build-Depends line; the previous upload was missing potentially important library linkage on some architectures. * Fix debian/rules to use xxx-linux instead of xxx-linux-gnu; config.sub doesn't grok the latter, causing printing to break (closes: #127444) stable/main/binary-i386/smbclient_2.0.7-5_i386.deb stable/main/source/samba_2.0.7-5.dsc stable/main/source/samba_2.0.7-5.diff.gz stable/main/binary-i386/swat_2.0.7-5_i386.deb stable/main/binary-i386/samba_2.0.7-5_i386.deb stable/main/binary-all/samba-doc_2.0.7-5_all.deb stable/main/binary-alpha/smbfs_2.0.7-5_alpha.deb stable/main/binary-alpha/samba-common_2.0.7-5_alpha.deb stable/main/binary-alpha/samba_2.0.7-5_alpha.deb stable/main/binary-i386/smbfs_2.0.7-5_i386.deb stable/main/binary-alpha/swat_2.0.7-5_alpha.deb stable/main/binary-i386/samba-common_2.0.7-5_i386.deb stable/main/binary-alpha/smbclient_2.0.7-5_alpha.deb samba (2.0.7-5) stable; urgency=high * Add Build-Depends line; the previous upload was missing potentially important library linkage on some architectures. * Fix debian/rules to use xxx-linux instead of xxx-linux-gnu; config.sub doesn't grok the latter, causing printing to break (closes: #127444) stable/main/binary-m68k/php4-cgi-snmp_4.0.3pl1-0potato3_m68k.deb stable/main/binary-powerpc/php4-cgi-mysql_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-m68k/php4-ldap_4.0.3pl1-0potato3_m68k.deb stable/main/binary-i386/php4-imap_4.0.3pl1-0potato3_i386.deb stable/main/binary-sparc/php4-snmp_4.0.3pl1-0potato3_sparc.deb stable/main/binary-alpha/php4-cgi_4.0.3pl1-0potato3_alpha.deb stable/main/binary-sparc/php4-mysql_4.0.3pl1-0potato3_sparc.deb stable/main/binary-alpha/php4-gd_4.0.3pl1-0potato3_alpha.deb stable/main/binary-all/php4-dev_4.0.3pl1-0potato3_all.deb stable/main/binary-i386/php4-snmp_4.0.3pl1-0potato3_i386.deb stable/main/binary-i386/php4-cgi-ldap_4.0.3pl1-0potato3_i386.deb stable/main/binary-sparc/php4-cgi-imap_4.0.3pl1-0potato3_sparc.deb stable/main/binary-alpha/php4-xml_4.0.3pl1-0potato3_alpha.deb stable/main/binary-sparc/php4-cgi-pgsql_4.0.3pl1-0potato3_sparc.deb stable/main/binary-m68k/php4-cgi-gd_4.0.3pl1-0potato3_m68k.deb stable/main/binary-m68k/php4-cgi-pgsql_4.0.3pl1-0potato3_m68k.deb stable/main/binary-m68k/php4-cgi_4.0.3pl1-0potato3_m68k.deb stable/main/binary-powerpc/php4-cgi-snmp_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-i386/php4-pgsql_4.0.3pl1-0potato3_i386.deb stable/main/binary-i386/php4-mysql_4.0.3pl1-0potato3_i386.deb stable/main/binary-i386/php4-cgi-imap_4.0.3pl1-0potato3_i386.deb stable/main/binary-m68k/php4-xml_4.0.3pl1-0potato3_m68k.deb stable/main/binary-sparc/php4-cgi-xml_4.0.3pl1-0potato3_sparc.deb stable/main/binary-powerpc/php4-mysql_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-i386/php4-cgi-pgsql_4.0.3pl1-0potato3_i386.deb stable/main/binary-powerpc/php4-cgi_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-alpha/php4-cgi-mysql_4.0.3pl1-0potato3_alpha.deb stable/main/binary-powerpc/php4-xml_4.0.3pl1-0potato3_powerpc.deb stable/main/source/php4_4.0.3pl1-0potato3.diff.gz stable/main/binary-powerpc/php4-cgi-imap_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-powerpc/php4-cgi-pgsql_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-sparc/php4-cgi-gd_4.0.3pl1-0potato3_sparc.deb stable/main/binary-sparc/php4_4.0.3pl1-0potato3_sparc.deb stable/main/binary-sparc/php4-cgi-ldap_4.0.3pl1-0potato3_sparc.deb stable/main/binary-powerpc/php4-cgi-mhash_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-i386/php4-cgi-xml_4.0.3pl1-0potato3_i386.deb stable/main/binary-powerpc/php4-cgi-gd_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-m68k/php4-pgsql_4.0.3pl1-0potato3_m68k.deb stable/main/binary-i386/php4-cgi_4.0.3pl1-0potato3_i386.deb stable/main/binary-alpha/php4-cgi-imap_4.0.3pl1-0potato3_alpha.deb stable/main/binary-alpha/php4-cgi-mhash_4.0.3pl1-0potato3_alpha.deb stable/main/binary-i386/php4-mhash_4.0.3pl1-0potato3_i386.deb stable/main/binary-sparc/php4-imap_4.0.3pl1-0potato3_sparc.deb stable/main/binary-m68k/php4-mysql_4.0.3pl1-0potato3_m68k.deb stable/main/binary-i386/php4-cgi-mhash_4.0.3pl1-0potato3_i386.deb stable/main/binary-powerpc/php4-cgi-xml_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-alpha/php4-cgi-snmp_4.0.3pl1-0potato3_alpha.deb stable/main/binary-i386/php4-xml_4.0.3pl1-0potato3_i386.deb stable/main/binary-sparc/php4-cgi-mhash_4.0.3pl1-0potato3_sparc.deb stable/main/binary-sparc/php4-cgi-snmp_4.0.3pl1-0potato3_sparc.deb stable/main/binary-alpha/php4-cgi-xml_4.0.3pl1-0potato3_alpha.deb stable/main/binary-sparc/php4-cgi-mysql_4.0.3pl1-0potato3_sparc.deb stable/main/binary-i386/php4-cgi-gd_4.0.3pl1-0potato3_i386.deb stable/main/binary-alpha/php4-cgi-pgsql_4.0.3pl1-0potato3_alpha.deb stable/main/binary-powerpc/php4-pgsql_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-m68k/php4-cgi-xml_4.0.3pl1-0potato3_m68k.deb stable/main/binary-m68k/php4_4.0.3pl1-0potato3_m68k.deb stable/main/binary-alpha/php4-ldap_4.0.3pl1-0potato3_alpha.deb stable/main/binary-sparc/php4-gd_4.0.3pl1-0potato3_sparc.deb stable/main/binary-i386/php4-cgi-snmp_4.0.3pl1-0potato3_i386.deb stable/main/binary-alpha/php4-imap_4.0.3pl1-0potato3_alpha.deb stable/main/binary-sparc/php4-ldap_4.0.3pl1-0potato3_sparc.deb stable/main/binary-m68k/php4-cgi-mysql_4.0.3pl1-0potato3_m68k.deb stable/main/binary-m68k/php4-cgi-imap_4.0.3pl1-0potato3_m68k.deb stable/main/binary-powerpc/php4_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-m68k/php4-snmp_4.0.3pl1-0potato3_m68k.deb stable/main/binary-alpha/php4-pgsql_4.0.3pl1-0potato3_alpha.deb stable/main/binary-powerpc/php4-mhash_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-m68k/php4-imap_4.0.3pl1-0potato3_m68k.deb stable/main/binary-alpha/php4-cgi-ldap_4.0.3pl1-0potato3_alpha.deb stable/main/binary-powerpc/php4-ldap_4.0.3pl1-0potato3_powerpc.deb stable/main/source/php4_4.0.3pl1-0potato3.dsc stable/main/binary-sparc/php4-pgsql_4.0.3pl1-0potato3_sparc.deb stable/main/binary-i386/php4-gd_4.0.3pl1-0potato3_i386.deb stable/main/binary-powerpc/php4-snmp_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-alpha/php4-cgi-gd_4.0.3pl1-0potato3_alpha.deb stable/main/binary-sparc/php4-cgi_4.0.3pl1-0potato3_sparc.deb stable/main/binary-alpha/php4_4.0.3pl1-0potato3_alpha.deb stable/main/binary-alpha/php4-snmp_4.0.3pl1-0potato3_alpha.deb stable/main/binary-powerpc/php4-imap_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-powerpc/php4-gd_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-alpha/php4-mysql_4.0.3pl1-0potato3_alpha.deb stable/main/binary-alpha/php4-mhash_4.0.3pl1-0potato3_alpha.deb stable/main/binary-i386/php4-cgi-mysql_4.0.3pl1-0potato3_i386.deb stable/main/binary-powerpc/php4-cgi-ldap_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-sparc/php4-xml_4.0.3pl1-0potato3_sparc.deb stable/main/binary-m68k/php4-gd_4.0.3pl1-0potato3_m68k.deb stable/main/binary-m68k/php4-mhash_4.0.3pl1-0potato3_m68k.deb stable/main/binary-sparc/php4-mhash_4.0.3pl1-0potato3_sparc.deb stable/main/binary-i386/php4-ldap_4.0.3pl1-0potato3_i386.deb stable/main/binary-m68k/php4-cgi-mhash_4.0.3pl1-0potato3_m68k.deb stable/main/binary-i386/php4_4.0.3pl1-0potato3_i386.deb stable/main/binary-m68k/php4-cgi-ldap_4.0.3pl1-0potato3_m68k.deb php4 (4.0.3pl1-0potato3) stable; urgency=high * Non-maintainer upload by Security Team with help of its new maintainer * Added --enable-ucd-snmp-hack to configure options, as libsnmp4.1 was not compiled with NO_ZEROLENGTH_COMMUNITY defined * File Upload security fix from php.net, backported from their 4.0.6 patch, thanks to Adam Conrad for that. * Correcting the patch stable/main/binary-sparc/php3-cgi-gd_3.0.18-0potato1.1_sparc.deb stable/main/binary-alpha/php3-cgi-snmp_3.0.18-0potato1.1_alpha.deb stable/main/binary-arm/php3-cgi_3.0.18-0potato1.1_arm.deb stable/main/binary-i386/php3-cgi-mysql_3.0.18-0potato1.1_i386.deb stable/main/binary-alpha/php3_3.0.18-0potato1.1_alpha.deb stable/main/binary-i386/php3-cgi-mhash_3.0.18-0potato1.1_i386.deb stable/main/binary-powerpc/php3-xml_3.0.18-0potato1.1_powerpc.deb stable/main/binary-i386/php3-snmp_3.0.18-0potato1.1_i386.deb stable/main/binary-arm/php3-magick_3.0.18-0potato1.1_arm.deb stable/main/binary-i386/php3-magick_3.0.18-0potato1.1_i386.deb stable/main/binary-arm/php3-snmp_3.0.18-0potato1.1_arm.deb stable/main/binary-arm/php3-pgsql_3.0.18-0potato1.1_arm.deb stable/main/binary-arm/php3-cgi-imap_3.0.18-0potato1.1_arm.deb stable/main/binary-m68k/php3-snmp_3.0.18-0potato1.1_m68k.deb stable/main/binary-m68k/php3-magick_3.0.18-0potato1.1_m68k.deb stable/main/binary-arm/php3-cgi-ldap_3.0.18-0potato1.1_arm.deb stable/main/binary-alpha/php3-cgi-pgsql_3.0.18-0potato1.1_alpha.deb stable/main/binary-arm/php3-mysql_3.0.18-0potato1.1_arm.deb stable/main/binary-powerpc/php3-cgi-ldap_3.0.18-0potato1.1_powerpc.deb stable/main/binary-sparc/php3-cgi-ldap_3.0.18-0potato1.1_sparc.deb stable/main/binary-m68k/php3-cgi-mysql_3.0.18-0potato1.1_m68k.deb stable/main/binary-m68k/php3-cgi-pgsql_3.0.18-0potato1.1_m68k.deb stable/main/binary-powerpc/php3-cgi-xml_3.0.18-0potato1.1_powerpc.deb stable/main/binary-arm/php3-cgi-magick_3.0.18-0potato1.1_arm.deb stable/main/binary-sparc/php3-cgi-magick_3.0.18-0potato1.1_sparc.deb stable/main/binary-i386/php3_3.0.18-0potato1.1_i386.deb stable/main/binary-i386/php3-cgi_3.0.18-0potato1.1_i386.deb stable/main/binary-alpha/php3-dev_3.0.18-0potato1.1_alpha.deb stable/main/binary-m68k/php3-cgi-imap_3.0.18-0potato1.1_m68k.deb stable/main/binary-powerpc/php3-cgi-magick_3.0.18-0potato1.1_powerpc.deb stable/main/binary-m68k/php3-mhash_3.0.18-0potato1.1_m68k.deb stable/main/binary-powerpc/php3-imap_3.0.18-0potato1.1_powerpc.deb stable/main/binary-powerpc/php3-gd_3.0.18-0potato1.1_powerpc.deb stable/main/binary-sparc/php3-imap_3.0.18-0potato1.1_sparc.deb stable/main/binary-alpha/php3-pgsql_3.0.18-0potato1.1_alpha.deb stable/main/binary-powerpc/php3-cgi-imap_3.0.18-0potato1.1_powerpc.deb stable/main/binary-powerpc/php3-ldap_3.0.18-0potato1.1_powerpc.deb stable/main/binary-powerpc/php3-pgsql_3.0.18-0potato1.1_powerpc.deb stable/main/binary-sparc/php3-snmp_3.0.18-0potato1.1_sparc.deb stable/main/binary-arm/php3-cgi-pgsql_3.0.18-0potato1.1_arm.deb stable/main/binary-sparc/php3-magick_3.0.18-0potato1.1_sparc.deb stable/main/binary-m68k/php3-cgi-ldap_3.0.18-0potato1.1_m68k.deb stable/main/binary-powerpc/php3-mysql_3.0.18-0potato1.1_powerpc.deb stable/main/binary-alpha/php3-cgi_3.0.18-0potato1.1_alpha.deb stable/main/binary-m68k/php3-cgi_3.0.18-0potato1.1_m68k.deb stable/main/binary-alpha/php3-gd_3.0.18-0potato1.1_alpha.deb stable/main/binary-powerpc/php3-cgi-snmp_3.0.18-0potato1.1_powerpc.deb stable/main/binary-alpha/php3-cgi-magick_3.0.18-0potato1.1_alpha.deb stable/main/binary-alpha/php3-imap_3.0.18-0potato1.1_alpha.deb stable/main/binary-all/php3-doc_3.0.18-0potato1.1_all.deb stable/main/binary-sparc/php3-ldap_3.0.18-0potato1.1_sparc.deb stable/main/binary-m68k/php3-ldap_3.0.18-0potato1.1_m68k.deb stable/main/binary-sparc/php3-cgi-mhash_3.0.18-0potato1.1_sparc.deb stable/main/binary-powerpc/php3-dev_3.0.18-0potato1.1_powerpc.deb stable/main/binary-sparc/php3-mysql_3.0.18-0potato1.1_sparc.deb stable/main/binary-m68k/php3-cgi-mhash_3.0.18-0potato1.1_m68k.deb stable/main/binary-sparc/php3-gd_3.0.18-0potato1.1_sparc.deb stable/main/binary-alpha/php3-magick_3.0.18-0potato1.1_alpha.deb stable/main/binary-m68k/php3-xml_3.0.18-0potato1.1_m68k.deb stable/main/binary-alpha/php3-snmp_3.0.18-0potato1.1_alpha.deb stable/main/binary-arm/php3_3.0.18-0potato1.1_arm.deb stable/main/binary-powerpc/php3-cgi-gd_3.0.18-0potato1.1_powerpc.deb stable/main/binary-i386/php3-cgi-magick_3.0.18-0potato1.1_i386.deb stable/main/binary-i386/php3-mysql_3.0.18-0potato1.1_i386.deb stable/main/binary-sparc/php3-cgi-xml_3.0.18-0potato1.1_sparc.deb stable/main/source/php3_3.0.18-0potato1.1.dsc stable/main/binary-i386/php3-cgi-imap_3.0.18-0potato1.1_i386.deb stable/main/binary-i386/php3-dev_3.0.18-0potato1.1_i386.deb stable/main/binary-arm/php3-cgi-xml_3.0.18-0potato1.1_arm.deb stable/main/binary-sparc/php3-cgi-imap_3.0.18-0potato1.1_sparc.deb stable/main/binary-sparc/php3-xml_3.0.18-0potato1.1_sparc.deb stable/main/binary-powerpc/php3-cgi-mhash_3.0.18-0potato1.1_powerpc.deb stable/main/binary-arm/php3-ldap_3.0.18-0potato1.1_arm.deb stable/main/binary-sparc/php3-cgi-mysql_3.0.18-0potato1.1_sparc.deb stable/main/binary-sparc/php3-pgsql_3.0.18-0potato1.1_sparc.deb stable/main/binary-alpha/php3-cgi-ldap_3.0.18-0potato1.1_alpha.deb stable/main/binary-m68k/php3_3.0.18-0potato1.1_m68k.deb stable/main/binary-i386/php3-cgi-snmp_3.0.18-0potato1.1_i386.deb stable/main/binary-m68k/php3-cgi-gd_3.0.18-0potato1.1_m68k.deb stable/main/binary-i386/php3-cgi-xml_3.0.18-0potato1.1_i386.deb stable/main/binary-powerpc/php3-cgi-mysql_3.0.18-0potato1.1_powerpc.deb stable/main/binary-powerpc/php3-magick_3.0.18-0potato1.1_powerpc.deb stable/main/binary-powerpc/php3-snmp_3.0.18-0potato1.1_powerpc.deb stable/main/binary-i386/php3-xml_3.0.18-0potato1.1_i386.deb stable/main/binary-m68k/php3-dev_3.0.18-0potato1.1_m68k.deb stable/main/binary-m68k/php3-cgi-magick_3.0.18-0potato1.1_m68k.deb stable/main/binary-arm/php3-cgi-gd_3.0.18-0potato1.1_arm.deb stable/main/binary-i386/php3-ldap_3.0.18-0potato1.1_i386.deb stable/main/binary-i386/php3-mhash_3.0.18-0potato1.1_i386.deb stable/main/binary-powerpc/php3_3.0.18-0potato1.1_powerpc.deb stable/main/binary-alpha/php3-cgi-gd_3.0.18-0potato1.1_alpha.deb stable/main/binary-sparc/php3_3.0.18-0potato1.1_sparc.deb stable/main/binary-i386/php3-cgi-pgsql_3.0.18-0potato1.1_i386.deb stable/main/binary-i386/php3-cgi-gd_3.0.18-0potato1.1_i386.deb stable/main/binary-arm/php3-mhash_3.0.18-0potato1.1_arm.deb stable/main/binary-sparc/php3-cgi_3.0.18-0potato1.1_sparc.deb stable/main/binary-sparc/php3-dev_3.0.18-0potato1.1_sparc.deb stable/main/binary-m68k/php3-gd_3.0.18-0potato1.1_m68k.deb stable/main/binary-m68k/php3-cgi-snmp_3.0.18-0potato1.1_m68k.deb stable/main/binary-alpha/php3-cgi-xml_3.0.18-0potato1.1_alpha.deb stable/main/binary-arm/php3-dev_3.0.18-0potato1.1_arm.deb stable/main/binary-arm/php3-cgi-mysql_3.0.18-0potato1.1_arm.deb stable/main/binary-alpha/php3-cgi-imap_3.0.18-0potato1.1_alpha.deb stable/main/binary-alpha/php3-xml_3.0.18-0potato1.1_alpha.deb stable/main/binary-arm/php3-cgi-snmp_3.0.18-0potato1.1_arm.deb stable/main/binary-sparc/php3-cgi-snmp_3.0.18-0potato1.1_sparc.deb stable/main/binary-alpha/php3-cgi-mhash_3.0.18-0potato1.1_alpha.deb stable/main/binary-m68k/php3-mysql_3.0.18-0potato1.1_m68k.deb stable/main/binary-i386/php3-cgi-ldap_3.0.18-0potato1.1_i386.deb stable/main/binary-m68k/php3-cgi-xml_3.0.18-0potato1.1_m68k.deb stable/main/binary-alpha/php3-mhash_3.0.18-0potato1.1_alpha.deb stable/main/binary-powerpc/php3-cgi_3.0.18-0potato1.1_powerpc.deb stable/main/binary-m68k/php3-imap_3.0.18-0potato1.1_m68k.deb stable/main/binary-alpha/php3-cgi-mysql_3.0.18-0potato1.1_alpha.deb stable/main/binary-arm/php3-xml_3.0.18-0potato1.1_arm.deb stable/main/source/php3_3.0.18-0potato1.1.diff.gz stable/main/binary-sparc/php3-mhash_3.0.18-0potato1.1_sparc.deb stable/main/binary-alpha/php3-ldap_3.0.18-0potato1.1_alpha.deb stable/main/binary-powerpc/php3-mhash_3.0.18-0potato1.1_powerpc.deb stable/main/binary-powerpc/php3-cgi-pgsql_3.0.18-0potato1.1_powerpc.deb stable/main/binary-sparc/php3-cgi-pgsql_3.0.18-0potato1.1_sparc.deb stable/main/binary-i386/php3-imap_3.0.18-0potato1.1_i386.deb stable/main/binary-i386/php3-gd_3.0.18-0potato1.1_i386.deb stable/main/binary-alpha/php3-mysql_3.0.18-0potato1.1_alpha.deb stable/main/binary-arm/php3-gd_3.0.18-0potato1.1_arm.deb stable/main/binary-arm/php3-imap_3.0.18-0potato1.1_arm.deb stable/main/binary-i386/php3-pgsql_3.0.18-0potato1.1_i386.deb stable/main/binary-arm/php3-cgi-mhash_3.0.18-0potato1.1_arm.deb stable/main/binary-m68k/php3-pgsql_3.0.18-0potato1.1_m68k.deb php3 (3:3.0.18-0potato1.1) stable; urgency=high * Non-maintainer upload by Security Team * Applied patch from Stefan Esser to fix a broken boundary check and an arbitrary heap overflow stable/main/binary-i386/pcmcia-modules-2.2.19_3.1.22-0.2potatok4potato.7_i386.deb pcmcia-cs (3.1.22-0.2potato) stable; urgency=low * update for kernel-source-2.2.19pre17 stable/main/binary-powerpc/pcmcia-modules-2.2.19-pmac_3.1.22-0.2potatok2.0potato2_powerpc.deb pcmcia-cs (3.1.22-0.2potato) stable; urgency=low * update for kernel-source-2.2.19pre17 stable/main/binary-i386/pcmcia-modules-2.2.19-idepci_3.1.22-0.2potatok4potato.7_i386.deb pcmcia-cs (3.1.22-0.2potato) stable; urgency=low * update for kernel-source-2.2.19pre17 stable/main/binary-i386/pcmcia-modules-2.2.19-ide_3.1.22-0.2potatok4potato.7_i386.deb pcmcia-cs (3.1.22-0.2potato) stable; urgency=low * update for kernel-source-2.2.19pre17 stable/main/binary-i386/pcmcia-modules-2.2.19-compact_3.1.22-0.2potatok4potato.7_i386.deb pcmcia-cs (3.1.22-0.2potato) stable; urgency=low * update for kernel-source-2.2.19pre17 stable/main/binary-powerpc/nhfsstone_0.1.9.1-1.potato1_powerpc.deb stable/main/binary-powerpc/nfs-common_0.1.9.1-1.potato1_powerpc.deb stable/main/binary-powerpc/nfs-kernel-server_0.1.9.1-1.potato1_powerpc.deb nfs-utils (1:0.1.9.1-1.potato1) stable; urgency=medium * Support statd callbacks from later 2.2 kernels. (closes: #111990) stable/main/binary-m68k/nfs-common_0.1.9.1-1.potato1_m68k.deb stable/main/binary-m68k/nhfsstone_0.1.9.1-1.potato1_m68k.deb stable/main/binary-m68k/nfs-kernel-server_0.1.9.1-1.potato1_m68k.deb nfs-utils (1:0.1.9.1-1.potato1) stable; urgency=medium * Support statd callbacks from later 2.2 kernels. (closes: #111990) stable/main/binary-i386/nfs-kernel-server_0.1.9.1-1.potato1_i386.deb stable/main/binary-i386/nfs-common_0.1.9.1-1.potato1_i386.deb stable/main/binary-i386/nhfsstone_0.1.9.1-1.potato1_i386.deb nfs-utils (1:0.1.9.1-1.potato1) stable; urgency=medium * Support statd callbacks from later 2.2 kernels. (closes: #111990) stable/main/binary-arm/nfs-common_0.1.9.1-1.potato1_arm.deb stable/main/binary-arm/nfs-kernel-server_0.1.9.1-1.potato1_arm.deb stable/main/binary-arm/nhfsstone_0.1.9.1-1.potato1_arm.deb nfs-utils (1:0.1.9.1-1.potato1) stable; urgency=medium * Support statd callbacks from later 2.2 kernels. (closes: #111990) stable/main/binary-alpha/nfs-common_0.1.9.1-1.potato1_alpha.deb stable/main/binary-alpha/nhfsstone_0.1.9.1-1.potato1_alpha.deb stable/main/binary-alpha/nfs-kernel-server_0.1.9.1-1.potato1_alpha.deb nfs-utils (1:0.1.9.1-1.potato1) stable; urgency=medium * Support statd callbacks from later 2.2 kernels. (closes: #111990) stable/main/binary-sparc/nhfsstone_0.1.9.1-1.potato1_sparc.deb stable/main/binary-sparc/nfs-kernel-server_0.1.9.1-1.potato1_sparc.deb stable/main/source/nfs-utils_0.1.9.1-1.potato1.dsc stable/main/source/nfs-utils_0.1.9.1-1.potato1.tar.gz stable/main/binary-sparc/nfs-common_0.1.9.1-1.potato1_sparc.deb nfs-utils (1:0.1.9.1-1.potato1) stable; urgency=medium * Support statd callbacks from later 2.2 kernels. (closes: #111990) stable/main/binary-alpha/talkd_0.10-8_alpha.deb stable/main/binary-alpha/talk_0.10-8_alpha.deb netkit-ntalk (0.10-8) stable; urgency=high * Fixed format string bug. stable/main/binary-m68k/libncurses5-dev_5.0-6.0potato2_m68k.deb stable/main/binary-m68k/libncurses5_5.0-6.0potato2_m68k.deb stable/main/binary-i386/ncurses-bin_5.0-6.0potato2_i386.deb stable/main/binary-powerpc/libncurses5-dev_5.0-6.0potato2_powerpc.deb stable/main/source/ncurses_5.0-6.0potato2.dsc stable/main/binary-all/ncurses-term_5.0-6.0potato2_all.deb stable/main/binary-powerpc/libncurses5-dbg_5.0-6.0potato2_powerpc.deb stable/main/binary-arm/libncurses5_5.0-6.0potato2_arm.deb stable/main/binary-alpha/libncurses5-dev_5.0-6.0potato2_alpha.deb stable/main/binary-m68k/libncurses5-dbg_5.0-6.0potato2_m68k.deb stable/main/binary-powerpc/ncurses-bin_5.0-6.0potato2_powerpc.deb stable/main/binary-i386/libncurses5-dbg_5.0-6.0potato2_i386.deb stable/main/source/ncurses_5.0-6.0potato2.diff.gz stable/main/binary-sparc/libncurses5_5.0-6.0potato2_sparc.deb stable/main/binary-arm/libncurses5-dbg_5.0-6.0potato2_arm.deb stable/main/binary-m68k/ncurses-bin_5.0-6.0potato2_m68k.deb stable/main/binary-sparc/libncurses5-dbg_5.0-6.0potato2_sparc.deb stable/main/binary-arm/libncurses5-dev_5.0-6.0potato2_arm.deb stable/main/binary-i386/libncurses5-dev_5.0-6.0potato2_i386.deb stable/main/binary-all/ncurses-base_5.0-6.0potato2_all.deb stable/main/binary-i386/libncurses5_5.0-6.0potato2_i386.deb stable/main/binary-alpha/ncurses-bin_5.0-6.0potato2_alpha.deb stable/main/binary-arm/ncurses-bin_5.0-6.0potato2_arm.deb stable/main/binary-alpha/libncurses5_5.0-6.0potato2_alpha.deb stable/main/binary-sparc/ncurses-bin_5.0-6.0potato2_sparc.deb stable/main/binary-powerpc/libncurses5_5.0-6.0potato2_powerpc.deb stable/main/binary-sparc/libncurses5-dev_5.0-6.0potato2_sparc.deb stable/main/binary-alpha/libncurses5-dbg_5.0-6.0potato2_alpha.deb ncurses (5.0-6.0potato2) stable; urgency=high * Security upload, fixing a buffer overflow I missed in the original pass through the code (Closes: #118002). stable/main/binary-sparc/mtr_0.41-6_sparc.deb mtr (0.41-6) stable; urgency=high * Security fix for format overflow with MTR_OPTIONS, closes: #137102 * Added build-depends line from unstable package stable/main/binary-powerpc/mtr_0.41-6_powerpc.deb mtr (0.41-6) stable; urgency=high * Security fix for format overflow with MTR_OPTIONS, closes: #137102 * Added build-depends line from unstable package stable/main/binary-m68k/mtr_0.41-6_m68k.deb mtr (0.41-6) stable; urgency=high * Security fix for format overflow with MTR_OPTIONS, closes: #137102 * Added build-depends line from unstable package stable/main/binary-arm/mtr_0.41-6_arm.deb mtr (0.41-6) stable; urgency=high * Security fix for format overflow with MTR_OPTIONS, closes: #137102 * Added build-depends line from unstable package stable/main/binary-alpha/mtr_0.41-6_alpha.deb mtr (0.41-6) stable; urgency=high * Security fix for format overflow with MTR_OPTIONS, closes: #137102 * Added build-depends line from unstable package stable/main/source/mtr_0.41-6.diff.gz stable/main/binary-i386/mtr_0.41-6_i386.deb stable/main/source/mtr_0.41-6.dsc mtr (0.41-6) stable; urgency=high * Security fix for format overflow with MTR_OPTIONS, closes: #137102 * Added build-depends line from unstable package stable/main/binary-arm/libmhash1_0.6.1-1_arm.deb mhash (0.6.1-1) unstable; urgency=low * New upstream version stable/main/binary-alpha/masqmail_0.0.12-3_alpha.deb masqmail (0.0.12-3) stable; urgency=high * Security bugfix: An unprivileged user could use `masqmail -C' (use alternative configuration file) and/or `-d' (enable debug output) for exploits. We disable these options for non-privileged users (closes: #74422). stable/main/binary-sparc/man2html_1.5-23.1_sparc.deb man2html (1.5-23.1) stable; urgency=low * Recompiled with correct CGIBASE to avoid bad links; closes: #104474. Grave bug, warrants inclusion into stable. stable/main/binary-powerpc/man2html_1.5-23.1_powerpc.deb man2html (1.5-23.1) stable; urgency=low * Recompiled with correct CGIBASE to avoid bad links; closes: #104474. Grave bug, warrants inclusion into stable. stable/main/binary-m68k/man2html_1.5-23.1_m68k.deb man2html (1.5-23.1) stable; urgency=low * Recompiled with correct CGIBASE to avoid bad links; closes: #104474. Grave bug, warrants inclusion into stable. stable/main/binary-arm/man2html_1.5-23.1_arm.deb man2html (1.5-23.1) stable; urgency=low * Recompiled with correct CGIBASE to avoid bad links; closes: #104474. Grave bug, warrants inclusion into stable. stable/main/binary-alpha/man2html_1.5-23.1_alpha.deb man2html (1.5-23.1) stable; urgency=low * Recompiled with correct CGIBASE to avoid bad links; closes: #104474. Grave bug, warrants inclusion into stable. stable/main/source/man2html_1.5-23.1.diff.gz stable/main/binary-i386/man2html_1.5-23.1_i386.deb stable/main/source/man2html_1.5-23.1.dsc man2html (1.5-23.1) stable; urgency=low * Recompiled with correct CGIBASE to avoid bad links; closes: #104474. Grave bug, warrants inclusion into stable. stable/main/binary-alpha/maildrop_0.75-2.1_alpha.deb maildrop (0.75-2.1) frozen unstable; urgency=high * Non-maintainer release * Added 'char *' operator to Buffer since 'const char *' didn't match 'char *' anymore. * Applied patch suggested by Josip Rodin: chgrp mail/chmod g+s maildrop to make the program work again stable/main/binary-sparc/listar-cgi_0.129a-2.potato1_sparc.deb stable/main/binary-sparc/listar_0.129a-2.potato1_sparc.deb listar (0.129a-2.potato1) stable; urgency=high * SECURITY: Applied fix from ecartis tree. Closes: #136168. stable/main/binary-powerpc/listar-cgi_0.129a-2.potato1_powerpc.deb stable/main/binary-powerpc/listar_0.129a-2.potato1_powerpc.deb listar (0.129a-2.potato1) stable; urgency=high * SECURITY: Applied fix from ecartis tree. Closes: #136168. stable/main/binary-m68k/listar-cgi_0.129a-2.potato1_m68k.deb stable/main/binary-m68k/listar_0.129a-2.potato1_m68k.deb listar (0.129a-2.potato1) stable; urgency=high * SECURITY: Applied fix from ecartis tree. Closes: #136168. stable/main/binary-arm/listar_0.129a-2.potato1_arm.deb stable/main/binary-arm/listar-cgi_0.129a-2.potato1_arm.deb listar (0.129a-2.potato1) stable; urgency=high * SECURITY: Applied fix from ecartis tree. Closes: #136168. stable/main/binary-alpha/listar_0.129a-2.potato1_alpha.deb stable/main/binary-alpha/listar-cgi_0.129a-2.potato1_alpha.deb listar (0.129a-2.potato1) stable; urgency=high * SECURITY: Applied fix from ecartis tree. Closes: #136168. stable/main/binary-i386/listar-cgi_0.129a-2.potato1_i386.deb stable/main/binary-i386/listar_0.129a-2.potato1_i386.deb stable/main/source/listar_0.129a-2.potato1.dsc stable/main/source/listar_0.129a-2.potato1.diff.gz listar (0.129a-2.potato1) stable; urgency=high * SECURITY: Applied fix from ecartis tree. Closes: #136168. stable/main/binary-powerpc/libnss-ldap_122-1_powerpc.deb libnss-ldap (122-1) stable; urgency=HIGH * New upstream version that fixes an important security related bug. For more info check http://bugzilla.padl.com/show_bug.cgi?id=49. (now we really close this; closes: #76018). stable/main/binary-alpha/libnss-ldap_122-1_alpha.deb libnss-ldap (122-1) stable; urgency=HIGH * New upstream version that fixes an important security related bug. For more info check http://bugzilla.padl.com/show_bug.cgi?id=49. (now we really close this; closes: #76018). stable/main/binary-all/kernel-source-2.2.19_2.2.19.1-4_all.deb stable/main/binary-all/kernel-doc-2.2.19_2.2.19.1-4_all.deb stable/main/source/kernel-source-2.2.19_2.2.19.1-4.diff.gz stable/main/source/kernel-source-2.2.19_2.2.19.1-4.dsc kernel-source-2.2.19 (2.2.19.1-4) stable; urgency=high * Fixed remaining double free in drivers/net/zlib.c. stable/main/binary-all/kernel-patch-2.2.19-powerpc_2.2.19-2.0potato2_all.deb stable/main/binary-powerpc/kernel-image-2.2.19-pmac_2.2.19-2.0potato2_powerpc.deb stable/main/binary-powerpc/kernel-image-2.2.19-chrp_2.2.19-2.0potato2_powerpc.deb stable/main/binary-powerpc/kernel-image-2.2.19-prep_2.2.19-2.0potato2_powerpc.deb stable/main/source/kernel-patch-2.2.19-powerpc_2.2.19-2.0potato2.dsc stable/main/source/kernel-patch-2.2.19-powerpc_2.2.19-2.0potato2.tar.gz stable/main/binary-powerpc/kernel-headers-2.2.19_2.2.19-2.0potato2_powerpc.deb kernel-patch-2.2.19-powerpc (2.2.19-2.0potato2) stable; urgency=high * Rebuild against kernel-source version 2.2.19.1-4 to fix zlib double-free bug. * Turn on CONFIG_PPC_RTC for PReP and CHRP. Required patch (macintosh/rtc.c was not used on non-PowerMac until 2.4). * Remove non-free Keyspan firmware from CHRP config. stable/main/binary-i386/kernel-image-2.2.19-compact_2.2.19-4potato.7_i386.deb stable/main/binary-i386/kernel-image-2.2.19_2.2.19-4potato.7_i386.deb stable/main/source/kernel-image-2.2.19-i386_2.2.19-4potato.7.dsc stable/main/binary-i386/kernel-image-2.2.19-idepci_2.2.19-4potato.7_i386.deb stable/main/binary-i386/kernel-headers-2.2.19_2.2.19-4potato.7_i386.deb stable/main/binary-i386/kernel-headers-2.2.19-ide_2.2.19-4potato.7_i386.deb stable/main/binary-i386/kernel-image-2.2.19-ide_2.2.19-4potato.7_i386.deb stable/main/binary-i386/kernel-headers-2.2.19-compact_2.2.19-4potato.7_i386.deb stable/main/source/kernel-image-2.2.19-i386_2.2.19-4potato.7.tar.gz stable/main/binary-i386/kernel-headers-2.2.19-idepci_2.2.19-4potato.7_i386.deb kernel-image-2.2.19-i386 (2.2.19-4potato.7) stable; urgency=high * Built against kernel-source 2.2.19.1-4. stable/main/source/kernel-image-2.2.19-alpha_2.2.19-1potato.5.tar.gz stable/main/binary-alpha/kernel-headers-2.2.19_2.2.19-1potato.5_alpha.deb stable/main/binary-alpha/kernel-image-2.2.19-jensen_2.2.19-1potato.5_alpha.deb stable/main/binary-alpha/kernel-image-2.2.19-smp_2.2.19-1potato.5_alpha.deb stable/main/source/kernel-image-2.2.19-alpha_2.2.19-1potato.5.dsc stable/main/binary-alpha/kernel-image-2.2.19-generic_2.2.19-1potato.5_alpha.deb stable/main/binary-alpha/kernel-image-2.2.19-nautilus_2.2.19-1potato.5_alpha.deb kernel-image-2.2.19-alpha (2.2.19-1potato.5) stable; urgency=high * Built against kernel-source 2.2.19.1-4. stable/main/binary-sparc/jgroff_1.15+ja-3.4_sparc.deb jgroff (1.15+ja-3.4) stable; urgency=high * NMU security updates - oops, previous build was not synced with groff_1.15.2-3 add PSPRINT=lpr to ./configure, now sync with groff_1.15.2-3 (thanks Martin Schulze) + Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/binary-powerpc/jgroff_1.15+ja-3.4_powerpc.deb jgroff (1.15+ja-3.4) stable; urgency=high * NMU security updates - oops, previous build was not synced with groff_1.15.2-3 add PSPRINT=lpr to ./configure, now sync with groff_1.15.2-3 (thanks Martin Schulze) + Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/binary-m68k/jgroff_1.15+ja-3.4_m68k.deb jgroff (1.15+ja-3.4) stable; urgency=high * NMU security updates - oops, previous build was not synced with groff_1.15.2-3 add PSPRINT=lpr to ./configure, now sync with groff_1.15.2-3 (thanks Martin Schulze) + Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/binary-arm/jgroff_1.15+ja-3.4_arm.deb jgroff (1.15+ja-3.4) stable; urgency=high * NMU security updates - oops, previous build was not synced with groff_1.15.2-3 add PSPRINT=lpr to ./configure, now sync with groff_1.15.2-3 (thanks Martin Schulze) + Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/binary-alpha/jgroff_1.15+ja-3.4_alpha.deb jgroff (1.15+ja-3.4) stable; urgency=high * NMU security updates - oops, previous build was not synced with groff_1.15.2-3 add PSPRINT=lpr to ./configure, now sync with groff_1.15.2-3 (thanks Martin Schulze) + Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/source/jgroff_1.15+ja-3.4.diff.gz stable/main/binary-i386/jgroff_1.15+ja-3.4_i386.deb stable/main/source/jgroff_1.15+ja-3.4.dsc jgroff (1.15+ja-3.4) stable; urgency=high * NMU security updates - oops, previous build was not synced with groff_1.15.2-3 add PSPRINT=lpr to ./configure, now sync with groff_1.15.2-3 (thanks Martin Schulze) + Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/binary-i386/icecast-server_1.3.10-1.1_i386.deb icecast-server (1.3.10-1.1) stable; urgency=urgent * Several security exploits found to icecast. No simple way to patch * old version, so upgrade to latest stable version from icecast.org * If questions or assistance needed join #icecast on openprojects.net IRC * Security Upload -- DSA 089-1 stable/main/binary-alpha/icecast-server_1.3.10-1_alpha.deb stable/main/binary-sparc/icecast-server_1.3.10-1_sparc.deb stable/main/source/icecast-server_1.3.10-1.dsc stable/main/binary-m68k/icecast-server_1.3.10-1_m68k.deb stable/main/source/icecast-server_1.3.10-1.tar.gz stable/main/binary-powerpc/icecast-server_1.3.10-1_powerpc.deb stable/main/binary-arm/icecast-server_1.3.10-1_arm.deb icecast-server (1.3.10-1) stable; urgency=urgent * Several security exploits found to icecast. No simple way to patch * old version, so upgrade to latest stable version from icecast.org * If questions or assistance needed join #icecast on openprojects.net IRC * Security Upload -- DSA 089-1 stable/main/binary-arm/hanterm_3.3.1p17-5.2_arm.deb stable/main/binary-i386/hanterm_3.3.1p17-5.2_i386.deb stable/main/binary-alpha/hanterm_3.3.1p17-5.2_alpha.deb stable/main/binary-powerpc/hanterm_3.3.1p17-5.2_powerpc.deb stable/main/source/hanterm_3.3.1p17-5.2.diff.gz stable/main/binary-sparc/hanterm_3.3.1p17-5.2_sparc.deb stable/main/source/hanterm_3.3.1p17-5.2.dsc stable/main/binary-m68k/hanterm_3.3.1p17-5.2_m68k.deb hanterm (1:3.3.1p17-5.2) stable; urgency=high * Non-maintainer upload by Security Team * Make hanterm drop and release privileges properly, i.e. regain them if and only if they are needed and do drop them afterwards. * Fixed segfault with too long font names by properly limiting them to 80 characters. (fixes: Bug#133138) * Added Build-Depends to make it easier to recompile on all six architectures stable/main/binary-arm/gzip_1.2.4-33.1_arm.deb stable/main/binary-powerpc/gzip_1.2.4-33.1_powerpc.deb stable/main/binary-sparc/gzip_1.2.4-33.1_sparc.deb stable/main/binary-m68k/gzip_1.2.4-33.1_m68k.deb stable/main/source/gzip_1.2.4-33.1.diff.gz stable/main/binary-i386/gzip_1.2.4-33.1_i386.deb stable/main/source/gzip_1.2.4-33.1.dsc stable/main/binary-alpha/gzip_1.2.4-33.1_alpha.deb gzip (1.2.4-33.1) stable; urgency=medium * Non-maintainer upload by Security Team * Applied patch http://www.gzip.org/gzip-1.2.4b.patch to fix potential buffer overflow when compressing files with really long names stable/contrib/source/gnujsp_1.0.0-5.dsc stable/contrib/binary-all/gnujsp_1.0.0-5_all.deb stable/contrib/source/gnujsp_1.0.0-5.diff.gz gnujsp (1.0.0-5) stable; urgency=HIGH * Security fix for disclosure of directory contents and script sources stable/main/binary-powerpc/nscd_2.1.3-20_powerpc.deb stable/main/binary-powerpc/locales_2.1.3-20_powerpc.deb stable/main/binary-powerpc/libc6-dbg_2.1.3-20_powerpc.deb stable/main/binary-powerpc/libc6-pic_2.1.3-20_powerpc.deb stable/main/binary-powerpc/libc6-prof_2.1.3-20_powerpc.deb stable/main/binary-powerpc/libc6_2.1.3-20_powerpc.deb stable/main/binary-powerpc/libc6-dev_2.1.3-20_powerpc.deb glibc (2.1.3-20) stable; urgency=high * Glob security patch. stable/main/binary-m68k/libc6_2.1.3-20_m68k.deb stable/main/binary-m68k/nscd_2.1.3-20_m68k.deb stable/main/binary-m68k/libc6-dev_2.1.3-20_m68k.deb stable/main/binary-m68k/libnss1-compat_2.1.3-20_m68k.deb stable/main/binary-m68k/libc6-pic_2.1.3-20_m68k.deb stable/main/binary-m68k/locales_2.1.3-20_m68k.deb stable/main/binary-m68k/libc6-dbg_2.1.3-20_m68k.deb stable/main/binary-m68k/libc6-prof_2.1.3-20_m68k.deb glibc (2.1.3-20) stable; urgency=high * Glob security patch. stable/main/binary-arm/libc6-dev_2.1.3-20_arm.deb stable/main/binary-arm/nscd_2.1.3-20_arm.deb stable/main/binary-arm/libc6_2.1.3-20_arm.deb stable/main/binary-arm/libc6-pic_2.1.3-20_arm.deb stable/main/binary-arm/locales_2.1.3-20_arm.deb stable/main/binary-arm/libc6-dbg_2.1.3-20_arm.deb stable/main/binary-arm/libc6-prof_2.1.3-20_arm.deb glibc (2.1.3-20) stable; urgency=high * Glob security patch. stable/main/binary-alpha/nscd_2.1.3-20_alpha.deb stable/main/binary-alpha/locales_2.1.3-20_alpha.deb stable/main/binary-alpha/libnss1-compat_2.1.3-20_alpha.deb stable/main/binary-alpha/libc6.1-dbg_2.1.3-20_alpha.deb stable/main/binary-alpha/libc6.1_2.1.3-20_alpha.deb stable/main/binary-alpha/libc6.1-dev_2.1.3-20_alpha.deb stable/main/binary-alpha/libc6.1-pic_2.1.3-20_alpha.deb stable/main/binary-alpha/libc6.1-prof_2.1.3-20_alpha.deb glibc (2.1.3-20) stable; urgency=high * Glob security patch. stable/main/binary-all/glibc-doc_2.1.3-20_all.deb stable/main/binary-i386/nscd_2.1.3-20_i386.deb stable/main/binary-i386/libc6-dbg_2.1.3-20_i386.deb stable/main/binary-sparc/libc6-dev_2.1.3-20_sparc.deb stable/main/binary-i386/libc6-pic_2.1.3-20_i386.deb stable/main/source/glibc_2.1.3-20.diff.gz stable/main/binary-sparc/nscd_2.1.3-20_sparc.deb stable/main/binary-sparc/locales_2.1.3-20_sparc.deb stable/main/binary-sparc/libc6_2.1.3-20_sparc.deb stable/main/binary-sparc/libc6-prof_2.1.3-20_sparc.deb stable/main/binary-sparc/libc6-dbg_2.1.3-20_sparc.deb stable/main/binary-all/i18ndata_2.1.3-20_all.deb stable/main/binary-i386/locales_2.1.3-20_i386.deb stable/main/binary-i386/libnss1-compat_2.1.3-20_i386.deb stable/main/binary-i386/libc6-prof_2.1.3-20_i386.deb stable/main/source/glibc_2.1.3-20.dsc stable/main/binary-sparc/libc6-pic_2.1.3-20_sparc.deb stable/main/binary-i386/libc6-dev_2.1.3-20_i386.deb stable/main/binary-i386/libc6_2.1.3-20_i386.deb glibc (2.1.3-20) stable; urgency=high * Glob security patch. stable/main/binary-powerpc/libg++2.8.1.3_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/gpc_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/g++_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/gcj_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/gobjc_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/g77_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/gcc-nof_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/libg++2.8.1.3-dbg_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/libstdc++2.10-dev_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/gcc_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/libstdc++2.10_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/cpp_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/libg++2.8.1.3-dev_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/protoize_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/libstdc++2.10-dbg_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/chill_2.95.2-13.1_powerpc.deb gcc (2.95.2-13.1) stable; urgency=low * Non-maintainer upload * Add new patch for ARM (closes #75801) stable/main/binary-i386/libstdc++2.10-dbg_2.95.2-13.1_i386.deb stable/main/binary-i386/gobjc_2.95.2-13.1_i386.deb stable/main/binary-i386/libstdc++2.10-dev_2.95.2-13.1_i386.deb stable/main/binary-i386/gpc_2.95.2-13.1_i386.deb stable/main/binary-i386/gcc_2.95.2-13.1_i386.deb stable/main/binary-i386/gcj_2.95.2-13.1_i386.deb stable/main/binary-i386/libstdc++2.10_2.95.2-13.1_i386.deb stable/main/binary-i386/protoize_2.95.2-13.1_i386.deb stable/main/binary-i386/libg++2.8.1.3_2.95.2-13.1_i386.deb stable/main/binary-i386/libg++2.8.1.3-dbg_2.95.2-13.1_i386.deb stable/main/binary-i386/libg++2.8.1.3-dev_2.95.2-13.1_i386.deb stable/main/binary-i386/cpp_2.95.2-13.1_i386.deb stable/main/binary-i386/chill_2.95.2-13.1_i386.deb stable/main/binary-i386/g77_2.95.2-13.1_i386.deb stable/main/binary-i386/g++_2.95.2-13.1_i386.deb gcc (2.95.2-13.1) stable; urgency=low * Non-maintainer upload * Add new patch for ARM (closes #75801) stable/main/binary-alpha/libg++2.8.1.3-dev_2.95.2-13.1_alpha.deb stable/main/binary-alpha/libstdc++2.10_2.95.2-13.1_alpha.deb stable/main/binary-alpha/libg++2.8.1.3_2.95.2-13.1_alpha.deb stable/main/binary-alpha/gcc_2.95.2-13.1_alpha.deb stable/main/binary-alpha/chill_2.95.2-13.1_alpha.deb stable/main/binary-alpha/protoize_2.95.2-13.1_alpha.deb stable/main/binary-alpha/g77_2.95.2-13.1_alpha.deb stable/main/binary-alpha/gcj_2.95.2-13.1_alpha.deb stable/main/binary-alpha/cpp_2.95.2-13.1_alpha.deb stable/main/binary-alpha/gpc_2.95.2-13.1_alpha.deb stable/main/binary-alpha/gobjc_2.95.2-13.1_alpha.deb stable/main/binary-alpha/libstdc++2.10-dev_2.95.2-13.1_alpha.deb stable/main/binary-alpha/g++_2.95.2-13.1_alpha.deb stable/main/binary-alpha/libg++2.8.1.3-dbg_2.95.2-13.1_alpha.deb stable/main/binary-alpha/libstdc++2.10-dbg_2.95.2-13.1_alpha.deb gcc (2.95.2-13.1) stable; urgency=low * Non-maintainer upload * Add new patch for ARM (closes #75801) stable/main/binary-all/fml_3.0+beta.20000106-5_all.deb stable/main/source/fml_3.0+beta.20000106-5.diff.gz stable/main/source/fml_3.0+beta.20000106-5.dsc fml (3.0+beta.20000106-5) stable; urgency=HIGH * security fix updates again http://www.fml.org/software/fml/advisories/FA2001_001-e/ (English) http://www.fml.org/software/fml/advisories/FA2001_001/ (Japanese) backport from workaround-fix libsynchtml.pl and libhtmlsubr.pl from ftp://ftp.fml.org/pub/fml/workaround-fix2/ - libsynchtml.pl: (sub SyncHtml) y2k fixes (@Import) HTML_PERMIT_HTML_ATTACHMENT (sub Write) use &ConvSpecialChars for $htmlsubject and $From_address $id is written only if numeric strings. (sub ParseMultipart) multipart handling (sub Conv2HRef) special chars quoting (sub ReConfigureIndex) append to $dir/$index.new, y2k fix - libhtmlsubr.pl: (sub _get_suffix) use in &MPBProbe (sub MPBProbe) fix handling attach files (sub WriteHtmlFile) $metacharconv, $print_pre (sub DecodeAndWriteFile) use -o instead of > stable/main/source/faqomatic_2.603-1.2.dsc stable/main/source/faqomatic_2.603-1.2.diff.gz stable/main/binary-all/faqomatic_2.603-1.2_all.deb faqomatic (2.603-1.2) stable; urgency=high * New maintainer. NMU-style version number to avoid clashing with an old version in unstable. * Apply patch from upstream CVS closing cross-site scripting vulnerability (closes: #133130). * Apply another upstream patch to make sure passwords don't end up in server logs by mistake. stable/main/binary-m68k/eruby_0.0.9-1potato1_m68k.deb eruby (0.0.9-1potato1) stable; urgency=high * rebuilt package with correct Debian version. Because on account of Debian version wasn't appropriate in a package before one and therefore, I might not wear it with upgrade from R2.2 to next release of Debian it probably based on the Woody. stable/main/binary-alpha/eruby_0.0.9-1potato1_alpha.deb eruby (0.0.9-1potato1) stable; urgency=high * rebuilt package with correct Debian version. Because on account of Debian version wasn't appropriate in a package before one and therefore, I might not wear it with upgrade from R2.2 to next release of Debian it probably based on the Woody. stable/main/binary-sparc/dump_0.4b25-0.potato.1_sparc.deb dump (0.4b25-0.potato.1) stable; urgency=medium * back-port dump current version to potato at the request of Martin Schulze. The 0.4b22 upstream version included important fixes for data corruption that can occur with the version that was released with potato. stable/main/binary-powerpc/dump_0.4b25-0.potato.1_powerpc.deb dump (0.4b25-0.potato.1) stable; urgency=medium * back-port dump current version to potato at the request of Martin Schulze. The 0.4b22 upstream version included important fixes for data corruption that can occur with the version that was released with potato. stable/main/binary-m68k/dump_0.4b25-0.potato.1_m68k.deb dump (0.4b25-0.potato.1) stable; urgency=medium * back-port dump current version to potato at the request of Martin Schulze. The 0.4b22 upstream version included important fixes for data corruption that can occur with the version that was released with potato. stable/main/binary-arm/dump_0.4b25-0.potato.1_arm.deb dump (0.4b25-0.potato.1) stable; urgency=medium * back-port dump current version to potato at the request of Martin Schulze. The 0.4b22 upstream version included important fixes for data corruption that can occur with the version that was released with potato. stable/main/binary-alpha/dump_0.4b25-0.potato.1_alpha.deb dump (0.4b25-0.potato.1) stable; urgency=medium * back-port dump current version to potato at the request of Martin Schulze. The 0.4b22 upstream version included important fixes for data corruption that can occur with the version that was released with potato. stable/main/source/dump_0.4b25-0.potato.1.diff.gz stable/main/binary-i386/dump_0.4b25-0.potato.1_i386.deb stable/main/source/dump_0.4b25-0.potato.1.dsc dump (0.4b25-0.potato.1) stable; urgency=medium * back-port dump current version to potato at the request of Martin Schulze. The 0.4b22 upstream version included important fixes for data corruption that can occur with the version that was released with potato. stable/main/binary-sparc/cvs_1.10.7-9_sparc.deb stable/main/source/cvs_1.10.7-9.diff.gz stable/main/binary-m68k/cvs_1.10.7-9_m68k.deb stable/main/binary-arm/cvs_1.10.7-9_arm.deb stable/main/binary-i386/cvs_1.10.7-9_i386.deb stable/main/binary-alpha/cvs_1.10.7-9_alpha.deb stable/main/binary-all/cvs-doc_1.10.7-9_all.deb stable/main/source/cvs_1.10.7-9.dsc stable/main/binary-powerpc/cvs_1.10.7-9_powerpc.deb cvs (1.10.7-9) stable; urgency=medium * Only call cvsconfig in the postinst if /etc/cvs.conf doesn't exist already. stable/main/binary-arm/at_3.1.8-10.2_arm.deb stable/main/binary-m68k/at_3.1.8-10.2_m68k.deb stable/main/source/at_3.1.8-10.2.dsc stable/main/binary-i386/at_3.1.8-10.2_i386.deb stable/main/binary-powerpc/at_3.1.8-10.2_powerpc.deb stable/main/source/at_3.1.8-10.2.diff.gz stable/main/binary-alpha/at_3.1.8-10.2_alpha.deb stable/main/binary-sparc/at_3.1.8-10.2_sparc.deb at (3.1.8-10.2) stable; urgency=high * Another NMU by the Security Team * This time the bugfix will propagate properly since y.tab.c y.tab.h lex.yy.c are auto-removed in the build target this time. These files should not be contained in the original tarball in the first place, btw. stable/main/binary-sparc/analog_5.22-0potato3_sparc.deb analog (2:5.22-0potato3) stable; urgency=low * Instead of linking with potato's gd, just link with the internal gd and png libraries. gdFontSmall is not really compatable with gdFontFixed. stable/main/binary-powerpc/analog_5.22-0potato3_powerpc.deb analog (2:5.22-0potato3) stable; urgency=low * Instead of linking with potato's gd, just link with the internal gd and png libraries. gdFontSmall is not really compatable with gdFontFixed. stable/main/binary-m68k/analog_5.22-0potato3_m68k.deb analog (2:5.22-0potato3) stable; urgency=low * Instead of linking with potato's gd, just link with the internal gd and png libraries. gdFontSmall is not really compatable with gdFontFixed. stable/main/binary-arm/analog_5.22-0potato3_arm.deb analog (2:5.22-0potato3) stable; urgency=low * Instead of linking with potato's gd, just link with the internal gd and png libraries. gdFontSmall is not really compatable with gdFontFixed. stable/main/binary-alpha/analog_5.22-0potato3_alpha.deb analog (2:5.22-0potato3) stable; urgency=low * Instead of linking with potato's gd, just link with the internal gd and png libraries. gdFontSmall is not really compatable with gdFontFixed. stable/main/source/analog_5.22-0potato3.diff.gz stable/main/binary-i386/analog_5.22-0potato3_i386.deb stable/main/source/analog_5.22-0potato3.dsc analog (2:5.22-0potato3) stable; urgency=low * Instead of linking with potato's gd, just link with the internal gd and png libraries. gdFontSmall is not really compatable with gdFontFixed. stable/main/binary-sparc/adjtimex_1.10-1_sparc.deb adjtimex (1.10-1) stable; urgency=high * New upstream release - security fix: use popen() to recover output from ntpdate, instead of an unsafe temporary file (thanks to Colin Phipps ) (closes:bug#56752) stable/main/binary-powerpc/adjtimex_1.10-1_powerpc.deb adjtimex (1.10-1) frozen unstable; urgency=high * New upstream release - security fix: use popen() to recover output from ntpdate, instead of an unsafe temporary file (thanks to Colin Phipps ) (closes:bug#56752) stable/main/binary-m68k/adjtimex_1.10-1_m68k.deb adjtimex (1.10-1) frozen unstable; urgency=high * New upstream release - security fix: use popen() to recover output from ntpdate, instead of an unsafe temporary file (thanks to Colin Phipps ) (closes:bug#56752) stable/main/binary-arm/adjtimex_1.10-1_arm.deb adjtimex (1.10-1) stable; urgency=high * New upstream release - security fix: use popen() to recover output from ntpdate, instead of an unsafe temporary file (thanks to Colin Phipps ) (closes:bug#56752) stable/main/binary-alpha/libace5.0-dev_5.0.7-4_alpha.deb stable/main/binary-alpha/libace5.0_5.0.7-4_alpha.deb ace (5.0.7-4) frozen unstable; urgency=low * Rebuilt the packages so that they get installed in the unstable distribution archive, in addition to the frozen one. (#58366) ======================================== Thu, 10 Jan 2002 - Debian 2.2r5 released ======================================== stable/main/binary-arm/kernel-image-2.2.19-riscpc_20011109_arm.deb kernel-image-2.2.19-riscpc (20011109) stable unstable; urgency=high * Build against kernel-source 2.2.19.1-2 and latest ARM patch. stable/main/source/kernel-patch-2.2.19-arm_20011109.dsc stable/main/source/kernel-patch-2.2.19-arm_20011109.tar.gz stable/main/binary-all/kernel-patch-2.2.19-arm_20011109_all.deb kernel-patch-2.2.19-arm (20011109) stable unstable; urgency=high * Include fix for RiscPC crash on expansion card initialisation. stable/main/binary-sparc/kernel-image-2.2.20-sun4cdm_9_sparc.deb stable/main/binary-sparc/kernel-image-2.2.20-sun4dm-smp_9_sparc.deb stable/main/binary-all/kernel-headers-2.2.20-sparc_9_all.deb stable/main/binary-sparc/kernel-image-2.2.20-sun4u_9_sparc.deb stable/main/source/kernel-image-sparc-2.2_9.tar.gz stable/main/binary-sparc/kernel-image-2.2.20-sun4u-smp_9_sparc.deb stable/main/source/kernel-image-sparc-2.2_9.dsc kernel-image-sparc-2.2 (9) stable unstable; urgency=high * Working on 2.2.20 now. Closes: #98755 stable/main/source/kernel-image-2.2.19-riscpc_20011109.dsc stable/main/source/kernel-image-2.2.19-riscpc_20011109.tar.gz kernel-image-2.2.19-riscpc (20011109) stable unstable; urgency=high * Build against kernel-source 2.2.19.1-2 and latest ARM patch. stable/main/binary-arm/kernel-image-2.2.19-netwinder_20011103_arm.deb stable/main/source/kernel-image-2.2.19-netwinder_20011103.dsc stable/main/source/kernel-image-2.2.19-netwinder_20011103.tar.gz kernel-image-2.2.19-netwinder (20011103) stable unstable; urgency=high * Incorporate latest ARM patch and security updates; build against kernel-source 2.2.19.1-1. stable/main/source/catsboot_0.2.2.tar.gz stable/main/binary-arm/catsboot_0.2.2_arm.deb stable/main/source/catsboot_0.2.2.dsc catsboot (0.2.2) stable unstable; urgency=high * Still no code change. Bump the version number again for inclusion in 2.2r5. stable/main/binary-alpha/zsh_3.1.9.dev6-7_alpha.deb zsh (3.1.9.dev6-7) stable; urgency=medium * Recompile to fix bad i386 build. stable/main/binary-powerpc/yabasic_2.53-2_powerpc.deb yabasic (2.53-2) stable; urgency=high * New maintainer. * yabasic.c: Fixed a /tmp race condition. * Completed the FHS transition to allow building with a recent debhelper. Closes: #98875. stable/main/binary-m68k/yabasic_2.53-2_m68k.deb yabasic (2.53-2) stable; urgency=high * New maintainer. * yabasic.c: Fixed a /tmp race condition. * Completed the FHS transition to allow building with a recent debhelper. Closes: #98875. stable/main/binary-i386/yabasic_2.53-2_i386.deb yabasic (2.53-2) stable; urgency=high * New maintainer. * yabasic.c: Fixed a /tmp race condition. * Completed the FHS transition to allow building with a recent debhelper. Closes: #98875. stable/main/binary-arm/yabasic_2.53-2_arm.deb yabasic (2.53-2) stable; urgency=high * New maintainer. * yabasic.c: Fixed a /tmp race condition. * Completed the FHS transition to allow building with a recent debhelper. Closes: #98875. stable/main/binary-alpha/yabasic_2.53-2_alpha.deb yabasic (2.53-2) stable; urgency=high * New maintainer. * yabasic.c: Fixed a /tmp race condition. * Completed the FHS transition to allow building with a recent debhelper. Closes: #98875. stable/main/binary-sparc/xxgdb_1.12-9.4potato_sparc.deb xxgdb (1.12-9.4potato) stable; urgency=low * Changed the private dh_installxaw program that comes with this package to include the perl modules from the right directory (/usr/share/debhelper instead of /usr/lib/debhelper). This caused xxgdb not to build on potato. (closes: #94893) * Applied a patch from Massimo Dal Zotto . This is a workaround for a serious bug (#94892) in libXaw. stable/main/binary-powerpc/xxgdb_1.12-9.4potato_powerpc.deb xxgdb (1.12-9.4potato) stable; urgency=low * Changed the private dh_installxaw program that comes with this package to include the perl modules from the right directory (/usr/share/debhelper instead of /usr/lib/debhelper). This caused xxgdb not to build on potato. (closes: #94893) * Applied a patch from Massimo Dal Zotto . This is a workaround for a serious bug (#94892) in libXaw. stable/main/binary-m68k/xxgdb_1.12-9.4potato_m68k.deb xxgdb (1.12-9.4potato) stable; urgency=low * Changed the private dh_installxaw program that comes with this package to include the perl modules from the right directory (/usr/share/debhelper instead of /usr/lib/debhelper). This caused xxgdb not to build on potato. (closes: #94893) * Applied a patch from Massimo Dal Zotto . This is a workaround for a serious bug (#94892) in libXaw. stable/main/binary-arm/xxgdb_1.12-9.4potato_arm.deb xxgdb (1.12-9.4potato) stable; urgency=low * Changed the private dh_installxaw program that comes with this package to include the perl modules from the right directory (/usr/share/debhelper instead of /usr/lib/debhelper). This caused xxgdb not to build on potato. (closes: #94893) * Applied a patch from Massimo Dal Zotto . This is a workaround for a serious bug (#94892) in libXaw. stable/main/binary-alpha/xxgdb_1.12-9.4potato_alpha.deb xxgdb (1.12-9.4potato) stable; urgency=low * Changed the private dh_installxaw program that comes with this package to include the perl modules from the right directory (/usr/share/debhelper instead of /usr/lib/debhelper). This caused xxgdb not to build on potato. (closes: #94893) * Applied a patch from Massimo Dal Zotto . This is a workaround for a serious bug (#94892) in libXaw. stable/main/binary-sparc/xtel_3.2.1-4.potato.1_sparc.deb xtel (3.2.1-4.potato.1) stable; urgency=low * New maintainer * Security fixes: - symlink vulnerability in xteld (see #87787). - symlink vulnerability in xtel while printing harcopy of screen. - run xteld under control of tcpd to be able to restrict access to the service from network. * Backport of annoying and easy to fix bugs from woody version of xtel: - Fixed segfaults (see #43566). - Fixed a little typo in the /etc/xtel/lignes file. - Fixed creation of the symlink to french doc directory (see #55131). * Other annoying fixes: - bad X resource in Xtel[m].ad (missing '-o -' in a2ps printing command). stable/main/binary-powerpc/xtel_3.2.1-4.potato.1_powerpc.deb xtel (3.2.1-4.potato.1) stable; urgency=low * New maintainer * Security fixes: - symlink vulnerability in xteld (see #87787). - symlink vulnerability in xtel while printing harcopy of screen. - run xteld under control of tcpd to be able to restrict access to the service from network. * Backport of annoying and easy to fix bugs from woody version of xtel: - Fixed segfaults (see #43566). - Fixed a little typo in the /etc/xtel/lignes file. - Fixed creation of the symlink to french doc directory (see #55131). * Other annoying fixes: - bad X resource in Xtel[m].ad (missing '-o -' in a2ps printing command). stable/main/binary-m68k/xtel_3.2.1-4.potato.1_m68k.deb xtel (3.2.1-4.potato.1) stable; urgency=low * New maintainer * Security fixes: - symlink vulnerability in xteld (see #87787). - symlink vulnerability in xtel while printing harcopy of screen. - run xteld under control of tcpd to be able to restrict access to the service from network. * Backport of annoying and easy to fix bugs from woody version of xtel: - Fixed segfaults (see #43566). - Fixed a little typo in the /etc/xtel/lignes file. - Fixed creation of the symlink to french doc directory (see #55131). * Other annoying fixes: - bad X resource in Xtel[m].ad (missing '-o -' in a2ps printing command). stable/main/binary-arm/xtel_3.2.1-4.potato.1_arm.deb xtel (3.2.1-4.potato.1) stable; urgency=low * New maintainer * Security fixes: - symlink vulnerability in xteld (see #87787). - symlink vulnerability in xtel while printing harcopy of screen. - run xteld under control of tcpd to be able to restrict access to the service from network. * Backport of annoying and easy to fix bugs from woody version of xtel: - Fixed segfaults (see #43566). - Fixed a little typo in the /etc/xtel/lignes file. - Fixed creation of the symlink to french doc directory (see #55131). * Other annoying fixes: - bad X resource in Xtel[m].ad (missing '-o -' in a2ps printing command). stable/main/binary-alpha/xtel_3.2.1-4.potato.1_alpha.deb xtel (3.2.1-4.potato.1) stable; urgency=low * New maintainer * Security fixes: - symlink vulnerability in xteld (see #87787). - symlink vulnerability in xtel while printing harcopy of screen. - run xteld under control of tcpd to be able to restrict access to the service from network. * Backport of annoying and easy to fix bugs from woody version of xtel: - Fixed segfaults (see #43566). - Fixed a little typo in the /etc/xtel/lignes file. - Fixed creation of the symlink to french doc directory (see #55131). * Other annoying fixes: - bad X resource in Xtel[m].ad (missing '-o -' in a2ps printing command). stable/main/binary-m68k/wu-ftpd_2.6.0-6_m68k.deb wu-ftpd (2.6.0-6) stable; urgency=high * [SECURITY] fix remote buffer overflow in src/glob.c stable/main/binary-arm/wu-ftpd_2.6.0-6_arm.deb wu-ftpd (2.6.0-6) stable; urgency=high * [SECURITY] fix remote buffer overflow in src/glob.c stable/contrib/binary-powerpc/tkseti_2.12-2_powerpc.deb tkseti (2.12-2) stable; urgency=low * Make tkseti depend on wish instead of tcl/tk, Closes: #62667 stable/contrib/binary-arm/tkseti_2.12-2_arm.deb tkseti (2.12-2) stable; urgency=low * Make tkseti depend on wish instead of tcl/tk, Closes: #62667 stable/main/binary-alpha/skkinput_2.03-3.potato.1_alpha.deb skkinput (1:2.03-3.potato.1) stable; urgency=medium * fix segfault problem with all XIM applications - closes: Bug#32408 - skkinput sigsegvs applications stable/main/binary-sparc/libpgtcl_6.5.3-27_sparc.deb stable/main/binary-sparc/postgresql_6.5.3-27_sparc.deb stable/main/binary-sparc/pgaccess_6.5.3-27_sparc.deb stable/main/binary-sparc/postgresql-client_6.5.3-27_sparc.deb stable/main/binary-sparc/postgresql-pl_6.5.3-27_sparc.deb stable/main/binary-sparc/python-pygresql_6.5.3-27_sparc.deb stable/main/binary-sparc/odbc-postgresql_6.5.3-27_sparc.deb stable/main/binary-sparc/postgresql-dev_6.5.3-27_sparc.deb stable/main/binary-sparc/libpgperl_6.5.3-27_sparc.deb stable/main/binary-sparc/postgresql-contrib_6.5.3-27_sparc.deb stable/main/binary-sparc/libpgsql2_6.5.3-27_sparc.deb stable/main/binary-sparc/postgresql-test_6.5.3-27_sparc.deb stable/main/binary-sparc/ecpg_6.5.3-27_sparc.deb postgresql (6.5.3-27) stable; urgency=high * postgresql: applied patch from Ben Pfaff to cure problem with segfault in pg_dump. High urgency because pg_dump is essential for transferring data when upgrading postgresql. Closes: #101940 stable/main/binary-powerpc/postgresql_6.5.3-27_powerpc.deb stable/main/binary-powerpc/libpgsql2_6.5.3-27_powerpc.deb stable/main/binary-powerpc/postgresql-contrib_6.5.3-27_powerpc.deb stable/main/binary-powerpc/postgresql-pl_6.5.3-27_powerpc.deb stable/main/binary-powerpc/ecpg_6.5.3-27_powerpc.deb stable/main/binary-powerpc/python-pygresql_6.5.3-27_powerpc.deb stable/main/binary-powerpc/libpgperl_6.5.3-27_powerpc.deb stable/main/binary-powerpc/odbc-postgresql_6.5.3-27_powerpc.deb stable/main/binary-powerpc/pgaccess_6.5.3-27_powerpc.deb stable/main/binary-powerpc/postgresql-dev_6.5.3-27_powerpc.deb stable/main/binary-powerpc/postgresql-client_6.5.3-27_powerpc.deb stable/main/binary-powerpc/postgresql-test_6.5.3-27_powerpc.deb stable/main/binary-powerpc/libpgtcl_6.5.3-27_powerpc.deb postgresql (6.5.3-27) stable; urgency=high * postgresql: applied patch from Ben Pfaff to cure problem with segfault in pg_dump. High urgency because pg_dump is essential for transferring data when upgrading postgresql. Closes: #101940 stable/main/binary-m68k/libpgsql2_6.5.3-27_m68k.deb stable/main/binary-m68k/postgresql_6.5.3-27_m68k.deb stable/main/binary-m68k/python-pygresql_6.5.3-27_m68k.deb stable/main/binary-m68k/libpgtcl_6.5.3-27_m68k.deb stable/main/binary-m68k/postgresql-contrib_6.5.3-27_m68k.deb stable/main/binary-m68k/pgaccess_6.5.3-27_m68k.deb stable/main/binary-m68k/postgresql-dev_6.5.3-27_m68k.deb stable/main/binary-m68k/odbc-postgresql_6.5.3-27_m68k.deb stable/main/binary-m68k/postgresql-pl_6.5.3-27_m68k.deb stable/main/binary-m68k/ecpg_6.5.3-27_m68k.deb stable/main/binary-m68k/libpgperl_6.5.3-27_m68k.deb stable/main/binary-m68k/postgresql-client_6.5.3-27_m68k.deb stable/main/binary-m68k/postgresql-test_6.5.3-27_m68k.deb postgresql (6.5.3-27) stable; urgency=high * postgresql: applied patch from Ben Pfaff to cure problem with segfault in pg_dump. High urgency because pg_dump is essential for transferring data when upgrading postgresql. Closes: #101940 stable/main/binary-arm/libpgperl_6.5.3-27_arm.deb stable/main/binary-arm/postgresql-dev_6.5.3-27_arm.deb stable/main/binary-arm/python-pygresql_6.5.3-27_arm.deb stable/main/binary-arm/postgresql-pl_6.5.3-27_arm.deb stable/main/binary-arm/libpgtcl_6.5.3-27_arm.deb stable/main/binary-arm/postgresql_6.5.3-27_arm.deb stable/main/binary-arm/pgaccess_6.5.3-27_arm.deb stable/main/binary-arm/postgresql-client_6.5.3-27_arm.deb stable/main/binary-arm/postgresql-contrib_6.5.3-27_arm.deb stable/main/binary-arm/ecpg_6.5.3-27_arm.deb stable/main/binary-arm/odbc-postgresql_6.5.3-27_arm.deb stable/main/binary-arm/libpgsql2_6.5.3-27_arm.deb stable/main/binary-arm/postgresql-test_6.5.3-27_arm.deb postgresql (6.5.3-27) stable; urgency=high * postgresql: applied patch from Ben Pfaff to cure problem with segfault in pg_dump. High urgency because pg_dump is essential for transferring data when upgrading postgresql. Closes: #101940 stable/main/binary-alpha/postgresql-contrib_6.5.3-27_alpha.deb stable/main/binary-alpha/libpgsql2_6.5.3-27_alpha.deb stable/main/binary-alpha/postgresql-pl_6.5.3-27_alpha.deb stable/main/binary-alpha/postgresql-test_6.5.3-27_alpha.deb stable/main/binary-alpha/odbc-postgresql_6.5.3-27_alpha.deb stable/main/binary-alpha/postgresql_6.5.3-27_alpha.deb stable/main/binary-alpha/pgaccess_6.5.3-27_alpha.deb stable/main/binary-alpha/postgresql-dev_6.5.3-27_alpha.deb stable/main/binary-alpha/ecpg_6.5.3-27_alpha.deb stable/main/binary-alpha/libpgtcl_6.5.3-27_alpha.deb stable/main/binary-alpha/postgresql-client_6.5.3-27_alpha.deb stable/main/binary-alpha/libpgperl_6.5.3-27_alpha.deb stable/main/binary-alpha/python-pygresql_6.5.3-27_alpha.deb postgresql (6.5.3-27) stable; urgency=high * postgresql: applied patch from Ben Pfaff to cure problem with segfault in pg_dump. High urgency because pg_dump is essential for transferring data when upgrading postgresql. Closes: #101940 stable/main/binary-sparc/postfix_0.0.19991231pl11-2_sparc.deb postfix (0.0.19991231pl11-2) stable; urgency=high * Fix 'smtpd command log memory exhaustion' problem. * Fix dhelp dangling symlink problem. Closes: #91877, #97332. * Rebuild on current potato. Closes: #102388, #99220. stable/main/binary-powerpc/postfix_0.0.19991231pl11-2_powerpc.deb postfix (0.0.19991231pl11-2) stable; urgency=high * Fix 'smtpd command log memory exhaustion' problem. * Fix dhelp dangling symlink problem. Closes: #91877, #97332. * Rebuild on current potato. Closes: #102388, #99220. stable/main/binary-m68k/postfix_0.0.19991231pl11-2_m68k.deb postfix (0.0.19991231pl11-2) stable; urgency=high * Fix 'smtpd command log memory exhaustion' problem. * Fix dhelp dangling symlink problem. Closes: #91877, #97332. * Rebuild on current potato. Closes: #102388, #99220. stable/main/binary-arm/postfix_0.0.19991231pl11-2_arm.deb postfix (0.0.19991231pl11-2) stable; urgency=high * Fix 'smtpd command log memory exhaustion' problem. * Fix dhelp dangling symlink problem. Closes: #91877, #97332. * Rebuild on current potato. Closes: #102388, #99220. stable/main/binary-alpha/postfix_0.0.19991231pl11-2_alpha.deb postfix (0.0.19991231pl11-2) stable; urgency=high * Fix 'smtpd command log memory exhaustion' problem. * Fix dhelp dangling symlink problem. Closes: #91877, #97332. * Rebuild on current potato. Closes: #102388, #99220. stable/main/binary-sparc/php4-cgi-mysql_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-pgsql_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-cgi-mhash_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-imap_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-mysql_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-cgi-ldap_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-mhash_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-cgi-gd_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-snmp_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-gd_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-cgi-snmp_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-cgi-imap_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-cgi-xml_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-cgi-pgsql_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-xml_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-cgi_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-ldap_4.0.3pl1-0potato2_sparc.deb php4 (4.0.3pl1-0potato2) stable; urgency=high * Fix php4-cgi * s/with-yp/enable-yp/ to fix this little oversight stable/main/binary-powerpc/php4-cgi-pgsql_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-ldap_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-cgi-mhash_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-cgi-mysql_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-cgi_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-cgi-imap_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-gd_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-snmp_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-cgi-ldap_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-pgsql_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-cgi-snmp_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-mysql_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-mhash_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-cgi-gd_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-cgi-xml_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-xml_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-imap_4.0.3pl1-0potato2_powerpc.deb php4 (4.0.3pl1-0potato2) stable; urgency=high * Fix php4-cgi * s/with-yp/enable-yp/ to fix this little oversight stable/main/binary-m68k/php4-cgi-mhash_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-cgi-snmp_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-cgi-mysql_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-gd_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-pgsql_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-cgi-imap_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-ldap_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-snmp_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-mhash_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-cgi-pgsql_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-imap_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-xml_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-cgi-gd_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-cgi_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-mysql_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-cgi-xml_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-cgi-ldap_4.0.3pl1-0potato2_m68k.deb php4 (4.0.3pl1-0potato2) stable; urgency=high * Fix php4-cgi * s/with-yp/enable-yp/ to fix this little oversight stable/main/binary-alpha/php4-mysql_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-cgi_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-pgsql_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-imap_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-snmp_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-cgi-imap_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-cgi-pgsql_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-cgi-mhash_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-cgi-snmp_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-ldap_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-cgi-xml_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-cgi-ldap_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-cgi-gd_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-xml_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-cgi-mysql_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-mhash_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-gd_4.0.3pl1-0potato2_alpha.deb php4 (4.0.3pl1-0potato2) stable; urgency=high * Fix php4-cgi * s/with-yp/enable-yp/ to fix this little oversight stable/main/binary-sparc/telnetd_0.16-4potato.3_sparc.deb stable/main/binary-sparc/telnet_0.16-4potato.3_sparc.deb netkit-telnet (0.16-4potato.3) stable; urgency=high * Fixed same overflow with minimal change. stable/main/binary-powerpc/telnetd_0.16-4potato.3_powerpc.deb stable/main/binary-powerpc/telnet_0.16-4potato.3_powerpc.deb netkit-telnet (0.16-4potato.3) stable; urgency=high * Fixed same overflow with minimal change. stable/main/binary-m68k/telnet_0.16-4potato.3_m68k.deb stable/main/binary-m68k/telnetd_0.16-4potato.3_m68k.deb netkit-telnet (0.16-4potato.3) stable; urgency=high * Fixed same overflow with minimal change. stable/main/binary-arm/telnet_0.16-4potato.3_arm.deb stable/main/binary-arm/telnetd_0.16-4potato.3_arm.deb netkit-telnet (0.16-4potato.3) stable; urgency=high * Fixed same overflow with minimal change. stable/main/binary-alpha/telnet_0.16-4potato.3_alpha.deb stable/main/binary-alpha/telnetd_0.16-4potato.3_alpha.deb netkit-telnet (0.16-4potato.3) stable; urgency=high * Fixed same overflow with minimal change. stable/main/binary-sparc/nedit_5.1.1-3_sparc.deb nedit (1:5.1.1-3) stable unstable; urgency=low * Upload for potato/stable so nedit can finally get out of non-free for potato. It is about time. stable/main/binary-powerpc/nedit_5.1.1-3_powerpc.deb nedit (1:5.1.1-3) stable unstable; urgency=low * Upload for potato/stable so nedit can finally get out of non-free for potato. It is about time. stable/main/binary-m68k/nedit_5.1.1-3_m68k.deb nedit (1:5.1.1-3) stable unstable; urgency=low * Upload for potato/stable so nedit can finally get out of non-free for potato. It is about time. stable/main/binary-arm/nedit_5.1.1-3_arm.deb nedit (1:5.1.1-3) stable unstable; urgency=low * Upload for potato/stable so nedit can finally get out of non-free for potato. It is about time. stable/main/binary-alpha/nedit_5.1.1-3_alpha.deb nedit (1:5.1.1-3) stable unstable; urgency=low * Upload for potato/stable so nedit can finally get out of non-free for potato. It is about time. stable/main/binary-sparc/mutt_1.2.5-5_sparc.deb mutt (1.2.5-5) stable; urgency=high * Applied patch-1.2.5.tlr.terminate.1 to fix a remotely exploitable buffer overflow. stable/main/binary-powerpc/mutt_1.2.5-5_powerpc.deb mutt (1.2.5-5) stable; urgency=high * Applied patch-1.2.5.tlr.terminate.1 to fix a remotely exploitable buffer overflow. stable/main/binary-m68k/mutt_1.2.5-5_m68k.deb mutt (1.2.5-5) stable; urgency=high * Applied patch-1.2.5.tlr.terminate.1 to fix a remotely exploitable buffer overflow. stable/main/binary-arm/mutt_1.2.5-5_arm.deb mutt (1.2.5-5) stable; urgency=high * Applied patch-1.2.5.tlr.terminate.1 to fix a remotely exploitable buffer overflow. stable/main/binary-alpha/mutt_1.2.5-5_alpha.deb mutt (1.2.5-5) stable; urgency=high * Applied patch-1.2.5.tlr.terminate.1 to fix a remotely exploitable buffer overflow. stable/main/source/yabasic_2.53-2.diff.gz stable/main/binary-sparc/yabasic_2.53-2_sparc.deb stable/main/source/yabasic_2.53-2.dsc yabasic (2.53-2) stable; urgency=high * New maintainer. * yabasic.c: Fixed a /tmp race condition. * Completed the FHS transition to allow building with a recent debhelper. Closes: #98875. stable/main/source/xxgdb_1.12-9.4potato.diff.gz stable/main/source/xxgdb_1.12-9.4potato.dsc stable/main/binary-i386/xxgdb_1.12-9.4potato_i386.deb xxgdb (1.12-9.4potato) stable; urgency=low * Changed the private dh_installxaw program that comes with this package to include the perl modules from the right directory (/usr/share/debhelper instead of /usr/lib/debhelper). This caused xxgdb not to build on potato. (closes: #94893) * Applied a patch from Massimo Dal Zotto . This is a workaround for a serious bug (#94892) in libXaw. stable/main/source/xtel_3.2.1-4.potato.1.dsc stable/main/source/xtel_3.2.1-4.potato.1.diff.gz stable/main/binary-i386/xtel_3.2.1-4.potato.1_i386.deb xtel (3.2.1-4.potato.1) stable; urgency=low * New maintainer * Security fixes: - symlink vulnerability in xteld (see #87787). - symlink vulnerability in xtel while printing harcopy of screen. - run xteld under control of tcpd to be able to restrict access to the service from network. * Backport of annoying and easy to fix bugs from woody version of xtel: - Fixed segfaults (see #43566). - Fixed a little typo in the /etc/xtel/lignes file. - Fixed creation of the symlink to french doc directory (see #55131). * Other annoying fixes: - bad X resource in Xtel[m].ad (missing '-o -' in a2ps printing command). stable/main/binary-sparc/wu-ftpd_2.6.0-6_sparc.deb wu-ftpd (2.6.0-6) stable; urgency=high * [SECURITY] fix remote buffer overflow in src/glob.c stable/main/binary-powerpc/wu-ftpd_2.6.0-6_powerpc.deb wu-ftpd (2.6.0-6) stable; urgency=high * [SECURITY] fix remote buffer overflow in src/glob.c stable/main/binary-all/wu-ftpd-academ_2.6.0-6_all.deb stable/main/source/wu-ftpd_2.6.0-6.diff.gz stable/main/binary-i386/wu-ftpd_2.6.0-6_i386.deb stable/main/source/wu-ftpd_2.6.0-6.dsc wu-ftpd (2.6.0-6) stable; urgency=high * [SECURITY] fix remote buffer overflow in src/glob.c stable/main/binary-alpha/wu-ftpd_2.6.0-6_alpha.deb wu-ftpd (2.6.0-6) stable; urgency=high * [SECURITY] fix remote buffer overflow in src/glob.c stable/main/source/postgresql_6.5.3-27.dsc stable/main/binary-i386/postgresql-test_6.5.3-27_i386.deb stable/main/binary-i386/libpgsql2_6.5.3-27_i386.deb stable/main/binary-i386/python-pygresql_6.5.3-27_i386.deb stable/main/binary-i386/postgresql-pl_6.5.3-27_i386.deb stable/main/binary-i386/ecpg_6.5.3-27_i386.deb stable/main/binary-i386/libpgperl_6.5.3-27_i386.deb stable/main/binary-i386/postgresql-client_6.5.3-27_i386.deb stable/main/source/postgresql_6.5.3-27.diff.gz stable/main/binary-i386/pgaccess_6.5.3-27_i386.deb stable/main/binary-all/postgresql-doc_6.5.3-27_all.deb stable/main/binary-i386/postgresql_6.5.3-27_i386.deb stable/main/binary-i386/libpgtcl_6.5.3-27_i386.deb stable/main/binary-i386/odbc-postgresql_6.5.3-27_i386.deb stable/main/binary-i386/postgresql-dev_6.5.3-27_i386.deb stable/main/binary-i386/postgresql-contrib_6.5.3-27_i386.deb postgresql (6.5.3-27) stable; urgency=high * postgresql: applied patch from Ben Pfaff to cure problem with segfault in pg_dump. High urgency because pg_dump is essential for transferring data when upgrading postgresql. Closes: #101940 stable/main/source/postfix_0.0.19991231pl11-2.diff.gz stable/main/source/postfix_0.0.19991231pl11-2.dsc stable/main/binary-i386/postfix_0.0.19991231pl11-2_i386.deb postfix (0.0.19991231pl11-2) stable; urgency=high * Fix 'smtpd command log memory exhaustion' problem. * Fix dhelp dangling symlink problem. Closes: #91877, #97332. * Rebuild on current potato. Closes: #102388, #99220. stable/main/binary-i386/php4-gd_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-mhash_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-ldap_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-cgi-pgsql_4.0.3pl1-0potato2_i386.deb stable/main/source/php4_4.0.3pl1-0potato2.dsc stable/main/binary-i386/php4-pgsql_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-cgi-mhash_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-mysql_4.0.3pl1-0potato2_i386.deb stable/main/binary-all/php4-dev_4.0.3pl1-0potato2_all.deb stable/main/binary-i386/php4-cgi-ldap_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-xml_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-cgi-imap_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-cgi-gd_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-snmp_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-imap_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-cgi-xml_4.0.3pl1-0potato2_i386.deb stable/main/source/php4_4.0.3pl1-0potato2.diff.gz stable/main/binary-i386/php4-cgi-snmp_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-cgi-mysql_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-cgi_4.0.3pl1-0potato2_i386.deb php4 (4.0.3pl1-0potato2) stable; urgency=high * Fix php4-cgi * s/with-yp/enable-yp/ to fix this little oversight stable/main/source/netkit-telnet_0.16-4potato.3.diff.gz stable/main/binary-i386/telnet_0.16-4potato.3_i386.deb stable/main/source/netkit-telnet_0.16-4potato.3.dsc stable/main/binary-i386/telnetd_0.16-4potato.3_i386.deb netkit-telnet (0.16-4potato.3) stable; urgency=high * Fixed same overflow with minimal change. stable/main/source/nedit_5.1.1-3.dsc stable/main/binary-i386/nedit_5.1.1-3_i386.deb stable/main/source/nedit_5.1.1-3.diff.gz nedit (1:5.1.1-3) stable unstable; urgency=low * Upload for potato/stable so nedit can finally get out of non-free for potato. It is about time. stable/main/source/mutt_1.2.5-5.dsc stable/main/binary-i386/mutt_1.2.5-5_i386.deb stable/main/source/mutt_1.2.5-5.diff.gz mutt (1.2.5-5) stable; urgency=high * Applied patch-1.2.5.tlr.terminate.1 to fix a remotely exploitable buffer overflow. stable/main/binary-alpha/make_3.79.1-1.potato.1_alpha.deb make (3.79.1-1.potato.1) stable; urgency=low * This is an update for potato. There are no changes made since the update for woody 45 days ago. The old make did not honour the MAKEFILES variable, this closes: Bug#71261 * I have heard rimours that the old make did not correctly build libc either, and one needs this version. I can't say for sure, since no bug was ever filed. stable/main/binary-sparc/mailman_1.1-10_sparc.deb mailman (1.1-10) stable; urgency=high * Add missing paranthesis in Mailman/Cgi/edithtml.py, line 88 (closes: #123802) stable/main/binary-powerpc/mailman_1.1-10_powerpc.deb mailman (1.1-10) stable; urgency=high * Add missing paranthesis in Mailman/Cgi/edithtml.py, line 88 (closes: #123802) stable/main/binary-m68k/mailman_1.1-10_m68k.deb mailman (1.1-10) stable; urgency=high * Add missing paranthesis in Mailman/Cgi/edithtml.py, line 88 (closes: #123802) stable/main/binary-arm/mailman_1.1-10_arm.deb mailman (1.1-10) stable; urgency=high * Add missing paranthesis in Mailman/Cgi/edithtml.py, line 88 (closes: #123802) stable/main/binary-alpha/mailman_1.1-10_alpha.deb mailman (1.1-10) stable; urgency=high * Add missing paranthesis in Mailman/Cgi/edithtml.py, line 88 (closes: #123802) stable/main/binary-m68k/mac-fdisk_0.1-6.0potato1_m68k.deb stable/main/binary-m68k/pmac-fdisk-cross_0.1-6.0potato1_m68k.deb mac-fdisk (0.1-6.0potato1) stable; urgency=high * Feature added: menu option to create bootstrap partition needed for powerpc NewWorld machines with the proper type and size (patch supplied by Ethan Benson). This should help newbies that won't read the docs anyway. Closes: #99660. * Bugfix: mac-fdisk used to get the disk size wrong when brute force probing for end-of-disk by seek&read. Turns out gcc did not cope with arithmetics on long long types without explicit cast. Closes: #99700. stable/main/binary-sparc/inn2_2.2.2.2000.01.31-5_sparc.deb stable/main/binary-sparc/inn2-dev_2.2.2.2000.01.31-5_sparc.deb stable/main/binary-sparc/inn2-inews_2.2.2.2000.01.31-5_sparc.deb inn2 (2.2.2.2000.01.31-5) stable; urgency=medium * apply patch from Taketoshi Sano that fixes posting problem introduced in the -4.1 security fix, closes: #83888, #85482 stable/main/binary-powerpc/inn2_2.2.2.2000.01.31-5_powerpc.deb stable/main/binary-powerpc/inn2-inews_2.2.2.2000.01.31-5_powerpc.deb stable/main/binary-powerpc/inn2-dev_2.2.2.2000.01.31-5_powerpc.deb inn2 (2.2.2.2000.01.31-5) stable; urgency=medium * apply patch from Taketoshi Sano that fixes posting problem introduced in the -4.1 security fix, closes: #83888, #85482 stable/main/binary-m68k/inn2_2.2.2.2000.01.31-5_m68k.deb stable/main/binary-m68k/inn2-inews_2.2.2.2000.01.31-5_m68k.deb stable/main/binary-m68k/inn2-dev_2.2.2.2000.01.31-5_m68k.deb inn2 (2.2.2.2000.01.31-5) stable; urgency=medium * apply patch from Taketoshi Sano that fixes posting problem introduced in the -4.1 security fix, closes: #83888, #85482 stable/main/binary-all/task-news-server_2.2.2.2000.01.31-5_all.deb stable/main/binary-i386/inn2_2.2.2.2000.01.31-5_i386.deb stable/main/binary-i386/inn2-inews_2.2.2.2000.01.31-5_i386.deb stable/main/binary-i386/inn2-dev_2.2.2.2000.01.31-5_i386.deb inn2 (2.2.2.2000.01.31-5) stable; urgency=medium * apply patch from Taketoshi Sano that fixes posting problem introduced in the -4.1 security fix, closes: #83888, #85482 stable/main/binary-arm/inn2-inews_2.2.2.2000.01.31-5_arm.deb stable/main/binary-arm/inn2-dev_2.2.2.2000.01.31-5_arm.deb stable/main/binary-arm/inn2_2.2.2.2000.01.31-5_arm.deb inn2 (2.2.2.2000.01.31-5) stable; urgency=medium * apply patch from Taketoshi Sano that fixes posting problem introduced in the -4.1 security fix, closes: #83888, #85482 stable/main/binary-alpha/inn2-inews_2.2.2.2000.01.31-5_alpha.deb stable/main/binary-alpha/inn2-dev_2.2.2.2000.01.31-5_alpha.deb stable/main/binary-alpha/inn2_2.2.2.2000.01.31-5_alpha.deb inn2 (2.2.2.2000.01.31-5) stable; urgency=medium * apply patch from Taketoshi Sano that fixes posting problem introduced in the -4.1 security fix, closes: #83888, #85482 stable/main/binary-sparc/groff_1.15.2-3_sparc.deb groff (1.15.2-3) stable; urgency=high * Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/binary-powerpc/groff_1.15.2-3_powerpc.deb groff (1.15.2-3) stable; urgency=high * Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/binary-m68k/groff_1.15.2-3_m68k.deb groff (1.15.2-3) stable; urgency=high * Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/binary-arm/groff_1.15.2-3_arm.deb groff (1.15.2-3) stable; urgency=high * Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/binary-alpha/groff_1.15.2-3_alpha.deb groff (1.15.2-3) stable; urgency=high * Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/binary-sparc/gpm_1.17.8-18.1_sparc.deb stable/main/binary-sparc/libgpmg1_1.17.8-18.1_sparc.deb stable/main/binary-sparc/libgpmg1-dev_1.17.8-18.1_sparc.deb gpm (1.17.8-18.1) stable; urgency=high * Security release. * Removed gpm-root from the package, due to several security problems. stable/main/binary-powerpc/libgpmg1_1.17.8-18.1_powerpc.deb stable/main/binary-powerpc/gpm_1.17.8-18.1_powerpc.deb stable/main/binary-powerpc/libgpmg1-dev_1.17.8-18.1_powerpc.deb gpm (1.17.8-18.1) stable; urgency=high * Security release. * Removed gpm-root from the package, due to several security problems. stable/main/binary-m68k/libgpm1-altdev_1.17.8-18.1_m68k.deb stable/main/binary-m68k/libgpmg1-dev_1.17.8-18.1_m68k.deb stable/main/binary-m68k/libgpmg1_1.17.8-18.1_m68k.deb stable/main/binary-m68k/gpm_1.17.8-18.1_m68k.deb stable/main/binary-m68k/libgpm1_1.17.8-18.1_m68k.deb gpm (1.17.8-18.1) stable; urgency=high * Security release. * Removed gpm-root from the package, due to several security problems. stable/main/binary-arm/libgpmg1_1.17.8-18.1_arm.deb stable/main/binary-arm/libgpmg1-dev_1.17.8-18.1_arm.deb stable/main/binary-arm/gpm_1.17.8-18.1_arm.deb gpm (1.17.8-18.1) stable; urgency=high * Security release. * Removed gpm-root from the package, due to several security problems. stable/main/binary-alpha/libgpmg1_1.17.8-18.1_alpha.deb stable/main/binary-alpha/libgpmg1-dev_1.17.8-18.1_alpha.deb stable/main/binary-alpha/gpm_1.17.8-18.1_alpha.deb gpm (1.17.8-18.1) stable; urgency=high * Security release. * Removed gpm-root from the package, due to several security problems. stable/main/binary-sparc/freewnn-jserver-dev_1.1.0+1.1.1-a016-1.potato.3_sparc.deb stable/main/binary-sparc/freewnn-kserver-dev_1.1.0+1.1.1-a016-1.potato.3_sparc.deb stable/main/binary-sparc/freewnn-kserver_1.1.0+1.1.1-a016-1.potato.3_sparc.deb stable/main/binary-sparc/freewnn-cserver_1.1.0+1.1.1-a016-1.potato.3_sparc.deb stable/main/binary-sparc/freewnn-jserver_1.1.0+1.1.1-a016-1.potato.3_sparc.deb stable/main/binary-sparc/freewnn-cserver-dev_1.1.0+1.1.1-a016-1.potato.3_sparc.deb freewnn (1.1.0+1.1.1-a016-1.potato.3) stable; urgency=high * Non Maintainer Upload * fix maintainer script bugs for potato closes: Bug#109314 stable/main/binary-powerpc/freewnn-kserver-dev_1.1.0+1.1.1-a016-1.potato.3_powerpc.deb stable/main/binary-powerpc/freewnn-jserver-dev_1.1.0+1.1.1-a016-1.potato.3_powerpc.deb stable/main/binary-powerpc/freewnn-kserver_1.1.0+1.1.1-a016-1.potato.3_powerpc.deb stable/main/binary-powerpc/freewnn-cserver-dev_1.1.0+1.1.1-a016-1.potato.3_powerpc.deb stable/main/binary-powerpc/freewnn-jserver_1.1.0+1.1.1-a016-1.potato.3_powerpc.deb stable/main/binary-powerpc/freewnn-cserver_1.1.0+1.1.1-a016-1.potato.3_powerpc.deb freewnn (1.1.0+1.1.1-a016-1.potato.3) stable; urgency=high * Non Maintainer Upload * fix maintainer script bugs for potato closes: Bug#109314 stable/main/binary-m68k/freewnn-kserver-dev_1.1.0+1.1.1-a016-1.potato.3_m68k.deb stable/main/binary-m68k/freewnn-jserver_1.1.0+1.1.1-a016-1.potato.3_m68k.deb stable/main/binary-m68k/freewnn-jserver-dev_1.1.0+1.1.1-a016-1.potato.3_m68k.deb stable/main/binary-m68k/freewnn-cserver_1.1.0+1.1.1-a016-1.potato.3_m68k.deb stable/main/binary-m68k/freewnn-kserver_1.1.0+1.1.1-a016-1.potato.3_m68k.deb stable/main/binary-m68k/freewnn-cserver-dev_1.1.0+1.1.1-a016-1.potato.3_m68k.deb freewnn (1.1.0+1.1.1-a016-1.potato.3) stable; urgency=high * Non Maintainer Upload * fix maintainer script bugs for potato closes: Bug#109314 stable/main/binary-arm/freewnn-kserver-dev_1.1.0+1.1.1-a016-1.potato.3_arm.deb stable/main/binary-arm/freewnn-jserver_1.1.0+1.1.1-a016-1.potato.3_arm.deb stable/main/binary-arm/freewnn-cserver-dev_1.1.0+1.1.1-a016-1.potato.3_arm.deb stable/main/binary-arm/freewnn-cserver_1.1.0+1.1.1-a016-1.potato.3_arm.deb stable/main/binary-arm/freewnn-kserver_1.1.0+1.1.1-a016-1.potato.3_arm.deb stable/main/binary-arm/freewnn-jserver-dev_1.1.0+1.1.1-a016-1.potato.3_arm.deb freewnn (1.1.0+1.1.1-a016-1.potato.3) stable; urgency=high * Non Maintainer Upload * fix maintainer script bugs for potato closes: Bug#109314 stable/main/binary-alpha/freewnn-cserver_1.1.0+1.1.1-a016-1.potato.3_alpha.deb stable/main/binary-alpha/freewnn-jserver_1.1.0+1.1.1-a016-1.potato.3_alpha.deb stable/main/binary-alpha/freewnn-kserver_1.1.0+1.1.1-a016-1.potato.3_alpha.deb stable/main/binary-alpha/freewnn-kserver-dev_1.1.0+1.1.1-a016-1.potato.3_alpha.deb stable/main/binary-alpha/freewnn-cserver-dev_1.1.0+1.1.1-a016-1.potato.3_alpha.deb stable/main/binary-alpha/freewnn-jserver-dev_1.1.0+1.1.1-a016-1.potato.3_alpha.deb freewnn (1.1.0+1.1.1-a016-1.potato.3) stable; urgency=high * Non Maintainer Upload * fix maintainer script bugs for potato closes: Bug#109314 stable/main/source/modconf_0.2.26.14.1.tar.gz stable/main/binary-all/modconf_0.2.26.14.1_all.deb stable/main/source/modconf_0.2.26.14.1.dsc modconf (0.2.26.14.1) stable; urgency=low * included patch for secure tempfile handling, see #117283 for details stable/main/binary-i386/mailman_1.1-10_i386.deb stable/main/source/mailman_1.1-10.diff.gz stable/main/source/mailman_1.1-10.dsc mailman (1.1-10) stable; urgency=high * Add missing paranthesis in Mailman/Cgi/edithtml.py, line 88 (closes: #123802) stable/main/binary-sparc/libgtop-dev_1.0.6-1.1_sparc.deb stable/main/binary-alpha/libgtop-daemon_1.0.6-1.1_alpha.deb stable/main/binary-powerpc/libgtop-daemon_1.0.6-1.1_powerpc.deb stable/main/source/libgtop_1.0.6-1.1.dsc stable/main/binary-powerpc/libgtop-dev_1.0.6-1.1_powerpc.deb stable/main/binary-m68k/libgtop-dev_1.0.6-1.1_m68k.deb stable/main/binary-arm/libgtop1_1.0.6-1.1_arm.deb stable/main/binary-i386/libgtop1_1.0.6-1.1_i386.deb stable/main/binary-arm/libgtop-dev_1.0.6-1.1_arm.deb stable/main/binary-sparc/libgtop-daemon_1.0.6-1.1_sparc.deb stable/main/binary-alpha/libgtop1_1.0.6-1.1_alpha.deb stable/main/binary-sparc/libgtop1_1.0.6-1.1_sparc.deb stable/main/binary-i386/libgtop-dev_1.0.6-1.1_i386.deb stable/main/source/libgtop_1.0.6-1.1.diff.gz stable/main/binary-m68k/libgtop1_1.0.6-1.1_m68k.deb stable/main/binary-powerpc/libgtop1_1.0.6-1.1_powerpc.deb stable/main/binary-m68k/libgtop-daemon_1.0.6-1.1_m68k.deb stable/main/binary-alpha/libgtop-dev_1.0.6-1.1_alpha.deb stable/main/binary-arm/libgtop-daemon_1.0.6-1.1_arm.deb stable/main/binary-i386/libgtop-daemon_1.0.6-1.1_i386.deb libgtop (1.0.6-1.1) stable; urgency=high * Non-maintainer upload by security team * Fix buffer overflow in src/daemon/gnuserv.c:permitted() Patch from Flavio Veloso * Fix printf format attacks in src/daemon/gnuserv.c logging functions stable/main/source/inn2_2.2.2.2000.01.31-5.diff.gz stable/main/source/inn2_2.2.2.2000.01.31-5.dsc inn2 (2.2.2.2000.01.31-5) stable; urgency=medium * apply patch from Taketoshi Sano that fixes posting problem introduced in the -4.1 security fix, closes: #83888, #85482 stable/main/source/imp_2.2.6-0.potato.4.dsc stable/main/binary-all/imp_2.2.6-0.potato.4_all.deb stable/main/source/imp_2.2.6-0.potato.4.diff.gz imp (2:2.2.6-0.potato.4) stable; urgency=low * SECURITY FIX, backport from 2.2.7, closes: #118986. stable/main/source/groff_1.15.2-3.diff.gz stable/main/binary-i386/groff_1.15.2-3_i386.deb stable/main/source/groff_1.15.2-3.dsc groff (1.15.2-3) stable; urgency=high * Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable