========================================= Tue, 31 May 2005 - Debian 3.0r6 released ========================================= stable/main/binary-sparc/libdps1-dbg_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/xutils_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/proxymngr_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/libdps1_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/xlibs-dbg_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/libdps-dev_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/xprt_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/libxaw6_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/libxaw7-dev_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/libxaw7-dbg_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/xserver-xfree86_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/xlibmesa3_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/xlibmesa-dev_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/libxaw6-dbg_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/xnest_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/xserver-common_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/twm_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/xlibosmesa3-dbg_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/lbxproxy_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/xbase-clients_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/xlibs-pic_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/xlibosmesa3_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/xlibs-dev_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/libxaw6-dev_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/xfwp_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/xterm_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/xmh_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/xdm_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/xfs_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/x-window-system-core_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/libxaw7_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/xlibs_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/xvfb_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/xlibmesa3-dbg_4.1.0-16woody6_sparc.deb stable/main/binary-sparc/xlibosmesa-dev_4.1.0-16woody6_sparc.deb xfree86 (4.1.0-16woody6) stable-security; urgency=high * Security update release. Resolves the following issue: + CAN-2005-0605: Xpm library's scan.c file may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow. (Closes: #298939) * Update patch #076 (XPM library security fixes) to revert regressions in functionality caused by overly aggressive validation of filespec strings in OpenReadFile() and OpenWriteFile(). (Fixes #286164 for woody.) stable/main/binary-s390/libxaw6_4.1.0-16woody6_s390.deb stable/main/binary-s390/xserver-common_4.1.0-16woody6_s390.deb stable/main/binary-s390/xfwp_4.1.0-16woody6_s390.deb stable/main/binary-s390/xmh_4.1.0-16woody6_s390.deb stable/main/binary-s390/libdps1_4.1.0-16woody6_s390.deb stable/main/binary-s390/twm_4.1.0-16woody6_s390.deb stable/main/binary-s390/xlibmesa3-dbg_4.1.0-16woody6_s390.deb stable/main/binary-s390/xvfb_4.1.0-16woody6_s390.deb stable/main/binary-s390/libxaw7-dev_4.1.0-16woody6_s390.deb stable/main/binary-s390/libdps-dev_4.1.0-16woody6_s390.deb stable/main/binary-s390/xutils_4.1.0-16woody6_s390.deb stable/main/binary-s390/xlibs-dbg_4.1.0-16woody6_s390.deb stable/main/binary-s390/xlibmesa3_4.1.0-16woody6_s390.deb stable/main/binary-s390/libxaw7_4.1.0-16woody6_s390.deb stable/main/binary-s390/xdm_4.1.0-16woody6_s390.deb stable/main/binary-s390/xlibs-dev_4.1.0-16woody6_s390.deb stable/main/binary-s390/x-window-system-core_4.1.0-16woody6_s390.deb stable/main/binary-s390/xterm_4.1.0-16woody6_s390.deb stable/main/binary-s390/xlibs_4.1.0-16woody6_s390.deb stable/main/binary-s390/xfs_4.1.0-16woody6_s390.deb stable/main/binary-s390/xnest_4.1.0-16woody6_s390.deb stable/main/binary-s390/lbxproxy_4.1.0-16woody6_s390.deb stable/main/binary-s390/libxaw7-dbg_4.1.0-16woody6_s390.deb stable/main/binary-s390/xprt_4.1.0-16woody6_s390.deb stable/main/binary-s390/libdps1-dbg_4.1.0-16woody6_s390.deb stable/main/binary-s390/proxymngr_4.1.0-16woody6_s390.deb stable/main/binary-s390/xbase-clients_4.1.0-16woody6_s390.deb stable/main/binary-s390/xlibmesa-dev_4.1.0-16woody6_s390.deb stable/main/binary-s390/xlibs-pic_4.1.0-16woody6_s390.deb stable/main/binary-s390/libxaw6-dbg_4.1.0-16woody6_s390.deb stable/main/binary-s390/libxaw6-dev_4.1.0-16woody6_s390.deb xfree86 (4.1.0-16woody6) stable-security; urgency=high * Security update release. Resolves the following issue: + CAN-2005-0605: Xpm library's scan.c file may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow. (Closes: #298939) * Update patch #076 (XPM library security fixes) to revert regressions in functionality caused by overly aggressive validation of filespec strings in OpenReadFile() and OpenWriteFile(). (Fixes #286164 for woody.) stable/main/binary-mipsel/xterm_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/x-window-system-core_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/xmh_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/xfwp_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/xlibs_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/libxaw7-dbg_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/xlibmesa-dev_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/xserver-common_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/libxaw6-dbg_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/xvfb_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/libxaw7_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/libdps-dev_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/xlibs-pic_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/xbase-clients_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/xlibs-dbg_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/xdm_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/libdps1_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/xserver-xfree86_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/twm_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/libdps1-dbg_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/proxymngr_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/xprt_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/xlibmesa3-dbg_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/libxaw7-dev_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/xfs_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/lbxproxy_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/libxaw6_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/xnest_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/xutils_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/xlibs-dev_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/xlibmesa3_4.1.0-16woody6_mipsel.deb stable/main/binary-mipsel/libxaw6-dev_4.1.0-16woody6_mipsel.deb xfree86 (4.1.0-16woody6) stable-security; urgency=high * Security update release. Resolves the following issue: + CAN-2005-0605: Xpm library's scan.c file may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow. (Closes: #298939) * Update patch #076 (XPM library security fixes) to revert regressions in functionality caused by overly aggressive validation of filespec strings in OpenReadFile() and OpenWriteFile(). (Fixes #286164 for woody.) stable/main/binary-mips/xterm_4.1.0-16woody6_mips.deb stable/main/binary-mips/xvfb_4.1.0-16woody6_mips.deb stable/main/binary-mips/twm_4.1.0-16woody6_mips.deb stable/main/binary-mips/xlibmesa3-dbg_4.1.0-16woody6_mips.deb stable/main/binary-mips/xdm_4.1.0-16woody6_mips.deb stable/main/binary-mips/xlibmesa3_4.1.0-16woody6_mips.deb stable/main/binary-mips/x-window-system-core_4.1.0-16woody6_mips.deb stable/main/binary-mips/proxymngr_4.1.0-16woody6_mips.deb stable/main/binary-mips/libxaw7-dev_4.1.0-16woody6_mips.deb stable/main/binary-mips/xmh_4.1.0-16woody6_mips.deb stable/main/binary-mips/xlibmesa-dev_4.1.0-16woody6_mips.deb stable/main/binary-mips/libxaw6_4.1.0-16woody6_mips.deb stable/main/binary-mips/libxaw7_4.1.0-16woody6_mips.deb stable/main/binary-mips/libxaw6-dbg_4.1.0-16woody6_mips.deb stable/main/binary-mips/xfwp_4.1.0-16woody6_mips.deb stable/main/binary-mips/xlibs_4.1.0-16woody6_mips.deb stable/main/binary-mips/xfs_4.1.0-16woody6_mips.deb stable/main/binary-mips/libdps-dev_4.1.0-16woody6_mips.deb stable/main/binary-mips/xlibs-pic_4.1.0-16woody6_mips.deb stable/main/binary-mips/xserver-common_4.1.0-16woody6_mips.deb stable/main/binary-mips/lbxproxy_4.1.0-16woody6_mips.deb stable/main/binary-mips/xlibs-dbg_4.1.0-16woody6_mips.deb stable/main/binary-mips/xutils_4.1.0-16woody6_mips.deb stable/main/binary-mips/libdps1_4.1.0-16woody6_mips.deb stable/main/binary-mips/xnest_4.1.0-16woody6_mips.deb stable/main/binary-mips/xserver-xfree86_4.1.0-16woody6_mips.deb stable/main/binary-mips/libxaw6-dev_4.1.0-16woody6_mips.deb stable/main/binary-mips/libxaw7-dbg_4.1.0-16woody6_mips.deb stable/main/binary-mips/libdps1-dbg_4.1.0-16woody6_mips.deb stable/main/binary-mips/xbase-clients_4.1.0-16woody6_mips.deb stable/main/binary-mips/xprt_4.1.0-16woody6_mips.deb stable/main/binary-mips/xlibs-dev_4.1.0-16woody6_mips.deb xfree86 (4.1.0-16woody6) stable-security; urgency=high * Security update release. Resolves the following issue: + CAN-2005-0605: Xpm library's scan.c file may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow. (Closes: #298939) * Update patch #076 (XPM library security fixes) to revert regressions in functionality caused by overly aggressive validation of filespec strings in OpenReadFile() and OpenWriteFile(). (Fixes #286164 for woody.) stable/main/binary-m68k/x-window-system-core_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/xbase-clients_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/xutils_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/xlibs-dbg_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/libdps1_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/xfwp_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/libdps-dev_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/xlibs-dev_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/xlibmesa3-dbg_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/libxaw7-dev_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/xlibs-pic_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/xserver-xfree86_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/xlibmesa3_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/xdm_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/xlibmesa-dev_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/libdps1-dbg_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/xterm_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/libxaw6-dbg_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/twm_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/xserver-common_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/lbxproxy_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/xvfb_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/libxaw6_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/xfs_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/xmh_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/libxaw7-dbg_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/libxaw6-dev_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/proxymngr_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/xprt_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/xnest_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/xlibs_4.1.0-16woody6_m68k.deb stable/main/binary-m68k/libxaw7_4.1.0-16woody6_m68k.deb xfree86 (4.1.0-16woody6) stable-security; urgency=high * Security update release. Resolves the following issue: + CAN-2005-0605: Xpm library's scan.c file may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow. (Closes: #298939) * Update patch #076 (XPM library security fixes) to revert regressions in functionality caused by overly aggressive validation of filespec strings in OpenReadFile() and OpenWriteFile(). (Fixes #286164 for woody.) stable/main/binary-ia64/xlibosmesa3-dbg_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/xlibmesa3_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/xvfb_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/xbase-clients_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/xserver-common_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/libdps-dev_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/xlibs-dbg_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/xdm_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/libxaw6-dev_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/libxaw7_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/libxaw7-dev_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/xfs_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/xlibmesa3-dbg_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/xlibosmesa3_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/xmh_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/xterm_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/xserver-xfree86_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/libxaw6_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/xfwp_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/xlibosmesa-dev_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/xnest_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/x-window-system-core_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/lbxproxy_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/xlibs-pic_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/libdps1-dbg_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/twm_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/xutils_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/xlibs-dev_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/proxymngr_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/libdps1_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/xlibmesa-dev_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/xprt_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/libxaw7-dbg_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/xlibs_4.1.0-16woody6_ia64.deb stable/main/binary-ia64/libxaw6-dbg_4.1.0-16woody6_ia64.deb xfree86 (4.1.0-16woody6) stable-security; urgency=high * Security update release. Resolves the following issue: + CAN-2005-0605: Xpm library's scan.c file may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow. (Closes: #298939) * Update patch #076 (XPM library security fixes) to revert regressions in functionality caused by overly aggressive validation of filespec strings in OpenReadFile() and OpenWriteFile(). (Fixes #286164 for woody.) stable/main/binary-i386/libxaw6-dbg_4.1.0-16woody6_i386.deb stable/main/binary-i386/libxaw7_4.1.0-16woody6_i386.deb stable/main/binary-i386/xlibosmesa3_4.1.0-16woody6_i386.deb stable/main/binary-i386/xlibmesa-dev_4.1.0-16woody6_i386.deb stable/main/binary-i386/libxaw7-dev_4.1.0-16woody6_i386.deb stable/main/binary-i386/xutils_4.1.0-16woody6_i386.deb stable/main/binary-i386/xlibmesa3-dbg_4.1.0-16woody6_i386.deb stable/main/binary-i386/libdps1-dbg_4.1.0-16woody6_i386.deb stable/main/binary-i386/xlibs-dbg_4.1.0-16woody6_i386.deb stable/main/binary-i386/xvfb_4.1.0-16woody6_i386.deb stable/main/binary-i386/libdps-dev_4.1.0-16woody6_i386.deb stable/main/binary-i386/xfs_4.1.0-16woody6_i386.deb stable/main/binary-i386/xfwp_4.1.0-16woody6_i386.deb stable/main/binary-i386/libdps1_4.1.0-16woody6_i386.deb stable/main/binary-i386/xlibosmesa3-dbg_4.1.0-16woody6_i386.deb stable/main/binary-i386/libxaw6_4.1.0-16woody6_i386.deb stable/main/binary-i386/lbxproxy_4.1.0-16woody6_i386.deb stable/main/binary-i386/xbase-clients_4.1.0-16woody6_i386.deb stable/main/binary-i386/xmh_4.1.0-16woody6_i386.deb stable/main/binary-i386/twm_4.1.0-16woody6_i386.deb stable/main/binary-i386/xserver-xfree86_4.1.0-16woody6_i386.deb stable/main/binary-i386/xprt_4.1.0-16woody6_i386.deb stable/main/binary-i386/xlibosmesa-dev_4.1.0-16woody6_i386.deb stable/main/binary-i386/libxaw7-dbg_4.1.0-16woody6_i386.deb stable/main/binary-i386/xlibs-pic_4.1.0-16woody6_i386.deb stable/main/binary-i386/x-window-system-core_4.1.0-16woody6_i386.deb stable/main/binary-i386/proxymngr_4.1.0-16woody6_i386.deb stable/main/binary-i386/xnest_4.1.0-16woody6_i386.deb stable/main/binary-i386/libxaw6-dev_4.1.0-16woody6_i386.deb stable/main/binary-i386/xlibmesa3_4.1.0-16woody6_i386.deb stable/main/binary-i386/xlibs-dev_4.1.0-16woody6_i386.deb stable/main/binary-i386/xdm_4.1.0-16woody6_i386.deb stable/main/binary-i386/xserver-common_4.1.0-16woody6_i386.deb stable/main/binary-i386/xterm_4.1.0-16woody6_i386.deb stable/main/binary-i386/xlibs_4.1.0-16woody6_i386.deb xfree86 (4.1.0-16woody6) stable-security; urgency=high * Security update release. Resolves the following issue: + CAN-2005-0605: Xpm library's scan.c file may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow. (Closes: #298939) * Update patch #076 (XPM library security fixes) to revert regressions in functionality caused by overly aggressive validation of filespec strings in OpenReadFile() and OpenWriteFile(). (Fixes #286164 for woody.) stable/main/binary-hppa/libdps-dev_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/xlibs_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/xlibs-dbg_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/xprt_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/xlibmesa3_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/xvfb_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/lbxproxy_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/libdps1_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/xserver-xfree86_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/libxaw7-dbg_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/libdps1-dbg_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/libxaw7_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/xserver-common_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/libxaw6_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/xfwp_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/xlibmesa3-dbg_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/xbase-clients_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/libxaw6-dev_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/twm_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/xlibmesa-dev_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/xterm_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/libxaw6-dbg_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/xmh_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/xutils_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/xdm_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/xnest_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/proxymngr_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/xlibs-dev_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/libxaw7-dev_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/x-window-system-core_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/xlibs-pic_4.1.0-16woody6_hppa.deb stable/main/binary-hppa/xfs_4.1.0-16woody6_hppa.deb xfree86 (4.1.0-16woody6) stable-security; urgency=high * Security update release. Resolves the following issue: + CAN-2005-0605: Xpm library's scan.c file may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow. (Closes: #298939) * Update patch #076 (XPM library security fixes) to revert regressions in functionality caused by overly aggressive validation of filespec strings in OpenReadFile() and OpenWriteFile(). (Fixes #286164 for woody.) stable/main/binary-arm/xnest_4.1.0-16woody6_arm.deb stable/main/binary-arm/libxaw7-dbg_4.1.0-16woody6_arm.deb stable/main/binary-arm/libxaw6-dbg_4.1.0-16woody6_arm.deb stable/main/binary-arm/xutils_4.1.0-16woody6_arm.deb stable/main/binary-arm/xserver-xfree86_4.1.0-16woody6_arm.deb stable/main/binary-arm/x-window-system-core_4.1.0-16woody6_arm.deb stable/main/binary-arm/xbase-clients_4.1.0-16woody6_arm.deb stable/main/binary-arm/libxaw6_4.1.0-16woody6_arm.deb stable/main/binary-arm/xserver-common_4.1.0-16woody6_arm.deb stable/main/binary-arm/lbxproxy_4.1.0-16woody6_arm.deb stable/main/binary-arm/xlibmesa-dev_4.1.0-16woody6_arm.deb stable/main/binary-arm/xvfb_4.1.0-16woody6_arm.deb stable/main/binary-arm/xlibs-dev_4.1.0-16woody6_arm.deb stable/main/binary-arm/xlibs-pic_4.1.0-16woody6_arm.deb stable/main/binary-arm/xlibmesa3-dbg_4.1.0-16woody6_arm.deb stable/main/binary-arm/proxymngr_4.1.0-16woody6_arm.deb stable/main/binary-arm/xdm_4.1.0-16woody6_arm.deb stable/main/binary-arm/xlibs_4.1.0-16woody6_arm.deb stable/main/binary-arm/libxaw7-dev_4.1.0-16woody6_arm.deb stable/main/binary-arm/libxaw6-dev_4.1.0-16woody6_arm.deb stable/main/binary-arm/xterm_4.1.0-16woody6_arm.deb stable/main/binary-arm/xprt_4.1.0-16woody6_arm.deb stable/main/binary-arm/xlibmesa3_4.1.0-16woody6_arm.deb stable/main/binary-arm/libxaw7_4.1.0-16woody6_arm.deb stable/main/binary-arm/xfs_4.1.0-16woody6_arm.deb stable/main/binary-arm/libdps1-dbg_4.1.0-16woody6_arm.deb stable/main/binary-arm/libdps1_4.1.0-16woody6_arm.deb stable/main/binary-arm/twm_4.1.0-16woody6_arm.deb stable/main/binary-arm/libdps-dev_4.1.0-16woody6_arm.deb stable/main/binary-arm/xlibs-dbg_4.1.0-16woody6_arm.deb stable/main/binary-arm/xmh_4.1.0-16woody6_arm.deb stable/main/binary-arm/xfwp_4.1.0-16woody6_arm.deb xfree86 (4.1.0-16woody6) stable-security; urgency=high * Security update release. Resolves the following issue: + CAN-2005-0605: Xpm library's scan.c file may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow. (Closes: #298939) * Update patch #076 (XPM library security fixes) to revert regressions in functionality caused by overly aggressive validation of filespec strings in OpenReadFile() and OpenWriteFile(). (Fixes #286164 for woody.) stable/main/binary-alpha/xvfb_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/xlibosmesa3-dbg_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/libdps-dev_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/libxaw7-dbg_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/xfs_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/xlibs-dbg_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/xlibmesa3_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/xlibosmesa-dev_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/lbxproxy_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/xlibosmesa3_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/libdps1_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/xbase-clients_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/x-window-system-core_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/xlibs-pic_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/xmh_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/xfwp_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/libdps1-dbg_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/libxaw6_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/twm_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/xserver-xfree86_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/xlibmesa3-dbg_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/xnest_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/libxaw7-dev_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/xutils_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/xlibs-dev_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/xlibs_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/libxaw7_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/libxaw6-dbg_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/libxaw6-dev_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/xlibmesa-dev_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/xserver-common_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/xterm_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/xdm_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/xprt_4.1.0-16woody6_alpha.deb stable/main/binary-alpha/proxymngr_4.1.0-16woody6_alpha.deb xfree86 (4.1.0-16woody6) stable-security; urgency=high * Security update release. Resolves the following issue: + CAN-2005-0605: Xpm library's scan.c file may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow. (Closes: #298939) * Update patch #076 (XPM library security fixes) to revert regressions in functionality caused by overly aggressive validation of filespec strings in OpenReadFile() and OpenWriteFile(). (Fixes #286164 for woody.) stable/main/binary-powerpc/xmh_4.1.0-16woody6_powerpc.deb stable/main/binary-powerpc/proxymngr_4.1.0-16woody6_powerpc.deb stable/main/binary-all/xspecs_4.1.0-16woody6_all.deb stable/main/binary-powerpc/libxaw6_4.1.0-16woody6_powerpc.deb stable/main/binary-all/xlib6g-dev_4.1.0-16woody6_all.deb stable/main/binary-powerpc/xfwp_4.1.0-16woody6_powerpc.deb stable/main/binary-all/xlib6g_4.1.0-16woody6_all.deb stable/main/binary-all/xfonts-75dpi_4.1.0-16woody6_all.deb stable/main/binary-powerpc/libdps1-dbg_4.1.0-16woody6_powerpc.deb stable/main/binary-powerpc/libdps-dev_4.1.0-16woody6_powerpc.deb stable/main/binary-all/xfonts-75dpi-transcoded_4.1.0-16woody6_all.deb stable/main/binary-powerpc/libxaw7-dev_4.1.0-16woody6_powerpc.deb stable/main/binary-powerpc/xserver-xfree86_4.1.0-16woody6_powerpc.deb stable/main/binary-powerpc/libxaw6-dev_4.1.0-16woody6_powerpc.deb stable/main/binary-powerpc/xlibmesa-dev_4.1.0-16woody6_powerpc.deb stable/main/binary-powerpc/xlibmesa3_4.1.0-16woody6_powerpc.deb stable/main/binary-powerpc/xlibs-dbg_4.1.0-16woody6_powerpc.deb stable/main/binary-all/xfonts-base_4.1.0-16woody6_all.deb stable/main/binary-powerpc/xserver-common_4.1.0-16woody6_powerpc.deb stable/main/binary-all/xfonts-scalable_4.1.0-16woody6_all.deb stable/main/binary-powerpc/xlibosmesa3-dbg_4.1.0-16woody6_powerpc.deb stable/main/binary-powerpc/xlibs-dev_4.1.0-16woody6_powerpc.deb stable/main/binary-powerpc/xfs_4.1.0-16woody6_powerpc.deb stable/main/binary-all/xfonts-base-transcoded_4.1.0-16woody6_all.deb stable/main/binary-powerpc/xutils_4.1.0-16woody6_powerpc.deb stable/main/binary-powerpc/xprt_4.1.0-16woody6_powerpc.deb stable/main/binary-powerpc/xlibosmesa-dev_4.1.0-16woody6_powerpc.deb stable/main/binary-powerpc/x-window-system-core_4.1.0-16woody6_powerpc.deb stable/main/binary-powerpc/xlibmesa3-dbg_4.1.0-16woody6_powerpc.deb stable/main/binary-all/xfonts-cyrillic_4.1.0-16woody6_all.deb stable/main/binary-powerpc/xdm_4.1.0-16woody6_powerpc.deb stable/main/binary-powerpc/xlibs_4.1.0-16woody6_powerpc.deb stable/main/binary-all/xfonts-100dpi-transcoded_4.1.0-16woody6_all.deb stable/main/binary-all/xfonts-pex_4.1.0-16woody6_all.deb stable/main/binary-all/xfree86-common_4.1.0-16woody6_all.deb stable/main/binary-powerpc/xlibs-pic_4.1.0-16woody6_powerpc.deb stable/main/binary-powerpc/xbase-clients_4.1.0-16woody6_powerpc.deb stable/main/binary-powerpc/libxaw7-dbg_4.1.0-16woody6_powerpc.deb stable/main/binary-powerpc/xnest_4.1.0-16woody6_powerpc.deb stable/main/binary-powerpc/twm_4.1.0-16woody6_powerpc.deb stable/main/binary-all/x-window-system_4.1.0-16woody6_all.deb stable/main/binary-powerpc/lbxproxy_4.1.0-16woody6_powerpc.deb stable/main/source/xfree86_4.1.0-16woody6.dsc stable/main/binary-all/xfonts-100dpi_4.1.0-16woody6_all.deb stable/main/binary-powerpc/xlibosmesa3_4.1.0-16woody6_powerpc.deb stable/main/binary-powerpc/libxaw7_4.1.0-16woody6_powerpc.deb stable/main/binary-powerpc/libdps1_4.1.0-16woody6_powerpc.deb stable/main/binary-powerpc/libxaw6-dbg_4.1.0-16woody6_powerpc.deb stable/main/binary-powerpc/xvfb_4.1.0-16woody6_powerpc.deb stable/main/source/xfree86_4.1.0-16woody6.diff.gz stable/main/binary-powerpc/xterm_4.1.0-16woody6_powerpc.deb xfree86 (4.1.0-16woody6) stable-security; urgency=high * Security update release. Resolves the following issue: + CAN-2005-0605: Xpm library's scan.c file may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow. (Closes: #298939) * Update patch #076 (XPM library security fixes) to revert regressions in functionality caused by overly aggressive validation of filespec strings in OpenReadFile() and OpenWriteFile(). (Fixes #286164 for woody.) stable/main/binary-sparc/vim_6.1.018-1woody1_sparc.deb stable/main/binary-sparc/vim-gtk_6.1.018-1woody1_sparc.deb stable/main/binary-sparc/vim-perl_6.1.018-1woody1_sparc.deb stable/main/binary-sparc/vim-tcl_6.1.018-1woody1_sparc.deb stable/main/binary-sparc/vim-python_6.1.018-1woody1_sparc.deb stable/main/binary-sparc/vim-ruby_6.1.018-1woody1_sparc.deb vim (6.1.018-1woody1) stable; urgency=medium * CAN-2004-1138: Backported and applied patch 6.3.045 which fixes several vulnerabilities related to the use of options in modelines. (closes: #286223) * CAN-2005-0069: Use mktemp instead of insecure $$ construction to create temporary files in vimspell.sh and tcltags. (closes: #289560, #291125) * Set maintainer address to project mailinglist on alioth and added myself to uploaders. stable/main/binary-s390/vim-tcl_6.1.018-1woody1_s390.deb stable/main/binary-s390/vim-perl_6.1.018-1woody1_s390.deb stable/main/binary-s390/vim_6.1.018-1woody1_s390.deb stable/main/binary-s390/vim-python_6.1.018-1woody1_s390.deb stable/main/binary-s390/vim-gtk_6.1.018-1woody1_s390.deb stable/main/binary-s390/vim-ruby_6.1.018-1woody1_s390.deb vim (6.1.018-1woody1) stable; urgency=medium * CAN-2004-1138: Backported and applied patch 6.3.045 which fixes several vulnerabilities related to the use of options in modelines. (closes: #286223) * CAN-2005-0069: Use mktemp instead of insecure $$ construction to create temporary files in vimspell.sh and tcltags. (closes: #289560, #291125) * Set maintainer address to project mailinglist on alioth and added myself to uploaders. stable/main/binary-powerpc/vim-tcl_6.1.018-1woody1_powerpc.deb stable/main/binary-powerpc/vim-perl_6.1.018-1woody1_powerpc.deb stable/main/binary-powerpc/vim-python_6.1.018-1woody1_powerpc.deb stable/main/binary-powerpc/vim-gtk_6.1.018-1woody1_powerpc.deb stable/main/binary-powerpc/vim-ruby_6.1.018-1woody1_powerpc.deb stable/main/binary-powerpc/vim_6.1.018-1woody1_powerpc.deb vim (6.1.018-1woody1) stable; urgency=medium * CAN-2004-1138: Backported and applied patch 6.3.045 which fixes several vulnerabilities related to the use of options in modelines. (closes: #286223) * CAN-2005-0069: Use mktemp instead of insecure $$ construction to create temporary files in vimspell.sh and tcltags. (closes: #289560, #291125) * Set maintainer address to project mailinglist on alioth and added myself to uploaders. stable/main/binary-mipsel/vim_6.1.018-1woody1_mipsel.deb stable/main/binary-mipsel/vim-ruby_6.1.018-1woody1_mipsel.deb stable/main/binary-mipsel/vim-gtk_6.1.018-1woody1_mipsel.deb stable/main/binary-mipsel/vim-python_6.1.018-1woody1_mipsel.deb stable/main/binary-mipsel/vim-perl_6.1.018-1woody1_mipsel.deb stable/main/binary-mipsel/vim-tcl_6.1.018-1woody1_mipsel.deb vim (6.1.018-1woody1) stable; urgency=medium * CAN-2004-1138: Backported and applied patch 6.3.045 which fixes several vulnerabilities related to the use of options in modelines. (closes: #286223) * CAN-2005-0069: Use mktemp instead of insecure $$ construction to create temporary files in vimspell.sh and tcltags. (closes: #289560, #291125) * Set maintainer address to project mailinglist on alioth and added myself to uploaders. stable/main/binary-mips/vim-python_6.1.018-1woody1_mips.deb stable/main/binary-mips/vim-gtk_6.1.018-1woody1_mips.deb stable/main/binary-mips/vim-ruby_6.1.018-1woody1_mips.deb stable/main/binary-mips/vim_6.1.018-1woody1_mips.deb stable/main/binary-mips/vim-tcl_6.1.018-1woody1_mips.deb stable/main/binary-mips/vim-perl_6.1.018-1woody1_mips.deb vim (6.1.018-1woody1) stable; urgency=medium * CAN-2004-1138: Backported and applied patch 6.3.045 which fixes several vulnerabilities related to the use of options in modelines. (closes: #286223) * CAN-2005-0069: Use mktemp instead of insecure $$ construction to create temporary files in vimspell.sh and tcltags. (closes: #289560, #291125) * Set maintainer address to project mailinglist on alioth and added myself to uploaders. stable/main/binary-m68k/vim-gtk_6.1.018-1woody1_m68k.deb stable/main/binary-m68k/vim-ruby_6.1.018-1woody1_m68k.deb stable/main/binary-m68k/vim-python_6.1.018-1woody1_m68k.deb stable/main/binary-m68k/vim-perl_6.1.018-1woody1_m68k.deb stable/main/binary-m68k/vim-tcl_6.1.018-1woody1_m68k.deb stable/main/binary-m68k/vim_6.1.018-1woody1_m68k.deb vim (6.1.018-1woody1) stable; urgency=medium * CAN-2004-1138: Backported and applied patch 6.3.045 which fixes several vulnerabilities related to the use of options in modelines. (closes: #286223) * CAN-2005-0069: Use mktemp instead of insecure $$ construction to create temporary files in vimspell.sh and tcltags. (closes: #289560, #291125) * Set maintainer address to project mailinglist on alioth and added myself to uploaders. stable/main/binary-ia64/vim-perl_6.1.018-1woody1_ia64.deb stable/main/binary-ia64/vim-tcl_6.1.018-1woody1_ia64.deb stable/main/binary-ia64/vim-python_6.1.018-1woody1_ia64.deb stable/main/binary-ia64/vim-gtk_6.1.018-1woody1_ia64.deb stable/main/binary-ia64/vim_6.1.018-1woody1_ia64.deb stable/main/binary-ia64/vim-ruby_6.1.018-1woody1_ia64.deb vim (6.1.018-1woody1) stable; urgency=medium * CAN-2004-1138: Backported and applied patch 6.3.045 which fixes several vulnerabilities related to the use of options in modelines. (closes: #286223) * CAN-2005-0069: Use mktemp instead of insecure $$ construction to create temporary files in vimspell.sh and tcltags. (closes: #289560, #291125) * Set maintainer address to project mailinglist on alioth and added myself to uploaders. stable/main/binary-hppa/vim-ruby_6.1.018-1woody1_hppa.deb stable/main/binary-hppa/vim-perl_6.1.018-1woody1_hppa.deb stable/main/binary-hppa/vim-tcl_6.1.018-1woody1_hppa.deb stable/main/binary-hppa/vim-python_6.1.018-1woody1_hppa.deb stable/main/binary-hppa/vim_6.1.018-1woody1_hppa.deb stable/main/binary-hppa/vim-gtk_6.1.018-1woody1_hppa.deb vim (6.1.018-1woody1) stable; urgency=medium * CAN-2004-1138: Backported and applied patch 6.3.045 which fixes several vulnerabilities related to the use of options in modelines. (closes: #286223) * CAN-2005-0069: Use mktemp instead of insecure $$ construction to create temporary files in vimspell.sh and tcltags. (closes: #289560, #291125) * Set maintainer address to project mailinglist on alioth and added myself to uploaders. stable/main/binary-arm/vim-python_6.1.018-1woody1_arm.deb stable/main/binary-arm/vim-tcl_6.1.018-1woody1_arm.deb stable/main/binary-arm/vim-gtk_6.1.018-1woody1_arm.deb stable/main/binary-arm/vim_6.1.018-1woody1_arm.deb stable/main/binary-arm/vim-perl_6.1.018-1woody1_arm.deb stable/main/binary-arm/vim-ruby_6.1.018-1woody1_arm.deb vim (6.1.018-1woody1) stable; urgency=medium * CAN-2004-1138: Backported and applied patch 6.3.045 which fixes several vulnerabilities related to the use of options in modelines. (closes: #286223) * CAN-2005-0069: Use mktemp instead of insecure $$ construction to create temporary files in vimspell.sh and tcltags. (closes: #289560, #291125) * Set maintainer address to project mailinglist on alioth and added myself to uploaders. stable/main/binary-alpha/vim-python_6.1.018-1woody1_alpha.deb stable/main/binary-alpha/vim-ruby_6.1.018-1woody1_alpha.deb stable/main/binary-alpha/vim_6.1.018-1woody1_alpha.deb stable/main/binary-alpha/vim-tcl_6.1.018-1woody1_alpha.deb stable/main/binary-alpha/vim-gtk_6.1.018-1woody1_alpha.deb stable/main/binary-alpha/vim-perl_6.1.018-1woody1_alpha.deb vim (6.1.018-1woody1) stable; urgency=medium * CAN-2004-1138: Backported and applied patch 6.3.045 which fixes several vulnerabilities related to the use of options in modelines. (closes: #286223) * CAN-2005-0069: Use mktemp instead of insecure $$ construction to create temporary files in vimspell.sh and tcltags. (closes: #289560, #291125) * Set maintainer address to project mailinglist on alioth and added myself to uploaders. stable/main/binary-i386/vim-perl_6.1.018-1woody1_i386.deb stable/main/binary-i386/vim-tcl_6.1.018-1woody1_i386.deb stable/main/source/vim_6.1.018-1woody1.diff.gz stable/main/binary-i386/vim_6.1.018-1woody1_i386.deb stable/main/binary-i386/vim-ruby_6.1.018-1woody1_i386.deb stable/main/binary-i386/vim-gtk_6.1.018-1woody1_i386.deb stable/main/binary-i386/vim-python_6.1.018-1woody1_i386.deb stable/main/source/vim_6.1.018.orig.tar.gz stable/main/source/vim_6.1.018-1woody1.dsc vim (6.1.018-1woody1) stable; urgency=medium * CAN-2004-1138: Backported and applied patch 6.3.045 which fixes several vulnerabilities related to the use of options in modelines. (closes: #286223) * CAN-2005-0069: Use mktemp instead of insecure $$ construction to create temporary files in vimspell.sh and tcltags. (closes: #289560, #291125) * Set maintainer address to project mailinglist on alioth and added myself to uploaders. stable/main/binary-sparc/ssmtp_2.50.6.3_sparc.deb ssmtp (2.50.6.3) stable; urgency=medium * Reapplied patch to version 2.50.6.1. Fixes security RC bug "ssmtp mangles messages in transit" found by Michelle Konzack , closes: #298054. Patch by Jeff King . stable/main/binary-s390/ssmtp_2.50.6.3_s390.deb ssmtp (2.50.6.3) stable; urgency=medium * Reapplied patch to version 2.50.6.1. Fixes security RC bug "ssmtp mangles messages in transit" found by Michelle Konzack , closes: #298054. Patch by Jeff King . stable/main/binary-powerpc/ssmtp_2.50.6.3_powerpc.deb ssmtp (2.50.6.3) stable; urgency=medium * Reapplied patch to version 2.50.6.1. Fixes security RC bug "ssmtp mangles messages in transit" found by Michelle Konzack , closes: #298054. Patch by Jeff King . stable/main/binary-mipsel/ssmtp_2.50.6.3_mipsel.deb ssmtp (2.50.6.3) stable; urgency=medium * Reapplied patch to version 2.50.6.1. Fixes security RC bug "ssmtp mangles messages in transit" found by Michelle Konzack , closes: #298054. Patch by Jeff King . stable/main/binary-mips/ssmtp_2.50.6.3_mips.deb ssmtp (2.50.6.3) stable; urgency=medium * Reapplied patch to version 2.50.6.1. Fixes security RC bug "ssmtp mangles messages in transit" found by Michelle Konzack , closes: #298054. Patch by Jeff King . stable/main/binary-m68k/ssmtp_2.50.6.3_m68k.deb ssmtp (2.50.6.3) stable; urgency=medium * Reapplied patch to version 2.50.6.1. Fixes security RC bug "ssmtp mangles messages in transit" found by Michelle Konzack , closes: #298054. Patch by Jeff King . stable/main/binary-ia64/ssmtp_2.50.6.3_ia64.deb ssmtp (2.50.6.3) stable; urgency=medium * Reapplied patch to version 2.50.6.1. Fixes security RC bug "ssmtp mangles messages in transit" found by Michelle Konzack , closes: #298054. Patch by Jeff King . stable/main/binary-hppa/ssmtp_2.50.6.3_hppa.deb ssmtp (2.50.6.3) stable; urgency=medium * Reapplied patch to version 2.50.6.1. Fixes security RC bug "ssmtp mangles messages in transit" found by Michelle Konzack , closes: #298054. Patch by Jeff King . stable/main/binary-arm/ssmtp_2.50.6.3_arm.deb ssmtp (2.50.6.3) stable; urgency=medium * Reapplied patch to version 2.50.6.1. Fixes security RC bug "ssmtp mangles messages in transit" found by Michelle Konzack , closes: #298054. Patch by Jeff King . stable/main/binary-alpha/ssmtp_2.50.6.3_alpha.deb ssmtp (2.50.6.3) stable; urgency=medium * Reapplied patch to version 2.50.6.1. Fixes security RC bug "ssmtp mangles messages in transit" found by Michelle Konzack , closes: #298054. Patch by Jeff King . stable/main/source/ssmtp_2.50.6.3.dsc stable/main/source/ssmtp_2.50.6.3.tar.gz stable/main/binary-i386/ssmtp_2.50.6.3_i386.deb ssmtp (2.50.6.3) stable; urgency=medium * Reapplied patch to version 2.50.6.1. Fixes security RC bug "ssmtp mangles messages in transit" found by Michelle Konzack , closes: #298054. Patch by Jeff King . stable/main/binary-sparc/squid-cgi_2.4.6-2woody8_sparc.deb stable/main/binary-sparc/squidclient_2.4.6-2woody8_sparc.deb stable/main/binary-sparc/squid_2.4.6-2woody8_sparc.deb squid (2.4.6-2woody8) stable-security; urgency=high * Upload to stable-security because of security issues * Added upstream patch for missing checks on incomplete ACLs o squid-2.5.STABLE9-acl_error.patch o src/acl.c, src/cache_cf.c, src/tools.c, CAN-2005-1345 stable/main/binary-s390/squid-cgi_2.4.6-2woody8_s390.deb stable/main/binary-s390/squidclient_2.4.6-2woody8_s390.deb stable/main/binary-s390/squid_2.4.6-2woody8_s390.deb squid (2.4.6-2woody8) stable-security; urgency=high * Upload to stable-security because of security issues * Added upstream patch for missing checks on incomplete ACLs o squid-2.5.STABLE9-acl_error.patch o src/acl.c, src/cache_cf.c, src/tools.c, CAN-2005-1345 stable/main/binary-powerpc/squid-cgi_2.4.6-2woody8_powerpc.deb stable/main/binary-powerpc/squid_2.4.6-2woody8_powerpc.deb stable/main/binary-powerpc/squidclient_2.4.6-2woody8_powerpc.deb squid (2.4.6-2woody8) stable-security; urgency=high * Upload to stable-security because of security issues * Added upstream patch for missing checks on incomplete ACLs o squid-2.5.STABLE9-acl_error.patch o src/acl.c, src/cache_cf.c, src/tools.c, CAN-2005-1345 stable/main/binary-mipsel/squid_2.4.6-2woody8_mipsel.deb stable/main/binary-mipsel/squidclient_2.4.6-2woody8_mipsel.deb stable/main/binary-mipsel/squid-cgi_2.4.6-2woody8_mipsel.deb squid (2.4.6-2woody8) stable-security; urgency=high * Upload to stable-security because of security issues * Added upstream patch for missing checks on incomplete ACLs o squid-2.5.STABLE9-acl_error.patch o src/acl.c, src/cache_cf.c, src/tools.c, CAN-2005-1345 stable/main/binary-mips/squid-cgi_2.4.6-2woody8_mips.deb stable/main/binary-mips/squid_2.4.6-2woody8_mips.deb stable/main/binary-mips/squidclient_2.4.6-2woody8_mips.deb squid (2.4.6-2woody8) stable-security; urgency=high * Upload to stable-security because of security issues * Added upstream patch for missing checks on incomplete ACLs o squid-2.5.STABLE9-acl_error.patch o src/acl.c, src/cache_cf.c, src/tools.c, CAN-2005-1345 stable/main/binary-m68k/squid-cgi_2.4.6-2woody8_m68k.deb stable/main/binary-m68k/squidclient_2.4.6-2woody8_m68k.deb stable/main/binary-m68k/squid_2.4.6-2woody8_m68k.deb squid (2.4.6-2woody8) stable-security; urgency=high * Upload to stable-security because of security issues * Added upstream patch for missing checks on incomplete ACLs o squid-2.5.STABLE9-acl_error.patch o src/acl.c, src/cache_cf.c, src/tools.c, CAN-2005-1345 stable/main/binary-ia64/squid_2.4.6-2woody8_ia64.deb stable/main/binary-ia64/squidclient_2.4.6-2woody8_ia64.deb stable/main/binary-ia64/squid-cgi_2.4.6-2woody8_ia64.deb squid (2.4.6-2woody8) stable-security; urgency=high * Upload to stable-security because of security issues * Added upstream patch for missing checks on incomplete ACLs o squid-2.5.STABLE9-acl_error.patch o src/acl.c, src/cache_cf.c, src/tools.c, CAN-2005-1345 stable/main/binary-hppa/squid-cgi_2.4.6-2woody8_hppa.deb stable/main/binary-hppa/squid_2.4.6-2woody8_hppa.deb stable/main/binary-hppa/squidclient_2.4.6-2woody8_hppa.deb squid (2.4.6-2woody8) stable-security; urgency=high * Upload to stable-security because of security issues * Added upstream patch for missing checks on incomplete ACLs o squid-2.5.STABLE9-acl_error.patch o src/acl.c, src/cache_cf.c, src/tools.c, CAN-2005-1345 stable/main/binary-arm/squidclient_2.4.6-2woody8_arm.deb stable/main/binary-arm/squid_2.4.6-2woody8_arm.deb stable/main/binary-arm/squid-cgi_2.4.6-2woody8_arm.deb squid (2.4.6-2woody8) stable-security; urgency=high * Upload to stable-security because of security issues * Added upstream patch for missing checks on incomplete ACLs o squid-2.5.STABLE9-acl_error.patch o src/acl.c, src/cache_cf.c, src/tools.c, CAN-2005-1345 stable/main/binary-alpha/squid-cgi_2.4.6-2woody8_alpha.deb stable/main/binary-alpha/squidclient_2.4.6-2woody8_alpha.deb stable/main/binary-alpha/squid_2.4.6-2woody8_alpha.deb squid (2.4.6-2woody8) stable-security; urgency=high * Upload to stable-security because of security issues * Added upstream patch for missing checks on incomplete ACLs o squid-2.5.STABLE9-acl_error.patch o src/acl.c, src/cache_cf.c, src/tools.c, CAN-2005-1345 stable/main/binary-i386/squidclient_2.4.6-2woody8_i386.deb stable/main/source/squid_2.4.6-2woody8.diff.gz stable/main/binary-i386/squid_2.4.6-2woody8_i386.deb stable/main/source/squid_2.4.6-2woody8.dsc stable/main/binary-i386/squid-cgi_2.4.6-2woody8_i386.deb squid (2.4.6-2woody8) stable-security; urgency=high * Upload to stable-security because of security issues * Added upstream patch for missing checks on incomplete ACLs o squid-2.5.STABLE9-acl_error.patch o src/acl.c, src/cache_cf.c, src/tools.c, CAN-2005-1345 stable/main/binary-sparc/smartlist_3.15-5.woody.1_sparc.deb smartlist (3.15-5.woody.1) stable-security; urgency=low * Fixed dangerous use of multigram in the subscribing code. A valid cookie could be used to subscribe an address which is not the one in the cookie. This is CAN-2005-0157. stable/main/binary-s390/smartlist_3.15-5.woody.1_s390.deb smartlist (3.15-5.woody.1) stable-security; urgency=low * Fixed dangerous use of multigram in the subscribing code. A valid cookie could be used to subscribe an address which is not the one in the cookie. This is CAN-2005-0157. stable/main/binary-powerpc/smartlist_3.15-5.woody.1_powerpc.deb smartlist (3.15-5.woody.1) stable-security; urgency=low * Fixed dangerous use of multigram in the subscribing code. A valid cookie could be used to subscribe an address which is not the one in the cookie. This is CAN-2005-0157. stable/main/binary-mipsel/smartlist_3.15-5.woody.1_mipsel.deb smartlist (3.15-5.woody.1) stable-security; urgency=low * Fixed dangerous use of multigram in the subscribing code. A valid cookie could be used to subscribe an address which is not the one in the cookie. This is CAN-2005-0157. stable/main/binary-mips/smartlist_3.15-5.woody.1_mips.deb smartlist (3.15-5.woody.1) stable-security; urgency=low * Fixed dangerous use of multigram in the subscribing code. A valid cookie could be used to subscribe an address which is not the one in the cookie. This is CAN-2005-0157. stable/main/binary-m68k/smartlist_3.15-5.woody.1_m68k.deb smartlist (3.15-5.woody.1) stable-security; urgency=low * Fixed dangerous use of multigram in the subscribing code. A valid cookie could be used to subscribe an address which is not the one in the cookie. This is CAN-2005-0157. stable/main/binary-ia64/smartlist_3.15-5.woody.1_ia64.deb smartlist (3.15-5.woody.1) stable-security; urgency=low * Fixed dangerous use of multigram in the subscribing code. A valid cookie could be used to subscribe an address which is not the one in the cookie. This is CAN-2005-0157. stable/main/binary-hppa/smartlist_3.15-5.woody.1_hppa.deb smartlist (3.15-5.woody.1) stable-security; urgency=low * Fixed dangerous use of multigram in the subscribing code. A valid cookie could be used to subscribe an address which is not the one in the cookie. This is CAN-2005-0157. stable/main/binary-arm/smartlist_3.15-5.woody.1_arm.deb smartlist (3.15-5.woody.1) stable-security; urgency=low * Fixed dangerous use of multigram in the subscribing code. A valid cookie could be used to subscribe an address which is not the one in the cookie. This is CAN-2005-0157. stable/main/binary-alpha/smartlist_3.15-5.woody.1_alpha.deb smartlist (3.15-5.woody.1) stable-security; urgency=low * Fixed dangerous use of multigram in the subscribing code. A valid cookie could be used to subscribe an address which is not the one in the cookie. This is CAN-2005-0157. stable/main/binary-i386/smartlist_3.15-5.woody.1_i386.deb stable/main/source/smartlist_3.15-5.woody.1.dsc stable/main/source/smartlist_3.15-5.woody.1.diff.gz smartlist (3.15-5.woody.1) stable-security; urgency=low * Fixed dangerous use of multigram in the subscribing code. A valid cookie could be used to subscribe an address which is not the one in the cookie. This is CAN-2005-0157. stable/main/binary-sparc/smail_3.2.0.114-4woody1_sparc.deb smail (3.2.0.114-4woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from the discoverer to fix a buffer overflow [src/addr.c, CAN-2005-0892] stable/main/binary-s390/smail_3.2.0.114-4woody1_s390.deb smail (3.2.0.114-4woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from the discoverer to fix a buffer overflow [src/addr.c, CAN-2005-0892] stable/main/binary-powerpc/smail_3.2.0.114-4woody1_powerpc.deb smail (3.2.0.114-4woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from the discoverer to fix a buffer overflow [src/addr.c, CAN-2005-0892] stable/main/binary-mipsel/smail_3.2.0.114-4woody1_mipsel.deb smail (3.2.0.114-4woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from the discoverer to fix a buffer overflow [src/addr.c, CAN-2005-0892] stable/main/binary-mips/smail_3.2.0.114-4woody1_mips.deb smail (3.2.0.114-4woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from the discoverer to fix a buffer overflow [src/addr.c, CAN-2005-0892] stable/main/binary-m68k/smail_3.2.0.114-4woody1_m68k.deb smail (3.2.0.114-4woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from the discoverer to fix a buffer overflow [src/addr.c, CAN-2005-0892] stable/main/binary-ia64/smail_3.2.0.114-4woody1_ia64.deb smail (3.2.0.114-4woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from the discoverer to fix a buffer overflow [src/addr.c, CAN-2005-0892] stable/main/binary-hppa/smail_3.2.0.114-4woody1_hppa.deb smail (3.2.0.114-4woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from the discoverer to fix a buffer overflow [src/addr.c, CAN-2005-0892] stable/main/binary-arm/smail_3.2.0.114-4woody1_arm.deb smail (3.2.0.114-4woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from the discoverer to fix a buffer overflow [src/addr.c, CAN-2005-0892] stable/main/binary-alpha/smail_3.2.0.114-4woody1_alpha.deb smail (3.2.0.114-4woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from the discoverer to fix a buffer overflow [src/addr.c, CAN-2005-0892] stable/main/binary-i386/smail_3.2.0.114-4woody1_i386.deb stable/main/source/smail_3.2.0.114-4woody1.dsc stable/main/source/smail_3.2.0.114-4woody1.diff.gz smail (3.2.0.114-4woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from the discoverer to fix a buffer overflow [src/addr.c, CAN-2005-0892] stable/main/binary-sparc/swat_2.2.3a-15_sparc.deb stable/main/binary-sparc/winbind_2.2.3a-15_sparc.deb stable/main/binary-sparc/samba-common_2.2.3a-15_sparc.deb stable/main/binary-sparc/libsmbclient-dev_2.2.3a-15_sparc.deb stable/main/binary-sparc/smbclient_2.2.3a-15_sparc.deb stable/main/binary-sparc/libpam-smbpass_2.2.3a-15_sparc.deb stable/main/binary-sparc/libsmbclient_2.2.3a-15_sparc.deb stable/main/binary-sparc/samba_2.2.3a-15_sparc.deb stable/main/binary-sparc/smbfs_2.2.3a-15_sparc.deb samba (2.2.3a-15) stable-security; urgency=medium * Acknowledge the Security Team's NMUs; thanks again for all your work, Joey. * Fix a rounding error introduced in the patch to bitmap_alloc() that causes crashes on reload. Closes: #302378. [src/bitmap.c] stable/main/binary-s390/smbclient_2.2.3a-15_s390.deb stable/main/binary-s390/samba_2.2.3a-15_s390.deb stable/main/binary-s390/samba-common_2.2.3a-15_s390.deb stable/main/binary-s390/libpam-smbpass_2.2.3a-15_s390.deb stable/main/binary-s390/libsmbclient_2.2.3a-15_s390.deb stable/main/binary-s390/libsmbclient-dev_2.2.3a-15_s390.deb stable/main/binary-s390/swat_2.2.3a-15_s390.deb stable/main/binary-s390/winbind_2.2.3a-15_s390.deb stable/main/binary-s390/smbfs_2.2.3a-15_s390.deb samba (2.2.3a-15) stable-security; urgency=medium * Acknowledge the Security Team's NMUs; thanks again for all your work, Joey. * Fix a rounding error introduced in the patch to bitmap_alloc() that causes crashes on reload. Closes: #302378. [src/bitmap.c] stable/main/binary-powerpc/winbind_2.2.3a-15_powerpc.deb stable/main/binary-powerpc/samba_2.2.3a-15_powerpc.deb stable/main/binary-powerpc/libpam-smbpass_2.2.3a-15_powerpc.deb stable/main/binary-powerpc/samba-common_2.2.3a-15_powerpc.deb stable/main/binary-powerpc/libsmbclient_2.2.3a-15_powerpc.deb stable/main/binary-powerpc/smbclient_2.2.3a-15_powerpc.deb stable/main/binary-powerpc/swat_2.2.3a-15_powerpc.deb stable/main/binary-powerpc/libsmbclient-dev_2.2.3a-15_powerpc.deb stable/main/binary-powerpc/smbfs_2.2.3a-15_powerpc.deb samba (2.2.3a-15) stable-security; urgency=medium * Acknowledge the Security Team's NMUs; thanks again for all your work, Joey. * Fix a rounding error introduced in the patch to bitmap_alloc() that causes crashes on reload. Closes: #302378. [src/bitmap.c] stable/main/binary-mipsel/smbfs_2.2.3a-15_mipsel.deb stable/main/binary-mipsel/samba-common_2.2.3a-15_mipsel.deb stable/main/binary-mipsel/smbclient_2.2.3a-15_mipsel.deb stable/main/binary-mipsel/libsmbclient-dev_2.2.3a-15_mipsel.deb stable/main/binary-mipsel/swat_2.2.3a-15_mipsel.deb stable/main/binary-mipsel/libsmbclient_2.2.3a-15_mipsel.deb stable/main/binary-mipsel/libpam-smbpass_2.2.3a-15_mipsel.deb stable/main/binary-mipsel/winbind_2.2.3a-15_mipsel.deb stable/main/binary-mipsel/samba_2.2.3a-15_mipsel.deb samba (2.2.3a-15) stable-security; urgency=medium * Acknowledge the Security Team's NMUs; thanks again for all your work, Joey. * Fix a rounding error introduced in the patch to bitmap_alloc() that causes crashes on reload. Closes: #302378. [src/bitmap.c] stable/main/binary-mips/swat_2.2.3a-15_mips.deb stable/main/binary-mips/smbfs_2.2.3a-15_mips.deb stable/main/binary-mips/samba-common_2.2.3a-15_mips.deb stable/main/binary-mips/libsmbclient_2.2.3a-15_mips.deb stable/main/binary-mips/libsmbclient-dev_2.2.3a-15_mips.deb stable/main/binary-mips/smbclient_2.2.3a-15_mips.deb stable/main/binary-mips/winbind_2.2.3a-15_mips.deb stable/main/binary-mips/libpam-smbpass_2.2.3a-15_mips.deb stable/main/binary-mips/samba_2.2.3a-15_mips.deb samba (2.2.3a-15) stable-security; urgency=medium * Acknowledge the Security Team's NMUs; thanks again for all your work, Joey. * Fix a rounding error introduced in the patch to bitmap_alloc() that causes crashes on reload. Closes: #302378. [src/bitmap.c] stable/main/binary-m68k/winbind_2.2.3a-15_m68k.deb stable/main/binary-m68k/libsmbclient-dev_2.2.3a-15_m68k.deb stable/main/binary-m68k/samba-common_2.2.3a-15_m68k.deb stable/main/binary-m68k/libsmbclient_2.2.3a-15_m68k.deb stable/main/binary-m68k/smbclient_2.2.3a-15_m68k.deb stable/main/binary-m68k/smbfs_2.2.3a-15_m68k.deb stable/main/binary-m68k/swat_2.2.3a-15_m68k.deb stable/main/binary-m68k/samba_2.2.3a-15_m68k.deb stable/main/binary-m68k/libpam-smbpass_2.2.3a-15_m68k.deb samba (2.2.3a-15) stable-security; urgency=medium * Acknowledge the Security Team's NMUs; thanks again for all your work, Joey. * Fix a rounding error introduced in the patch to bitmap_alloc() that causes crashes on reload. Closes: #302378. [src/bitmap.c] stable/main/binary-ia64/smbclient_2.2.3a-15_ia64.deb stable/main/binary-ia64/smbfs_2.2.3a-15_ia64.deb stable/main/binary-ia64/samba_2.2.3a-15_ia64.deb stable/main/binary-ia64/libpam-smbpass_2.2.3a-15_ia64.deb stable/main/binary-ia64/libsmbclient_2.2.3a-15_ia64.deb stable/main/binary-ia64/libsmbclient-dev_2.2.3a-15_ia64.deb stable/main/binary-ia64/swat_2.2.3a-15_ia64.deb stable/main/binary-ia64/winbind_2.2.3a-15_ia64.deb stable/main/binary-ia64/samba-common_2.2.3a-15_ia64.deb samba (2.2.3a-15) stable-security; urgency=medium * Acknowledge the Security Team's NMUs; thanks again for all your work, Joey. * Fix a rounding error introduced in the patch to bitmap_alloc() that causes crashes on reload. Closes: #302378. [src/bitmap.c] stable/main/binary-i386/samba_2.2.3a-15_i386.deb stable/main/binary-i386/winbind_2.2.3a-15_i386.deb stable/main/binary-i386/libsmbclient_2.2.3a-15_i386.deb stable/main/binary-i386/swat_2.2.3a-15_i386.deb stable/main/binary-i386/libsmbclient-dev_2.2.3a-15_i386.deb stable/main/binary-i386/libpam-smbpass_2.2.3a-15_i386.deb stable/main/binary-i386/samba-common_2.2.3a-15_i386.deb stable/main/binary-i386/smbclient_2.2.3a-15_i386.deb stable/main/binary-i386/smbfs_2.2.3a-15_i386.deb samba (2.2.3a-15) stable-security; urgency=medium * Acknowledge the Security Team's NMUs; thanks again for all your work, Joey. * Fix a rounding error introduced in the patch to bitmap_alloc() that causes crashes on reload. Closes: #302378. [src/bitmap.c] stable/main/binary-hppa/swat_2.2.3a-15_hppa.deb stable/main/binary-hppa/libsmbclient_2.2.3a-15_hppa.deb stable/main/binary-hppa/samba_2.2.3a-15_hppa.deb stable/main/binary-hppa/smbfs_2.2.3a-15_hppa.deb stable/main/binary-hppa/libpam-smbpass_2.2.3a-15_hppa.deb stable/main/binary-hppa/libsmbclient-dev_2.2.3a-15_hppa.deb stable/main/binary-hppa/samba-common_2.2.3a-15_hppa.deb stable/main/binary-hppa/smbclient_2.2.3a-15_hppa.deb stable/main/binary-hppa/winbind_2.2.3a-15_hppa.deb samba (2.2.3a-15) stable-security; urgency=medium * Acknowledge the Security Team's NMUs; thanks again for all your work, Joey. * Fix a rounding error introduced in the patch to bitmap_alloc() that causes crashes on reload. Closes: #302378. [src/bitmap.c] stable/main/binary-alpha/smbclient_2.2.3a-15_alpha.deb stable/main/binary-alpha/smbfs_2.2.3a-15_alpha.deb stable/main/binary-alpha/libsmbclient-dev_2.2.3a-15_alpha.deb stable/main/binary-alpha/libpam-smbpass_2.2.3a-15_alpha.deb stable/main/binary-alpha/samba_2.2.3a-15_alpha.deb stable/main/binary-alpha/winbind_2.2.3a-15_alpha.deb stable/main/binary-alpha/libsmbclient_2.2.3a-15_alpha.deb stable/main/binary-alpha/swat_2.2.3a-15_alpha.deb stable/main/binary-alpha/samba-common_2.2.3a-15_alpha.deb samba (2.2.3a-15) stable-security; urgency=medium * Acknowledge the Security Team's NMUs; thanks again for all your work, Joey. * Fix a rounding error introduced in the patch to bitmap_alloc() that causes crashes on reload. Closes: #302378. [src/bitmap.c] stable/main/binary-arm/smbclient_2.2.3a-15_arm.deb stable/main/binary-arm/samba_2.2.3a-15_arm.deb stable/main/binary-arm/samba-common_2.2.3a-15_arm.deb stable/main/source/samba_2.2.3a-15.diff.gz stable/main/binary-arm/swat_2.2.3a-15_arm.deb stable/main/binary-arm/libsmbclient_2.2.3a-15_arm.deb stable/main/binary-arm/libsmbclient-dev_2.2.3a-15_arm.deb stable/main/binary-arm/libpam-smbpass_2.2.3a-15_arm.deb stable/main/binary-arm/smbfs_2.2.3a-15_arm.deb stable/main/binary-arm/winbind_2.2.3a-15_arm.deb stable/main/source/samba_2.2.3a-15.dsc stable/main/binary-all/samba-doc_2.2.3a-15_all.deb samba (2.2.3a-15) stable-security; urgency=medium * Acknowledge the Security Team's NMUs; thanks again for all your work, Joey. * Fix a rounding error introduced in the patch to bitmap_alloc() that causes crashes on reload. Closes: #302378. [src/bitmap.c] stable/main/binary-sparc/qpopper_4.0.4-2.woody.5_sparc.deb stable/main/binary-sparc/qpopper-drac_4.0.4-2.woody.5_sparc.deb qpopper (4.0.4-2.woody.5) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix unauthorised file read access [popper/pop_config.c, CAN-2005-1151] * Backported upstream patch to fix unauthorised file write access [popper/popauth.c, CAN-2005-1151] * Applied upstream patch to ensure that no group- or world-readable files are created [popper/popauth.c, CAN-2005-1152] stable/main/binary-s390/qpopper_4.0.4-2.woody.5_s390.deb stable/main/binary-s390/qpopper-drac_4.0.4-2.woody.5_s390.deb qpopper (4.0.4-2.woody.5) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix unauthorised file read access [popper/pop_config.c, CAN-2005-1151] * Backported upstream patch to fix unauthorised file write access [popper/popauth.c, CAN-2005-1151] * Applied upstream patch to ensure that no group- or world-readable files are created [popper/popauth.c, CAN-2005-1152] stable/main/binary-powerpc/qpopper_4.0.4-2.woody.5_powerpc.deb stable/main/binary-powerpc/qpopper-drac_4.0.4-2.woody.5_powerpc.deb qpopper (4.0.4-2.woody.5) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix unauthorised file read access [popper/pop_config.c, CAN-2005-1151] * Backported upstream patch to fix unauthorised file write access [popper/popauth.c, CAN-2005-1151] * Applied upstream patch to ensure that no group- or world-readable files are created [popper/popauth.c, CAN-2005-1152] stable/main/binary-mipsel/qpopper_4.0.4-2.woody.5_mipsel.deb stable/main/binary-mipsel/qpopper-drac_4.0.4-2.woody.5_mipsel.deb qpopper (4.0.4-2.woody.5) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix unauthorised file read access [popper/pop_config.c, CAN-2005-1151] * Backported upstream patch to fix unauthorised file write access [popper/popauth.c, CAN-2005-1151] * Applied upstream patch to ensure that no group- or world-readable files are created [popper/popauth.c, CAN-2005-1152] stable/main/binary-mips/qpopper_4.0.4-2.woody.5_mips.deb stable/main/binary-mips/qpopper-drac_4.0.4-2.woody.5_mips.deb qpopper (4.0.4-2.woody.5) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix unauthorised file read access [popper/pop_config.c, CAN-2005-1151] * Backported upstream patch to fix unauthorised file write access [popper/popauth.c, CAN-2005-1151] * Applied upstream patch to ensure that no group- or world-readable files are created [popper/popauth.c, CAN-2005-1152] stable/main/binary-m68k/qpopper-drac_4.0.4-2.woody.5_m68k.deb stable/main/binary-m68k/qpopper_4.0.4-2.woody.5_m68k.deb qpopper (4.0.4-2.woody.5) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix unauthorised file read access [popper/pop_config.c, CAN-2005-1151] * Backported upstream patch to fix unauthorised file write access [popper/popauth.c, CAN-2005-1151] * Applied upstream patch to ensure that no group- or world-readable files are created [popper/popauth.c, CAN-2005-1152] stable/main/binary-ia64/qpopper_4.0.4-2.woody.5_ia64.deb stable/main/binary-ia64/qpopper-drac_4.0.4-2.woody.5_ia64.deb qpopper (4.0.4-2.woody.5) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix unauthorised file read access [popper/pop_config.c, CAN-2005-1151] * Backported upstream patch to fix unauthorised file write access [popper/popauth.c, CAN-2005-1151] * Applied upstream patch to ensure that no group- or world-readable files are created [popper/popauth.c, CAN-2005-1152] stable/main/binary-hppa/qpopper_4.0.4-2.woody.5_hppa.deb stable/main/binary-hppa/qpopper-drac_4.0.4-2.woody.5_hppa.deb qpopper (4.0.4-2.woody.5) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix unauthorised file read access [popper/pop_config.c, CAN-2005-1151] * Backported upstream patch to fix unauthorised file write access [popper/popauth.c, CAN-2005-1151] * Applied upstream patch to ensure that no group- or world-readable files are created [popper/popauth.c, CAN-2005-1152] stable/main/binary-arm/qpopper-drac_4.0.4-2.woody.5_arm.deb stable/main/binary-arm/qpopper_4.0.4-2.woody.5_arm.deb qpopper (4.0.4-2.woody.5) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix unauthorised file read access [popper/pop_config.c, CAN-2005-1151] * Backported upstream patch to fix unauthorised file write access [popper/popauth.c, CAN-2005-1151] * Applied upstream patch to ensure that no group- or world-readable files are created [popper/popauth.c, CAN-2005-1152] stable/main/binary-alpha/qpopper-drac_4.0.4-2.woody.5_alpha.deb stable/main/binary-alpha/qpopper_4.0.4-2.woody.5_alpha.deb qpopper (4.0.4-2.woody.5) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix unauthorised file read access [popper/pop_config.c, CAN-2005-1151] * Backported upstream patch to fix unauthorised file write access [popper/popauth.c, CAN-2005-1151] * Applied upstream patch to ensure that no group- or world-readable files are created [popper/popauth.c, CAN-2005-1152] stable/main/source/qpopper_4.0.4-2.woody.5.diff.gz stable/main/binary-i386/qpopper_4.0.4-2.woody.5_i386.deb stable/main/binary-i386/qpopper-drac_4.0.4-2.woody.5_i386.deb stable/main/source/qpopper_4.0.4-2.woody.5.dsc qpopper (4.0.4-2.woody.5) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix unauthorised file read access [popper/pop_config.c, CAN-2005-1151] * Backported upstream patch to fix unauthorised file write access [popper/popauth.c, CAN-2005-1151] * Applied upstream patch to ensure that no group- or world-readable files are created [popper/popauth.c, CAN-2005-1152] stable/main/binary-sparc/prozilla_1.3.6-3woody2_sparc.deb prozilla (1:1.3.6-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix format string vulnerability [src/curses.c. src/interface.h, CAN-2005-0523] stable/main/binary-s390/prozilla_1.3.6-3woody2_s390.deb prozilla (1:1.3.6-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix format string vulnerability [src/curses.c. src/interface.h, CAN-2005-0523] stable/main/binary-powerpc/prozilla_1.3.6-3woody2_powerpc.deb prozilla (1:1.3.6-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix format string vulnerability [src/curses.c. src/interface.h, CAN-2005-0523] stable/main/binary-mips/prozilla_1.3.6-3woody2_mips.deb prozilla (1:1.3.6-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix format string vulnerability [src/curses.c. src/interface.h, CAN-2005-0523] stable/main/binary-m68k/prozilla_1.3.6-3woody2_m68k.deb prozilla (1:1.3.6-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix format string vulnerability [src/curses.c. src/interface.h, CAN-2005-0523] stable/main/binary-ia64/prozilla_1.3.6-3woody2_ia64.deb prozilla (1:1.3.6-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix format string vulnerability [src/curses.c. src/interface.h, CAN-2005-0523] stable/main/binary-i386/prozilla_1.3.6-3woody2_i386.deb prozilla (1:1.3.6-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix format string vulnerability [src/curses.c. src/interface.h, CAN-2005-0523] stable/main/binary-hppa/prozilla_1.3.6-3woody2_hppa.deb prozilla (1:1.3.6-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix format string vulnerability [src/curses.c. src/interface.h, CAN-2005-0523] stable/main/binary-arm/prozilla_1.3.6-3woody2_arm.deb prozilla (1:1.3.6-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix format string vulnerability [src/curses.c. src/interface.h, CAN-2005-0523] stable/main/binary-alpha/prozilla_1.3.6-3woody2_alpha.deb prozilla (1:1.3.6-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix format string vulnerability [src/curses.c. src/interface.h, CAN-2005-0523] stable/main/binary-mipsel/prozilla_1.3.6-3woody2_mipsel.deb stable/main/source/prozilla_1.3.6-3woody2.diff.gz stable/main/source/prozilla_1.3.6-3woody2.dsc prozilla (1:1.3.6-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix format string vulnerability [src/curses.c. src/interface.h, CAN-2005-0523] stable/main/binary-sparc/ppxp-x11_0.2001080415-6woody2_sparc.deb stable/main/binary-sparc/ppxp_0.2001080415-6woody2_sparc.deb stable/main/binary-sparc/ppxp-dev_0.2001080415-6woody2_sparc.deb stable/main/binary-sparc/ppxp-tcltk_0.2001080415-6woody2_sparc.deb ppxp (0.2001080415-6woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Removed chown() call which is superflous after dropping privileges [src/console.c, CAN-2005-0392] stable/main/binary-s390/ppxp-x11_0.2001080415-6woody2_s390.deb stable/main/binary-s390/ppxp_0.2001080415-6woody2_s390.deb stable/main/binary-s390/ppxp-dev_0.2001080415-6woody2_s390.deb stable/main/binary-s390/ppxp-tcltk_0.2001080415-6woody2_s390.deb ppxp (0.2001080415-6woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Removed chown() call which is superflous after dropping privileges [src/console.c, CAN-2005-0392] stable/main/binary-powerpc/ppxp-dev_0.2001080415-6woody2_powerpc.deb stable/main/binary-powerpc/ppxp-x11_0.2001080415-6woody2_powerpc.deb stable/main/binary-powerpc/ppxp-tcltk_0.2001080415-6woody2_powerpc.deb stable/main/binary-powerpc/ppxp_0.2001080415-6woody2_powerpc.deb ppxp (0.2001080415-6woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Removed chown() call which is superflous after dropping privileges [src/console.c, CAN-2005-0392] stable/main/binary-mipsel/ppxp-x11_0.2001080415-6woody2_mipsel.deb stable/main/binary-mipsel/ppxp-tcltk_0.2001080415-6woody2_mipsel.deb stable/main/binary-mipsel/ppxp_0.2001080415-6woody2_mipsel.deb stable/main/binary-mipsel/ppxp-dev_0.2001080415-6woody2_mipsel.deb ppxp (0.2001080415-6woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Removed chown() call which is superflous after dropping privileges [src/console.c, CAN-2005-0392] stable/main/binary-mips/ppxp-tcltk_0.2001080415-6woody2_mips.deb stable/main/binary-mips/ppxp-dev_0.2001080415-6woody2_mips.deb stable/main/binary-mips/ppxp-x11_0.2001080415-6woody2_mips.deb stable/main/binary-mips/ppxp_0.2001080415-6woody2_mips.deb ppxp (0.2001080415-6woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Removed chown() call which is superflous after dropping privileges [src/console.c, CAN-2005-0392] stable/main/binary-m68k/ppxp-dev_0.2001080415-6woody2_m68k.deb stable/main/binary-m68k/ppxp-tcltk_0.2001080415-6woody2_m68k.deb stable/main/binary-m68k/ppxp_0.2001080415-6woody2_m68k.deb stable/main/binary-m68k/ppxp-x11_0.2001080415-6woody2_m68k.deb ppxp (0.2001080415-6woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Removed chown() call which is superflous after dropping privileges [src/console.c, CAN-2005-0392] stable/main/binary-ia64/ppxp-x11_0.2001080415-6woody2_ia64.deb stable/main/binary-ia64/ppxp-dev_0.2001080415-6woody2_ia64.deb stable/main/binary-ia64/ppxp_0.2001080415-6woody2_ia64.deb stable/main/binary-ia64/ppxp-tcltk_0.2001080415-6woody2_ia64.deb ppxp (0.2001080415-6woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Removed chown() call which is superflous after dropping privileges [src/console.c, CAN-2005-0392] stable/main/binary-hppa/ppxp-x11_0.2001080415-6woody2_hppa.deb stable/main/binary-hppa/ppxp_0.2001080415-6woody2_hppa.deb stable/main/binary-hppa/ppxp-tcltk_0.2001080415-6woody2_hppa.deb stable/main/binary-hppa/ppxp-dev_0.2001080415-6woody2_hppa.deb ppxp (0.2001080415-6woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Removed chown() call which is superflous after dropping privileges [src/console.c, CAN-2005-0392] stable/main/binary-arm/ppxp-tcltk_0.2001080415-6woody2_arm.deb stable/main/binary-arm/ppxp_0.2001080415-6woody2_arm.deb stable/main/binary-arm/ppxp-x11_0.2001080415-6woody2_arm.deb stable/main/binary-arm/ppxp-dev_0.2001080415-6woody2_arm.deb ppxp (0.2001080415-6woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Removed chown() call which is superflous after dropping privileges [src/console.c, CAN-2005-0392] stable/main/binary-alpha/ppxp-x11_0.2001080415-6woody2_alpha.deb stable/main/binary-alpha/ppxp-dev_0.2001080415-6woody2_alpha.deb stable/main/binary-alpha/ppxp-tcltk_0.2001080415-6woody2_alpha.deb stable/main/binary-alpha/ppxp_0.2001080415-6woody2_alpha.deb ppxp (0.2001080415-6woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Removed chown() call which is superflous after dropping privileges [src/console.c, CAN-2005-0392] stable/main/binary-i386/ppxp_0.2001080415-6woody2_i386.deb stable/main/binary-i386/ppxp-x11_0.2001080415-6woody2_i386.deb stable/main/binary-i386/ppxp-dev_0.2001080415-6woody2_i386.deb stable/main/binary-i386/ppxp-tcltk_0.2001080415-6woody2_i386.deb stable/main/source/ppxp_0.2001080415-6woody2.diff.gz stable/main/source/ppxp_0.2001080415-6woody2.dsc ppxp (0.2001080415-6woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Removed chown() call which is superflous after dropping privileges [src/console.c, CAN-2005-0392] stable/main/binary-all/phpsysinfo_2.0-3woody2_all.deb stable/main/source/phpsysinfo_2.0-3woody2.dsc stable/main/source/phpsysinfo_2.0-3woody2.diff.gz phpsysinfo (2.0-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added precaution to prevent include files to be executed on their own [includes/system_footer.php, includes/system_header.php, CAN-2005-0870] stable/main/binary-sparc/php4-imap_4.1.2-7.woody4_sparc.deb stable/main/binary-sparc/php4-xslt_4.1.2-7.woody4_sparc.deb stable/main/binary-sparc/php4-odbc_4.1.2-7.woody4_sparc.deb stable/main/binary-sparc/php4-recode_4.1.2-7.woody4_sparc.deb stable/main/binary-sparc/php4-domxml_4.1.2-7.woody4_sparc.deb stable/main/binary-sparc/php4-curl_4.1.2-7.woody4_sparc.deb stable/main/binary-sparc/caudium-php4_4.1.2-7.woody4_sparc.deb stable/main/binary-sparc/php4-sybase_4.1.2-7.woody4_sparc.deb stable/main/binary-sparc/php4-mysql_4.1.2-7.woody4_sparc.deb stable/main/binary-sparc/php4-snmp_4.1.2-7.woody4_sparc.deb stable/main/binary-sparc/php4-gd_4.1.2-7.woody4_sparc.deb stable/main/binary-sparc/php4-mhash_4.1.2-7.woody4_sparc.deb stable/main/binary-sparc/php4-ldap_4.1.2-7.woody4_sparc.deb stable/main/binary-sparc/php4-cgi_4.1.2-7.woody4_sparc.deb stable/main/binary-sparc/php4-mcal_4.1.2-7.woody4_sparc.deb stable/main/binary-sparc/php4_4.1.2-7.woody4_sparc.deb php4 (4:4.1.2-7.woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes upload to get the architectures in sync (i386 buildd didn't upload properly) stable/main/binary-s390/php4-mhash_4.1.2-7.woody4_s390.deb stable/main/binary-s390/php4-gd_4.1.2-7.woody4_s390.deb stable/main/binary-s390/php4-cgi_4.1.2-7.woody4_s390.deb stable/main/binary-s390/php4-domxml_4.1.2-7.woody4_s390.deb stable/main/binary-s390/php4-mcal_4.1.2-7.woody4_s390.deb stable/main/binary-s390/php4-imap_4.1.2-7.woody4_s390.deb stable/main/binary-s390/php4-ldap_4.1.2-7.woody4_s390.deb stable/main/binary-s390/php4-snmp_4.1.2-7.woody4_s390.deb stable/main/binary-s390/php4-xslt_4.1.2-7.woody4_s390.deb stable/main/binary-s390/php4_4.1.2-7.woody4_s390.deb stable/main/binary-s390/php4-curl_4.1.2-7.woody4_s390.deb stable/main/binary-s390/caudium-php4_4.1.2-7.woody4_s390.deb stable/main/binary-s390/php4-recode_4.1.2-7.woody4_s390.deb stable/main/binary-s390/php4-odbc_4.1.2-7.woody4_s390.deb stable/main/binary-s390/php4-sybase_4.1.2-7.woody4_s390.deb stable/main/binary-s390/php4-mysql_4.1.2-7.woody4_s390.deb php4 (4:4.1.2-7.woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes upload to get the architectures in sync (i386 buildd didn't upload properly) stable/main/binary-powerpc/php4-ldap_4.1.2-7.woody4_powerpc.deb stable/main/binary-powerpc/php4-mcal_4.1.2-7.woody4_powerpc.deb stable/main/binary-powerpc/php4-domxml_4.1.2-7.woody4_powerpc.deb stable/main/binary-powerpc/php4-gd_4.1.2-7.woody4_powerpc.deb stable/main/binary-powerpc/php4-mhash_4.1.2-7.woody4_powerpc.deb stable/main/binary-powerpc/php4_4.1.2-7.woody4_powerpc.deb stable/main/binary-powerpc/php4-snmp_4.1.2-7.woody4_powerpc.deb stable/main/binary-powerpc/php4-curl_4.1.2-7.woody4_powerpc.deb stable/main/binary-powerpc/php4-sybase_4.1.2-7.woody4_powerpc.deb stable/main/binary-powerpc/php4-cgi_4.1.2-7.woody4_powerpc.deb stable/main/binary-powerpc/caudium-php4_4.1.2-7.woody4_powerpc.deb stable/main/binary-powerpc/php4-mysql_4.1.2-7.woody4_powerpc.deb stable/main/binary-powerpc/php4-recode_4.1.2-7.woody4_powerpc.deb stable/main/binary-powerpc/php4-imap_4.1.2-7.woody4_powerpc.deb stable/main/binary-powerpc/php4-odbc_4.1.2-7.woody4_powerpc.deb stable/main/binary-powerpc/php4-xslt_4.1.2-7.woody4_powerpc.deb php4 (4:4.1.2-7.woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes upload to get the architectures in sync (i386 buildd didn't upload properly) stable/main/binary-mipsel/php4-gd_4.1.2-7.woody4_mipsel.deb stable/main/binary-mipsel/php4-domxml_4.1.2-7.woody4_mipsel.deb stable/main/binary-mipsel/php4-ldap_4.1.2-7.woody4_mipsel.deb stable/main/binary-mipsel/php4-sybase_4.1.2-7.woody4_mipsel.deb stable/main/binary-mipsel/php4-snmp_4.1.2-7.woody4_mipsel.deb stable/main/binary-mipsel/php4-xslt_4.1.2-7.woody4_mipsel.deb stable/main/binary-mipsel/php4-curl_4.1.2-7.woody4_mipsel.deb stable/main/binary-mipsel/php4-cgi_4.1.2-7.woody4_mipsel.deb stable/main/binary-mipsel/php4-mysql_4.1.2-7.woody4_mipsel.deb stable/main/binary-mipsel/php4-mhash_4.1.2-7.woody4_mipsel.deb stable/main/binary-mipsel/caudium-php4_4.1.2-7.woody4_mipsel.deb stable/main/binary-mipsel/php4-imap_4.1.2-7.woody4_mipsel.deb stable/main/binary-mipsel/php4-odbc_4.1.2-7.woody4_mipsel.deb stable/main/binary-mipsel/php4-mcal_4.1.2-7.woody4_mipsel.deb stable/main/binary-mipsel/php4-recode_4.1.2-7.woody4_mipsel.deb stable/main/binary-mipsel/php4_4.1.2-7.woody4_mipsel.deb php4 (4:4.1.2-7.woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes upload to get the architectures in sync (i386 buildd didn't upload properly) stable/main/binary-mips/php4-sybase_4.1.2-7.woody4_mips.deb stable/main/binary-mips/caudium-php4_4.1.2-7.woody4_mips.deb stable/main/binary-mips/php4-imap_4.1.2-7.woody4_mips.deb stable/main/binary-mips/php4-gd_4.1.2-7.woody4_mips.deb stable/main/binary-mips/php4-cgi_4.1.2-7.woody4_mips.deb stable/main/binary-mips/php4-snmp_4.1.2-7.woody4_mips.deb stable/main/binary-mips/php4-ldap_4.1.2-7.woody4_mips.deb stable/main/binary-mips/php4_4.1.2-7.woody4_mips.deb stable/main/binary-mips/php4-mcal_4.1.2-7.woody4_mips.deb stable/main/binary-mips/php4-curl_4.1.2-7.woody4_mips.deb stable/main/binary-mips/php4-domxml_4.1.2-7.woody4_mips.deb stable/main/binary-mips/php4-mysql_4.1.2-7.woody4_mips.deb stable/main/binary-mips/php4-mhash_4.1.2-7.woody4_mips.deb stable/main/binary-mips/php4-recode_4.1.2-7.woody4_mips.deb stable/main/binary-mips/php4-xslt_4.1.2-7.woody4_mips.deb stable/main/binary-mips/php4-odbc_4.1.2-7.woody4_mips.deb php4 (4:4.1.2-7.woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes upload to get the architectures in sync (i386 buildd didn't upload properly) stable/main/binary-m68k/php4-sybase_4.1.2-7.woody4_m68k.deb stable/main/binary-m68k/php4-cgi_4.1.2-7.woody4_m68k.deb stable/main/binary-m68k/php4-imap_4.1.2-7.woody4_m68k.deb stable/main/binary-m68k/php4-mhash_4.1.2-7.woody4_m68k.deb stable/main/binary-m68k/php4-gd_4.1.2-7.woody4_m68k.deb stable/main/binary-m68k/php4-snmp_4.1.2-7.woody4_m68k.deb stable/main/binary-m68k/php4-domxml_4.1.2-7.woody4_m68k.deb stable/main/binary-m68k/caudium-php4_4.1.2-7.woody4_m68k.deb stable/main/binary-m68k/php4-mysql_4.1.2-7.woody4_m68k.deb stable/main/binary-m68k/php4-mcal_4.1.2-7.woody4_m68k.deb stable/main/binary-m68k/php4-odbc_4.1.2-7.woody4_m68k.deb stable/main/binary-m68k/php4_4.1.2-7.woody4_m68k.deb stable/main/binary-m68k/php4-ldap_4.1.2-7.woody4_m68k.deb stable/main/binary-m68k/php4-recode_4.1.2-7.woody4_m68k.deb stable/main/binary-m68k/php4-xslt_4.1.2-7.woody4_m68k.deb stable/main/binary-m68k/php4-curl_4.1.2-7.woody4_m68k.deb php4 (4:4.1.2-7.woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes upload to get the architectures in sync (i386 buildd didn't upload properly) stable/main/binary-ia64/php4-gd_4.1.2-7.woody4_ia64.deb stable/main/binary-ia64/php4-sybase_4.1.2-7.woody4_ia64.deb stable/main/binary-ia64/php4-cgi_4.1.2-7.woody4_ia64.deb stable/main/binary-ia64/caudium-php4_4.1.2-7.woody4_ia64.deb stable/main/binary-ia64/php4-imap_4.1.2-7.woody4_ia64.deb stable/main/binary-ia64/php4-ldap_4.1.2-7.woody4_ia64.deb stable/main/binary-ia64/php4-mhash_4.1.2-7.woody4_ia64.deb stable/main/binary-ia64/php4-snmp_4.1.2-7.woody4_ia64.deb stable/main/binary-ia64/php4-domxml_4.1.2-7.woody4_ia64.deb stable/main/binary-ia64/php4_4.1.2-7.woody4_ia64.deb stable/main/binary-ia64/php4-mcal_4.1.2-7.woody4_ia64.deb stable/main/binary-ia64/php4-recode_4.1.2-7.woody4_ia64.deb stable/main/binary-ia64/php4-odbc_4.1.2-7.woody4_ia64.deb stable/main/binary-ia64/php4-mysql_4.1.2-7.woody4_ia64.deb stable/main/binary-ia64/php4-curl_4.1.2-7.woody4_ia64.deb stable/main/binary-ia64/php4-xslt_4.1.2-7.woody4_ia64.deb php4 (4:4.1.2-7.woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes upload to get the architectures in sync (i386 buildd didn't upload properly) stable/main/binary-i386/php4-mysql_4.1.2-7.woody4_i386.deb stable/main/binary-i386/php4-xslt_4.1.2-7.woody4_i386.deb stable/main/binary-i386/php4_4.1.2-7.woody4_i386.deb stable/main/binary-i386/php4-ldap_4.1.2-7.woody4_i386.deb stable/main/binary-i386/php4-curl_4.1.2-7.woody4_i386.deb stable/main/binary-i386/caudium-php4_4.1.2-7.woody4_i386.deb stable/main/binary-i386/php4-mcal_4.1.2-7.woody4_i386.deb stable/main/binary-i386/php4-domxml_4.1.2-7.woody4_i386.deb stable/main/binary-i386/php4-mhash_4.1.2-7.woody4_i386.deb stable/main/binary-i386/php4-gd_4.1.2-7.woody4_i386.deb stable/main/binary-i386/php4-imap_4.1.2-7.woody4_i386.deb stable/main/binary-i386/php4-odbc_4.1.2-7.woody4_i386.deb stable/main/binary-i386/php4-snmp_4.1.2-7.woody4_i386.deb stable/main/binary-i386/php4-recode_4.1.2-7.woody4_i386.deb stable/main/binary-i386/php4-sybase_4.1.2-7.woody4_i386.deb stable/main/binary-i386/php4-cgi_4.1.2-7.woody4_i386.deb php4 (4:4.1.2-7.woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes upload to get the architectures in sync (i386 buildd didn't upload properly) stable/main/binary-arm/php4-odbc_4.1.2-7.woody4_arm.deb stable/main/binary-arm/php4-recode_4.1.2-7.woody4_arm.deb stable/main/binary-arm/php4-sybase_4.1.2-7.woody4_arm.deb stable/main/binary-arm/php4-ldap_4.1.2-7.woody4_arm.deb stable/main/binary-arm/php4-mysql_4.1.2-7.woody4_arm.deb stable/main/binary-arm/php4-xslt_4.1.2-7.woody4_arm.deb stable/main/binary-arm/php4-gd_4.1.2-7.woody4_arm.deb stable/main/binary-arm/php4-domxml_4.1.2-7.woody4_arm.deb stable/main/binary-arm/php4-cgi_4.1.2-7.woody4_arm.deb stable/main/binary-arm/php4-mcal_4.1.2-7.woody4_arm.deb stable/main/binary-arm/php4-curl_4.1.2-7.woody4_arm.deb stable/main/binary-arm/php4-snmp_4.1.2-7.woody4_arm.deb stable/main/binary-arm/caudium-php4_4.1.2-7.woody4_arm.deb stable/main/binary-arm/php4-imap_4.1.2-7.woody4_arm.deb stable/main/binary-arm/php4-mhash_4.1.2-7.woody4_arm.deb stable/main/binary-arm/php4_4.1.2-7.woody4_arm.deb php4 (4:4.1.2-7.woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes upload to get the architectures in sync (i386 buildd didn't upload properly) stable/main/binary-alpha/php4-mhash_4.1.2-7.woody4_alpha.deb stable/main/binary-alpha/php4-mysql_4.1.2-7.woody4_alpha.deb stable/main/binary-alpha/php4-domxml_4.1.2-7.woody4_alpha.deb stable/main/binary-alpha/php4-imap_4.1.2-7.woody4_alpha.deb stable/main/binary-alpha/php4_4.1.2-7.woody4_alpha.deb stable/main/binary-alpha/php4-mcal_4.1.2-7.woody4_alpha.deb stable/main/binary-alpha/php4-snmp_4.1.2-7.woody4_alpha.deb stable/main/binary-alpha/php4-cgi_4.1.2-7.woody4_alpha.deb stable/main/binary-alpha/php4-ldap_4.1.2-7.woody4_alpha.deb stable/main/binary-alpha/php4-xslt_4.1.2-7.woody4_alpha.deb stable/main/binary-alpha/php4-gd_4.1.2-7.woody4_alpha.deb stable/main/binary-alpha/caudium-php4_4.1.2-7.woody4_alpha.deb stable/main/binary-alpha/php4-curl_4.1.2-7.woody4_alpha.deb stable/main/binary-alpha/php4-recode_4.1.2-7.woody4_alpha.deb stable/main/binary-alpha/php4-odbc_4.1.2-7.woody4_alpha.deb stable/main/binary-alpha/php4-sybase_4.1.2-7.woody4_alpha.deb php4 (4:4.1.2-7.woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes upload to get the architectures in sync (i386 buildd didn't upload properly) stable/main/binary-hppa/php4-mysql_4.1.2-7.woody4_hppa.deb stable/main/source/php4_4.1.2-7.woody4.dsc stable/main/binary-hppa/php4-sybase_4.1.2-7.woody4_hppa.deb stable/main/source/php4_4.1.2-7.woody4.diff.gz stable/main/binary-hppa/php4-cgi_4.1.2-7.woody4_hppa.deb stable/main/binary-hppa/php4-snmp_4.1.2-7.woody4_hppa.deb stable/main/binary-hppa/php4-mhash_4.1.2-7.woody4_hppa.deb stable/main/binary-hppa/php4-curl_4.1.2-7.woody4_hppa.deb stable/main/binary-hppa/php4-domxml_4.1.2-7.woody4_hppa.deb stable/main/binary-hppa/php4-mcal_4.1.2-7.woody4_hppa.deb stable/main/binary-hppa/php4_4.1.2-7.woody4_hppa.deb stable/main/binary-all/php4-pear_4.1.2-7.woody4_all.deb stable/main/binary-hppa/php4-gd_4.1.2-7.woody4_hppa.deb stable/main/binary-hppa/caudium-php4_4.1.2-7.woody4_hppa.deb stable/main/binary-hppa/php4-ldap_4.1.2-7.woody4_hppa.deb stable/main/binary-hppa/php4-xslt_4.1.2-7.woody4_hppa.deb stable/main/binary-hppa/php4-imap_4.1.2-7.woody4_hppa.deb stable/main/binary-all/php4-dev_4.1.2-7.woody4_all.deb stable/main/binary-hppa/php4-odbc_4.1.2-7.woody4_hppa.deb stable/main/binary-hppa/php4-recode_4.1.2-7.woody4_hppa.deb php4 (4:4.1.2-7.woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes upload to get the architectures in sync (i386 buildd didn't upload properly) stable/main/binary-arm/telnetd_0.17-18woody3_arm.deb stable/main/binary-arm/telnet_0.17-18woody3_arm.deb netkit-telnet (0.17-18woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch to fix a buffer overflow in slc_add_reply() [telnet/telnet.cc, CAN-2005-0469] stable/main/binary-sparc/mysql-client_3.23.49-8.13_sparc.deb stable/main/binary-sparc/mysql-server_3.23.49-8.13_sparc.deb stable/main/binary-sparc/libmysqlclient10-dev_3.23.49-8.13_sparc.deb stable/main/binary-sparc/libmysqlclient10_3.23.49-8.13_sparc.deb mysql (3.23.49-8.13) stable; urgency=high * In the corner case that someone upgrades from woody's version of mysql-server to mysql-server-4.1, and they have the mysql datadir or mysql logdir symlinked to somewhere else, the symlink would be lost. this no longer happens, by having copies of the symlinks being stored (in non-purge removals) in a directory where 4.1 will look for them. * 8.12 was never uploaded, so this version will also address the breakage by the previous security update. stable/main/binary-s390/mysql-server_3.23.49-8.13_s390.deb stable/main/binary-s390/libmysqlclient10-dev_3.23.49-8.13_s390.deb stable/main/binary-s390/libmysqlclient10_3.23.49-8.13_s390.deb stable/main/binary-s390/mysql-client_3.23.49-8.13_s390.deb mysql (3.23.49-8.13) stable; urgency=high * In the corner case that someone upgrades from woody's version of mysql-server to mysql-server-4.1, and they have the mysql datadir or mysql logdir symlinked to somewhere else, the symlink would be lost. this no longer happens, by having copies of the symlinks being stored (in non-purge removals) in a directory where 4.1 will look for them. * 8.12 was never uploaded, so this version will also address the breakage by the previous security update. stable/main/binary-powerpc/libmysqlclient10-dev_3.23.49-8.13_powerpc.deb stable/main/binary-powerpc/mysql-server_3.23.49-8.13_powerpc.deb stable/main/binary-powerpc/libmysqlclient10_3.23.49-8.13_powerpc.deb stable/main/binary-powerpc/mysql-client_3.23.49-8.13_powerpc.deb mysql (3.23.49-8.13) stable; urgency=high * In the corner case that someone upgrades from woody's version of mysql-server to mysql-server-4.1, and they have the mysql datadir or mysql logdir symlinked to somewhere else, the symlink would be lost. this no longer happens, by having copies of the symlinks being stored (in non-purge removals) in a directory where 4.1 will look for them. * 8.12 was never uploaded, so this version will also address the breakage by the previous security update. stable/main/binary-mipsel/mysql-client_3.23.49-8.13_mipsel.deb stable/main/binary-mipsel/libmysqlclient10-dev_3.23.49-8.13_mipsel.deb stable/main/binary-mipsel/mysql-server_3.23.49-8.13_mipsel.deb stable/main/binary-mipsel/libmysqlclient10_3.23.49-8.13_mipsel.deb mysql (3.23.49-8.13) stable; urgency=high * In the corner case that someone upgrades from woody's version of mysql-server to mysql-server-4.1, and they have the mysql datadir or mysql logdir symlinked to somewhere else, the symlink would be lost. this no longer happens, by having copies of the symlinks being stored (in non-purge removals) in a directory where 4.1 will look for them. * 8.12 was never uploaded, so this version will also address the breakage by the previous security update. stable/main/binary-mips/libmysqlclient10-dev_3.23.49-8.13_mips.deb stable/main/binary-mips/mysql-server_3.23.49-8.13_mips.deb stable/main/binary-mips/libmysqlclient10_3.23.49-8.13_mips.deb stable/main/binary-mips/mysql-client_3.23.49-8.13_mips.deb mysql (3.23.49-8.13) stable; urgency=high * In the corner case that someone upgrades from woody's version of mysql-server to mysql-server-4.1, and they have the mysql datadir or mysql logdir symlinked to somewhere else, the symlink would be lost. this no longer happens, by having copies of the symlinks being stored (in non-purge removals) in a directory where 4.1 will look for them. * 8.12 was never uploaded, so this version will also address the breakage by the previous security update. stable/main/binary-m68k/mysql-server_3.23.49-8.13_m68k.deb stable/main/binary-m68k/libmysqlclient10-dev_3.23.49-8.13_m68k.deb stable/main/binary-m68k/mysql-client_3.23.49-8.13_m68k.deb stable/main/binary-m68k/libmysqlclient10_3.23.49-8.13_m68k.deb mysql (3.23.49-8.13) stable; urgency=high * In the corner case that someone upgrades from woody's version of mysql-server to mysql-server-4.1, and they have the mysql datadir or mysql logdir symlinked to somewhere else, the symlink would be lost. this no longer happens, by having copies of the symlinks being stored (in non-purge removals) in a directory where 4.1 will look for them. * 8.12 was never uploaded, so this version will also address the breakage by the previous security update. stable/main/binary-ia64/mysql-server_3.23.49-8.13_ia64.deb stable/main/binary-ia64/libmysqlclient10_3.23.49-8.13_ia64.deb stable/main/binary-ia64/libmysqlclient10-dev_3.23.49-8.13_ia64.deb stable/main/binary-ia64/mysql-client_3.23.49-8.13_ia64.deb mysql (3.23.49-8.13) stable; urgency=high * In the corner case that someone upgrades from woody's version of mysql-server to mysql-server-4.1, and they have the mysql datadir or mysql logdir symlinked to somewhere else, the symlink would be lost. this no longer happens, by having copies of the symlinks being stored (in non-purge removals) in a directory where 4.1 will look for them. * 8.12 was never uploaded, so this version will also address the breakage by the previous security update. stable/main/binary-hppa/mysql-client_3.23.49-8.13_hppa.deb stable/main/binary-hppa/libmysqlclient10-dev_3.23.49-8.13_hppa.deb stable/main/binary-hppa/libmysqlclient10_3.23.49-8.13_hppa.deb stable/main/binary-hppa/mysql-server_3.23.49-8.13_hppa.deb mysql (3.23.49-8.13) stable; urgency=high * In the corner case that someone upgrades from woody's version of mysql-server to mysql-server-4.1, and they have the mysql datadir or mysql logdir symlinked to somewhere else, the symlink would be lost. this no longer happens, by having copies of the symlinks being stored (in non-purge removals) in a directory where 4.1 will look for them. * 8.12 was never uploaded, so this version will also address the breakage by the previous security update. stable/main/binary-arm/mysql-client_3.23.49-8.13_arm.deb stable/main/binary-arm/libmysqlclient10_3.23.49-8.13_arm.deb stable/main/binary-arm/libmysqlclient10-dev_3.23.49-8.13_arm.deb stable/main/binary-arm/mysql-server_3.23.49-8.13_arm.deb mysql (3.23.49-8.13) stable; urgency=high * In the corner case that someone upgrades from woody's version of mysql-server to mysql-server-4.1, and they have the mysql datadir or mysql logdir symlinked to somewhere else, the symlink would be lost. this no longer happens, by having copies of the symlinks being stored (in non-purge removals) in a directory where 4.1 will look for them. * 8.12 was never uploaded, so this version will also address the breakage by the previous security update. stable/main/binary-alpha/mysql-server_3.23.49-8.13_alpha.deb stable/main/binary-alpha/libmysqlclient10_3.23.49-8.13_alpha.deb stable/main/binary-alpha/libmysqlclient10-dev_3.23.49-8.13_alpha.deb stable/main/binary-alpha/mysql-client_3.23.49-8.13_alpha.deb mysql (3.23.49-8.13) stable; urgency=high * In the corner case that someone upgrades from woody's version of mysql-server to mysql-server-4.1, and they have the mysql datadir or mysql logdir symlinked to somewhere else, the symlink would be lost. this no longer happens, by having copies of the symlinks being stored (in non-purge removals) in a directory where 4.1 will look for them. * 8.12 was never uploaded, so this version will also address the breakage by the previous security update. stable/main/binary-i386/mysql-client_3.23.49-8.13_i386.deb stable/main/binary-i386/libmysqlclient10_3.23.49-8.13_i386.deb stable/main/source/mysql_3.23.49-8.13.diff.gz stable/main/source/mysql_3.23.49-8.13.dsc stable/main/binary-all/mysql-common_3.23.49-8.13_all.deb stable/main/binary-i386/mysql-server_3.23.49-8.13_i386.deb stable/main/binary-i386/libmysqlclient10-dev_3.23.49-8.13_i386.deb mysql (3.23.49-8.13) stable; urgency=high * In the corner case that someone upgrades from woody's version of mysql-server to mysql-server-4.1, and they have the mysql datadir or mysql logdir symlinked to somewhere else, the symlink would be lost. this no longer happens, by having copies of the symlinks being stored (in non-purge removals) in a directory where 4.1 will look for them. * 8.12 was never uploaded, so this version will also address the breakage by the previous security update. stable/main/binary-sparc/lsh-server_1.2.5-2woody3_sparc.deb stable/main/binary-sparc/lsh-client_1.2.5-2woody3_sparc.deb stable/main/binary-sparc/lsh-utils_1.2.5-2woody3_sparc.deb lsh-utils (1.2.5-2woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team. * The previous upload had the incorrect CVE ID, the denial of service attack is correctly referred to as [CAN-2005-0814] stable/main/binary-s390/lsh-server_1.2.5-2woody3_s390.deb stable/main/binary-s390/lsh-client_1.2.5-2woody3_s390.deb stable/main/binary-s390/lsh-utils_1.2.5-2woody3_s390.deb lsh-utils (1.2.5-2woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team. * The previous upload had the incorrect CVE ID, the denial of service attack is correctly referred to as [CAN-2005-0814] stable/main/binary-powerpc/lsh-client_1.2.5-2woody3_powerpc.deb stable/main/binary-powerpc/lsh-utils_1.2.5-2woody3_powerpc.deb stable/main/binary-powerpc/lsh-server_1.2.5-2woody3_powerpc.deb lsh-utils (1.2.5-2woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team. * The previous upload had the incorrect CVE ID, the denial of service attack is correctly referred to as [CAN-2005-0814] stable/main/binary-mipsel/lsh-client_1.2.5-2woody3_mipsel.deb stable/main/binary-mipsel/lsh-utils_1.2.5-2woody3_mipsel.deb stable/main/binary-mipsel/lsh-server_1.2.5-2woody3_mipsel.deb lsh-utils (1.2.5-2woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team. * The previous upload had the incorrect CVE ID, the denial of service attack is correctly referred to as [CAN-2005-0814] stable/main/binary-mips/lsh-server_1.2.5-2woody3_mips.deb stable/main/binary-mips/lsh-utils_1.2.5-2woody3_mips.deb stable/main/binary-mips/lsh-client_1.2.5-2woody3_mips.deb lsh-utils (1.2.5-2woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team. * The previous upload had the incorrect CVE ID, the denial of service attack is correctly referred to as [CAN-2005-0814] stable/main/binary-m68k/lsh-utils_1.2.5-2woody3_m68k.deb stable/main/binary-m68k/lsh-server_1.2.5-2woody3_m68k.deb stable/main/binary-m68k/lsh-client_1.2.5-2woody3_m68k.deb lsh-utils (1.2.5-2woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team. * The previous upload had the incorrect CVE ID, the denial of service attack is correctly referred to as [CAN-2005-0814] stable/main/binary-hppa/lsh-server_1.2.5-2woody3_hppa.deb stable/main/binary-hppa/lsh-client_1.2.5-2woody3_hppa.deb stable/main/binary-hppa/lsh-utils_1.2.5-2woody3_hppa.deb lsh-utils (1.2.5-2woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team. * The previous upload had the incorrect CVE ID, the denial of service attack is correctly referred to as [CAN-2005-0814] stable/main/binary-arm/lsh-utils_1.2.5-2woody3_arm.deb stable/main/binary-arm/lsh-server_1.2.5-2woody3_arm.deb stable/main/binary-arm/lsh-client_1.2.5-2woody3_arm.deb lsh-utils (1.2.5-2woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team. * The previous upload had the incorrect CVE ID, the denial of service attack is correctly referred to as [CAN-2005-0814] stable/main/binary-alpha/lsh-server_1.2.5-2woody3_alpha.deb stable/main/binary-alpha/lsh-utils_1.2.5-2woody3_alpha.deb stable/main/binary-alpha/lsh-client_1.2.5-2woody3_alpha.deb lsh-utils (1.2.5-2woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team. * The previous upload had the incorrect CVE ID, the denial of service attack is correctly referred to as [CAN-2005-0814] stable/main/binary-i386/lsh-server_1.2.5-2woody3_i386.deb stable/main/binary-i386/lsh-utils_1.2.5-2woody3_i386.deb stable/main/source/lsh-utils_1.2.5-2woody3.dsc stable/main/binary-i386/lsh-client_1.2.5-2woody3_i386.deb stable/main/source/lsh-utils_1.2.5-2woody3.diff.gz stable/main/binary-all/lsh-utils-doc_1.2.5-2woody3_all.deb lsh-utils (1.2.5-2woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team. * The previous upload had the incorrect CVE ID, the denial of service attack is correctly referred to as [CAN-2005-0814] stable/main/binary-sparc/libexif5_0.5.0-1woody1_sparc.deb stable/main/binary-sparc/libexif-dev_0.5.0-1woody1_sparc.deb libexif (0.5.0-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Sylvain Defresne, partially also present in upstream CVS [libexif/exif-data.c, CAN-2005-0664] stable/main/binary-s390/libexif5_0.5.0-1woody1_s390.deb stable/main/binary-s390/libexif-dev_0.5.0-1woody1_s390.deb libexif (0.5.0-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Sylvain Defresne, partially also present in upstream CVS [libexif/exif-data.c, CAN-2005-0664] stable/main/binary-powerpc/libexif5_0.5.0-1woody1_powerpc.deb stable/main/binary-powerpc/libexif-dev_0.5.0-1woody1_powerpc.deb libexif (0.5.0-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Sylvain Defresne, partially also present in upstream CVS [libexif/exif-data.c, CAN-2005-0664] stable/main/binary-mipsel/libexif5_0.5.0-1woody1_mipsel.deb stable/main/binary-mipsel/libexif-dev_0.5.0-1woody1_mipsel.deb libexif (0.5.0-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Sylvain Defresne, partially also present in upstream CVS [libexif/exif-data.c, CAN-2005-0664] stable/main/binary-mips/libexif5_0.5.0-1woody1_mips.deb stable/main/binary-mips/libexif-dev_0.5.0-1woody1_mips.deb libexif (0.5.0-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Sylvain Defresne, partially also present in upstream CVS [libexif/exif-data.c, CAN-2005-0664] stable/main/binary-m68k/libexif-dev_0.5.0-1woody1_m68k.deb stable/main/binary-m68k/libexif5_0.5.0-1woody1_m68k.deb libexif (0.5.0-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Sylvain Defresne, partially also present in upstream CVS [libexif/exif-data.c, CAN-2005-0664] stable/main/binary-ia64/libexif5_0.5.0-1woody1_ia64.deb stable/main/binary-ia64/libexif-dev_0.5.0-1woody1_ia64.deb libexif (0.5.0-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Sylvain Defresne, partially also present in upstream CVS [libexif/exif-data.c, CAN-2005-0664] stable/main/binary-i386/libexif-dev_0.5.0-1woody1_i386.deb stable/main/binary-i386/libexif5_0.5.0-1woody1_i386.deb libexif (0.5.0-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Sylvain Defresne, partially also present in upstream CVS [libexif/exif-data.c, CAN-2005-0664] stable/main/binary-hppa/libexif5_0.5.0-1woody1_hppa.deb stable/main/binary-hppa/libexif-dev_0.5.0-1woody1_hppa.deb libexif (0.5.0-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Sylvain Defresne, partially also present in upstream CVS [libexif/exif-data.c, CAN-2005-0664] stable/main/binary-alpha/libexif-dev_0.5.0-1woody1_alpha.deb stable/main/binary-alpha/libexif5_0.5.0-1woody1_alpha.deb libexif (0.5.0-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Sylvain Defresne, partially also present in upstream CVS [libexif/exif-data.c, CAN-2005-0664] stable/main/source/libexif_0.5.0-1woody1.dsc stable/main/binary-arm/libexif5_0.5.0-1woody1_arm.deb stable/main/binary-arm/libexif-dev_0.5.0-1woody1_arm.deb stable/main/source/libexif_0.5.0-1woody1.diff.gz libexif (0.5.0-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Sylvain Defresne, partially also present in upstream CVS [libexif/exif-data.c, CAN-2005-0664] stable/main/binary-sparc/libconvert-uulib-perl_0.201-2woody1_sparc.deb libconvert-uulib-perl (0.201-2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a buffer overflow [uulib/uunconc.c, CAN-2005-1349] stable/main/binary-s390/libconvert-uulib-perl_0.201-2woody1_s390.deb libconvert-uulib-perl (0.201-2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a buffer overflow [uulib/uunconc.c, CAN-2005-1349] stable/main/binary-powerpc/libconvert-uulib-perl_0.201-2woody1_powerpc.deb libconvert-uulib-perl (0.201-2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a buffer overflow [uulib/uunconc.c, CAN-2005-1349] stable/main/binary-mipsel/libconvert-uulib-perl_0.201-2woody1_mipsel.deb libconvert-uulib-perl (0.201-2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a buffer overflow [uulib/uunconc.c, CAN-2005-1349] stable/main/binary-mips/libconvert-uulib-perl_0.201-2woody1_mips.deb libconvert-uulib-perl (0.201-2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a buffer overflow [uulib/uunconc.c, CAN-2005-1349] stable/main/binary-m68k/libconvert-uulib-perl_0.201-2woody1_m68k.deb libconvert-uulib-perl (0.201-2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a buffer overflow [uulib/uunconc.c, CAN-2005-1349] stable/main/binary-ia64/libconvert-uulib-perl_0.201-2woody1_ia64.deb libconvert-uulib-perl (0.201-2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a buffer overflow [uulib/uunconc.c, CAN-2005-1349] stable/main/binary-i386/libconvert-uulib-perl_0.201-2woody1_i386.deb libconvert-uulib-perl (0.201-2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a buffer overflow [uulib/uunconc.c, CAN-2005-1349] stable/main/binary-hppa/libconvert-uulib-perl_0.201-2woody1_hppa.deb libconvert-uulib-perl (0.201-2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a buffer overflow [uulib/uunconc.c, CAN-2005-1349] stable/main/binary-alpha/libconvert-uulib-perl_0.201-2woody1_alpha.deb libconvert-uulib-perl (0.201-2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a buffer overflow [uulib/uunconc.c, CAN-2005-1349] stable/main/source/libconvert-uulib-perl_0.201-2woody1.dsc stable/main/source/libconvert-uulib-perl_0.201-2woody1.diff.gz stable/main/binary-arm/libconvert-uulib-perl_0.201-2woody1_arm.deb libconvert-uulib-perl (0.201-2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a buffer overflow [uulib/uunconc.c, CAN-2005-1349] stable/main/binary-sparc/libarts_2.2.2-13.woody.14_sparc.deb stable/main/binary-sparc/kdelibs-dev_2.2.2-13.woody.14_sparc.deb stable/main/binary-sparc/libarts-dev_2.2.2-13.woody.14_sparc.deb stable/main/binary-sparc/libkmid_2.2.2-13.woody.14_sparc.deb stable/main/binary-sparc/libkmid-alsa_2.2.2-13.woody.14_sparc.deb stable/main/binary-sparc/libarts-alsa_2.2.2-13.woody.14_sparc.deb stable/main/binary-sparc/kdelibs3_2.2.2-13.woody.14_sparc.deb stable/main/binary-sparc/kdelibs3-bin_2.2.2-13.woody.14_sparc.deb stable/main/binary-sparc/libkmid-dev_2.2.2-13.woody.14_sparc.deb stable/main/binary-sparc/kdelibs3-cups_2.2.2-13.woody.14_sparc.deb kdelibs (4:2.2.2-13.woody.14) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix integer overflow [kimgio/xview.cpp, CAN-2005-1046] * Backported upstream patch to prevent the use of unallocated memory in an OOM situation [kimgio/tiffr.cpp, kimgio/xview.cpp] stable/main/binary-s390/kdelibs-dev_2.2.2-13.woody.14_s390.deb stable/main/binary-s390/kdelibs3-cups_2.2.2-13.woody.14_s390.deb stable/main/binary-s390/kdelibs3-bin_2.2.2-13.woody.14_s390.deb stable/main/binary-s390/libkmid-alsa_2.2.2-13.woody.14_s390.deb stable/main/binary-s390/libarts_2.2.2-13.woody.14_s390.deb stable/main/binary-s390/libarts-alsa_2.2.2-13.woody.14_s390.deb stable/main/binary-s390/libarts-dev_2.2.2-13.woody.14_s390.deb stable/main/binary-s390/libkmid_2.2.2-13.woody.14_s390.deb stable/main/binary-s390/libkmid-dev_2.2.2-13.woody.14_s390.deb stable/main/binary-s390/kdelibs3_2.2.2-13.woody.14_s390.deb kdelibs (4:2.2.2-13.woody.14) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix integer overflow [kimgio/xview.cpp, CAN-2005-1046] * Backported upstream patch to prevent the use of unallocated memory in an OOM situation [kimgio/tiffr.cpp, kimgio/xview.cpp] stable/main/binary-powerpc/libkmid_2.2.2-13.woody.14_powerpc.deb stable/main/binary-powerpc/libkmid-dev_2.2.2-13.woody.14_powerpc.deb stable/main/binary-powerpc/libkmid-alsa_2.2.2-13.woody.14_powerpc.deb stable/main/binary-powerpc/kdelibs3_2.2.2-13.woody.14_powerpc.deb stable/main/binary-powerpc/libarts-alsa_2.2.2-13.woody.14_powerpc.deb stable/main/binary-powerpc/libarts-dev_2.2.2-13.woody.14_powerpc.deb stable/main/binary-powerpc/kdelibs3-cups_2.2.2-13.woody.14_powerpc.deb stable/main/binary-powerpc/kdelibs3-bin_2.2.2-13.woody.14_powerpc.deb stable/main/binary-powerpc/libarts_2.2.2-13.woody.14_powerpc.deb stable/main/binary-powerpc/kdelibs-dev_2.2.2-13.woody.14_powerpc.deb kdelibs (4:2.2.2-13.woody.14) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix integer overflow [kimgio/xview.cpp, CAN-2005-1046] * Backported upstream patch to prevent the use of unallocated memory in an OOM situation [kimgio/tiffr.cpp, kimgio/xview.cpp] stable/main/binary-mipsel/libkmid-dev_2.2.2-13.woody.14_mipsel.deb stable/main/binary-mipsel/kdelibs3-cups_2.2.2-13.woody.14_mipsel.deb stable/main/binary-mipsel/kdelibs3-bin_2.2.2-13.woody.14_mipsel.deb stable/main/binary-mipsel/libarts-dev_2.2.2-13.woody.14_mipsel.deb stable/main/binary-mipsel/kdelibs-dev_2.2.2-13.woody.14_mipsel.deb stable/main/binary-mipsel/libkmid_2.2.2-13.woody.14_mipsel.deb stable/main/binary-mipsel/libarts-alsa_2.2.2-13.woody.14_mipsel.deb stable/main/binary-mipsel/kdelibs3_2.2.2-13.woody.14_mipsel.deb stable/main/binary-mipsel/libkmid-alsa_2.2.2-13.woody.14_mipsel.deb stable/main/binary-mipsel/libarts_2.2.2-13.woody.14_mipsel.deb kdelibs (4:2.2.2-13.woody.14) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix integer overflow [kimgio/xview.cpp, CAN-2005-1046] * Backported upstream patch to prevent the use of unallocated memory in an OOM situation [kimgio/tiffr.cpp, kimgio/xview.cpp] stable/main/binary-mips/kdelibs3_2.2.2-13.woody.14_mips.deb stable/main/binary-mips/libarts_2.2.2-13.woody.14_mips.deb stable/main/binary-mips/libarts-alsa_2.2.2-13.woody.14_mips.deb stable/main/binary-mips/libkmid_2.2.2-13.woody.14_mips.deb stable/main/binary-mips/kdelibs3-cups_2.2.2-13.woody.14_mips.deb stable/main/binary-mips/libkmid-dev_2.2.2-13.woody.14_mips.deb stable/main/binary-mips/libarts-dev_2.2.2-13.woody.14_mips.deb stable/main/binary-mips/kdelibs3-bin_2.2.2-13.woody.14_mips.deb stable/main/binary-mips/libkmid-alsa_2.2.2-13.woody.14_mips.deb stable/main/binary-mips/kdelibs-dev_2.2.2-13.woody.14_mips.deb kdelibs (4:2.2.2-13.woody.14) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix integer overflow [kimgio/xview.cpp, CAN-2005-1046] * Backported upstream patch to prevent the use of unallocated memory in an OOM situation [kimgio/tiffr.cpp, kimgio/xview.cpp] stable/main/binary-m68k/kdelibs3_2.2.2-13.woody.14_m68k.deb stable/main/binary-m68k/libarts-dev_2.2.2-13.woody.14_m68k.deb stable/main/binary-m68k/libkmid-dev_2.2.2-13.woody.14_m68k.deb stable/main/binary-m68k/kdelibs-dev_2.2.2-13.woody.14_m68k.deb stable/main/binary-m68k/libarts_2.2.2-13.woody.14_m68k.deb stable/main/binary-m68k/libkmid_2.2.2-13.woody.14_m68k.deb stable/main/binary-m68k/kdelibs3-cups_2.2.2-13.woody.14_m68k.deb stable/main/binary-m68k/libkmid-alsa_2.2.2-13.woody.14_m68k.deb stable/main/binary-m68k/libarts-alsa_2.2.2-13.woody.14_m68k.deb stable/main/binary-m68k/kdelibs3-bin_2.2.2-13.woody.14_m68k.deb kdelibs (4:2.2.2-13.woody.14) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix integer overflow [kimgio/xview.cpp, CAN-2005-1046] * Backported upstream patch to prevent the use of unallocated memory in an OOM situation [kimgio/tiffr.cpp, kimgio/xview.cpp] stable/main/binary-ia64/libkmid-dev_2.2.2-13.woody.14_ia64.deb stable/main/binary-ia64/kdelibs3-cups_2.2.2-13.woody.14_ia64.deb stable/main/binary-ia64/kdelibs-dev_2.2.2-13.woody.14_ia64.deb stable/main/binary-ia64/kdelibs3_2.2.2-13.woody.14_ia64.deb stable/main/binary-ia64/libarts-alsa_2.2.2-13.woody.14_ia64.deb stable/main/binary-ia64/libarts_2.2.2-13.woody.14_ia64.deb stable/main/binary-ia64/libkmid_2.2.2-13.woody.14_ia64.deb stable/main/binary-ia64/libkmid-alsa_2.2.2-13.woody.14_ia64.deb stable/main/binary-ia64/kdelibs3-bin_2.2.2-13.woody.14_ia64.deb stable/main/binary-ia64/libarts-dev_2.2.2-13.woody.14_ia64.deb kdelibs (4:2.2.2-13.woody.14) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix integer overflow [kimgio/xview.cpp, CAN-2005-1046] * Backported upstream patch to prevent the use of unallocated memory in an OOM situation [kimgio/tiffr.cpp, kimgio/xview.cpp] stable/main/binary-i386/libarts-alsa_2.2.2-13.woody.14_i386.deb stable/main/binary-i386/libkmid-alsa_2.2.2-13.woody.14_i386.deb stable/main/binary-i386/libkmid_2.2.2-13.woody.14_i386.deb stable/main/binary-i386/kdelibs3_2.2.2-13.woody.14_i386.deb stable/main/binary-i386/libkmid-dev_2.2.2-13.woody.14_i386.deb stable/main/binary-i386/kdelibs-dev_2.2.2-13.woody.14_i386.deb stable/main/binary-i386/libarts_2.2.2-13.woody.14_i386.deb stable/main/binary-i386/kdelibs3-bin_2.2.2-13.woody.14_i386.deb stable/main/binary-i386/libarts-dev_2.2.2-13.woody.14_i386.deb stable/main/binary-i386/kdelibs3-cups_2.2.2-13.woody.14_i386.deb kdelibs (4:2.2.2-13.woody.14) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix integer overflow [kimgio/xview.cpp, CAN-2005-1046] * Backported upstream patch to prevent the use of unallocated memory in an OOM situation [kimgio/tiffr.cpp, kimgio/xview.cpp] stable/main/binary-hppa/libarts-dev_2.2.2-13.woody.14_hppa.deb stable/main/binary-hppa/kdelibs3-bin_2.2.2-13.woody.14_hppa.deb stable/main/binary-hppa/libkmid-alsa_2.2.2-13.woody.14_hppa.deb stable/main/binary-hppa/kdelibs3_2.2.2-13.woody.14_hppa.deb stable/main/binary-hppa/libarts_2.2.2-13.woody.14_hppa.deb stable/main/binary-hppa/libkmid-dev_2.2.2-13.woody.14_hppa.deb stable/main/binary-hppa/libarts-alsa_2.2.2-13.woody.14_hppa.deb stable/main/binary-hppa/kdelibs3-cups_2.2.2-13.woody.14_hppa.deb stable/main/binary-hppa/kdelibs-dev_2.2.2-13.woody.14_hppa.deb stable/main/binary-hppa/libkmid_2.2.2-13.woody.14_hppa.deb kdelibs (4:2.2.2-13.woody.14) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix integer overflow [kimgio/xview.cpp, CAN-2005-1046] * Backported upstream patch to prevent the use of unallocated memory in an OOM situation [kimgio/tiffr.cpp, kimgio/xview.cpp] stable/main/binary-alpha/libarts_2.2.2-13.woody.14_alpha.deb stable/main/binary-alpha/kdelibs-dev_2.2.2-13.woody.14_alpha.deb stable/main/binary-alpha/kdelibs3-cups_2.2.2-13.woody.14_alpha.deb stable/main/binary-alpha/kdelibs3-bin_2.2.2-13.woody.14_alpha.deb stable/main/binary-alpha/libarts-dev_2.2.2-13.woody.14_alpha.deb stable/main/binary-alpha/libkmid-dev_2.2.2-13.woody.14_alpha.deb stable/main/binary-alpha/libkmid-alsa_2.2.2-13.woody.14_alpha.deb stable/main/binary-alpha/libkmid_2.2.2-13.woody.14_alpha.deb stable/main/binary-alpha/libarts-alsa_2.2.2-13.woody.14_alpha.deb stable/main/binary-alpha/kdelibs3_2.2.2-13.woody.14_alpha.deb kdelibs (4:2.2.2-13.woody.14) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix integer overflow [kimgio/xview.cpp, CAN-2005-1046] * Backported upstream patch to prevent the use of unallocated memory in an OOM situation [kimgio/tiffr.cpp, kimgio/xview.cpp] stable/main/binary-arm/libarts-dev_2.2.2-13.woody.14_arm.deb stable/main/binary-arm/kdelibs3-cups_2.2.2-13.woody.14_arm.deb stable/main/binary-arm/libkmid_2.2.2-13.woody.14_arm.deb stable/main/source/kdelibs_2.2.2-13.woody.14.dsc stable/main/binary-arm/libkmid-alsa_2.2.2-13.woody.14_arm.deb stable/main/binary-arm/kdelibs-dev_2.2.2-13.woody.14_arm.deb stable/main/binary-arm/libarts-alsa_2.2.2-13.woody.14_arm.deb stable/main/binary-arm/libarts_2.2.2-13.woody.14_arm.deb stable/main/binary-arm/kdelibs3_2.2.2-13.woody.14_arm.deb stable/main/binary-arm/kdelibs3-bin_2.2.2-13.woody.14_arm.deb stable/main/binary-arm/libkmid-dev_2.2.2-13.woody.14_arm.deb stable/main/binary-all/kdelibs3-doc_2.2.2-13.woody.14_all.deb stable/main/source/kdelibs_2.2.2-13.woody.14.diff.gz kdelibs (4:2.2.2-13.woody.14) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix integer overflow [kimgio/xview.cpp, CAN-2005-1046] * Backported upstream patch to prevent the use of unallocated memory in an OOM situation [kimgio/tiffr.cpp, kimgio/xview.cpp] stable/main/binary-sparc/junkbuster_2.0.2-0.2woody1_sparc.deb junkbuster (2.0.2-0.2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by James Ranson to fix overwriting of the Referrer variable [filters.c, CAN-2005-1108] * Corrected use of strsav() to prevent a heap overflow error [filters.c, CAN-2005-1109] stable/main/binary-s390/junkbuster_2.0.2-0.2woody1_s390.deb junkbuster (2.0.2-0.2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by James Ranson to fix overwriting of the Referrer variable [filters.c, CAN-2005-1108] * Corrected use of strsav() to prevent a heap overflow error [filters.c, CAN-2005-1109] stable/main/binary-powerpc/junkbuster_2.0.2-0.2woody1_powerpc.deb junkbuster (2.0.2-0.2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by James Ranson to fix overwriting of the Referrer variable [filters.c, CAN-2005-1108] * Corrected use of strsav() to prevent a heap overflow error [filters.c, CAN-2005-1109] stable/main/binary-mipsel/junkbuster_2.0.2-0.2woody1_mipsel.deb junkbuster (2.0.2-0.2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by James Ranson to fix overwriting of the Referrer variable [filters.c, CAN-2005-1108] * Corrected use of strsav() to prevent a heap overflow error [filters.c, CAN-2005-1109] stable/main/binary-mips/junkbuster_2.0.2-0.2woody1_mips.deb junkbuster (2.0.2-0.2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by James Ranson to fix overwriting of the Referrer variable [filters.c, CAN-2005-1108] * Corrected use of strsav() to prevent a heap overflow error [filters.c, CAN-2005-1109] stable/main/binary-m68k/junkbuster_2.0.2-0.2woody1_m68k.deb junkbuster (2.0.2-0.2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by James Ranson to fix overwriting of the Referrer variable [filters.c, CAN-2005-1108] * Corrected use of strsav() to prevent a heap overflow error [filters.c, CAN-2005-1109] stable/main/binary-ia64/junkbuster_2.0.2-0.2woody1_ia64.deb junkbuster (2.0.2-0.2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by James Ranson to fix overwriting of the Referrer variable [filters.c, CAN-2005-1108] * Corrected use of strsav() to prevent a heap overflow error [filters.c, CAN-2005-1109] stable/main/binary-i386/junkbuster_2.0.2-0.2woody1_i386.deb junkbuster (2.0.2-0.2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by James Ranson to fix overwriting of the Referrer variable [filters.c, CAN-2005-1108] * Corrected use of strsav() to prevent a heap overflow error [filters.c, CAN-2005-1109] stable/main/binary-hppa/junkbuster_2.0.2-0.2woody1_hppa.deb junkbuster (2.0.2-0.2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by James Ranson to fix overwriting of the Referrer variable [filters.c, CAN-2005-1108] * Corrected use of strsav() to prevent a heap overflow error [filters.c, CAN-2005-1109] stable/main/binary-alpha/junkbuster_2.0.2-0.2woody1_alpha.deb junkbuster (2.0.2-0.2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by James Ranson to fix overwriting of the Referrer variable [filters.c, CAN-2005-1108] * Corrected use of strsav() to prevent a heap overflow error [filters.c, CAN-2005-1109] stable/main/binary-arm/junkbuster_2.0.2-0.2woody1_arm.deb stable/main/source/junkbuster_2.0.2-0.2woody1.dsc stable/main/source/junkbuster_2.0.2-0.2woody1.diff.gz junkbuster (2.0.2-0.2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by James Ranson to fix overwriting of the Referrer variable [filters.c, CAN-2005-1108] * Corrected use of strsav() to prevent a heap overflow error [filters.c, CAN-2005-1109] stable/main/source/info2www_1.2.2.9-20woody1.diff.gz stable/main/source/info2www_1.2.2.9-20woody1.dsc stable/main/binary-all/info2www_1.2.2.9-20woody1_all.deb info2www (1.2.2.9-20woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Uwe Hermann and Justin Pryzby to fix a cross-site scripting vulnerability [info2www, CAN-2004-1341] stable/main/binary-sparc/libgtkhtml-dev_1.0.2-1.woody1_sparc.deb stable/main/binary-sparc/gtkhtml_1.0.2-1.woody1_sparc.deb stable/main/binary-sparc/libgtkhtml20_1.0.2-1.woody1_sparc.deb gtkhtml (1.0.2-1.woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied Mandrake patch to fix denial of service [src/htmltextslave.c, CAN-2003-0541] stable/main/binary-s390/libgtkhtml20_1.0.2-1.woody1_s390.deb stable/main/binary-s390/gtkhtml_1.0.2-1.woody1_s390.deb stable/main/binary-s390/libgtkhtml-dev_1.0.2-1.woody1_s390.deb gtkhtml (1.0.2-1.woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied Mandrake patch to fix denial of service [src/htmltextslave.c, CAN-2003-0541] stable/main/binary-powerpc/gtkhtml_1.0.2-1.woody1_powerpc.deb stable/main/binary-powerpc/libgtkhtml-dev_1.0.2-1.woody1_powerpc.deb stable/main/binary-powerpc/libgtkhtml20_1.0.2-1.woody1_powerpc.deb gtkhtml (1.0.2-1.woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied Mandrake patch to fix denial of service [src/htmltextslave.c, CAN-2003-0541] stable/main/binary-mipsel/libgtkhtml20_1.0.2-1.woody1_mipsel.deb stable/main/binary-mipsel/libgtkhtml-dev_1.0.2-1.woody1_mipsel.deb stable/main/binary-mipsel/gtkhtml_1.0.2-1.woody1_mipsel.deb gtkhtml (1.0.2-1.woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied Mandrake patch to fix denial of service [src/htmltextslave.c, CAN-2003-0541] stable/main/binary-mips/libgtkhtml20_1.0.2-1.woody1_mips.deb stable/main/binary-mips/gtkhtml_1.0.2-1.woody1_mips.deb stable/main/binary-mips/libgtkhtml-dev_1.0.2-1.woody1_mips.deb gtkhtml (1.0.2-1.woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied Mandrake patch to fix denial of service [src/htmltextslave.c, CAN-2003-0541] stable/main/binary-m68k/gtkhtml_1.0.2-1.woody1_m68k.deb stable/main/binary-m68k/libgtkhtml20_1.0.2-1.woody1_m68k.deb stable/main/binary-m68k/libgtkhtml-dev_1.0.2-1.woody1_m68k.deb gtkhtml (1.0.2-1.woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied Mandrake patch to fix denial of service [src/htmltextslave.c, CAN-2003-0541] stable/main/binary-ia64/libgtkhtml20_1.0.2-1.woody1_ia64.deb stable/main/binary-ia64/libgtkhtml-dev_1.0.2-1.woody1_ia64.deb stable/main/binary-ia64/gtkhtml_1.0.2-1.woody1_ia64.deb gtkhtml (1.0.2-1.woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied Mandrake patch to fix denial of service [src/htmltextslave.c, CAN-2003-0541] stable/main/binary-i386/libgtkhtml-dev_1.0.2-1.woody1_i386.deb stable/main/binary-i386/gtkhtml_1.0.2-1.woody1_i386.deb stable/main/binary-i386/libgtkhtml20_1.0.2-1.woody1_i386.deb gtkhtml (1.0.2-1.woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied Mandrake patch to fix denial of service [src/htmltextslave.c, CAN-2003-0541] stable/main/binary-hppa/gtkhtml_1.0.2-1.woody1_hppa.deb stable/main/binary-hppa/libgtkhtml20_1.0.2-1.woody1_hppa.deb stable/main/binary-hppa/libgtkhtml-dev_1.0.2-1.woody1_hppa.deb gtkhtml (1.0.2-1.woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied Mandrake patch to fix denial of service [src/htmltextslave.c, CAN-2003-0541] stable/main/binary-alpha/libgtkhtml20_1.0.2-1.woody1_alpha.deb stable/main/binary-alpha/libgtkhtml-dev_1.0.2-1.woody1_alpha.deb stable/main/binary-alpha/gtkhtml_1.0.2-1.woody1_alpha.deb gtkhtml (1.0.2-1.woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied Mandrake patch to fix denial of service [src/htmltextslave.c, CAN-2003-0541] stable/main/binary-all/libgtkhtml-data_1.0.2-1.woody1_all.deb stable/main/binary-arm/libgtkhtml-dev_1.0.2-1.woody1_arm.deb stable/main/binary-arm/libgtkhtml20_1.0.2-1.woody1_arm.deb stable/main/source/gtkhtml_1.0.2-1.woody1.diff.gz stable/main/binary-arm/gtkhtml_1.0.2-1.woody1_arm.deb stable/main/source/gtkhtml_1.0.2-1.woody1.dsc gtkhtml (1.0.2-1.woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied Mandrake patch to fix denial of service [src/htmltextslave.c, CAN-2003-0541] stable/main/binary-sparc/gwtp_4.06-2woody1_sparc.deb stable/main/binary-sparc/geneweb_4.06-2woody1_sparc.deb geneweb (4.06-2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Removed automatic conversion of older .gwb database files that turned out to be unsafe [debian/geneweb.prerm, CAN-2005-0391, Bug#304405] stable/main/binary-s390/geneweb_4.06-2woody1_s390.deb stable/main/binary-s390/gwtp_4.06-2woody1_s390.deb geneweb (4.06-2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Removed automatic conversion of older .gwb database files that turned out to be unsafe [debian/geneweb.prerm, CAN-2005-0391, Bug#304405] stable/main/binary-powerpc/gwtp_4.06-2woody1_powerpc.deb stable/main/binary-powerpc/geneweb_4.06-2woody1_powerpc.deb geneweb (4.06-2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Removed automatic conversion of older .gwb database files that turned out to be unsafe [debian/geneweb.prerm, CAN-2005-0391, Bug#304405] stable/main/binary-mipsel/geneweb_4.06-2woody1_mipsel.deb stable/main/binary-mipsel/gwtp_4.06-2woody1_mipsel.deb geneweb (4.06-2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Removed automatic conversion of older .gwb database files that turned out to be unsafe [debian/geneweb.prerm, CAN-2005-0391, Bug#304405] stable/main/binary-mips/geneweb_4.06-2woody1_mips.deb stable/main/binary-mips/gwtp_4.06-2woody1_mips.deb geneweb (4.06-2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Removed automatic conversion of older .gwb database files that turned out to be unsafe [debian/geneweb.prerm, CAN-2005-0391, Bug#304405] stable/main/binary-m68k/gwtp_4.06-2woody1_m68k.deb stable/main/binary-m68k/geneweb_4.06-2woody1_m68k.deb geneweb (4.06-2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Removed automatic conversion of older .gwb database files that turned out to be unsafe [debian/geneweb.prerm, CAN-2005-0391, Bug#304405] stable/main/binary-ia64/geneweb_4.06-2woody1_ia64.deb stable/main/binary-ia64/gwtp_4.06-2woody1_ia64.deb geneweb (4.06-2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Removed automatic conversion of older .gwb database files that turned out to be unsafe [debian/geneweb.prerm, CAN-2005-0391, Bug#304405] stable/main/binary-i386/gwtp_4.06-2woody1_i386.deb stable/main/binary-i386/geneweb_4.06-2woody1_i386.deb geneweb (4.06-2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Removed automatic conversion of older .gwb database files that turned out to be unsafe [debian/geneweb.prerm, CAN-2005-0391, Bug#304405] stable/main/binary-hppa/geneweb_4.06-2woody1_hppa.deb stable/main/binary-hppa/gwtp_4.06-2woody1_hppa.deb geneweb (4.06-2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Removed automatic conversion of older .gwb database files that turned out to be unsafe [debian/geneweb.prerm, CAN-2005-0391, Bug#304405] stable/main/binary-alpha/geneweb_4.06-2woody1_alpha.deb stable/main/binary-alpha/gwtp_4.06-2woody1_alpha.deb geneweb (4.06-2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Removed automatic conversion of older .gwb database files that turned out to be unsafe [debian/geneweb.prerm, CAN-2005-0391, Bug#304405] stable/main/binary-arm/geneweb_4.06-2woody1_arm.deb stable/main/source/geneweb_4.06-2woody1.diff.gz stable/main/source/geneweb_4.06-2woody1.dsc stable/main/binary-arm/gwtp_4.06-2woody1_arm.deb geneweb (4.06-2woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Removed automatic conversion of older .gwb database files that turned out to be unsafe [debian/geneweb.prerm, CAN-2005-0391, Bug#304405] stable/main/binary-sparc/gaim-common_0.58-2.5_sparc.deb stable/main/binary-sparc/gaim_0.58-2.5_sparc.deb stable/main/binary-sparc/gaim-gnome_0.58-2.5_sparc.deb gaim (1:0.58-2.5) stable-security; urgency=high * Non-maintainer upload by Security Team * Applied backported upstream patch to fix denial of service [src/protocols/oscar/aim.h, src/protocols/oscar/im.c, src/protocols/oscar/rxqueue.c, CAN-2005-0472] * Thanks a lot to Robert McQueen stable/main/binary-s390/gaim-gnome_0.58-2.5_s390.deb stable/main/binary-s390/gaim_0.58-2.5_s390.deb stable/main/binary-s390/gaim-common_0.58-2.5_s390.deb gaim (1:0.58-2.5) stable-security; urgency=high * Non-maintainer upload by Security Team * Applied backported upstream patch to fix denial of service [src/protocols/oscar/aim.h, src/protocols/oscar/im.c, src/protocols/oscar/rxqueue.c, CAN-2005-0472] * Thanks a lot to Robert McQueen stable/main/binary-powerpc/gaim-common_0.58-2.5_powerpc.deb stable/main/binary-powerpc/gaim-gnome_0.58-2.5_powerpc.deb stable/main/binary-powerpc/gaim_0.58-2.5_powerpc.deb gaim (1:0.58-2.5) stable-security; urgency=high * Non-maintainer upload by Security Team * Applied backported upstream patch to fix denial of service [src/protocols/oscar/aim.h, src/protocols/oscar/im.c, src/protocols/oscar/rxqueue.c, CAN-2005-0472] * Thanks a lot to Robert McQueen stable/main/binary-mips/gaim_0.58-2.5_mips.deb stable/main/binary-mips/gaim-common_0.58-2.5_mips.deb stable/main/binary-mips/gaim-gnome_0.58-2.5_mips.deb gaim (1:0.58-2.5) stable-security; urgency=high * Non-maintainer upload by Security Team * Applied backported upstream patch to fix denial of service [src/protocols/oscar/aim.h, src/protocols/oscar/im.c, src/protocols/oscar/rxqueue.c, CAN-2005-0472] * Thanks a lot to Robert McQueen stable/main/binary-m68k/gaim-gnome_0.58-2.5_m68k.deb stable/main/binary-m68k/gaim_0.58-2.5_m68k.deb stable/main/binary-m68k/gaim-common_0.58-2.5_m68k.deb gaim (1:0.58-2.5) stable-security; urgency=high * Non-maintainer upload by Security Team * Applied backported upstream patch to fix denial of service [src/protocols/oscar/aim.h, src/protocols/oscar/im.c, src/protocols/oscar/rxqueue.c, CAN-2005-0472] * Thanks a lot to Robert McQueen stable/main/binary-ia64/gaim-gnome_0.58-2.5_ia64.deb stable/main/binary-ia64/gaim-common_0.58-2.5_ia64.deb stable/main/binary-ia64/gaim_0.58-2.5_ia64.deb gaim (1:0.58-2.5) stable-security; urgency=high * Non-maintainer upload by Security Team * Applied backported upstream patch to fix denial of service [src/protocols/oscar/aim.h, src/protocols/oscar/im.c, src/protocols/oscar/rxqueue.c, CAN-2005-0472] * Thanks a lot to Robert McQueen stable/main/binary-i386/gaim-common_0.58-2.5_i386.deb stable/main/binary-i386/gaim_0.58-2.5_i386.deb stable/main/binary-i386/gaim-gnome_0.58-2.5_i386.deb gaim (1:0.58-2.5) stable-security; urgency=high * Non-maintainer upload by Security Team * Applied backported upstream patch to fix denial of service [src/protocols/oscar/aim.h, src/protocols/oscar/im.c, src/protocols/oscar/rxqueue.c, CAN-2005-0472] * Thanks a lot to Robert McQueen stable/main/binary-hppa/gaim_0.58-2.5_hppa.deb stable/main/binary-hppa/gaim-gnome_0.58-2.5_hppa.deb stable/main/binary-hppa/gaim-common_0.58-2.5_hppa.deb gaim (1:0.58-2.5) stable-security; urgency=high * Non-maintainer upload by Security Team * Applied backported upstream patch to fix denial of service [src/protocols/oscar/aim.h, src/protocols/oscar/im.c, src/protocols/oscar/rxqueue.c, CAN-2005-0472] * Thanks a lot to Robert McQueen stable/main/binary-arm/gaim_0.58-2.5_arm.deb stable/main/binary-arm/gaim-gnome_0.58-2.5_arm.deb stable/main/binary-arm/gaim-common_0.58-2.5_arm.deb gaim (1:0.58-2.5) stable-security; urgency=high * Non-maintainer upload by Security Team * Applied backported upstream patch to fix denial of service [src/protocols/oscar/aim.h, src/protocols/oscar/im.c, src/protocols/oscar/rxqueue.c, CAN-2005-0472] * Thanks a lot to Robert McQueen stable/main/binary-alpha/gaim_0.58-2.5_alpha.deb stable/main/binary-alpha/gaim-gnome_0.58-2.5_alpha.deb stable/main/binary-alpha/gaim-common_0.58-2.5_alpha.deb gaim (1:0.58-2.5) stable-security; urgency=high * Non-maintainer upload by Security Team * Applied backported upstream patch to fix denial of service [src/protocols/oscar/aim.h, src/protocols/oscar/im.c, src/protocols/oscar/rxqueue.c, CAN-2005-0472] * Thanks a lot to Robert McQueen stable/main/source/gaim_0.58-2.5.diff.gz stable/main/binary-mipsel/gaim-common_0.58-2.5_mipsel.deb stable/main/binary-mipsel/gaim_0.58-2.5_mipsel.deb stable/main/source/gaim_0.58-2.5.dsc stable/main/binary-mipsel/gaim-gnome_0.58-2.5_mipsel.deb gaim (1:0.58-2.5) stable-security; urgency=high * Non-maintainer upload by Security Team * Applied backported upstream patch to fix denial of service [src/protocols/oscar/aim.h, src/protocols/oscar/im.c, src/protocols/oscar/rxqueue.c, CAN-2005-0472] * Thanks a lot to Robert McQueen stable/main/binary-sparc/f2c_20010821-3.2_sparc.deb f2c (20010821-3.2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the patch to create proper temporary files by not shadowing global scope variables with local scope ones. Thanks to Dan McMahill from NetBSD [src/sysdep.c, patches/patch.CAN-2005-0017.f2c, CAN-2005-0017] stable/main/binary-s390/f2c_20010821-3.2_s390.deb f2c (20010821-3.2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the patch to create proper temporary files by not shadowing global scope variables with local scope ones. Thanks to Dan McMahill from NetBSD [src/sysdep.c, patches/patch.CAN-2005-0017.f2c, CAN-2005-0017] stable/main/binary-powerpc/f2c_20010821-3.2_powerpc.deb f2c (20010821-3.2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the patch to create proper temporary files by not shadowing global scope variables with local scope ones. Thanks to Dan McMahill from NetBSD [src/sysdep.c, patches/patch.CAN-2005-0017.f2c, CAN-2005-0017] stable/main/binary-mipsel/f2c_20010821-3.2_mipsel.deb f2c (20010821-3.2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the patch to create proper temporary files by not shadowing global scope variables with local scope ones. Thanks to Dan McMahill from NetBSD [src/sysdep.c, patches/patch.CAN-2005-0017.f2c, CAN-2005-0017] stable/main/binary-mips/f2c_20010821-3.2_mips.deb f2c (20010821-3.2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the patch to create proper temporary files by not shadowing global scope variables with local scope ones. Thanks to Dan McMahill from NetBSD [src/sysdep.c, patches/patch.CAN-2005-0017.f2c, CAN-2005-0017] stable/main/binary-m68k/f2c_20010821-3.2_m68k.deb f2c (20010821-3.2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the patch to create proper temporary files by not shadowing global scope variables with local scope ones. Thanks to Dan McMahill from NetBSD [src/sysdep.c, patches/patch.CAN-2005-0017.f2c, CAN-2005-0017] stable/main/binary-ia64/f2c_20010821-3.2_ia64.deb f2c (20010821-3.2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the patch to create proper temporary files by not shadowing global scope variables with local scope ones. Thanks to Dan McMahill from NetBSD [src/sysdep.c, patches/patch.CAN-2005-0017.f2c, CAN-2005-0017] stable/main/binary-i386/f2c_20010821-3.2_i386.deb f2c (20010821-3.2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the patch to create proper temporary files by not shadowing global scope variables with local scope ones. Thanks to Dan McMahill from NetBSD [src/sysdep.c, patches/patch.CAN-2005-0017.f2c, CAN-2005-0017] stable/main/binary-hppa/f2c_20010821-3.2_hppa.deb f2c (20010821-3.2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the patch to create proper temporary files by not shadowing global scope variables with local scope ones. Thanks to Dan McMahill from NetBSD [src/sysdep.c, patches/patch.CAN-2005-0017.f2c, CAN-2005-0017] stable/main/binary-alpha/f2c_20010821-3.2_alpha.deb f2c (20010821-3.2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the patch to create proper temporary files by not shadowing global scope variables with local scope ones. Thanks to Dan McMahill from NetBSD [src/sysdep.c, patches/patch.CAN-2005-0017.f2c, CAN-2005-0017] stable/main/binary-arm/f2c_20010821-3.2_arm.deb stable/main/source/f2c_20010821-3.2.dsc stable/main/source/f2c_20010821-3.2.diff.gz f2c (20010821-3.2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the patch to create proper temporary files by not shadowing global scope variables with local scope ones. Thanks to Dan McMahill from NetBSD [src/sysdep.c, patches/patch.CAN-2005-0017.f2c, CAN-2005-0017] stable/main/binary-sparc/tethereal_0.9.4-1woody12_sparc.deb stable/main/binary-sparc/ethereal-common_0.9.4-1woody12_sparc.deb stable/main/binary-sparc/ethereal-dev_0.9.4-1woody12_sparc.deb stable/main/binary-sparc/ethereal_0.9.4-1woody12_sparc.deb ethereal (0.9.4-1woody12) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix buffer overflow in the IAPP dissector [packet-iapp.c, CAN-2005-0739] stable/main/binary-s390/ethereal_0.9.4-1woody12_s390.deb stable/main/binary-s390/tethereal_0.9.4-1woody12_s390.deb stable/main/binary-s390/ethereal-common_0.9.4-1woody12_s390.deb stable/main/binary-s390/ethereal-dev_0.9.4-1woody12_s390.deb ethereal (0.9.4-1woody12) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix buffer overflow in the IAPP dissector [packet-iapp.c, CAN-2005-0739] stable/main/binary-powerpc/ethereal-common_0.9.4-1woody12_powerpc.deb stable/main/binary-powerpc/tethereal_0.9.4-1woody12_powerpc.deb stable/main/binary-powerpc/ethereal-dev_0.9.4-1woody12_powerpc.deb stable/main/binary-powerpc/ethereal_0.9.4-1woody12_powerpc.deb ethereal (0.9.4-1woody12) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix buffer overflow in the IAPP dissector [packet-iapp.c, CAN-2005-0739] stable/main/binary-mips/ethereal-common_0.9.4-1woody12_mips.deb stable/main/binary-mips/ethereal_0.9.4-1woody12_mips.deb stable/main/binary-mips/ethereal-dev_0.9.4-1woody12_mips.deb stable/main/binary-mips/tethereal_0.9.4-1woody12_mips.deb ethereal (0.9.4-1woody12) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix buffer overflow in the IAPP dissector [packet-iapp.c, CAN-2005-0739] stable/main/binary-m68k/ethereal-dev_0.9.4-1woody12_m68k.deb stable/main/binary-m68k/ethereal_0.9.4-1woody12_m68k.deb stable/main/binary-m68k/ethereal-common_0.9.4-1woody12_m68k.deb stable/main/binary-m68k/tethereal_0.9.4-1woody12_m68k.deb ethereal (0.9.4-1woody12) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix buffer overflow in the IAPP dissector [packet-iapp.c, CAN-2005-0739] stable/main/binary-ia64/ethereal_0.9.4-1woody12_ia64.deb stable/main/binary-ia64/ethereal-common_0.9.4-1woody12_ia64.deb stable/main/binary-ia64/ethereal-dev_0.9.4-1woody12_ia64.deb stable/main/binary-ia64/tethereal_0.9.4-1woody12_ia64.deb ethereal (0.9.4-1woody12) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix buffer overflow in the IAPP dissector [packet-iapp.c, CAN-2005-0739] stable/main/binary-i386/tethereal_0.9.4-1woody12_i386.deb stable/main/binary-i386/ethereal-dev_0.9.4-1woody12_i386.deb stable/main/binary-i386/ethereal_0.9.4-1woody12_i386.deb stable/main/binary-i386/ethereal-common_0.9.4-1woody12_i386.deb ethereal (0.9.4-1woody12) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix buffer overflow in the IAPP dissector [packet-iapp.c, CAN-2005-0739] stable/main/binary-hppa/ethereal-common_0.9.4-1woody12_hppa.deb stable/main/binary-hppa/ethereal-dev_0.9.4-1woody12_hppa.deb stable/main/binary-hppa/ethereal_0.9.4-1woody12_hppa.deb stable/main/binary-hppa/tethereal_0.9.4-1woody12_hppa.deb ethereal (0.9.4-1woody12) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix buffer overflow in the IAPP dissector [packet-iapp.c, CAN-2005-0739] stable/main/binary-arm/ethereal_0.9.4-1woody12_arm.deb stable/main/binary-arm/tethereal_0.9.4-1woody12_arm.deb stable/main/binary-arm/ethereal-dev_0.9.4-1woody12_arm.deb stable/main/binary-arm/ethereal-common_0.9.4-1woody12_arm.deb ethereal (0.9.4-1woody12) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix buffer overflow in the IAPP dissector [packet-iapp.c, CAN-2005-0739] stable/main/binary-alpha/ethereal_0.9.4-1woody12_alpha.deb stable/main/binary-alpha/ethereal-dev_0.9.4-1woody12_alpha.deb stable/main/binary-alpha/ethereal-common_0.9.4-1woody12_alpha.deb stable/main/binary-alpha/tethereal_0.9.4-1woody12_alpha.deb ethereal (0.9.4-1woody12) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix buffer overflow in the IAPP dissector [packet-iapp.c, CAN-2005-0739] stable/main/binary-mipsel/ethereal_0.9.4-1woody12_mipsel.deb stable/main/source/ethereal_0.9.4-1woody12.dsc stable/main/source/ethereal_0.9.4-1woody12.diff.gz stable/main/binary-mipsel/tethereal_0.9.4-1woody12_mipsel.deb stable/main/binary-mipsel/ethereal-common_0.9.4-1woody12_mipsel.deb stable/main/binary-mipsel/ethereal-dev_0.9.4-1woody12_mipsel.deb ethereal (0.9.4-1woody12) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix buffer overflow in the IAPP dissector [packet-iapp.c, CAN-2005-0739] stable/main/source/doc-base_0.7.11-0.woody1.dsc stable/main/source/doc-base_0.7.11-0.woody1.tar.gz stable/main/binary-all/doc-base_0.7.11-0.woody1_all.deb doc-base (0.7.11-0.woody1) stable; urgency=low * Non-maintainer upload by the release team. * Backport the following patch by Steve Langasek and Colin Watson to woody: * Fix install-docs to not require perl's File::Basename, so that it works even when perl is unconfigured. See #278495. stable/main/binary-sparc/cvs_1.11.1p1debian-10_sparc.deb cvs (1.11.1p1debian-10) stable-security; urgency=high * Fixes to the cvs-repouid changes: + Make sure user passwords are still checked if the cvs-repouids file exists. Closes: #260200, CAN-2004-1342 + Fix potential crash if the cvs-repouids file exists but does not contain a mapping for the current repository, CAN-2004-1343 + debian/patches/80_cvs-repouid-0.1 stable/main/binary-s390/cvs_1.11.1p1debian-10_s390.deb cvs (1.11.1p1debian-10) stable-security; urgency=high * Fixes to the cvs-repouid changes: + Make sure user passwords are still checked if the cvs-repouids file exists. Closes: #260200, CAN-2004-1342 + Fix potential crash if the cvs-repouids file exists but does not contain a mapping for the current repository, CAN-2004-1343 + debian/patches/80_cvs-repouid-0.1 stable/main/binary-powerpc/cvs_1.11.1p1debian-10_powerpc.deb cvs (1.11.1p1debian-10) stable-security; urgency=high * Fixes to the cvs-repouid changes: + Make sure user passwords are still checked if the cvs-repouids file exists. Closes: #260200, CAN-2004-1342 + Fix potential crash if the cvs-repouids file exists but does not contain a mapping for the current repository, CAN-2004-1343 + debian/patches/80_cvs-repouid-0.1 stable/main/binary-mipsel/cvs_1.11.1p1debian-10_mipsel.deb cvs (1.11.1p1debian-10) stable-security; urgency=high * Fixes to the cvs-repouid changes: + Make sure user passwords are still checked if the cvs-repouids file exists. Closes: #260200, CAN-2004-1342 + Fix potential crash if the cvs-repouids file exists but does not contain a mapping for the current repository, CAN-2004-1343 + debian/patches/80_cvs-repouid-0.1 stable/main/binary-mips/cvs_1.11.1p1debian-10_mips.deb cvs (1.11.1p1debian-10) stable-security; urgency=high * Fixes to the cvs-repouid changes: + Make sure user passwords are still checked if the cvs-repouids file exists. Closes: #260200, CAN-2004-1342 + Fix potential crash if the cvs-repouids file exists but does not contain a mapping for the current repository, CAN-2004-1343 + debian/patches/80_cvs-repouid-0.1 stable/main/binary-m68k/cvs_1.11.1p1debian-10_m68k.deb cvs (1.11.1p1debian-10) stable-security; urgency=high * Fixes to the cvs-repouid changes: + Make sure user passwords are still checked if the cvs-repouids file exists. Closes: #260200, CAN-2004-1342 + Fix potential crash if the cvs-repouids file exists but does not contain a mapping for the current repository, CAN-2004-1343 + debian/patches/80_cvs-repouid-0.1 stable/main/binary-ia64/cvs_1.11.1p1debian-10_ia64.deb cvs (1.11.1p1debian-10) stable-security; urgency=high * Fixes to the cvs-repouid changes: + Make sure user passwords are still checked if the cvs-repouids file exists. Closes: #260200, CAN-2004-1342 + Fix potential crash if the cvs-repouids file exists but does not contain a mapping for the current repository, CAN-2004-1343 + debian/patches/80_cvs-repouid-0.1 stable/main/binary-i386/cvs_1.11.1p1debian-10_i386.deb cvs (1.11.1p1debian-10) stable-security; urgency=high * Fixes to the cvs-repouid changes: + Make sure user passwords are still checked if the cvs-repouids file exists. Closes: #260200, CAN-2004-1342 + Fix potential crash if the cvs-repouids file exists but does not contain a mapping for the current repository, CAN-2004-1343 + debian/patches/80_cvs-repouid-0.1 stable/main/binary-hppa/cvs_1.11.1p1debian-10_hppa.deb cvs (1.11.1p1debian-10) stable-security; urgency=high * Fixes to the cvs-repouid changes: + Make sure user passwords are still checked if the cvs-repouids file exists. Closes: #260200, CAN-2004-1342 + Fix potential crash if the cvs-repouids file exists but does not contain a mapping for the current repository, CAN-2004-1343 + debian/patches/80_cvs-repouid-0.1 stable/main/binary-alpha/cvs_1.11.1p1debian-10_alpha.deb cvs (1.11.1p1debian-10) stable-security; urgency=high * Fixes to the cvs-repouid changes: + Make sure user passwords are still checked if the cvs-repouids file exists. Closes: #260200, CAN-2004-1342 + Fix potential crash if the cvs-repouids file exists but does not contain a mapping for the current repository, CAN-2004-1343 + debian/patches/80_cvs-repouid-0.1 stable/main/binary-arm/cvs_1.11.1p1debian-10_arm.deb stable/main/source/cvs_1.11.1p1debian-10.diff.gz stable/main/source/cvs_1.11.1p1debian-10.dsc cvs (1.11.1p1debian-10) stable-security; urgency=high * Fixes to the cvs-repouid changes: + Make sure user passwords are still checked if the cvs-repouids file exists. Closes: #260200, CAN-2004-1342 + Fix potential crash if the cvs-repouids file exists but does not contain a mapping for the current repository, CAN-2004-1343 + debian/patches/80_cvs-repouid-0.1 stable/main/binary-sparc/libbz2-dev_1.0.2-1.woody2_sparc.deb stable/main/binary-sparc/libbz2-1.0_1.0.2-1.woody2_sparc.deb stable/main/binary-sparc/bzip2_1.0.2-1.woody2_sparc.deb bzip2 (1.0.2-1.woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * No changes rebuild because maintainer prevented distribution of security fix, thanks a lot! stable/main/binary-s390/bzip2_1.0.2-1.woody2_s390.deb stable/main/binary-s390/libbz2-1.0_1.0.2-1.woody2_s390.deb stable/main/binary-s390/libbz2-dev_1.0.2-1.woody2_s390.deb bzip2 (1.0.2-1.woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * No changes rebuild because maintainer prevented distribution of security fix, thanks a lot! stable/main/binary-powerpc/bzip2_1.0.2-1.woody2_powerpc.deb stable/main/binary-powerpc/libbz2-dev_1.0.2-1.woody2_powerpc.deb stable/main/binary-powerpc/libbz2-1.0_1.0.2-1.woody2_powerpc.deb bzip2 (1.0.2-1.woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * No changes rebuild because maintainer prevented distribution of security fix, thanks a lot! stable/main/binary-mipsel/bzip2_1.0.2-1.woody2_mipsel.deb stable/main/binary-mipsel/libbz2-dev_1.0.2-1.woody2_mipsel.deb stable/main/binary-mipsel/libbz2-1.0_1.0.2-1.woody2_mipsel.deb bzip2 (1.0.2-1.woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * No changes rebuild because maintainer prevented distribution of security fix, thanks a lot! stable/main/binary-mips/bzip2_1.0.2-1.woody2_mips.deb stable/main/binary-mips/libbz2-1.0_1.0.2-1.woody2_mips.deb stable/main/binary-mips/libbz2-dev_1.0.2-1.woody2_mips.deb bzip2 (1.0.2-1.woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * No changes rebuild because maintainer prevented distribution of security fix, thanks a lot! stable/main/binary-m68k/bzip2_1.0.2-1.woody2_m68k.deb stable/main/binary-m68k/libbz2-dev_1.0.2-1.woody2_m68k.deb stable/main/binary-m68k/libbz2-1.0_1.0.2-1.woody2_m68k.deb bzip2 (1.0.2-1.woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * No changes rebuild because maintainer prevented distribution of security fix, thanks a lot! stable/main/binary-ia64/bzip2_1.0.2-1.woody2_ia64.deb stable/main/binary-ia64/libbz2-1.0_1.0.2-1.woody2_ia64.deb stable/main/binary-ia64/libbz2-dev_1.0.2-1.woody2_ia64.deb bzip2 (1.0.2-1.woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * No changes rebuild because maintainer prevented distribution of security fix, thanks a lot! stable/main/binary-hppa/libbz2-dev_1.0.2-1.woody2_hppa.deb stable/main/binary-hppa/bzip2_1.0.2-1.woody2_hppa.deb stable/main/binary-hppa/libbz2-1.0_1.0.2-1.woody2_hppa.deb bzip2 (1.0.2-1.woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * No changes rebuild because maintainer prevented distribution of security fix, thanks a lot! stable/main/binary-arm/libbz2-1.0_1.0.2-1.woody2_arm.deb stable/main/binary-arm/libbz2-dev_1.0.2-1.woody2_arm.deb stable/main/binary-arm/bzip2_1.0.2-1.woody2_arm.deb bzip2 (1.0.2-1.woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * No changes rebuild because maintainer prevented distribution of security fix, thanks a lot! stable/main/binary-alpha/bzip2_1.0.2-1.woody2_alpha.deb stable/main/binary-alpha/libbz2-1.0_1.0.2-1.woody2_alpha.deb stable/main/binary-alpha/libbz2-dev_1.0.2-1.woody2_alpha.deb bzip2 (1.0.2-1.woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * No changes rebuild because maintainer prevented distribution of security fix, thanks a lot! stable/main/binary-i386/libbz2-dev_1.0.2-1.woody2_i386.deb stable/main/binary-i386/libbz2-1.0_1.0.2-1.woody2_i386.deb stable/main/source/bzip2_1.0.2-1.woody2.dsc stable/main/source/bzip2_1.0.2-1.woody2.diff.gz stable/main/binary-i386/bzip2_1.0.2-1.woody2_i386.deb bzip2 (1.0.2-1.woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * No changes rebuild because maintainer prevented distribution of security fix, thanks a lot! ========================================= Fri, 15 Apr 2005 - Debian 3.0r5 released ========================================= ========================================================================= [Date: Fri, 15 Apr 2005 18:25:38 -0400] [ftpmaster: Joerg Jaspert] Removed the following packages from stable: eemu | 2.34.1-1 | source eemu-client | 2.34.1-1 | alpha, arm, hppa, i386, ia64, m68k, powerpc, s390 Closed bugs: 258921 ------------------- Reason ------------------- RoSRM: License violation, Bug#258921 ---------------------------------------------- ========================================================================= [Date: Fri, 15 Apr 2005 18:27:40 -0400] [ftpmaster: Joerg Jaspert] Removed the following packages from stable: gg | 0.2.1-2 | source gg-gnome | 0.2.1-2 | alpha, arm, hppa, i386, ia64, m68k, mips, mipsel, powerpc, s390, sparc gg-gtk | 0.2.1-2 | alpha, arm, hppa, i386, ia64, m68k, mips, mipsel, powerpc, s390, sparc Closed bugs: 257620 ------------------- Reason ------------------- RoSRM: Package can not be used anymore due to protocol changes. Bug#257620 ---------------------------------------------- ========================================================================= [Date: Fri, 15 Apr 2005 18:29:06 -0400] [ftpmaster: Joerg Jaspert] Removed the following packages from stable: gstar | 1.0-6 | source, alpha, arm, hppa, i386, ia64, m68k, mips, mipsel, powerpc, s390, sparc Closed bugs: 252885 ------------------- Reason ------------------- RoSRM: GPL licensed with non-free component, hence not distributable Bug#252885 ---------------------------------------------- ========================================================================= [Date: Fri, 15 Apr 2005 18:30:44 -0400] [ftpmaster: Joerg Jaspert] Removed the following packages from stable: xzx | 2.9.0-1.1 | source, arm, hppa, i386, ia64, m68k, powerpc, s390 xzx | 2.9.0-1.1.1 | alpha Closed bugs: 240941 ------------------- Reason ------------------- RoSRM: Unmodifiable - undistributable. Bug#240941 ---------------------------------------------- ========================================================================= stable/main/binary-sparc/zip_2.30-5woody2_sparc.deb zip (2.30-5woody2) stable-security; urgency=medium * Fixed buffer overflow in unix.c, which happens when creating archives with very long filenames (Bug #279867). This is CAN-2004-1010. Semi-official patch by Greg Roelofs, long filenames are now supported. stable/main/binary-s390/zip_2.30-5woody2_s390.deb zip (2.30-5woody2) stable-security; urgency=medium * Fixed buffer overflow in unix.c, which happens when creating archives with very long filenames (Bug #279867). This is CAN-2004-1010. Semi-official patch by Greg Roelofs, long filenames are now supported. stable/main/binary-powerpc/zip_2.30-5woody2_powerpc.deb zip (2.30-5woody2) stable-security; urgency=medium * Fixed buffer overflow in unix.c, which happens when creating archives with very long filenames (Bug #279867). This is CAN-2004-1010. Semi-official patch by Greg Roelofs, long filenames are now supported. stable/main/binary-mipsel/zip_2.30-5woody2_mipsel.deb zip (2.30-5woody2) stable-security; urgency=medium * Fixed buffer overflow in unix.c, which happens when creating archives with very long filenames (Bug #279867). This is CAN-2004-1010. Semi-official patch by Greg Roelofs, long filenames are now supported. stable/main/binary-mips/zip_2.30-5woody2_mips.deb zip (2.30-5woody2) stable-security; urgency=medium * Fixed buffer overflow in unix.c, which happens when creating archives with very long filenames (Bug #279867). This is CAN-2004-1010. Semi-official patch by Greg Roelofs, long filenames are now supported. stable/main/binary-m68k/zip_2.30-5woody2_m68k.deb zip (2.30-5woody2) stable-security; urgency=medium * Fixed buffer overflow in unix.c, which happens when creating archives with very long filenames (Bug #279867). This is CAN-2004-1010. Semi-official patch by Greg Roelofs, long filenames are now supported. stable/main/binary-ia64/zip_2.30-5woody2_ia64.deb zip (2.30-5woody2) stable-security; urgency=medium * Fixed buffer overflow in unix.c, which happens when creating archives with very long filenames (Bug #279867). This is CAN-2004-1010. Semi-official patch by Greg Roelofs, long filenames are now supported. stable/main/binary-hppa/zip_2.30-5woody2_hppa.deb zip (2.30-5woody2) stable-security; urgency=medium * Fixed buffer overflow in unix.c, which happens when creating archives with very long filenames (Bug #279867). This is CAN-2004-1010. Semi-official patch by Greg Roelofs, long filenames are now supported. stable/main/binary-arm/zip_2.30-5woody2_arm.deb zip (2.30-5woody2) stable-security; urgency=medium * Fixed buffer overflow in unix.c, which happens when creating archives with very long filenames (Bug #279867). This is CAN-2004-1010. Semi-official patch by Greg Roelofs, long filenames are now supported. stable/main/binary-alpha/zip_2.30-5woody2_alpha.deb zip (2.30-5woody2) stable-security; urgency=medium * Fixed buffer overflow in unix.c, which happens when creating archives with very long filenames (Bug #279867). This is CAN-2004-1010. Semi-official patch by Greg Roelofs, long filenames are now supported. stable/main/binary-i386/zip_2.30-5woody2_i386.deb stable/main/source/zip_2.30-5woody2.diff.gz stable/main/source/zip_2.30-5woody2.dsc zip (2.30-5woody2) stable-security; urgency=medium * Fixed buffer overflow in unix.c, which happens when creating archives with very long filenames (Bug #279867). This is CAN-2004-1010. Semi-official patch by Greg Roelofs, long filenames are now supported. stable/main/binary-sparc/zhcon_0.2-4woody3_sparc.deb zhcon (1:0.2-4woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the patch to prevent unauthorised file access [src/configfile.cpp, CAN-2005-0072] stable/main/binary-s390/zhcon_0.2-4woody3_s390.deb zhcon (1:0.2-4woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the patch to prevent unauthorised file access [src/configfile.cpp, CAN-2005-0072] stable/main/binary-powerpc/zhcon_0.2-4woody3_powerpc.deb zhcon (1:0.2-4woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the patch to prevent unauthorised file access [src/configfile.cpp, CAN-2005-0072] stable/main/binary-mips/zhcon_0.2-4woody3_mips.deb zhcon (1:0.2-4woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the patch to prevent unauthorised file access [src/configfile.cpp, CAN-2005-0072] stable/main/binary-m68k/zhcon_0.2-4woody3_m68k.deb zhcon (1:0.2-4woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the patch to prevent unauthorised file access [src/configfile.cpp, CAN-2005-0072] stable/main/binary-ia64/zhcon_0.2-4woody3_ia64.deb zhcon (1:0.2-4woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the patch to prevent unauthorised file access [src/configfile.cpp, CAN-2005-0072] stable/main/binary-i386/zhcon_0.2-4woody3_i386.deb zhcon (1:0.2-4woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the patch to prevent unauthorised file access [src/configfile.cpp, CAN-2005-0072] stable/main/binary-hppa/zhcon_0.2-4woody3_hppa.deb zhcon (1:0.2-4woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the patch to prevent unauthorised file access [src/configfile.cpp, CAN-2005-0072] stable/main/binary-arm/zhcon_0.2-4woody3_arm.deb zhcon (1:0.2-4woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the patch to prevent unauthorised file access [src/configfile.cpp, CAN-2005-0072] stable/main/binary-alpha/zhcon_0.2-4woody3_alpha.deb zhcon (1:0.2-4woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the patch to prevent unauthorised file access [src/configfile.cpp, CAN-2005-0072] stable/main/binary-mipsel/zhcon_0.2-4woody3_mipsel.deb stable/main/source/zhcon_0.2-4woody3.dsc stable/main/source/zhcon_0.2-4woody3.diff.gz zhcon (1:0.2-4woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the patch to prevent unauthorised file access [src/configfile.cpp, CAN-2005-0072] stable/main/binary-sparc/xviewg_3.2p1.4-16woody2_sparc.deb stable/main/binary-sparc/xviewg-dev_3.2p1.4-16woody2_sparc.deb stable/main/binary-sparc/xview-clients_3.2p1.4-16woody2_sparc.deb stable/main/binary-sparc/olvwm_4.4.3.2p1.4-16woody2_sparc.deb stable/main/binary-sparc/olwm_3.2p1.4-16woody2_sparc.deb stable/main/binary-sparc/xview-examples_3.2p1.4-16woody2_sparc.deb xview (3.2p1.4-16woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflows [lib/libxview/base/xv_parse.c, CAN-2005-0076] stable/main/binary-s390/xview-clients_3.2p1.4-16woody2_s390.deb stable/main/binary-s390/olvwm_4.4.3.2p1.4-16woody2_s390.deb stable/main/binary-s390/xview-examples_3.2p1.4-16woody2_s390.deb stable/main/binary-s390/olwm_3.2p1.4-16woody2_s390.deb stable/main/binary-s390/xviewg_3.2p1.4-16woody2_s390.deb stable/main/binary-s390/xviewg-dev_3.2p1.4-16woody2_s390.deb xview (3.2p1.4-16woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflows [lib/libxview/base/xv_parse.c, CAN-2005-0076] stable/main/binary-powerpc/xviewg-dev_3.2p1.4-16woody2_powerpc.deb stable/main/binary-powerpc/olwm_3.2p1.4-16woody2_powerpc.deb stable/main/binary-powerpc/xviewg_3.2p1.4-16woody2_powerpc.deb stable/main/binary-powerpc/xview-clients_3.2p1.4-16woody2_powerpc.deb stable/main/binary-powerpc/xview-examples_3.2p1.4-16woody2_powerpc.deb stable/main/binary-powerpc/olvwm_4.4.3.2p1.4-16woody2_powerpc.deb xview (3.2p1.4-16woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflows [lib/libxview/base/xv_parse.c, CAN-2005-0076] stable/main/binary-mips/olwm_3.2p1.4-16woody2_mips.deb stable/main/binary-mips/xview-examples_3.2p1.4-16woody2_mips.deb stable/main/binary-mips/xview-clients_3.2p1.4-16woody2_mips.deb stable/main/binary-mips/olvwm_4.4.3.2p1.4-16woody2_mips.deb stable/main/binary-mips/xviewg-dev_3.2p1.4-16woody2_mips.deb stable/main/binary-mips/xviewg_3.2p1.4-16woody2_mips.deb xview (3.2p1.4-16woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflows [lib/libxview/base/xv_parse.c, CAN-2005-0076] stable/main/binary-m68k/xviewg_3.2p1.4-16woody2_m68k.deb stable/main/binary-m68k/xviewg-dev_3.2p1.4-16woody2_m68k.deb stable/main/binary-m68k/olvwm_4.4.3.2p1.4-16woody2_m68k.deb stable/main/binary-m68k/olwm_3.2p1.4-16woody2_m68k.deb stable/main/binary-m68k/xview-clients_3.2p1.4-16woody2_m68k.deb stable/main/binary-m68k/xview-examples_3.2p1.4-16woody2_m68k.deb xview (3.2p1.4-16woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflows [lib/libxview/base/xv_parse.c, CAN-2005-0076] stable/main/binary-i386/xviewg-dev_3.2p1.4-16woody2_i386.deb stable/main/binary-i386/xview-examples_3.2p1.4-16woody2_i386.deb stable/main/binary-i386/olvwm_4.4.3.2p1.4-16woody2_i386.deb stable/main/binary-i386/olwm_3.2p1.4-16woody2_i386.deb stable/main/binary-i386/xviewg_3.2p1.4-16woody2_i386.deb stable/main/binary-i386/xview-clients_3.2p1.4-16woody2_i386.deb xview (3.2p1.4-16woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflows [lib/libxview/base/xv_parse.c, CAN-2005-0076] stable/main/binary-hppa/xviewg-dev_3.2p1.4-16woody2_hppa.deb stable/main/binary-hppa/olwm_3.2p1.4-16woody2_hppa.deb stable/main/binary-hppa/olvwm_4.4.3.2p1.4-16woody2_hppa.deb stable/main/binary-hppa/xview-examples_3.2p1.4-16woody2_hppa.deb stable/main/binary-hppa/xview-clients_3.2p1.4-16woody2_hppa.deb stable/main/binary-hppa/xviewg_3.2p1.4-16woody2_hppa.deb xview (3.2p1.4-16woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflows [lib/libxview/base/xv_parse.c, CAN-2005-0076] stable/main/binary-arm/xview-examples_3.2p1.4-16woody2_arm.deb stable/main/binary-arm/xview-clients_3.2p1.4-16woody2_arm.deb stable/main/binary-arm/xviewg-dev_3.2p1.4-16woody2_arm.deb stable/main/binary-arm/olwm_3.2p1.4-16woody2_arm.deb stable/main/binary-arm/olvwm_4.4.3.2p1.4-16woody2_arm.deb stable/main/binary-arm/xviewg_3.2p1.4-16woody2_arm.deb xview (3.2p1.4-16woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflows [lib/libxview/base/xv_parse.c, CAN-2005-0076] stable/main/binary-alpha/olwm_3.2p1.4-16woody2_alpha.deb stable/main/binary-alpha/xview-examples_3.2p1.4-16woody2_alpha.deb stable/main/binary-alpha/olvwm_4.4.3.2p1.4-16woody2_alpha.deb stable/main/binary-alpha/xview-clients_3.2p1.4-16woody2_alpha.deb stable/main/binary-alpha/xviewg-dev_3.2p1.4-16woody2_alpha.deb stable/main/binary-alpha/xviewg_3.2p1.4-16woody2_alpha.deb xview (3.2p1.4-16woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflows [lib/libxview/base/xv_parse.c, CAN-2005-0076] stable/main/source/xview_3.2p1.4-16woody2.dsc stable/main/binary-mipsel/olvwm_4.4.3.2p1.4-16woody2_mipsel.deb stable/main/source/xview_3.2p1.4-16woody2.diff.gz stable/main/binary-mipsel/xview-clients_3.2p1.4-16woody2_mipsel.deb stable/main/binary-mipsel/xview-examples_3.2p1.4-16woody2_mipsel.deb stable/main/binary-mipsel/olwm_3.2p1.4-16woody2_mipsel.deb stable/main/binary-mipsel/xviewg-dev_3.2p1.4-16woody2_mipsel.deb stable/main/binary-mipsel/xviewg_3.2p1.4-16woody2_mipsel.deb xview (3.2p1.4-16woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflows [lib/libxview/base/xv_parse.c, CAN-2005-0076] stable/main/binary-sparc/xtrlock_2.0-6woody2_sparc.deb xtrlock (2.0-6woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Justin Pryzby to fix integer overflow [xtrlock.c, CAN-2005-0079] * Added build dependencies stable/main/binary-s390/xtrlock_2.0-6woody2_s390.deb xtrlock (2.0-6woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Justin Pryzby to fix integer overflow [xtrlock.c, CAN-2005-0079] * Added build dependencies stable/main/binary-powerpc/xtrlock_2.0-6woody2_powerpc.deb xtrlock (2.0-6woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Justin Pryzby to fix integer overflow [xtrlock.c, CAN-2005-0079] * Added build dependencies stable/main/binary-mips/xtrlock_2.0-6woody2_mips.deb xtrlock (2.0-6woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Justin Pryzby to fix integer overflow [xtrlock.c, CAN-2005-0079] * Added build dependencies stable/main/binary-m68k/xtrlock_2.0-6woody2_m68k.deb xtrlock (2.0-6woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Justin Pryzby to fix integer overflow [xtrlock.c, CAN-2005-0079] * Added build dependencies stable/main/binary-ia64/xtrlock_2.0-6woody2_ia64.deb xtrlock (2.0-6woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Justin Pryzby to fix integer overflow [xtrlock.c, CAN-2005-0079] * Added build dependencies stable/main/binary-i386/xtrlock_2.0-6woody2_i386.deb xtrlock (2.0-6woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Justin Pryzby to fix integer overflow [xtrlock.c, CAN-2005-0079] * Added build dependencies stable/main/binary-hppa/xtrlock_2.0-6woody2_hppa.deb xtrlock (2.0-6woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Justin Pryzby to fix integer overflow [xtrlock.c, CAN-2005-0079] * Added build dependencies stable/main/binary-arm/xtrlock_2.0-6woody2_arm.deb xtrlock (2.0-6woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Justin Pryzby to fix integer overflow [xtrlock.c, CAN-2005-0079] * Added build dependencies stable/main/binary-alpha/xtrlock_2.0-6woody2_alpha.deb xtrlock (2.0-6woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Justin Pryzby to fix integer overflow [xtrlock.c, CAN-2005-0079] * Added build dependencies stable/main/binary-mipsel/xtrlock_2.0-6woody2_mipsel.deb stable/main/source/xtrlock_2.0-6woody2.dsc stable/main/source/xtrlock_2.0-6woody2.tar.gz xtrlock (2.0-6woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Justin Pryzby to fix integer overflow [xtrlock.c, CAN-2005-0079] * Added build dependencies stable/main/binary-sparc/xpdf-utils_1.00-3.4_sparc.deb stable/main/binary-sparc/xpdf-reader_1.00-3.4_sparc.deb xpdf (1.00-3.4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow that could overwrite the stack and hence cause the execution of arbitrary code as reported by iDEFENSE [src/Decrypt.cc, CAN-2005-0064] stable/main/binary-s390/xpdf-utils_1.00-3.4_s390.deb stable/main/binary-s390/xpdf-reader_1.00-3.4_s390.deb xpdf (1.00-3.4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow that could overwrite the stack and hence cause the execution of arbitrary code as reported by iDEFENSE [src/Decrypt.cc, CAN-2005-0064] stable/main/binary-powerpc/xpdf-utils_1.00-3.4_powerpc.deb stable/main/binary-powerpc/xpdf-reader_1.00-3.4_powerpc.deb xpdf (1.00-3.4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow that could overwrite the stack and hence cause the execution of arbitrary code as reported by iDEFENSE [src/Decrypt.cc, CAN-2005-0064] stable/main/binary-mips/xpdf-utils_1.00-3.4_mips.deb stable/main/binary-mips/xpdf-reader_1.00-3.4_mips.deb xpdf (1.00-3.4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow that could overwrite the stack and hence cause the execution of arbitrary code as reported by iDEFENSE [src/Decrypt.cc, CAN-2005-0064] stable/main/binary-m68k/xpdf-reader_1.00-3.4_m68k.deb stable/main/binary-m68k/xpdf-utils_1.00-3.4_m68k.deb xpdf (1.00-3.4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow that could overwrite the stack and hence cause the execution of arbitrary code as reported by iDEFENSE [src/Decrypt.cc, CAN-2005-0064] stable/main/binary-ia64/xpdf-reader_1.00-3.4_ia64.deb stable/main/binary-ia64/xpdf-utils_1.00-3.4_ia64.deb xpdf (1.00-3.4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow that could overwrite the stack and hence cause the execution of arbitrary code as reported by iDEFENSE [src/Decrypt.cc, CAN-2005-0064] stable/main/binary-i386/xpdf-reader_1.00-3.4_i386.deb stable/main/binary-i386/xpdf-utils_1.00-3.4_i386.deb xpdf (1.00-3.4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow that could overwrite the stack and hence cause the execution of arbitrary code as reported by iDEFENSE [src/Decrypt.cc, CAN-2005-0064] stable/main/binary-hppa/xpdf-utils_1.00-3.4_hppa.deb stable/main/binary-hppa/xpdf-reader_1.00-3.4_hppa.deb xpdf (1.00-3.4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow that could overwrite the stack and hence cause the execution of arbitrary code as reported by iDEFENSE [src/Decrypt.cc, CAN-2005-0064] stable/main/binary-arm/xpdf-reader_1.00-3.4_arm.deb stable/main/binary-arm/xpdf-utils_1.00-3.4_arm.deb xpdf (1.00-3.4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow that could overwrite the stack and hence cause the execution of arbitrary code as reported by iDEFENSE [src/Decrypt.cc, CAN-2005-0064] stable/main/binary-alpha/xpdf-reader_1.00-3.4_alpha.deb stable/main/binary-alpha/xpdf-utils_1.00-3.4_alpha.deb xpdf (1.00-3.4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow that could overwrite the stack and hence cause the execution of arbitrary code as reported by iDEFENSE [src/Decrypt.cc, CAN-2005-0064] stable/main/binary-all/xpdf_1.00-3.4_all.deb stable/main/binary-all/xpdf-common_1.00-3.4_all.deb stable/main/source/xpdf_1.00-3.4.dsc stable/main/source/xpdf_1.00-3.4.diff.gz stable/main/binary-mipsel/xpdf-reader_1.00-3.4_mipsel.deb stable/main/binary-mipsel/xpdf-utils_1.00-3.4_mipsel.deb xpdf (1.00-3.4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow that could overwrite the stack and hence cause the execution of arbitrary code as reported by iDEFENSE [src/Decrypt.cc, CAN-2005-0064] stable/main/binary-sparc/xpcd_2.08-8woody3_sparc.deb stable/main/binary-sparc/xpcd-gimp_2.08-8woody3_sparc.deb xpcd (2.08-8woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflows [test/view.c, test/plug-0.54.c, xpcd/complete.c, CAN-2005-0074] stable/main/binary-s390/xpcd_2.08-8woody3_s390.deb stable/main/binary-s390/xpcd-gimp_2.08-8woody3_s390.deb xpcd (2.08-8woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflows [test/view.c, test/plug-0.54.c, xpcd/complete.c, CAN-2005-0074] stable/main/binary-powerpc/xpcd_2.08-8woody3_powerpc.deb stable/main/binary-powerpc/xpcd-gimp_2.08-8woody3_powerpc.deb xpcd (2.08-8woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflows [test/view.c, test/plug-0.54.c, xpcd/complete.c, CAN-2005-0074] stable/main/binary-mips/xpcd_2.08-8woody3_mips.deb stable/main/binary-mips/xpcd-gimp_2.08-8woody3_mips.deb xpcd (2.08-8woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflows [test/view.c, test/plug-0.54.c, xpcd/complete.c, CAN-2005-0074] stable/main/binary-m68k/xpcd-gimp_2.08-8woody3_m68k.deb stable/main/binary-m68k/xpcd_2.08-8woody3_m68k.deb xpcd (2.08-8woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflows [test/view.c, test/plug-0.54.c, xpcd/complete.c, CAN-2005-0074] stable/main/binary-ia64/xpcd-gimp_2.08-8woody3_ia64.deb stable/main/binary-ia64/xpcd_2.08-8woody3_ia64.deb xpcd (2.08-8woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflows [test/view.c, test/plug-0.54.c, xpcd/complete.c, CAN-2005-0074] stable/main/binary-i386/xpcd-gimp_2.08-8woody3_i386.deb stable/main/binary-i386/xpcd_2.08-8woody3_i386.deb stable/main/binary-i386/xpcd-svga_2.08-8woody3_i386.deb xpcd (2.08-8woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflows [test/view.c, test/plug-0.54.c, xpcd/complete.c, CAN-2005-0074] stable/main/binary-hppa/xpcd_2.08-8woody3_hppa.deb stable/main/binary-hppa/xpcd-gimp_2.08-8woody3_hppa.deb xpcd (2.08-8woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflows [test/view.c, test/plug-0.54.c, xpcd/complete.c, CAN-2005-0074] stable/main/binary-arm/xpcd-gimp_2.08-8woody3_arm.deb stable/main/binary-arm/xpcd_2.08-8woody3_arm.deb xpcd (2.08-8woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflows [test/view.c, test/plug-0.54.c, xpcd/complete.c, CAN-2005-0074] stable/main/binary-alpha/xpcd-gimp_2.08-8woody3_alpha.deb stable/main/binary-alpha/xpcd_2.08-8woody3_alpha.deb xpcd (2.08-8woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflows [test/view.c, test/plug-0.54.c, xpcd/complete.c, CAN-2005-0074] stable/main/binary-mipsel/xpcd-gimp_2.08-8woody3_mipsel.deb stable/main/binary-mipsel/xpcd_2.08-8woody3_mipsel.deb stable/main/source/xpcd_2.08-8woody3.diff.gz stable/main/source/xpcd_2.08-8woody3.dsc xpcd (2.08-8woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflows [test/view.c, test/plug-0.54.c, xpcd/complete.c, CAN-2005-0074] stable/main/binary-sparc/xloadimage_4.1-10woody1_sparc.deb xloadimage (4.1-10woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch from xli to fix integer overflows [new.c, CAN-2005-0639] * Backported patch from xli upstream to add quoting protection to filenames when uncompressing files [zio.c, CAN-2005-0638] stable/main/binary-s390/xloadimage_4.1-10woody1_s390.deb xloadimage (4.1-10woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch from xli to fix integer overflows [new.c, CAN-2005-0639] * Backported patch from xli upstream to add quoting protection to filenames when uncompressing files [zio.c, CAN-2005-0638] stable/main/binary-powerpc/xloadimage_4.1-10woody1_powerpc.deb xloadimage (4.1-10woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch from xli to fix integer overflows [new.c, CAN-2005-0639] * Backported patch from xli upstream to add quoting protection to filenames when uncompressing files [zio.c, CAN-2005-0638] stable/main/binary-mipsel/xloadimage_4.1-10woody1_mipsel.deb xloadimage (4.1-10woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch from xli to fix integer overflows [new.c, CAN-2005-0639] * Backported patch from xli upstream to add quoting protection to filenames when uncompressing files [zio.c, CAN-2005-0638] stable/main/binary-mips/xloadimage_4.1-10woody1_mips.deb xloadimage (4.1-10woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch from xli to fix integer overflows [new.c, CAN-2005-0639] * Backported patch from xli upstream to add quoting protection to filenames when uncompressing files [zio.c, CAN-2005-0638] stable/main/binary-m68k/xloadimage_4.1-10woody1_m68k.deb xloadimage (4.1-10woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch from xli to fix integer overflows [new.c, CAN-2005-0639] * Backported patch from xli upstream to add quoting protection to filenames when uncompressing files [zio.c, CAN-2005-0638] stable/main/binary-ia64/xloadimage_4.1-10woody1_ia64.deb xloadimage (4.1-10woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch from xli to fix integer overflows [new.c, CAN-2005-0639] * Backported patch from xli upstream to add quoting protection to filenames when uncompressing files [zio.c, CAN-2005-0638] stable/main/binary-i386/xloadimage_4.1-10woody1_i386.deb xloadimage (4.1-10woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch from xli to fix integer overflows [new.c, CAN-2005-0639] * Backported patch from xli upstream to add quoting protection to filenames when uncompressing files [zio.c, CAN-2005-0638] stable/main/binary-hppa/xloadimage_4.1-10woody1_hppa.deb xloadimage (4.1-10woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch from xli to fix integer overflows [new.c, CAN-2005-0639] * Backported patch from xli upstream to add quoting protection to filenames when uncompressing files [zio.c, CAN-2005-0638] stable/main/binary-alpha/xloadimage_4.1-10woody1_alpha.deb xloadimage (4.1-10woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch from xli to fix integer overflows [new.c, CAN-2005-0639] * Backported patch from xli upstream to add quoting protection to filenames when uncompressing files [zio.c, CAN-2005-0638] stable/main/source/xloadimage_4.1-10woody1.dsc stable/main/binary-arm/xloadimage_4.1-10woody1_arm.deb stable/main/source/xloadimage_4.1-10woody1.diff.gz xloadimage (4.1-10woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch from xli to fix integer overflows [new.c, CAN-2005-0639] * Backported patch from xli upstream to add quoting protection to filenames when uncompressing files [zio.c, CAN-2005-0638] stable/main/binary-sparc/xli_1.17.0-11woody1_sparc.deb xli (1.17.0-11woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from DSA 069 to fix buffer overflow in faces decoder [faces.c, CAN-2001-0775] * Applied upstream patch to fix integer overflows [new.c, CAN-2005-0639] * Backported upstream patch to add quoting protection to filenames when uncompressing files [zio.c, CAN-2005-0638] stable/main/binary-s390/xli_1.17.0-11woody1_s390.deb xli (1.17.0-11woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from DSA 069 to fix buffer overflow in faces decoder [faces.c, CAN-2001-0775] * Applied upstream patch to fix integer overflows [new.c, CAN-2005-0639] * Backported upstream patch to add quoting protection to filenames when uncompressing files [zio.c, CAN-2005-0638] stable/main/binary-powerpc/xli_1.17.0-11woody1_powerpc.deb xli (1.17.0-11woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from DSA 069 to fix buffer overflow in faces decoder [faces.c, CAN-2001-0775] * Applied upstream patch to fix integer overflows [new.c, CAN-2005-0639] * Backported upstream patch to add quoting protection to filenames when uncompressing files [zio.c, CAN-2005-0638] stable/main/binary-mipsel/xli_1.17.0-11woody1_mipsel.deb xli (1.17.0-11woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from DSA 069 to fix buffer overflow in faces decoder [faces.c, CAN-2001-0775] * Applied upstream patch to fix integer overflows [new.c, CAN-2005-0639] * Backported upstream patch to add quoting protection to filenames when uncompressing files [zio.c, CAN-2005-0638] stable/main/binary-mips/xli_1.17.0-11woody1_mips.deb xli (1.17.0-11woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from DSA 069 to fix buffer overflow in faces decoder [faces.c, CAN-2001-0775] * Applied upstream patch to fix integer overflows [new.c, CAN-2005-0639] * Backported upstream patch to add quoting protection to filenames when uncompressing files [zio.c, CAN-2005-0638] stable/main/binary-m68k/xli_1.17.0-11woody1_m68k.deb xli (1.17.0-11woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from DSA 069 to fix buffer overflow in faces decoder [faces.c, CAN-2001-0775] * Applied upstream patch to fix integer overflows [new.c, CAN-2005-0639] * Backported upstream patch to add quoting protection to filenames when uncompressing files [zio.c, CAN-2005-0638] stable/main/binary-ia64/xli_1.17.0-11woody1_ia64.deb xli (1.17.0-11woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from DSA 069 to fix buffer overflow in faces decoder [faces.c, CAN-2001-0775] * Applied upstream patch to fix integer overflows [new.c, CAN-2005-0639] * Backported upstream patch to add quoting protection to filenames when uncompressing files [zio.c, CAN-2005-0638] stable/main/binary-i386/xli_1.17.0-11woody1_i386.deb xli (1.17.0-11woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from DSA 069 to fix buffer overflow in faces decoder [faces.c, CAN-2001-0775] * Applied upstream patch to fix integer overflows [new.c, CAN-2005-0639] * Backported upstream patch to add quoting protection to filenames when uncompressing files [zio.c, CAN-2005-0638] stable/main/binary-hppa/xli_1.17.0-11woody1_hppa.deb xli (1.17.0-11woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from DSA 069 to fix buffer overflow in faces decoder [faces.c, CAN-2001-0775] * Applied upstream patch to fix integer overflows [new.c, CAN-2005-0639] * Backported upstream patch to add quoting protection to filenames when uncompressing files [zio.c, CAN-2005-0638] stable/main/binary-alpha/xli_1.17.0-11woody1_alpha.deb xli (1.17.0-11woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from DSA 069 to fix buffer overflow in faces decoder [faces.c, CAN-2001-0775] * Applied upstream patch to fix integer overflows [new.c, CAN-2005-0639] * Backported upstream patch to add quoting protection to filenames when uncompressing files [zio.c, CAN-2005-0638] stable/main/source/xli_1.17.0-11woody1.diff.gz stable/main/source/xli_1.17.0-11woody1.dsc stable/main/binary-arm/xli_1.17.0-11woody1_arm.deb xli (1.17.0-11woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from DSA 069 to fix buffer overflow in faces decoder [faces.c, CAN-2001-0775] * Applied upstream patch to fix integer overflows [new.c, CAN-2005-0639] * Backported upstream patch to add quoting protection to filenames when uncompressing files [zio.c, CAN-2005-0638] stable/main/binary-sparc/libxine0_0.9.8-2woody3_sparc.deb stable/main/binary-sparc/libxine-dev_0.9.8-2woody3_sparc.deb xine-lib (0.9.8-2woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-s390/libxine0_0.9.8-2woody3_s390.deb stable/main/binary-s390/libxine-dev_0.9.8-2woody3_s390.deb xine-lib (0.9.8-2woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-powerpc/libxine0_0.9.8-2woody3_powerpc.deb stable/main/binary-powerpc/libxine-dev_0.9.8-2woody3_powerpc.deb xine-lib (0.9.8-2woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-mipsel/libxine-dev_0.9.8-2woody3_mipsel.deb stable/main/binary-mipsel/libxine0_0.9.8-2woody3_mipsel.deb xine-lib (0.9.8-2woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-mips/libxine0_0.9.8-2woody3_mips.deb stable/main/binary-mips/libxine-dev_0.9.8-2woody3_mips.deb xine-lib (0.9.8-2woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-m68k/libxine-dev_0.9.8-2woody3_m68k.deb stable/main/binary-m68k/libxine0_0.9.8-2woody3_m68k.deb xine-lib (0.9.8-2woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-ia64/libxine-dev_0.9.8-2woody3_ia64.deb stable/main/binary-ia64/libxine0_0.9.8-2woody3_ia64.deb xine-lib (0.9.8-2woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-hppa/libxine0_0.9.8-2woody3_hppa.deb stable/main/binary-hppa/libxine-dev_0.9.8-2woody3_hppa.deb xine-lib (0.9.8-2woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-arm/libxine-dev_0.9.8-2woody3_arm.deb stable/main/binary-arm/libxine0_0.9.8-2woody3_arm.deb xine-lib (0.9.8-2woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-alpha/libxine-dev_0.9.8-2woody3_alpha.deb stable/main/binary-alpha/libxine0_0.9.8-2woody3_alpha.deb xine-lib (0.9.8-2woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-i386/libxine0_0.9.8-2woody3_i386.deb stable/main/binary-i386/libxine-dev_0.9.8-2woody3_i386.deb stable/main/source/xine-lib_0.9.8-2woody3.diff.gz stable/main/source/xine-lib_0.9.8-2woody3.dsc xine-lib (0.9.8-2woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-sparc/xemacs21-bin_21.4.6-8woody2_sparc.deb stable/main/binary-sparc/xemacs21-mule-canna-wnn_21.4.6-8woody2_sparc.deb stable/main/binary-sparc/xemacs21-mule_21.4.6-8woody2_sparc.deb stable/main/binary-sparc/xemacs21-gnome-mule-canna-wnn_21.4.6-8woody2_sparc.deb stable/main/binary-sparc/xemacs21-gnome-nomule_21.4.6-8woody2_sparc.deb stable/main/binary-sparc/xemacs21-nomule_21.4.6-8woody2_sparc.deb stable/main/binary-sparc/xemacs21-gnome-mule_21.4.6-8woody2_sparc.deb xemacs21 (21.4.6-8woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Max Vozeler to fix format string vulnerabilities [lib-src/movemail.c, CAN-2005-0100] * Non-changes build so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-s390/xemacs21-nomule_21.4.6-8woody2_s390.deb stable/main/binary-s390/xemacs21-gnome-mule_21.4.6-8woody2_s390.deb stable/main/binary-s390/xemacs21-mule-canna-wnn_21.4.6-8woody2_s390.deb stable/main/binary-s390/xemacs21-gnome-mule-canna-wnn_21.4.6-8woody2_s390.deb stable/main/binary-s390/xemacs21-bin_21.4.6-8woody2_s390.deb stable/main/binary-s390/xemacs21-mule_21.4.6-8woody2_s390.deb stable/main/binary-s390/xemacs21-gnome-nomule_21.4.6-8woody2_s390.deb xemacs21 (21.4.6-8woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Max Vozeler to fix format string vulnerabilities [lib-src/movemail.c, CAN-2005-0100] * Non-changes build so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-powerpc/xemacs21-bin_21.4.6-8woody2_powerpc.deb stable/main/binary-powerpc/xemacs21-gnome-nomule_21.4.6-8woody2_powerpc.deb stable/main/binary-powerpc/xemacs21-gnome-mule-canna-wnn_21.4.6-8woody2_powerpc.deb stable/main/binary-powerpc/xemacs21-gnome-mule_21.4.6-8woody2_powerpc.deb stable/main/binary-powerpc/xemacs21-mule-canna-wnn_21.4.6-8woody2_powerpc.deb stable/main/binary-powerpc/xemacs21-mule_21.4.6-8woody2_powerpc.deb stable/main/binary-powerpc/xemacs21-nomule_21.4.6-8woody2_powerpc.deb xemacs21 (21.4.6-8woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Max Vozeler to fix format string vulnerabilities [lib-src/movemail.c, CAN-2005-0100] * Non-changes build so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-mipsel/xemacs21-nomule_21.4.6-8woody2_mipsel.deb stable/main/binary-mipsel/xemacs21-bin_21.4.6-8woody2_mipsel.deb stable/main/binary-mipsel/xemacs21-gnome-mule-canna-wnn_21.4.6-8woody2_mipsel.deb stable/main/binary-mipsel/xemacs21-mule-canna-wnn_21.4.6-8woody2_mipsel.deb stable/main/binary-mipsel/xemacs21-gnome-mule_21.4.6-8woody2_mipsel.deb stable/main/binary-mipsel/xemacs21-mule_21.4.6-8woody2_mipsel.deb stable/main/binary-mipsel/xemacs21-gnome-nomule_21.4.6-8woody2_mipsel.deb xemacs21 (21.4.6-8woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Max Vozeler to fix format string vulnerabilities [lib-src/movemail.c, CAN-2005-0100] * Non-changes build so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-mips/xemacs21-bin_21.4.6-8woody2_mips.deb stable/main/binary-mips/xemacs21-mule-canna-wnn_21.4.6-8woody2_mips.deb stable/main/binary-mips/xemacs21-gnome-mule_21.4.6-8woody2_mips.deb stable/main/binary-mips/xemacs21-mule_21.4.6-8woody2_mips.deb stable/main/binary-mips/xemacs21-gnome-nomule_21.4.6-8woody2_mips.deb stable/main/binary-mips/xemacs21-gnome-mule-canna-wnn_21.4.6-8woody2_mips.deb stable/main/binary-mips/xemacs21-nomule_21.4.6-8woody2_mips.deb xemacs21 (21.4.6-8woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Max Vozeler to fix format string vulnerabilities [lib-src/movemail.c, CAN-2005-0100] * Non-changes build so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-i386/xemacs21-mule-canna-wnn_21.4.6-8woody2_i386.deb stable/main/binary-i386/xemacs21-gnome-mule-canna-wnn_21.4.6-8woody2_i386.deb stable/main/binary-i386/xemacs21-gnome-mule_21.4.6-8woody2_i386.deb stable/main/binary-i386/xemacs21-bin_21.4.6-8woody2_i386.deb stable/main/binary-i386/xemacs21-nomule_21.4.6-8woody2_i386.deb stable/main/binary-i386/xemacs21-gnome-nomule_21.4.6-8woody2_i386.deb stable/main/binary-i386/xemacs21-mule_21.4.6-8woody2_i386.deb xemacs21 (21.4.6-8woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Max Vozeler to fix format string vulnerabilities [lib-src/movemail.c, CAN-2005-0100] * Non-changes build so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-arm/xemacs21-mule_21.4.6-8woody2_arm.deb stable/main/binary-arm/xemacs21-bin_21.4.6-8woody2_arm.deb stable/main/binary-arm/xemacs21-gnome-nomule_21.4.6-8woody2_arm.deb stable/main/binary-arm/xemacs21-gnome-mule_21.4.6-8woody2_arm.deb stable/main/binary-arm/xemacs21-mule-canna-wnn_21.4.6-8woody2_arm.deb stable/main/binary-arm/xemacs21-nomule_21.4.6-8woody2_arm.deb stable/main/binary-arm/xemacs21-gnome-mule-canna-wnn_21.4.6-8woody2_arm.deb xemacs21 (21.4.6-8woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Max Vozeler to fix format string vulnerabilities [lib-src/movemail.c, CAN-2005-0100] * Non-changes build so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-alpha/xemacs21-nomule_21.4.6-8woody2_alpha.deb stable/main/binary-alpha/xemacs21-gnome-nomule_21.4.6-8woody2_alpha.deb stable/main/binary-alpha/xemacs21-bin_21.4.6-8woody2_alpha.deb stable/main/binary-alpha/xemacs21-gnome-mule-canna-wnn_21.4.6-8woody2_alpha.deb stable/main/binary-alpha/xemacs21-mule-canna-wnn_21.4.6-8woody2_alpha.deb stable/main/binary-alpha/xemacs21-gnome-mule_21.4.6-8woody2_alpha.deb stable/main/binary-alpha/xemacs21-mule_21.4.6-8woody2_alpha.deb xemacs21 (21.4.6-8woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Max Vozeler to fix format string vulnerabilities [lib-src/movemail.c, CAN-2005-0100] * Non-changes build so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/source/xemacs21_21.4.6-8woody2.dsc stable/main/binary-all/xemacs21_21.4.6-8woody2_all.deb stable/main/binary-ia64/xemacs21-gnome-mule-canna-wnn_21.4.6-8woody2_ia64.deb stable/main/source/xemacs21_21.4.6-8woody2.diff.gz stable/main/binary-all/xemacs21-supportel_21.4.6-8woody2_all.deb stable/main/binary-ia64/xemacs21-gnome-nomule_21.4.6-8woody2_ia64.deb stable/main/binary-ia64/xemacs21-gnome-mule_21.4.6-8woody2_ia64.deb stable/main/binary-all/xemacs21-support_21.4.6-8woody2_all.deb stable/main/binary-ia64/xemacs21-mule-canna-wnn_21.4.6-8woody2_ia64.deb stable/main/binary-ia64/xemacs21-mule_21.4.6-8woody2_ia64.deb stable/main/binary-ia64/xemacs21-nomule_21.4.6-8woody2_ia64.deb stable/main/binary-ia64/xemacs21-bin_21.4.6-8woody2_ia64.deb xemacs21 (21.4.6-8woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Max Vozeler to fix format string vulnerabilities [lib-src/movemail.c, CAN-2005-0100] * Non-changes build so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-sparc/wu-ftpd_2.6.2-3woody5_sparc.deb wu-ftpd (2.6.2-3woody5) stable-security; urgency=high * Applied patch by Chris Butler to fix denial of service in the NLST command [src/ftpd.c, CAN-2005-0256] * Applied and adjusted patch by Chris Butler to fix denial of service in the LIST command [src/ftpcmd.y, src/proto.h, CAN-2003-0854] stable/main/binary-s390/wu-ftpd_2.6.2-3woody5_s390.deb wu-ftpd (2.6.2-3woody5) stable-security; urgency=high * Applied patch by Chris Butler to fix denial of service in the NLST command [src/ftpd.c, CAN-2005-0256] * Applied and adjusted patch by Chris Butler to fix denial of service in the LIST command [src/ftpcmd.y, src/proto.h, CAN-2003-0854] stable/main/binary-powerpc/wu-ftpd_2.6.2-3woody5_powerpc.deb wu-ftpd (2.6.2-3woody5) stable-security; urgency=high * Applied patch by Chris Butler to fix denial of service in the NLST command [src/ftpd.c, CAN-2005-0256] * Applied and adjusted patch by Chris Butler to fix denial of service in the LIST command [src/ftpcmd.y, src/proto.h, CAN-2003-0854] stable/main/binary-mipsel/wu-ftpd_2.6.2-3woody5_mipsel.deb wu-ftpd (2.6.2-3woody5) stable-security; urgency=high * Applied patch by Chris Butler to fix denial of service in the NLST command [src/ftpd.c, CAN-2005-0256] * Applied and adjusted patch by Chris Butler to fix denial of service in the LIST command [src/ftpcmd.y, src/proto.h, CAN-2003-0854] stable/main/binary-mips/wu-ftpd_2.6.2-3woody5_mips.deb wu-ftpd (2.6.2-3woody5) stable-security; urgency=high * Applied patch by Chris Butler to fix denial of service in the NLST command [src/ftpd.c, CAN-2005-0256] * Applied and adjusted patch by Chris Butler to fix denial of service in the LIST command [src/ftpcmd.y, src/proto.h, CAN-2003-0854] stable/main/binary-m68k/wu-ftpd_2.6.2-3woody5_m68k.deb wu-ftpd (2.6.2-3woody5) stable-security; urgency=high * Applied patch by Chris Butler to fix denial of service in the NLST command [src/ftpd.c, CAN-2005-0256] * Applied and adjusted patch by Chris Butler to fix denial of service in the LIST command [src/ftpcmd.y, src/proto.h, CAN-2003-0854] stable/main/binary-ia64/wu-ftpd_2.6.2-3woody5_ia64.deb wu-ftpd (2.6.2-3woody5) stable-security; urgency=high * Applied patch by Chris Butler to fix denial of service in the NLST command [src/ftpd.c, CAN-2005-0256] * Applied and adjusted patch by Chris Butler to fix denial of service in the LIST command [src/ftpcmd.y, src/proto.h, CAN-2003-0854] stable/main/binary-i386/wu-ftpd_2.6.2-3woody5_i386.deb wu-ftpd (2.6.2-3woody5) stable-security; urgency=high * Applied patch by Chris Butler to fix denial of service in the NLST command [src/ftpd.c, CAN-2005-0256] * Applied and adjusted patch by Chris Butler to fix denial of service in the LIST command [src/ftpcmd.y, src/proto.h, CAN-2003-0854] stable/main/binary-hppa/wu-ftpd_2.6.2-3woody5_hppa.deb wu-ftpd (2.6.2-3woody5) stable-security; urgency=high * Applied patch by Chris Butler to fix denial of service in the NLST command [src/ftpd.c, CAN-2005-0256] * Applied and adjusted patch by Chris Butler to fix denial of service in the LIST command [src/ftpcmd.y, src/proto.h, CAN-2003-0854] stable/main/binary-alpha/wu-ftpd_2.6.2-3woody5_alpha.deb wu-ftpd (2.6.2-3woody5) stable-security; urgency=high * Applied patch by Chris Butler to fix denial of service in the NLST command [src/ftpd.c, CAN-2005-0256] * Applied and adjusted patch by Chris Butler to fix denial of service in the LIST command [src/ftpcmd.y, src/proto.h, CAN-2003-0854] stable/main/binary-all/wu-ftpd-academ_2.6.2-3woody5_all.deb stable/main/source/wu-ftpd_2.6.2-3woody5.dsc stable/main/source/wu-ftpd_2.6.2-3woody5.diff.gz stable/main/binary-arm/wu-ftpd_2.6.2-3woody5_arm.deb wu-ftpd (2.6.2-3woody5) stable-security; urgency=high * Applied patch by Chris Butler to fix denial of service in the NLST command [src/ftpd.c, CAN-2005-0256] * Applied and adjusted patch by Chris Butler to fix denial of service in the LIST command [src/ftpcmd.y, src/proto.h, CAN-2003-0854] stable/main/binary-sparc/libwings-dev_0.80.0-4.2_sparc.deb stable/main/binary-sparc/libwraster2-dev_0.80.0-4.2_sparc.deb stable/main/binary-sparc/libwraster2_0.80.0-4.2_sparc.deb stable/main/binary-sparc/wmaker_0.80.0-4.2_sparc.deb stable/main/binary-sparc/libwmaker0-dev_0.80.0-4.2_sparc.deb wmaker (0.80.0-4.2) stable-security; urgency=medium * Non-maintainer upload by the Stale Release Manager * Bump the version number so that the security update can make its way into Debian stable. stable/main/binary-s390/libwraster2_0.80.0-4.2_s390.deb stable/main/binary-s390/libwings-dev_0.80.0-4.2_s390.deb stable/main/binary-s390/libwraster2-dev_0.80.0-4.2_s390.deb stable/main/binary-s390/wmaker_0.80.0-4.2_s390.deb stable/main/binary-s390/libwmaker0-dev_0.80.0-4.2_s390.deb wmaker (0.80.0-4.2) stable-security; urgency=medium * Non-maintainer upload by the Stale Release Manager * Bump the version number so that the security update can make its way into Debian stable. stable/main/binary-powerpc/libwraster2-dev_0.80.0-4.2_powerpc.deb stable/main/binary-powerpc/libwings-dev_0.80.0-4.2_powerpc.deb stable/main/binary-powerpc/libwmaker0-dev_0.80.0-4.2_powerpc.deb stable/main/binary-powerpc/wmaker_0.80.0-4.2_powerpc.deb stable/main/binary-powerpc/libwraster2_0.80.0-4.2_powerpc.deb wmaker (0.80.0-4.2) stable-security; urgency=medium * Non-maintainer upload by the Stale Release Manager * Bump the version number so that the security update can make its way into Debian stable. stable/main/binary-mips/libwraster2-dev_0.80.0-4.2_mips.deb stable/main/binary-mips/wmaker_0.80.0-4.2_mips.deb stable/main/binary-mips/libwraster2_0.80.0-4.2_mips.deb stable/main/binary-mips/libwmaker0-dev_0.80.0-4.2_mips.deb stable/main/binary-mips/libwings-dev_0.80.0-4.2_mips.deb wmaker (0.80.0-4.2) stable-security; urgency=medium * Non-maintainer upload by the Stale Release Manager * Bump the version number so that the security update can make its way into Debian stable. stable/main/binary-m68k/libwraster2_0.80.0-4.2_m68k.deb stable/main/binary-m68k/wmaker_0.80.0-4.2_m68k.deb stable/main/binary-m68k/libwraster2-dev_0.80.0-4.2_m68k.deb stable/main/binary-m68k/libwings-dev_0.80.0-4.2_m68k.deb stable/main/binary-m68k/libwmaker0-dev_0.80.0-4.2_m68k.deb wmaker (0.80.0-4.2) stable-security; urgency=medium * Non-maintainer upload by the Stale Release Manager * Bump the version number so that the security update can make its way into Debian stable. stable/main/binary-ia64/wmaker_0.80.0-4.2_ia64.deb stable/main/binary-ia64/libwraster2-dev_0.80.0-4.2_ia64.deb stable/main/binary-ia64/libwraster2_0.80.0-4.2_ia64.deb stable/main/binary-ia64/libwings-dev_0.80.0-4.2_ia64.deb stable/main/binary-ia64/libwmaker0-dev_0.80.0-4.2_ia64.deb wmaker (0.80.0-4.2) stable-security; urgency=medium * Non-maintainer upload by the Stale Release Manager * Bump the version number so that the security update can make its way into Debian stable. stable/main/binary-i386/libwings-dev_0.80.0-4.2_i386.deb stable/main/binary-i386/libwmaker0-dev_0.80.0-4.2_i386.deb stable/main/binary-i386/libwraster2_0.80.0-4.2_i386.deb stable/main/binary-i386/wmaker_0.80.0-4.2_i386.deb stable/main/binary-i386/libwraster2-dev_0.80.0-4.2_i386.deb wmaker (0.80.0-4.2) stable-security; urgency=medium * Non-maintainer upload by the Stale Release Manager * Bump the version number so that the security update can make its way into Debian stable. stable/main/binary-hppa/libwraster2-dev_0.80.0-4.2_hppa.deb stable/main/binary-hppa/wmaker_0.80.0-4.2_hppa.deb stable/main/binary-hppa/libwraster2_0.80.0-4.2_hppa.deb stable/main/binary-hppa/libwmaker0-dev_0.80.0-4.2_hppa.deb stable/main/binary-hppa/libwings-dev_0.80.0-4.2_hppa.deb wmaker (0.80.0-4.2) stable-security; urgency=medium * Non-maintainer upload by the Stale Release Manager * Bump the version number so that the security update can make its way into Debian stable. stable/main/binary-arm/libwraster2_0.80.0-4.2_arm.deb stable/main/binary-arm/libwmaker0-dev_0.80.0-4.2_arm.deb stable/main/binary-arm/wmaker_0.80.0-4.2_arm.deb stable/main/binary-arm/libwraster2-dev_0.80.0-4.2_arm.deb stable/main/binary-arm/libwings-dev_0.80.0-4.2_arm.deb wmaker (0.80.0-4.2) stable-security; urgency=medium * Non-maintainer upload by the Stale Release Manager * Bump the version number so that the security update can make its way into Debian stable. stable/main/binary-alpha/wmaker_0.80.0-4.2_alpha.deb stable/main/binary-alpha/libwraster2_0.80.0-4.2_alpha.deb stable/main/binary-alpha/libwmaker0-dev_0.80.0-4.2_alpha.deb stable/main/binary-alpha/libwraster2-dev_0.80.0-4.2_alpha.deb stable/main/binary-alpha/libwings-dev_0.80.0-4.2_alpha.deb wmaker (0.80.0-4.2) stable-security; urgency=medium * Non-maintainer upload by the Stale Release Manager * Bump the version number so that the security update can make its way into Debian stable. stable/main/source/wmaker_0.80.0-4.2.dsc stable/main/source/wmaker_0.80.0-4.2.diff.gz stable/main/binary-mipsel/wmaker_0.80.0-4.2_mipsel.deb stable/main/binary-mipsel/libwings-dev_0.80.0-4.2_mipsel.deb stable/main/binary-mipsel/libwraster2-dev_0.80.0-4.2_mipsel.deb stable/main/binary-mipsel/libwmaker0-dev_0.80.0-4.2_mipsel.deb stable/main/binary-mipsel/libwraster2_0.80.0-4.2_mipsel.deb wmaker (0.80.0-4.2) stable-security; urgency=medium * Non-maintainer upload by the Stale Release Manager * Bump the version number so that the security update can make its way into Debian stable. stable/main/binary-all/webmin-samba_0.94-7woody4_all.deb stable/main/binary-all/webmin-postgresql_0.94-7woody4_all.deb stable/main/binary-all/webmin-heartbeat_0.94-7woody4_all.deb stable/main/binary-all/webmin-sshd_0.94-7woody4_all.deb stable/main/binary-all/webmin-software_0.94-7woody4_all.deb stable/main/binary-all/webmin-burner_0.94-7woody4_all.deb stable/main/binary-all/webmin-nis_0.94-7woody4_all.deb stable/main/binary-all/webmin-qmailadmin_0.94-7woody4_all.deb stable/main/binary-all/webmin-xinetd_0.94-7woody4_all.deb stable/main/binary-all/webmin-stunnel_0.94-7woody4_all.deb stable/main/binary-all/webmin-sendmail_0.94-7woody4_all.deb stable/main/binary-all/webmin-raid_0.94-7woody4_all.deb stable/main/source/webmin_0.94-7woody4.dsc stable/main/binary-all/webmin-cluster-useradmin_0.94-7woody4_all.deb stable/main/binary-all/webmin-mysql_0.94-7woody4_all.deb stable/main/binary-all/webmin-fetchmail_0.94-7woody4_all.deb stable/main/binary-all/webmin_0.94-7woody4_all.deb stable/main/binary-all/webmin-status_0.94-7woody4_all.deb stable/main/binary-all/webmin-mon_0.94-7woody4_all.deb stable/main/binary-all/webmin-exports_0.94-7woody4_all.deb stable/main/binary-all/webmin-ppp_0.94-7woody4_all.deb stable/main/binary-all/webmin-apache_0.94-7woody4_all.deb stable/main/binary-all/webmin-dhcpd_0.94-7woody4_all.deb stable/main/binary-all/webmin-cluster-software_0.94-7woody4_all.deb stable/main/binary-all/webmin-squid_0.94-7woody4_all.deb stable/main/binary-all/webmin-postfix_0.94-7woody4_all.deb stable/main/binary-all/webmin-bind8_0.94-7woody4_all.deb stable/main/binary-all/webmin-cpan_0.94-7woody4_all.deb stable/main/binary-all/webmin-inetd_0.94-7woody4_all.deb stable/main/binary-all/webmin-jabber_0.94-7woody4_all.deb stable/main/binary-i386/webmin-grub_0.94-7woody4_i386.deb stable/main/binary-all/webmin-ssl_0.94-7woody4_all.deb stable/main/binary-all/webmin-quota_0.94-7woody4_all.deb stable/main/binary-all/webmin-wuftpd_0.94-7woody4_all.deb stable/main/binary-all/webmin-core_0.94-7woody4_all.deb stable/main/binary-all/webmin-lpadmin_0.94-7woody4_all.deb stable/main/source/webmin_0.94-7woody4.diff.gz webmin (0.94-7woody4) stable; urgency=medium * Non-maintainer upload by Stable Release Manager * Corrected the security update to reuse existing temporary directories (closes: Bug#285762, Bug#289464) stable/main/binary-i386/vdr-kbd_1.0.0-1woody2_i386.deb stable/main/binary-i386/vdr_1.0.0-1woody2_i386.deb stable/main/binary-i386/vdr-lirc_1.0.0-1woody2_i386.deb stable/main/binary-i386/vdr-rcu_1.0.0-1woody2_i386.deb stable/main/source/vdr_1.0.0-1woody2.dsc stable/main/binary-i386/vdr-daemon_1.0.0-1woody2_i386.deb stable/main/source/vdr_1.0.0-1woody2.tar.gz vdr (1.0.0-1woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed arbitrary file overwrite vulnerability by switching from fopen() to open()+fdreopen() and O_CREAT|O_EXCL [debian/patches/security-z50_CAN-2005-0071_fopen, CAN-2005-0071] stable/non-free/binary-arm/unarj_2.43-3woody1_arm.deb stable/non-free/binary-ia64/unarj_2.43-3woody1_ia64.deb stable/non-free/binary-m68k/unarj_2.43-3woody1_m68k.deb stable/non-free/binary-i386/unarj_2.43-3woody1_i386.deb stable/non-free/binary-powerpc/unarj_2.43-3woody1_powerpc.deb stable/non-free/source/unarj_2.43-3woody1.diff.gz stable/non-free/binary-sparc/unarj_2.43-3woody1_sparc.deb stable/non-free/source/unarj_2.43-3woody1.dsc stable/non-free/binary-s390/unarj_2.43-3woody1_s390.deb stable/non-free/binary-alpha/unarj_2.43-3woody1_alpha.deb stable/non-free/binary-hppa/unarj_2.43-3woody1_hppa.deb unarj (2.43-3woody1) stable-security; urgency=high * Fix buffer overflow problem in filename handling (CAN-2004-0947). Closes: #281922 * Fix unchecked path extraction problem (CAN-2004-1027). stable/main/binary-sparc/typespeed_0.4.1-2.3_sparc.deb typespeed (0.4.1-2.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Ulf Härnhammar to fix format string vulnerability [file.c, CAN-2005-0105] stable/main/binary-s390/typespeed_0.4.1-2.3_s390.deb typespeed (0.4.1-2.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Ulf Härnhammar to fix format string vulnerability [file.c, CAN-2005-0105] stable/main/binary-powerpc/typespeed_0.4.1-2.3_powerpc.deb typespeed (0.4.1-2.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Ulf Härnhammar to fix format string vulnerability [file.c, CAN-2005-0105] stable/main/binary-mips/typespeed_0.4.1-2.3_mips.deb typespeed (0.4.1-2.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Ulf Härnhammar to fix format string vulnerability [file.c, CAN-2005-0105] stable/main/binary-m68k/typespeed_0.4.1-2.3_m68k.deb typespeed (0.4.1-2.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Ulf Härnhammar to fix format string vulnerability [file.c, CAN-2005-0105] stable/main/binary-ia64/typespeed_0.4.1-2.3_ia64.deb typespeed (0.4.1-2.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Ulf Härnhammar to fix format string vulnerability [file.c, CAN-2005-0105] stable/main/binary-i386/typespeed_0.4.1-2.3_i386.deb typespeed (0.4.1-2.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Ulf Härnhammar to fix format string vulnerability [file.c, CAN-2005-0105] stable/main/binary-hppa/typespeed_0.4.1-2.3_hppa.deb typespeed (0.4.1-2.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Ulf Härnhammar to fix format string vulnerability [file.c, CAN-2005-0105] stable/main/binary-arm/typespeed_0.4.1-2.3_arm.deb typespeed (0.4.1-2.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Ulf Härnhammar to fix format string vulnerability [file.c, CAN-2005-0105] stable/main/binary-alpha/typespeed_0.4.1-2.3_alpha.deb typespeed (0.4.1-2.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Ulf Härnhammar to fix format string vulnerability [file.c, CAN-2005-0105] stable/main/binary-mipsel/typespeed_0.4.1-2.3_mipsel.deb stable/main/source/typespeed_0.4.1-2.3.dsc stable/main/source/typespeed_0.4.1-2.3.diff.gz typespeed (0.4.1-2.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Ulf Härnhammar to fix format string vulnerability [file.c, CAN-2005-0105] stable/main/source/toolchain-source_3.0.4-1woody1.dsc stable/main/source/toolchain-source_3.0.4-1woody1.tar.gz stable/main/binary-all/toolchain-source_3.0.4-1woody1_all.deb toolchain-source (3.0.4-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Moved insecure temporary files into a secure temporary directory [bin/tpkg-install-libc, CAN-2005-0159] stable/main/binary-sparc/libtiff-tools_3.5.5-6.woody5_sparc.deb stable/main/binary-sparc/libtiff3g_3.5.5-6.woody5_sparc.deb stable/main/binary-sparc/libtiff3g-dev_3.5.5-6.woody5_sparc.deb tiff (3.5.5-6.woody5) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Dmitry V. Levin to fix a segmentation fault [tools/tiffdump.c, CAN-2004-1183] * Removed spurious .orig file from the last version. stable/main/binary-s390/libtiff3g_3.5.5-6.woody5_s390.deb stable/main/binary-s390/libtiff3g-dev_3.5.5-6.woody5_s390.deb stable/main/binary-s390/libtiff-tools_3.5.5-6.woody5_s390.deb tiff (3.5.5-6.woody5) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Dmitry V. Levin to fix a segmentation fault [tools/tiffdump.c, CAN-2004-1183] * Removed spurious .orig file from the last version. stable/main/binary-powerpc/libtiff-tools_3.5.5-6.woody5_powerpc.deb stable/main/binary-powerpc/libtiff3g_3.5.5-6.woody5_powerpc.deb stable/main/binary-powerpc/libtiff3g-dev_3.5.5-6.woody5_powerpc.deb tiff (3.5.5-6.woody5) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Dmitry V. Levin to fix a segmentation fault [tools/tiffdump.c, CAN-2004-1183] * Removed spurious .orig file from the last version. stable/main/binary-mips/libtiff-tools_3.5.5-6.woody5_mips.deb stable/main/binary-mips/libtiff3g-dev_3.5.5-6.woody5_mips.deb stable/main/binary-mips/libtiff3g_3.5.5-6.woody5_mips.deb tiff (3.5.5-6.woody5) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Dmitry V. Levin to fix a segmentation fault [tools/tiffdump.c, CAN-2004-1183] * Removed spurious .orig file from the last version. stable/main/binary-m68k/libtiff3g_3.5.5-6.woody5_m68k.deb stable/main/binary-m68k/libtiff3g-dev_3.5.5-6.woody5_m68k.deb stable/main/binary-m68k/libtiff-tools_3.5.5-6.woody5_m68k.deb tiff (3.5.5-6.woody5) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Dmitry V. Levin to fix a segmentation fault [tools/tiffdump.c, CAN-2004-1183] * Removed spurious .orig file from the last version. stable/main/binary-ia64/libtiff3g-dev_3.5.5-6.woody5_ia64.deb stable/main/binary-ia64/libtiff3g_3.5.5-6.woody5_ia64.deb stable/main/binary-ia64/libtiff-tools_3.5.5-6.woody5_ia64.deb tiff (3.5.5-6.woody5) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Dmitry V. Levin to fix a segmentation fault [tools/tiffdump.c, CAN-2004-1183] * Removed spurious .orig file from the last version. stable/main/binary-i386/libtiff3g-dev_3.5.5-6.woody5_i386.deb stable/main/binary-i386/libtiff-tools_3.5.5-6.woody5_i386.deb stable/main/binary-i386/libtiff3g_3.5.5-6.woody5_i386.deb tiff (3.5.5-6.woody5) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Dmitry V. Levin to fix a segmentation fault [tools/tiffdump.c, CAN-2004-1183] * Removed spurious .orig file from the last version. stable/main/binary-hppa/libtiff3g_3.5.5-6.woody5_hppa.deb stable/main/binary-hppa/libtiff3g-dev_3.5.5-6.woody5_hppa.deb stable/main/binary-hppa/libtiff-tools_3.5.5-6.woody5_hppa.deb tiff (3.5.5-6.woody5) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Dmitry V. Levin to fix a segmentation fault [tools/tiffdump.c, CAN-2004-1183] * Removed spurious .orig file from the last version. stable/main/binary-arm/libtiff3g_3.5.5-6.woody5_arm.deb stable/main/binary-arm/libtiff3g-dev_3.5.5-6.woody5_arm.deb stable/main/binary-arm/libtiff-tools_3.5.5-6.woody5_arm.deb tiff (3.5.5-6.woody5) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Dmitry V. Levin to fix a segmentation fault [tools/tiffdump.c, CAN-2004-1183] * Removed spurious .orig file from the last version. stable/main/binary-alpha/libtiff3g-dev_3.5.5-6.woody5_alpha.deb stable/main/binary-alpha/libtiff3g_3.5.5-6.woody5_alpha.deb stable/main/binary-alpha/libtiff-tools_3.5.5-6.woody5_alpha.deb tiff (3.5.5-6.woody5) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Dmitry V. Levin to fix a segmentation fault [tools/tiffdump.c, CAN-2004-1183] * Removed spurious .orig file from the last version. stable/main/binary-mipsel/libtiff3g-dev_3.5.5-6.woody5_mipsel.deb stable/main/source/tiff_3.5.5-6.woody5.diff.gz stable/main/source/tiff_3.5.5-6.woody5.dsc stable/main/binary-mipsel/libtiff-tools_3.5.5-6.woody5_mipsel.deb stable/main/binary-mipsel/libtiff3g_3.5.5-6.woody5_mipsel.deb tiff (3.5.5-6.woody5) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Dmitry V. Levin to fix a segmentation fault [tools/tiffdump.c, CAN-2004-1183] * Removed spurious .orig file from the last version. stable/main/binary-sparc/synaesthesia_2.1-2.1woody3_sparc.deb synaesthesia (2.1-2.1woody3) stable-security; urgency=high * Non maintainer upload by the Security Team. * Fixed more unauthorised file access [main.cc, sound.cc, CAN-2005-0070] stable/main/binary-s390/synaesthesia_2.1-2.1woody3_s390.deb synaesthesia (2.1-2.1woody3) stable-security; urgency=high * Non maintainer upload by the Security Team. * Fixed more unauthorised file access [main.cc, sound.cc, CAN-2005-0070] stable/main/binary-powerpc/synaesthesia_2.1-2.1woody3_powerpc.deb synaesthesia (2.1-2.1woody3) stable-security; urgency=high * Non maintainer upload by the Security Team. * Fixed more unauthorised file access [main.cc, sound.cc, CAN-2005-0070] stable/main/binary-mips/synaesthesia_2.1-2.1woody3_mips.deb synaesthesia (2.1-2.1woody3) stable-security; urgency=high * Non maintainer upload by the Security Team. * Fixed more unauthorised file access [main.cc, sound.cc, CAN-2005-0070] stable/main/binary-m68k/synaesthesia_2.1-2.1woody3_m68k.deb synaesthesia (2.1-2.1woody3) stable-security; urgency=high * Non maintainer upload by the Security Team. * Fixed more unauthorised file access [main.cc, sound.cc, CAN-2005-0070] stable/main/binary-ia64/synaesthesia_2.1-2.1woody3_ia64.deb synaesthesia (2.1-2.1woody3) stable-security; urgency=high * Non maintainer upload by the Security Team. * Fixed more unauthorised file access [main.cc, sound.cc, CAN-2005-0070] stable/main/binary-i386/synaesthesia_2.1-2.1woody3_i386.deb synaesthesia (2.1-2.1woody3) stable-security; urgency=high * Non maintainer upload by the Security Team. * Fixed more unauthorised file access [main.cc, sound.cc, CAN-2005-0070] stable/main/binary-hppa/synaesthesia_2.1-2.1woody3_hppa.deb synaesthesia (2.1-2.1woody3) stable-security; urgency=high * Non maintainer upload by the Security Team. * Fixed more unauthorised file access [main.cc, sound.cc, CAN-2005-0070] stable/main/binary-arm/synaesthesia_2.1-2.1woody3_arm.deb synaesthesia (2.1-2.1woody3) stable-security; urgency=high * Non maintainer upload by the Security Team. * Fixed more unauthorised file access [main.cc, sound.cc, CAN-2005-0070] stable/main/binary-alpha/synaesthesia_2.1-2.1woody3_alpha.deb synaesthesia (2.1-2.1woody3) stable-security; urgency=high * Non maintainer upload by the Security Team. * Fixed more unauthorised file access [main.cc, sound.cc, CAN-2005-0070] stable/main/binary-mipsel/synaesthesia_2.1-2.1woody3_mipsel.deb stable/main/source/synaesthesia_2.1-2.1woody3.dsc stable/main/source/synaesthesia_2.1-2.1woody3.diff.gz synaesthesia (2.1-2.1woody3) stable-security; urgency=high * Non maintainer upload by the Security Team. * Fixed more unauthorised file access [main.cc, sound.cc, CAN-2005-0070] stable/main/binary-sparc/sympa_3.3.3-3woody2_sparc.deb sympa (3.3.3-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow [src/queue.c, CAN-2005-0073] stable/main/binary-s390/sympa_3.3.3-3woody2_s390.deb sympa (3.3.3-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow [src/queue.c, CAN-2005-0073] stable/main/binary-powerpc/sympa_3.3.3-3woody2_powerpc.deb sympa (3.3.3-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow [src/queue.c, CAN-2005-0073] stable/main/binary-mips/sympa_3.3.3-3woody2_mips.deb sympa (3.3.3-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow [src/queue.c, CAN-2005-0073] stable/main/binary-m68k/sympa_3.3.3-3woody2_m68k.deb sympa (3.3.3-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow [src/queue.c, CAN-2005-0073] stable/main/binary-ia64/sympa_3.3.3-3woody2_ia64.deb sympa (3.3.3-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow [src/queue.c, CAN-2005-0073] stable/main/binary-i386/sympa_3.3.3-3woody2_i386.deb sympa (3.3.3-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow [src/queue.c, CAN-2005-0073] stable/main/binary-hppa/sympa_3.3.3-3woody2_hppa.deb sympa (3.3.3-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow [src/queue.c, CAN-2005-0073] stable/main/binary-arm/sympa_3.3.3-3woody2_arm.deb sympa (3.3.3-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow [src/queue.c, CAN-2005-0073] stable/main/binary-alpha/sympa_3.3.3-3woody2_alpha.deb sympa (3.3.3-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow [src/queue.c, CAN-2005-0073] stable/main/source/sympa_3.3.3-3woody2.diff.gz stable/main/binary-all/wwsympa_3.3.3-3woody2_all.deb stable/main/source/sympa_3.3.3-3woody2.dsc stable/main/binary-mipsel/sympa_3.3.3-3woody2_mipsel.deb sympa (3.3.3-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow [src/queue.c, CAN-2005-0073] stable/main/binary-sparc/libsword-dev_1.5.3-3woody2_sparc.deb stable/main/binary-sparc/libsword-runtime_1.5.3-3woody2_sparc.deb stable/main/binary-sparc/diatheke_1.5.3-3woody2_sparc.deb stable/main/binary-sparc/libsword1_1.5.3-3woody2_sparc.deb sword (1.5.3-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added shell_escape() function to fix arbitrary command execution [apps/console/diatheke/cgi/diatheke.pl, CAN-2005-0015] * Improvements by Ulf Härnhammar * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-s390/diatheke_1.5.3-3woody2_s390.deb stable/main/binary-s390/libsword1_1.5.3-3woody2_s390.deb stable/main/binary-s390/libsword-runtime_1.5.3-3woody2_s390.deb stable/main/binary-s390/libsword-dev_1.5.3-3woody2_s390.deb sword (1.5.3-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added shell_escape() function to fix arbitrary command execution [apps/console/diatheke/cgi/diatheke.pl, CAN-2005-0015] * Improvements by Ulf Härnhammar * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-powerpc/libsword-runtime_1.5.3-3woody2_powerpc.deb stable/main/binary-powerpc/libsword-dev_1.5.3-3woody2_powerpc.deb stable/main/binary-powerpc/diatheke_1.5.3-3woody2_powerpc.deb stable/main/binary-powerpc/libsword1_1.5.3-3woody2_powerpc.deb sword (1.5.3-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added shell_escape() function to fix arbitrary command execution [apps/console/diatheke/cgi/diatheke.pl, CAN-2005-0015] * Improvements by Ulf Härnhammar * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-mips/libsword-runtime_1.5.3-3woody2_mips.deb stable/main/binary-mips/libsword1_1.5.3-3woody2_mips.deb stable/main/binary-mips/diatheke_1.5.3-3woody2_mips.deb stable/main/binary-mips/libsword-dev_1.5.3-3woody2_mips.deb sword (1.5.3-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added shell_escape() function to fix arbitrary command execution [apps/console/diatheke/cgi/diatheke.pl, CAN-2005-0015] * Improvements by Ulf Härnhammar * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-m68k/libsword1_1.5.3-3woody2_m68k.deb stable/main/binary-m68k/libsword-runtime_1.5.3-3woody2_m68k.deb stable/main/binary-m68k/libsword-dev_1.5.3-3woody2_m68k.deb stable/main/binary-m68k/diatheke_1.5.3-3woody2_m68k.deb sword (1.5.3-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added shell_escape() function to fix arbitrary command execution [apps/console/diatheke/cgi/diatheke.pl, CAN-2005-0015] * Improvements by Ulf Härnhammar * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-ia64/libsword1_1.5.3-3woody2_ia64.deb stable/main/binary-ia64/libsword-runtime_1.5.3-3woody2_ia64.deb stable/main/binary-ia64/libsword-dev_1.5.3-3woody2_ia64.deb stable/main/binary-ia64/diatheke_1.5.3-3woody2_ia64.deb sword (1.5.3-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added shell_escape() function to fix arbitrary command execution [apps/console/diatheke/cgi/diatheke.pl, CAN-2005-0015] * Improvements by Ulf Härnhammar * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-i386/libsword-dev_1.5.3-3woody2_i386.deb stable/main/binary-i386/diatheke_1.5.3-3woody2_i386.deb stable/main/binary-i386/libsword1_1.5.3-3woody2_i386.deb stable/main/binary-i386/libsword-runtime_1.5.3-3woody2_i386.deb sword (1.5.3-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added shell_escape() function to fix arbitrary command execution [apps/console/diatheke/cgi/diatheke.pl, CAN-2005-0015] * Improvements by Ulf Härnhammar * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-hppa/libsword-runtime_1.5.3-3woody2_hppa.deb stable/main/binary-hppa/diatheke_1.5.3-3woody2_hppa.deb stable/main/binary-hppa/libsword1_1.5.3-3woody2_hppa.deb stable/main/binary-hppa/libsword-dev_1.5.3-3woody2_hppa.deb sword (1.5.3-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added shell_escape() function to fix arbitrary command execution [apps/console/diatheke/cgi/diatheke.pl, CAN-2005-0015] * Improvements by Ulf Härnhammar * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-arm/libsword1_1.5.3-3woody2_arm.deb stable/main/binary-arm/diatheke_1.5.3-3woody2_arm.deb stable/main/binary-arm/libsword-runtime_1.5.3-3woody2_arm.deb stable/main/binary-arm/libsword-dev_1.5.3-3woody2_arm.deb sword (1.5.3-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added shell_escape() function to fix arbitrary command execution [apps/console/diatheke/cgi/diatheke.pl, CAN-2005-0015] * Improvements by Ulf Härnhammar * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-alpha/libsword1_1.5.3-3woody2_alpha.deb stable/main/binary-alpha/diatheke_1.5.3-3woody2_alpha.deb stable/main/binary-alpha/libsword-dev_1.5.3-3woody2_alpha.deb stable/main/binary-alpha/libsword-runtime_1.5.3-3woody2_alpha.deb sword (1.5.3-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added shell_escape() function to fix arbitrary command execution [apps/console/diatheke/cgi/diatheke.pl, CAN-2005-0015] * Improvements by Ulf Härnhammar * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-mipsel/libsword1_1.5.3-3woody2_mipsel.deb stable/main/binary-mipsel/libsword-runtime_1.5.3-3woody2_mipsel.deb stable/main/source/sword_1.5.3-3woody2.dsc stable/main/binary-mipsel/diatheke_1.5.3-3woody2_mipsel.deb stable/main/binary-mipsel/libsword-dev_1.5.3-3woody2_mipsel.deb stable/main/source/sword_1.5.3-3woody2.diff.gz sword (1.5.3-3woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added shell_escape() function to fix arbitrary command execution [apps/console/diatheke/cgi/diatheke.pl, CAN-2005-0015] * Improvements by Ulf Härnhammar * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-sparc/ssed_3.57a-2woody1_sparc.deb ssed (3.57a-2woody1) stable; urgency=medium * Non-maintainer upload by the stable release manager * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-s390/ssed_3.57a-2woody1_s390.deb ssed (3.57a-2woody1) stable; urgency=medium * Non-maintainer upload by the stable release manager * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-powerpc/ssed_3.57a-2woody1_powerpc.deb ssed (3.57a-2woody1) stable; urgency=medium * Non-maintainer upload by the stable release manager * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-mipsel/ssed_3.57a-2woody1_mipsel.deb ssed (3.57a-2woody1) stable; urgency=medium * Non-maintainer upload by the stable release manager * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-mips/ssed_3.57a-2woody1_mips.deb ssed (3.57a-2woody1) stable; urgency=medium * Non-maintainer upload by the stable release manager * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-m68k/ssed_3.57a-2woody1_m68k.deb ssed (3.57a-2woody1) stable; urgency=medium * Non-maintainer upload by the stable release manager * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-ia64/ssed_3.57a-2woody1_ia64.deb ssed (3.57a-2woody1) stable; urgency=medium * Non-maintainer upload by the stable release manager * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-i386/ssed_3.57a-2woody1_i386.deb ssed (3.57a-2woody1) stable; urgency=medium * Non-maintainer upload by the stable release manager * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-arm/ssed_3.57a-2woody1_arm.deb ssed (3.57a-2woody1) stable; urgency=medium * Non-maintainer upload by the stable release manager * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-alpha/ssed_3.57a-2woody1_alpha.deb ssed (3.57a-2woody1) stable; urgency=medium * Non-maintainer upload by the stable release manager * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/source/ssed_3.57a-2woody1.diff.gz stable/main/binary-hppa/ssed_3.57a-2woody1_hppa.deb stable/main/source/ssed_3.57a-2woody1.dsc ssed (3.57a-2woody1) stable; urgency=medium * Non-maintainer upload by the stable release manager * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-all/squirrelmail_1.2.6-3_all.deb stable/main/source/squirrelmail_1.2.6-3.dsc stable/main/source/squirrelmail_1.2.6-3.diff.gz squirrelmail (1:1.2.6-3) stable-security; urgency=low * Correct bug in previous security fix which broke logout_error(): timed out users did not get a friendly message anymore but a bunch of failed-to-include-errors. (Closes: #295836) stable/main/binary-sparc/squidclient_2.4.6-2woody7_sparc.deb stable/main/binary-sparc/squid-cgi_2.4.6-2woody7_sparc.deb stable/main/binary-sparc/squid_2.4.6-2woody7_sparc.deb squid (2.4.6-2woody7) stable-security; urgency=high * Upload to stable-security because of security issues * Added upstream patch for DoS in DNS reply parsing o squid-2.5.STABLE8-dns_assert.patch o src/comm.c, src/fqdncache.c, src/ipcache.c, CAN-2005-0446 stable/main/binary-s390/squidclient_2.4.6-2woody7_s390.deb stable/main/binary-s390/squid_2.4.6-2woody7_s390.deb stable/main/binary-s390/squid-cgi_2.4.6-2woody7_s390.deb squid (2.4.6-2woody7) stable-security; urgency=high * Upload to stable-security because of security issues * Added upstream patch for DoS in DNS reply parsing o squid-2.5.STABLE8-dns_assert.patch o src/comm.c, src/fqdncache.c, src/ipcache.c, CAN-2005-0446 stable/main/binary-powerpc/squid-cgi_2.4.6-2woody7_powerpc.deb stable/main/binary-powerpc/squidclient_2.4.6-2woody7_powerpc.deb stable/main/binary-powerpc/squid_2.4.6-2woody7_powerpc.deb squid (2.4.6-2woody7) stable-security; urgency=high * Upload to stable-security because of security issues * Added upstream patch for DoS in DNS reply parsing o squid-2.5.STABLE8-dns_assert.patch o src/comm.c, src/fqdncache.c, src/ipcache.c, CAN-2005-0446 stable/main/binary-mips/squid_2.4.6-2woody7_mips.deb stable/main/binary-mips/squidclient_2.4.6-2woody7_mips.deb stable/main/binary-mips/squid-cgi_2.4.6-2woody7_mips.deb squid (2.4.6-2woody7) stable-security; urgency=high * Upload to stable-security because of security issues * Added upstream patch for DoS in DNS reply parsing o squid-2.5.STABLE8-dns_assert.patch o src/comm.c, src/fqdncache.c, src/ipcache.c, CAN-2005-0446 stable/main/binary-m68k/squid_2.4.6-2woody7_m68k.deb stable/main/binary-m68k/squid-cgi_2.4.6-2woody7_m68k.deb stable/main/binary-m68k/squidclient_2.4.6-2woody7_m68k.deb squid (2.4.6-2woody7) stable-security; urgency=high * Upload to stable-security because of security issues * Added upstream patch for DoS in DNS reply parsing o squid-2.5.STABLE8-dns_assert.patch o src/comm.c, src/fqdncache.c, src/ipcache.c, CAN-2005-0446 stable/main/binary-ia64/squid_2.4.6-2woody7_ia64.deb stable/main/binary-ia64/squidclient_2.4.6-2woody7_ia64.deb stable/main/binary-ia64/squid-cgi_2.4.6-2woody7_ia64.deb squid (2.4.6-2woody7) stable-security; urgency=high * Upload to stable-security because of security issues * Added upstream patch for DoS in DNS reply parsing o squid-2.5.STABLE8-dns_assert.patch o src/comm.c, src/fqdncache.c, src/ipcache.c, CAN-2005-0446 stable/main/binary-i386/squid-cgi_2.4.6-2woody7_i386.deb stable/main/binary-i386/squidclient_2.4.6-2woody7_i386.deb stable/main/binary-i386/squid_2.4.6-2woody7_i386.deb squid (2.4.6-2woody7) stable-security; urgency=high * Upload to stable-security because of security issues * Added upstream patch for DoS in DNS reply parsing o squid-2.5.STABLE8-dns_assert.patch o src/comm.c, src/fqdncache.c, src/ipcache.c, CAN-2005-0446 stable/main/binary-hppa/squidclient_2.4.6-2woody7_hppa.deb stable/main/binary-hppa/squid-cgi_2.4.6-2woody7_hppa.deb stable/main/binary-hppa/squid_2.4.6-2woody7_hppa.deb squid (2.4.6-2woody7) stable-security; urgency=high * Upload to stable-security because of security issues * Added upstream patch for DoS in DNS reply parsing o squid-2.5.STABLE8-dns_assert.patch o src/comm.c, src/fqdncache.c, src/ipcache.c, CAN-2005-0446 stable/main/binary-arm/squid_2.4.6-2woody7_arm.deb stable/main/binary-arm/squidclient_2.4.6-2woody7_arm.deb stable/main/binary-arm/squid-cgi_2.4.6-2woody7_arm.deb squid (2.4.6-2woody7) stable-security; urgency=high * Upload to stable-security because of security issues * Added upstream patch for DoS in DNS reply parsing o squid-2.5.STABLE8-dns_assert.patch o src/comm.c, src/fqdncache.c, src/ipcache.c, CAN-2005-0446 stable/main/binary-alpha/squid_2.4.6-2woody7_alpha.deb stable/main/binary-alpha/squidclient_2.4.6-2woody7_alpha.deb stable/main/binary-alpha/squid-cgi_2.4.6-2woody7_alpha.deb squid (2.4.6-2woody7) stable-security; urgency=high * Upload to stable-security because of security issues * Added upstream patch for DoS in DNS reply parsing o squid-2.5.STABLE8-dns_assert.patch o src/comm.c, src/fqdncache.c, src/ipcache.c, CAN-2005-0446 stable/main/binary-mipsel/squid_2.4.6-2woody7_mipsel.deb stable/main/source/squid_2.4.6-2woody7.diff.gz stable/main/binary-mipsel/squidclient_2.4.6-2woody7_mipsel.deb stable/main/binary-mipsel/squid-cgi_2.4.6-2woody7_mipsel.deb stable/main/source/squid_2.4.6-2woody7.dsc squid (2.4.6-2woody7) stable-security; urgency=high * Upload to stable-security because of security issues * Added upstream patch for DoS in DNS reply parsing o squid-2.5.STABLE8-dns_assert.patch o src/comm.c, src/fqdncache.c, src/ipcache.c, CAN-2005-0446 stable/main/binary-sparc/slocate_2.6-1.3.3_sparc.deb slocate (2.6-1.3.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes rebuilt so that the package can migrate into proposed updates, since binary files from the former upload got lost on ftpmaster * Fixes unprivileged access (DSA 428, CAN-2003-0848, Bug#226103) stable/main/binary-s390/slocate_2.6-1.3.3_s390.deb slocate (2.6-1.3.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes rebuilt so that the package can migrate into proposed updates, since binary files from the former upload got lost on ftpmaster * Fixes unprivileged access (DSA 428, CAN-2003-0848, Bug#226103) stable/main/binary-powerpc/slocate_2.6-1.3.3_powerpc.deb slocate (2.6-1.3.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes rebuilt so that the package can migrate into proposed updates, since binary files from the former upload got lost on ftpmaster * Fixes unprivileged access (DSA 428, CAN-2003-0848, Bug#226103) stable/main/binary-mips/slocate_2.6-1.3.3_mips.deb slocate (2.6-1.3.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes rebuilt so that the package can migrate into proposed updates, since binary files from the former upload got lost on ftpmaster * Fixes unprivileged access (DSA 428, CAN-2003-0848, Bug#226103) stable/main/binary-m68k/slocate_2.6-1.3.3_m68k.deb slocate (2.6-1.3.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes rebuilt so that the package can migrate into proposed updates, since binary files from the former upload got lost on ftpmaster * Fixes unprivileged access (DSA 428, CAN-2003-0848, Bug#226103) stable/main/binary-ia64/slocate_2.6-1.3.3_ia64.deb slocate (2.6-1.3.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes rebuilt so that the package can migrate into proposed updates, since binary files from the former upload got lost on ftpmaster * Fixes unprivileged access (DSA 428, CAN-2003-0848, Bug#226103) stable/main/binary-i386/slocate_2.6-1.3.3_i386.deb slocate (2.6-1.3.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes rebuilt so that the package can migrate into proposed updates, since binary files from the former upload got lost on ftpmaster * Fixes unprivileged access (DSA 428, CAN-2003-0848, Bug#226103) stable/main/binary-hppa/slocate_2.6-1.3.3_hppa.deb slocate (2.6-1.3.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes rebuilt so that the package can migrate into proposed updates, since binary files from the former upload got lost on ftpmaster * Fixes unprivileged access (DSA 428, CAN-2003-0848, Bug#226103) stable/main/binary-arm/slocate_2.6-1.3.3_arm.deb slocate (2.6-1.3.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes rebuilt so that the package can migrate into proposed updates, since binary files from the former upload got lost on ftpmaster * Fixes unprivileged access (DSA 428, CAN-2003-0848, Bug#226103) stable/main/binary-alpha/slocate_2.6-1.3.3_alpha.deb slocate (2.6-1.3.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes rebuilt so that the package can migrate into proposed updates, since binary files from the former upload got lost on ftpmaster * Fixes unprivileged access (DSA 428, CAN-2003-0848, Bug#226103) stable/main/source/slocate_2.6-1.3.3.dsc stable/main/binary-mipsel/slocate_2.6-1.3.3_mipsel.deb stable/main/source/slocate_2.6-1.3.3.diff.gz slocate (2.6-1.3.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes rebuilt so that the package can migrate into proposed updates, since binary files from the former upload got lost on ftpmaster * Fixes unprivileged access (DSA 428, CAN-2003-0848, Bug#226103) stable/main/binary-sparc/remstats-bintools_1.00a4-8woody1_sparc.deb remstats (1.00a4-8woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Disabled debug file /tmp/uptimes in order to prevent a symlink attack against the server [unix-status-server.pl, CAN-2005-0387] * Added test for invalid IP numbers to fix arbitrary command execution [remoteping-server.pl, CAN-2005-0388] stable/main/binary-s390/remstats-bintools_1.00a4-8woody1_s390.deb remstats (1.00a4-8woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Disabled debug file /tmp/uptimes in order to prevent a symlink attack against the server [unix-status-server.pl, CAN-2005-0387] * Added test for invalid IP numbers to fix arbitrary command execution [remoteping-server.pl, CAN-2005-0388] stable/main/binary-powerpc/remstats-bintools_1.00a4-8woody1_powerpc.deb remstats (1.00a4-8woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Disabled debug file /tmp/uptimes in order to prevent a symlink attack against the server [unix-status-server.pl, CAN-2005-0387] * Added test for invalid IP numbers to fix arbitrary command execution [remoteping-server.pl, CAN-2005-0388] stable/main/binary-mipsel/remstats-bintools_1.00a4-8woody1_mipsel.deb remstats (1.00a4-8woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Disabled debug file /tmp/uptimes in order to prevent a symlink attack against the server [unix-status-server.pl, CAN-2005-0387] * Added test for invalid IP numbers to fix arbitrary command execution [remoteping-server.pl, CAN-2005-0388] stable/main/binary-mips/remstats-bintools_1.00a4-8woody1_mips.deb remstats (1.00a4-8woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Disabled debug file /tmp/uptimes in order to prevent a symlink attack against the server [unix-status-server.pl, CAN-2005-0387] * Added test for invalid IP numbers to fix arbitrary command execution [remoteping-server.pl, CAN-2005-0388] stable/main/binary-m68k/remstats-bintools_1.00a4-8woody1_m68k.deb remstats (1.00a4-8woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Disabled debug file /tmp/uptimes in order to prevent a symlink attack against the server [unix-status-server.pl, CAN-2005-0387] * Added test for invalid IP numbers to fix arbitrary command execution [remoteping-server.pl, CAN-2005-0388] stable/main/binary-ia64/remstats-bintools_1.00a4-8woody1_ia64.deb remstats (1.00a4-8woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Disabled debug file /tmp/uptimes in order to prevent a symlink attack against the server [unix-status-server.pl, CAN-2005-0387] * Added test for invalid IP numbers to fix arbitrary command execution [remoteping-server.pl, CAN-2005-0388] stable/main/binary-i386/remstats-bintools_1.00a4-8woody1_i386.deb remstats (1.00a4-8woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Disabled debug file /tmp/uptimes in order to prevent a symlink attack against the server [unix-status-server.pl, CAN-2005-0387] * Added test for invalid IP numbers to fix arbitrary command execution [remoteping-server.pl, CAN-2005-0388] stable/main/binary-hppa/remstats-bintools_1.00a4-8woody1_hppa.deb remstats (1.00a4-8woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Disabled debug file /tmp/uptimes in order to prevent a symlink attack against the server [unix-status-server.pl, CAN-2005-0387] * Added test for invalid IP numbers to fix arbitrary command execution [remoteping-server.pl, CAN-2005-0388] stable/main/binary-alpha/remstats-bintools_1.00a4-8woody1_alpha.deb remstats (1.00a4-8woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Disabled debug file /tmp/uptimes in order to prevent a symlink attack against the server [unix-status-server.pl, CAN-2005-0387] * Added test for invalid IP numbers to fix arbitrary command execution [remoteping-server.pl, CAN-2005-0388] stable/main/binary-all/remstats-doc_1.00a4-8woody1_all.deb stable/main/binary-all/remstats-servers_1.00a4-8woody1_all.deb stable/main/source/remstats_1.00a4-8woody1.diff.gz stable/main/source/remstats_1.00a4-8woody1.dsc stable/main/binary-arm/remstats-bintools_1.00a4-8woody1_arm.deb stable/main/binary-all/remstats_1.00a4-8woody1_all.deb remstats (1.00a4-8woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Disabled debug file /tmp/uptimes in order to prevent a symlink attack against the server [unix-status-server.pl, CAN-2005-0387] * Added test for invalid IP numbers to fix arbitrary command execution [remoteping-server.pl, CAN-2005-0388] stable/main/binary-sparc/queue_1.30.1-4woody2_sparc.deb queue (1.30.1-4woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Partially applied patch by "jaguar" to fix several buffer overflows [queue.c, queued.c, CAN-2004-0555] * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-s390/queue_1.30.1-4woody2_s390.deb queue (1.30.1-4woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Partially applied patch by "jaguar" to fix several buffer overflows [queue.c, queued.c, CAN-2004-0555] * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-powerpc/queue_1.30.1-4woody2_powerpc.deb queue (1.30.1-4woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Partially applied patch by "jaguar" to fix several buffer overflows [queue.c, queued.c, CAN-2004-0555] * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-mips/queue_1.30.1-4woody2_mips.deb queue (1.30.1-4woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Partially applied patch by "jaguar" to fix several buffer overflows [queue.c, queued.c, CAN-2004-0555] * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-m68k/queue_1.30.1-4woody2_m68k.deb queue (1.30.1-4woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Partially applied patch by "jaguar" to fix several buffer overflows [queue.c, queued.c, CAN-2004-0555] * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-ia64/queue_1.30.1-4woody2_ia64.deb queue (1.30.1-4woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Partially applied patch by "jaguar" to fix several buffer overflows [queue.c, queued.c, CAN-2004-0555] * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-i386/queue_1.30.1-4woody2_i386.deb queue (1.30.1-4woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Partially applied patch by "jaguar" to fix several buffer overflows [queue.c, queued.c, CAN-2004-0555] * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-hppa/queue_1.30.1-4woody2_hppa.deb queue (1.30.1-4woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Partially applied patch by "jaguar" to fix several buffer overflows [queue.c, queued.c, CAN-2004-0555] * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-arm/queue_1.30.1-4woody2_arm.deb queue (1.30.1-4woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Partially applied patch by "jaguar" to fix several buffer overflows [queue.c, queued.c, CAN-2004-0555] * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-alpha/queue_1.30.1-4woody2_alpha.deb queue (1.30.1-4woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Partially applied patch by "jaguar" to fix several buffer overflows [queue.c, queued.c, CAN-2004-0555] * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-mipsel/queue_1.30.1-4woody2_mipsel.deb stable/main/source/queue_1.30.1-4woody2.dsc stable/main/source/queue_1.30.1-4woody2.diff.gz queue (1.30.1-4woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Partially applied patch by "jaguar" to fix several buffer overflows [queue.c, queued.c, CAN-2004-0555] * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-sparc/qpopper_4.0.4-2.woody.4_sparc.deb stable/main/binary-sparc/qpopper-drac_4.0.4-2.woody.4_sparc.deb qpopper (4.0.4-2.woody.4) stable-security; urgency=medium * Non-maintainer upload by the Security Team * No-changes rebuilt so that the package can migrate into proposed updates, since binary files from the former upload got lost on ftpmaster * Fixes mail user privilege escalation (DSA 259, CVE-2003-0143) stable/main/binary-s390/qpopper-drac_4.0.4-2.woody.4_s390.deb stable/main/binary-s390/qpopper_4.0.4-2.woody.4_s390.deb qpopper (4.0.4-2.woody.4) stable-security; urgency=medium * Non-maintainer upload by the Security Team * No-changes rebuilt so that the package can migrate into proposed updates, since binary files from the former upload got lost on ftpmaster * Fixes mail user privilege escalation (DSA 259, CVE-2003-0143) stable/main/binary-powerpc/qpopper_4.0.4-2.woody.4_powerpc.deb stable/main/binary-powerpc/qpopper-drac_4.0.4-2.woody.4_powerpc.deb qpopper (4.0.4-2.woody.4) stable-security; urgency=medium * Non-maintainer upload by the Security Team * No-changes rebuilt so that the package can migrate into proposed updates, since binary files from the former upload got lost on ftpmaster * Fixes mail user privilege escalation (DSA 259, CVE-2003-0143) stable/main/binary-mips/qpopper-drac_4.0.4-2.woody.4_mips.deb stable/main/binary-mips/qpopper_4.0.4-2.woody.4_mips.deb qpopper (4.0.4-2.woody.4) stable-security; urgency=medium * Non-maintainer upload by the Security Team * No-changes rebuilt so that the package can migrate into proposed updates, since binary files from the former upload got lost on ftpmaster * Fixes mail user privilege escalation (DSA 259, CVE-2003-0143) stable/main/binary-m68k/qpopper_4.0.4-2.woody.4_m68k.deb stable/main/binary-m68k/qpopper-drac_4.0.4-2.woody.4_m68k.deb qpopper (4.0.4-2.woody.4) stable-security; urgency=medium * Non-maintainer upload by the Security Team * No-changes rebuilt so that the package can migrate into proposed updates, since binary files from the former upload got lost on ftpmaster * Fixes mail user privilege escalation (DSA 259, CVE-2003-0143) stable/main/binary-ia64/qpopper-drac_4.0.4-2.woody.4_ia64.deb stable/main/binary-ia64/qpopper_4.0.4-2.woody.4_ia64.deb qpopper (4.0.4-2.woody.4) stable-security; urgency=medium * Non-maintainer upload by the Security Team * No-changes rebuilt so that the package can migrate into proposed updates, since binary files from the former upload got lost on ftpmaster * Fixes mail user privilege escalation (DSA 259, CVE-2003-0143) stable/main/binary-i386/qpopper_4.0.4-2.woody.4_i386.deb stable/main/binary-i386/qpopper-drac_4.0.4-2.woody.4_i386.deb qpopper (4.0.4-2.woody.4) stable-security; urgency=medium * Non-maintainer upload by the Security Team * No-changes rebuilt so that the package can migrate into proposed updates, since binary files from the former upload got lost on ftpmaster * Fixes mail user privilege escalation (DSA 259, CVE-2003-0143) stable/main/binary-hppa/qpopper-drac_4.0.4-2.woody.4_hppa.deb stable/main/binary-hppa/qpopper_4.0.4-2.woody.4_hppa.deb qpopper (4.0.4-2.woody.4) stable-security; urgency=medium * Non-maintainer upload by the Security Team * No-changes rebuilt so that the package can migrate into proposed updates, since binary files from the former upload got lost on ftpmaster * Fixes mail user privilege escalation (DSA 259, CVE-2003-0143) stable/main/binary-arm/qpopper-drac_4.0.4-2.woody.4_arm.deb stable/main/binary-arm/qpopper_4.0.4-2.woody.4_arm.deb qpopper (4.0.4-2.woody.4) stable-security; urgency=medium * Non-maintainer upload by the Security Team * No-changes rebuilt so that the package can migrate into proposed updates, since binary files from the former upload got lost on ftpmaster * Fixes mail user privilege escalation (DSA 259, CVE-2003-0143) stable/main/binary-alpha/qpopper-drac_4.0.4-2.woody.4_alpha.deb stable/main/binary-alpha/qpopper_4.0.4-2.woody.4_alpha.deb qpopper (4.0.4-2.woody.4) stable-security; urgency=medium * Non-maintainer upload by the Security Team * No-changes rebuilt so that the package can migrate into proposed updates, since binary files from the former upload got lost on ftpmaster * Fixes mail user privilege escalation (DSA 259, CVE-2003-0143) stable/main/binary-mipsel/qpopper_4.0.4-2.woody.4_mipsel.deb stable/main/source/qpopper_4.0.4-2.woody.4.dsc stable/main/binary-mipsel/qpopper-drac_4.0.4-2.woody.4_mipsel.deb stable/main/source/qpopper_4.0.4-2.woody.4.diff.gz qpopper (4.0.4-2.woody.4) stable-security; urgency=medium * Non-maintainer upload by the Security Team * No-changes rebuilt so that the package can migrate into proposed updates, since binary files from the former upload got lost on ftpmaster * Fixes mail user privilege escalation (DSA 259, CVE-2003-0143) stable/main/binary-sparc/python2.2_2.2.1-4.7_sparc.deb stable/main/binary-sparc/python2.2-dev_2.2.1-4.7_sparc.deb stable/main/binary-sparc/python2.2-gdbm_2.2.1-4.7_sparc.deb stable/main/binary-sparc/python2.2-mpz_2.2.1-4.7_sparc.deb stable/main/binary-sparc/python2.2-xmlbase_2.2.1-4.7_sparc.deb stable/main/binary-sparc/python2.2-tk_2.2.1-4.7_sparc.deb python2.2 (2.2.1-4.7) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a design flaw in the XML/RPC Server implementation [Lib/SimpleXMLRPCServer.py, CAN-2005-0089, security_CAN-2005-0089_xml.dpatch] stable/main/binary-s390/python2.2-tk_2.2.1-4.7_s390.deb stable/main/binary-s390/python2.2-mpz_2.2.1-4.7_s390.deb stable/main/binary-s390/python2.2_2.2.1-4.7_s390.deb stable/main/binary-s390/python2.2-gdbm_2.2.1-4.7_s390.deb stable/main/binary-s390/python2.2-xmlbase_2.2.1-4.7_s390.deb stable/main/binary-s390/python2.2-dev_2.2.1-4.7_s390.deb python2.2 (2.2.1-4.7) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a design flaw in the XML/RPC Server implementation [Lib/SimpleXMLRPCServer.py, CAN-2005-0089, security_CAN-2005-0089_xml.dpatch] stable/main/binary-powerpc/python2.2_2.2.1-4.7_powerpc.deb stable/main/binary-powerpc/python2.2-xmlbase_2.2.1-4.7_powerpc.deb stable/main/binary-powerpc/python2.2-gdbm_2.2.1-4.7_powerpc.deb stable/main/binary-powerpc/python2.2-mpz_2.2.1-4.7_powerpc.deb stable/main/binary-powerpc/python2.2-dev_2.2.1-4.7_powerpc.deb stable/main/binary-powerpc/python2.2-tk_2.2.1-4.7_powerpc.deb python2.2 (2.2.1-4.7) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a design flaw in the XML/RPC Server implementation [Lib/SimpleXMLRPCServer.py, CAN-2005-0089, security_CAN-2005-0089_xml.dpatch] stable/main/binary-mips/python2.2-dev_2.2.1-4.7_mips.deb stable/main/binary-mips/python2.2-mpz_2.2.1-4.7_mips.deb stable/main/binary-mips/python2.2-gdbm_2.2.1-4.7_mips.deb stable/main/binary-mips/python2.2_2.2.1-4.7_mips.deb stable/main/binary-mips/python2.2-xmlbase_2.2.1-4.7_mips.deb stable/main/binary-mips/python2.2-tk_2.2.1-4.7_mips.deb python2.2 (2.2.1-4.7) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a design flaw in the XML/RPC Server implementation [Lib/SimpleXMLRPCServer.py, CAN-2005-0089, security_CAN-2005-0089_xml.dpatch] stable/main/binary-m68k/python2.2-gdbm_2.2.1-4.7_m68k.deb stable/main/binary-m68k/python2.2-tk_2.2.1-4.7_m68k.deb stable/main/binary-m68k/python2.2_2.2.1-4.7_m68k.deb stable/main/binary-m68k/python2.2-dev_2.2.1-4.7_m68k.deb stable/main/binary-m68k/python2.2-xmlbase_2.2.1-4.7_m68k.deb stable/main/binary-m68k/python2.2-mpz_2.2.1-4.7_m68k.deb python2.2 (2.2.1-4.7) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a design flaw in the XML/RPC Server implementation [Lib/SimpleXMLRPCServer.py, CAN-2005-0089, security_CAN-2005-0089_xml.dpatch] stable/main/binary-ia64/python2.2-tk_2.2.1-4.7_ia64.deb stable/main/binary-ia64/python2.2-mpz_2.2.1-4.7_ia64.deb stable/main/binary-ia64/python2.2-gdbm_2.2.1-4.7_ia64.deb stable/main/binary-ia64/python2.2-xmlbase_2.2.1-4.7_ia64.deb stable/main/binary-ia64/python2.2_2.2.1-4.7_ia64.deb stable/main/binary-ia64/python2.2-dev_2.2.1-4.7_ia64.deb python2.2 (2.2.1-4.7) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a design flaw in the XML/RPC Server implementation [Lib/SimpleXMLRPCServer.py, CAN-2005-0089, security_CAN-2005-0089_xml.dpatch] stable/main/binary-i386/python2.2-mpz_2.2.1-4.7_i386.deb stable/main/binary-i386/python2.2-dev_2.2.1-4.7_i386.deb stable/main/binary-i386/python2.2-gdbm_2.2.1-4.7_i386.deb stable/main/binary-i386/python2.2-tk_2.2.1-4.7_i386.deb stable/main/binary-i386/python2.2-xmlbase_2.2.1-4.7_i386.deb stable/main/binary-i386/python2.2_2.2.1-4.7_i386.deb python2.2 (2.2.1-4.7) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a design flaw in the XML/RPC Server implementation [Lib/SimpleXMLRPCServer.py, CAN-2005-0089, security_CAN-2005-0089_xml.dpatch] stable/main/binary-hppa/python2.2_2.2.1-4.7_hppa.deb stable/main/binary-hppa/python2.2-tk_2.2.1-4.7_hppa.deb stable/main/binary-hppa/python2.2-mpz_2.2.1-4.7_hppa.deb stable/main/binary-hppa/python2.2-gdbm_2.2.1-4.7_hppa.deb stable/main/binary-hppa/python2.2-xmlbase_2.2.1-4.7_hppa.deb stable/main/binary-hppa/python2.2-dev_2.2.1-4.7_hppa.deb python2.2 (2.2.1-4.7) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a design flaw in the XML/RPC Server implementation [Lib/SimpleXMLRPCServer.py, CAN-2005-0089, security_CAN-2005-0089_xml.dpatch] stable/main/binary-arm/python2.2-xmlbase_2.2.1-4.7_arm.deb stable/main/binary-arm/python2.2-mpz_2.2.1-4.7_arm.deb stable/main/binary-arm/python2.2-gdbm_2.2.1-4.7_arm.deb stable/main/binary-arm/python2.2-dev_2.2.1-4.7_arm.deb stable/main/binary-arm/python2.2-tk_2.2.1-4.7_arm.deb stable/main/binary-arm/python2.2_2.2.1-4.7_arm.deb python2.2 (2.2.1-4.7) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a design flaw in the XML/RPC Server implementation [Lib/SimpleXMLRPCServer.py, CAN-2005-0089, security_CAN-2005-0089_xml.dpatch] stable/main/binary-alpha/python2.2-xmlbase_2.2.1-4.7_alpha.deb stable/main/binary-alpha/python2.2-dev_2.2.1-4.7_alpha.deb stable/main/binary-alpha/python2.2-tk_2.2.1-4.7_alpha.deb stable/main/binary-alpha/python2.2-mpz_2.2.1-4.7_alpha.deb stable/main/binary-alpha/python2.2-gdbm_2.2.1-4.7_alpha.deb stable/main/binary-alpha/python2.2_2.2.1-4.7_alpha.deb python2.2 (2.2.1-4.7) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a design flaw in the XML/RPC Server implementation [Lib/SimpleXMLRPCServer.py, CAN-2005-0089, security_CAN-2005-0089_xml.dpatch] stable/main/binary-mipsel/python2.2-tk_2.2.1-4.7_mipsel.deb stable/main/binary-all/python2.2-examples_2.2.1-4.7_all.deb stable/main/binary-mipsel/python2.2-dev_2.2.1-4.7_mipsel.deb stable/main/binary-mipsel/python2.2-xmlbase_2.2.1-4.7_mipsel.deb stable/main/binary-mipsel/python2.2-gdbm_2.2.1-4.7_mipsel.deb stable/main/binary-all/idle-python2.2_2.2.1-4.7_all.deb stable/main/binary-mipsel/python2.2-mpz_2.2.1-4.7_mipsel.deb stable/main/source/python2.2_2.2.1-4.7.diff.gz stable/main/binary-all/python2.2-elisp_2.2.1-4.7_all.deb stable/main/source/python2.2_2.2.1-4.7.dsc stable/main/binary-all/python2.2-doc_2.2.1-4.7_all.deb stable/main/binary-mipsel/python2.2_2.2.1-4.7_mipsel.deb python2.2 (2.2.1-4.7) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a design flaw in the XML/RPC Server implementation [Lib/SimpleXMLRPCServer.py, CAN-2005-0089, security_CAN-2005-0089_xml.dpatch] stable/main/binary-sparc/prozilla_1.3.6-3woody1_sparc.deb prozilla (1:1.3.6-3woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix buffer overflows [src/curses.c, src/debug.c, src/ftp.c, src/ftp-retr.c, src/ftpsearch.c, src/http.c, src/http-retr.c, src/logfile.c, src/main.c, CAN-2004-1120] stable/main/binary-s390/prozilla_1.3.6-3woody1_s390.deb prozilla (1:1.3.6-3woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix buffer overflows [src/curses.c, src/debug.c, src/ftp.c, src/ftp-retr.c, src/ftpsearch.c, src/http.c, src/http-retr.c, src/logfile.c, src/main.c, CAN-2004-1120] stable/main/binary-powerpc/prozilla_1.3.6-3woody1_powerpc.deb prozilla (1:1.3.6-3woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix buffer overflows [src/curses.c, src/debug.c, src/ftp.c, src/ftp-retr.c, src/ftpsearch.c, src/http.c, src/http-retr.c, src/logfile.c, src/main.c, CAN-2004-1120] stable/main/binary-mips/prozilla_1.3.6-3woody1_mips.deb prozilla (1:1.3.6-3woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix buffer overflows [src/curses.c, src/debug.c, src/ftp.c, src/ftp-retr.c, src/ftpsearch.c, src/http.c, src/http-retr.c, src/logfile.c, src/main.c, CAN-2004-1120] stable/main/binary-m68k/prozilla_1.3.6-3woody1_m68k.deb prozilla (1:1.3.6-3woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix buffer overflows [src/curses.c, src/debug.c, src/ftp.c, src/ftp-retr.c, src/ftpsearch.c, src/http.c, src/http-retr.c, src/logfile.c, src/main.c, CAN-2004-1120] stable/main/binary-ia64/prozilla_1.3.6-3woody1_ia64.deb prozilla (1:1.3.6-3woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix buffer overflows [src/curses.c, src/debug.c, src/ftp.c, src/ftp-retr.c, src/ftpsearch.c, src/http.c, src/http-retr.c, src/logfile.c, src/main.c, CAN-2004-1120] stable/main/binary-i386/prozilla_1.3.6-3woody1_i386.deb prozilla (1:1.3.6-3woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix buffer overflows [src/curses.c, src/debug.c, src/ftp.c, src/ftp-retr.c, src/ftpsearch.c, src/http.c, src/http-retr.c, src/logfile.c, src/main.c, CAN-2004-1120] stable/main/binary-hppa/prozilla_1.3.6-3woody1_hppa.deb prozilla (1:1.3.6-3woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix buffer overflows [src/curses.c, src/debug.c, src/ftp.c, src/ftp-retr.c, src/ftpsearch.c, src/http.c, src/http-retr.c, src/logfile.c, src/main.c, CAN-2004-1120] stable/main/binary-arm/prozilla_1.3.6-3woody1_arm.deb prozilla (1:1.3.6-3woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix buffer overflows [src/curses.c, src/debug.c, src/ftp.c, src/ftp-retr.c, src/ftpsearch.c, src/http.c, src/http-retr.c, src/logfile.c, src/main.c, CAN-2004-1120] stable/main/binary-alpha/prozilla_1.3.6-3woody1_alpha.deb prozilla (1:1.3.6-3woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix buffer overflows [src/curses.c, src/debug.c, src/ftp.c, src/ftp-retr.c, src/ftpsearch.c, src/http.c, src/http-retr.c, src/logfile.c, src/main.c, CAN-2004-1120] stable/main/binary-mipsel/prozilla_1.3.6-3woody1_mipsel.deb stable/main/source/prozilla_1.3.6-3woody1.dsc stable/main/source/prozilla_1.3.6-3woody1.diff.gz prozilla (1:1.3.6-3woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix buffer overflows [src/curses.c, src/debug.c, src/ftp.c, src/ftp-retr.c, src/ftpsearch.c, src/http.c, src/http-retr.c, src/logfile.c, src/main.c, CAN-2004-1120] stable/main/binary-sparc/odbc-postgresql_7.2.1-2woody8_sparc.deb stable/main/binary-sparc/postgresql-dev_7.2.1-2woody8_sparc.deb stable/main/binary-sparc/postgresql-contrib_7.2.1-2woody8_sparc.deb stable/main/binary-sparc/libpgsql2_7.2.1-2woody8_sparc.deb stable/main/binary-sparc/pgaccess_7.2.1-2woody8_sparc.deb stable/main/binary-sparc/postgresql-client_7.2.1-2woody8_sparc.deb stable/main/binary-sparc/python-pygresql_7.2.1-2woody8_sparc.deb stable/main/binary-sparc/libpgperl_7.2.1-2woody8_sparc.deb stable/main/binary-sparc/libpgtcl_7.2.1-2woody8_sparc.deb stable/main/binary-sparc/postgresql_7.2.1-2woody8_sparc.deb stable/main/binary-sparc/libecpg3_7.2.1-2woody8_sparc.deb postgresql (7.2.1-2woody8) stable-security; urgency=low * Maintainer security upload to fix various vulnerabilities. * src/pl/plpgsql/src/gram.y: - Check various array boundaries to prevent buffer overflows. - References: CAN-2005-0245 CAN-2005-0247 * Notes: - 7.2 does not yet support GRANT on functions, thus CAN-2005-0244 does not apply. - 7.2 does not yet contain the "intagg" contrib module, thus CAN-2005-0246 does not apply. * Added CAN number to previous changelog. stable/main/binary-s390/postgresql-client_7.2.1-2woody8_s390.deb stable/main/binary-s390/pgaccess_7.2.1-2woody8_s390.deb stable/main/binary-s390/libpgperl_7.2.1-2woody8_s390.deb stable/main/binary-s390/python-pygresql_7.2.1-2woody8_s390.deb stable/main/binary-s390/postgresql-contrib_7.2.1-2woody8_s390.deb stable/main/binary-s390/postgresql-dev_7.2.1-2woody8_s390.deb stable/main/binary-s390/libpgtcl_7.2.1-2woody8_s390.deb stable/main/binary-s390/odbc-postgresql_7.2.1-2woody8_s390.deb stable/main/binary-s390/postgresql_7.2.1-2woody8_s390.deb stable/main/binary-s390/libpgsql2_7.2.1-2woody8_s390.deb stable/main/binary-s390/libecpg3_7.2.1-2woody8_s390.deb postgresql (7.2.1-2woody8) stable-security; urgency=low * Maintainer security upload to fix various vulnerabilities. * src/pl/plpgsql/src/gram.y: - Check various array boundaries to prevent buffer overflows. - References: CAN-2005-0245 CAN-2005-0247 * Notes: - 7.2 does not yet support GRANT on functions, thus CAN-2005-0244 does not apply. - 7.2 does not yet contain the "intagg" contrib module, thus CAN-2005-0246 does not apply. * Added CAN number to previous changelog. stable/main/binary-powerpc/libpgperl_7.2.1-2woody8_powerpc.deb stable/main/binary-powerpc/libpgsql2_7.2.1-2woody8_powerpc.deb stable/main/binary-powerpc/postgresql-client_7.2.1-2woody8_powerpc.deb stable/main/binary-powerpc/pgaccess_7.2.1-2woody8_powerpc.deb stable/main/binary-powerpc/libpgtcl_7.2.1-2woody8_powerpc.deb stable/main/binary-powerpc/python-pygresql_7.2.1-2woody8_powerpc.deb stable/main/binary-powerpc/odbc-postgresql_7.2.1-2woody8_powerpc.deb stable/main/binary-powerpc/postgresql-dev_7.2.1-2woody8_powerpc.deb stable/main/binary-powerpc/libecpg3_7.2.1-2woody8_powerpc.deb stable/main/binary-powerpc/postgresql-contrib_7.2.1-2woody8_powerpc.deb stable/main/binary-powerpc/postgresql_7.2.1-2woody8_powerpc.deb postgresql (7.2.1-2woody8) stable-security; urgency=low * Maintainer security upload to fix various vulnerabilities. * src/pl/plpgsql/src/gram.y: - Check various array boundaries to prevent buffer overflows. - References: CAN-2005-0245 CAN-2005-0247 * Notes: - 7.2 does not yet support GRANT on functions, thus CAN-2005-0244 does not apply. - 7.2 does not yet contain the "intagg" contrib module, thus CAN-2005-0246 does not apply. * Added CAN number to previous changelog. stable/main/binary-mipsel/python-pygresql_7.2.1-2woody8_mipsel.deb stable/main/binary-mipsel/odbc-postgresql_7.2.1-2woody8_mipsel.deb stable/main/binary-mipsel/libpgtcl_7.2.1-2woody8_mipsel.deb stable/main/binary-mipsel/postgresql-contrib_7.2.1-2woody8_mipsel.deb stable/main/binary-mipsel/libpgsql2_7.2.1-2woody8_mipsel.deb stable/main/binary-mipsel/libecpg3_7.2.1-2woody8_mipsel.deb stable/main/binary-mipsel/postgresql_7.2.1-2woody8_mipsel.deb stable/main/binary-mipsel/postgresql-dev_7.2.1-2woody8_mipsel.deb stable/main/binary-mipsel/postgresql-client_7.2.1-2woody8_mipsel.deb stable/main/binary-mipsel/pgaccess_7.2.1-2woody8_mipsel.deb stable/main/binary-mipsel/libpgperl_7.2.1-2woody8_mipsel.deb postgresql (7.2.1-2woody8) stable-security; urgency=low * Maintainer security upload to fix various vulnerabilities. * src/pl/plpgsql/src/gram.y: - Check various array boundaries to prevent buffer overflows. - References: CAN-2005-0245 CAN-2005-0247 * Notes: - 7.2 does not yet support GRANT on functions, thus CAN-2005-0244 does not apply. - 7.2 does not yet contain the "intagg" contrib module, thus CAN-2005-0246 does not apply. * Added CAN number to previous changelog. stable/main/binary-mips/postgresql-dev_7.2.1-2woody8_mips.deb stable/main/binary-mips/libpgtcl_7.2.1-2woody8_mips.deb stable/main/binary-mips/postgresql_7.2.1-2woody8_mips.deb stable/main/binary-mips/pgaccess_7.2.1-2woody8_mips.deb stable/main/binary-mips/libpgperl_7.2.1-2woody8_mips.deb stable/main/binary-mips/libecpg3_7.2.1-2woody8_mips.deb stable/main/binary-mips/python-pygresql_7.2.1-2woody8_mips.deb stable/main/binary-mips/odbc-postgresql_7.2.1-2woody8_mips.deb stable/main/binary-mips/postgresql-client_7.2.1-2woody8_mips.deb stable/main/binary-mips/libpgsql2_7.2.1-2woody8_mips.deb stable/main/binary-mips/postgresql-contrib_7.2.1-2woody8_mips.deb postgresql (7.2.1-2woody8) stable-security; urgency=low * Maintainer security upload to fix various vulnerabilities. * src/pl/plpgsql/src/gram.y: - Check various array boundaries to prevent buffer overflows. - References: CAN-2005-0245 CAN-2005-0247 * Notes: - 7.2 does not yet support GRANT on functions, thus CAN-2005-0244 does not apply. - 7.2 does not yet contain the "intagg" contrib module, thus CAN-2005-0246 does not apply. * Added CAN number to previous changelog. stable/main/binary-m68k/postgresql-dev_7.2.1-2woody8_m68k.deb stable/main/binary-m68k/libecpg3_7.2.1-2woody8_m68k.deb stable/main/binary-m68k/postgresql-contrib_7.2.1-2woody8_m68k.deb stable/main/binary-m68k/libpgtcl_7.2.1-2woody8_m68k.deb stable/main/binary-m68k/python-pygresql_7.2.1-2woody8_m68k.deb stable/main/binary-m68k/libpgperl_7.2.1-2woody8_m68k.deb stable/main/binary-m68k/libpgsql2_7.2.1-2woody8_m68k.deb stable/main/binary-m68k/odbc-postgresql_7.2.1-2woody8_m68k.deb stable/main/binary-m68k/pgaccess_7.2.1-2woody8_m68k.deb stable/main/binary-m68k/postgresql-client_7.2.1-2woody8_m68k.deb stable/main/binary-m68k/postgresql_7.2.1-2woody8_m68k.deb postgresql (7.2.1-2woody8) stable-security; urgency=low * Maintainer security upload to fix various vulnerabilities. * src/pl/plpgsql/src/gram.y: - Check various array boundaries to prevent buffer overflows. - References: CAN-2005-0245 CAN-2005-0247 * Notes: - 7.2 does not yet support GRANT on functions, thus CAN-2005-0244 does not apply. - 7.2 does not yet contain the "intagg" contrib module, thus CAN-2005-0246 does not apply. * Added CAN number to previous changelog. stable/main/binary-ia64/postgresql_7.2.1-2woody8_ia64.deb stable/main/binary-ia64/pgaccess_7.2.1-2woody8_ia64.deb stable/main/binary-ia64/libpgperl_7.2.1-2woody8_ia64.deb stable/main/binary-ia64/postgresql-dev_7.2.1-2woody8_ia64.deb stable/main/binary-ia64/libecpg3_7.2.1-2woody8_ia64.deb stable/main/binary-ia64/odbc-postgresql_7.2.1-2woody8_ia64.deb stable/main/binary-ia64/libpgtcl_7.2.1-2woody8_ia64.deb stable/main/binary-ia64/libpgsql2_7.2.1-2woody8_ia64.deb stable/main/binary-ia64/postgresql-contrib_7.2.1-2woody8_ia64.deb stable/main/binary-ia64/postgresql-client_7.2.1-2woody8_ia64.deb stable/main/binary-ia64/python-pygresql_7.2.1-2woody8_ia64.deb postgresql (7.2.1-2woody8) stable-security; urgency=low * Maintainer security upload to fix various vulnerabilities. * src/pl/plpgsql/src/gram.y: - Check various array boundaries to prevent buffer overflows. - References: CAN-2005-0245 CAN-2005-0247 * Notes: - 7.2 does not yet support GRANT on functions, thus CAN-2005-0244 does not apply. - 7.2 does not yet contain the "intagg" contrib module, thus CAN-2005-0246 does not apply. * Added CAN number to previous changelog. stable/main/binary-hppa/postgresql-contrib_7.2.1-2woody8_hppa.deb stable/main/binary-hppa/libpgperl_7.2.1-2woody8_hppa.deb stable/main/binary-hppa/libecpg3_7.2.1-2woody8_hppa.deb stable/main/binary-hppa/libpgtcl_7.2.1-2woody8_hppa.deb stable/main/binary-hppa/python-pygresql_7.2.1-2woody8_hppa.deb stable/main/binary-hppa/libpgsql2_7.2.1-2woody8_hppa.deb stable/main/binary-hppa/postgresql-client_7.2.1-2woody8_hppa.deb stable/main/binary-hppa/postgresql_7.2.1-2woody8_hppa.deb stable/main/binary-hppa/odbc-postgresql_7.2.1-2woody8_hppa.deb stable/main/binary-hppa/pgaccess_7.2.1-2woody8_hppa.deb stable/main/binary-hppa/postgresql-dev_7.2.1-2woody8_hppa.deb postgresql (7.2.1-2woody8) stable-security; urgency=low * Maintainer security upload to fix various vulnerabilities. * src/pl/plpgsql/src/gram.y: - Check various array boundaries to prevent buffer overflows. - References: CAN-2005-0245 CAN-2005-0247 * Notes: - 7.2 does not yet support GRANT on functions, thus CAN-2005-0244 does not apply. - 7.2 does not yet contain the "intagg" contrib module, thus CAN-2005-0246 does not apply. * Added CAN number to previous changelog. stable/main/binary-arm/libpgsql2_7.2.1-2woody8_arm.deb stable/main/binary-arm/postgresql-contrib_7.2.1-2woody8_arm.deb stable/main/binary-arm/postgresql-dev_7.2.1-2woody8_arm.deb stable/main/binary-arm/odbc-postgresql_7.2.1-2woody8_arm.deb stable/main/binary-arm/libpgtcl_7.2.1-2woody8_arm.deb stable/main/binary-arm/pgaccess_7.2.1-2woody8_arm.deb stable/main/binary-arm/postgresql-client_7.2.1-2woody8_arm.deb stable/main/binary-arm/postgresql_7.2.1-2woody8_arm.deb stable/main/binary-arm/libecpg3_7.2.1-2woody8_arm.deb stable/main/binary-arm/python-pygresql_7.2.1-2woody8_arm.deb stable/main/binary-arm/libpgperl_7.2.1-2woody8_arm.deb postgresql (7.2.1-2woody8) stable-security; urgency=low * Maintainer security upload to fix various vulnerabilities. * src/pl/plpgsql/src/gram.y: - Check various array boundaries to prevent buffer overflows. - References: CAN-2005-0245 CAN-2005-0247 * Notes: - 7.2 does not yet support GRANT on functions, thus CAN-2005-0244 does not apply. - 7.2 does not yet contain the "intagg" contrib module, thus CAN-2005-0246 does not apply. * Added CAN number to previous changelog. stable/main/binary-alpha/libecpg3_7.2.1-2woody8_alpha.deb stable/main/binary-alpha/postgresql-client_7.2.1-2woody8_alpha.deb stable/main/binary-alpha/libpgperl_7.2.1-2woody8_alpha.deb stable/main/binary-alpha/postgresql-dev_7.2.1-2woody8_alpha.deb stable/main/binary-alpha/python-pygresql_7.2.1-2woody8_alpha.deb stable/main/binary-alpha/postgresql-contrib_7.2.1-2woody8_alpha.deb stable/main/binary-alpha/libpgtcl_7.2.1-2woody8_alpha.deb stable/main/binary-alpha/postgresql_7.2.1-2woody8_alpha.deb stable/main/binary-alpha/libpgsql2_7.2.1-2woody8_alpha.deb stable/main/binary-alpha/pgaccess_7.2.1-2woody8_alpha.deb stable/main/binary-alpha/odbc-postgresql_7.2.1-2woody8_alpha.deb postgresql (7.2.1-2woody8) stable-security; urgency=low * Maintainer security upload to fix various vulnerabilities. * src/pl/plpgsql/src/gram.y: - Check various array boundaries to prevent buffer overflows. - References: CAN-2005-0245 CAN-2005-0247 * Notes: - 7.2 does not yet support GRANT on functions, thus CAN-2005-0244 does not apply. - 7.2 does not yet contain the "intagg" contrib module, thus CAN-2005-0246 does not apply. * Added CAN number to previous changelog. stable/main/source/postgresql_7.2.1-2woody8.dsc stable/main/binary-i386/postgresql_7.2.1-2woody8_i386.deb stable/main/binary-all/postgresql-doc_7.2.1-2woody8_all.deb stable/main/binary-i386/odbc-postgresql_7.2.1-2woody8_i386.deb stable/main/binary-i386/libpgtcl_7.2.1-2woody8_i386.deb stable/main/binary-i386/libpgsql2_7.2.1-2woody8_i386.deb stable/main/source/postgresql_7.2.1-2woody8.diff.gz stable/main/binary-i386/libecpg3_7.2.1-2woody8_i386.deb stable/main/binary-i386/postgresql-client_7.2.1-2woody8_i386.deb stable/main/binary-i386/postgresql-contrib_7.2.1-2woody8_i386.deb stable/main/binary-i386/python-pygresql_7.2.1-2woody8_i386.deb stable/main/binary-i386/libpgperl_7.2.1-2woody8_i386.deb stable/main/binary-i386/postgresql-dev_7.2.1-2woody8_i386.deb stable/main/binary-i386/pgaccess_7.2.1-2woody8_i386.deb postgresql (7.2.1-2woody8) stable-security; urgency=low * Maintainer security upload to fix various vulnerabilities. * src/pl/plpgsql/src/gram.y: - Check various array boundaries to prevent buffer overflows. - References: CAN-2005-0245 CAN-2005-0247 * Notes: - 7.2 does not yet support GRANT on functions, thus CAN-2005-0244 does not apply. - 7.2 does not yet contain the "intagg" contrib module, thus CAN-2005-0246 does not apply. * Added CAN number to previous changelog. stable/main/binary-sparc/playmidi_2.4-4woody1_sparc.deb playmidi (2.4-4woody1) stable-security; urgency=high * Non maintainer upload by The Security Team * Fix buffer overflow in command line handling. [playmidi.c, CAN-2005-0020] stable/main/binary-s390/playmidi_2.4-4woody1_s390.deb playmidi (2.4-4woody1) stable-security; urgency=high * Non maintainer upload by The Security Team * Fix buffer overflow in command line handling. [playmidi.c, CAN-2005-0020] stable/main/binary-powerpc/playmidi_2.4-4woody1_powerpc.deb playmidi (2.4-4woody1) stable-security; urgency=high * Non maintainer upload by The Security Team * Fix buffer overflow in command line handling. [playmidi.c, CAN-2005-0020] stable/main/binary-mipsel/playmidi_2.4-4woody1_mipsel.deb playmidi (2.4-4woody1) stable-security; urgency=high * Non maintainer upload by The Security Team * Fix buffer overflow in command line handling. [playmidi.c, CAN-2005-0020] stable/main/binary-mips/playmidi_2.4-4woody1_mips.deb playmidi (2.4-4woody1) stable-security; urgency=high * Non maintainer upload by The Security Team * Fix buffer overflow in command line handling. [playmidi.c, CAN-2005-0020] stable/main/binary-m68k/playmidi_2.4-4woody1_m68k.deb playmidi (2.4-4woody1) stable-security; urgency=high * Non maintainer upload by The Security Team * Fix buffer overflow in command line handling. [playmidi.c, CAN-2005-0020] stable/main/binary-ia64/playmidi_2.4-4woody1_ia64.deb playmidi (2.4-4woody1) stable-security; urgency=high * Non maintainer upload by The Security Team * Fix buffer overflow in command line handling. [playmidi.c, CAN-2005-0020] stable/main/binary-hppa/playmidi_2.4-4woody1_hppa.deb playmidi (2.4-4woody1) stable-security; urgency=high * Non maintainer upload by The Security Team * Fix buffer overflow in command line handling. [playmidi.c, CAN-2005-0020] stable/main/binary-arm/playmidi_2.4-4woody1_arm.deb playmidi (2.4-4woody1) stable-security; urgency=high * Non maintainer upload by The Security Team * Fix buffer overflow in command line handling. [playmidi.c, CAN-2005-0020] stable/main/binary-alpha/playmidi_2.4-4woody1_alpha.deb playmidi (2.4-4woody1) stable-security; urgency=high * Non maintainer upload by The Security Team * Fix buffer overflow in command line handling. [playmidi.c, CAN-2005-0020] stable/main/source/playmidi_2.4-4woody1.diff.gz stable/main/source/playmidi_2.4-4woody1.dsc stable/main/binary-i386/playmidi_2.4-4woody1_i386.deb playmidi (2.4-4woody1) stable-security; urgency=high * Non maintainer upload by The Security Team * Fix buffer overflow in command line handling. [playmidi.c, CAN-2005-0020] stable/main/binary-sparc/libperl-dev_5.6.1-8.9_sparc.deb stable/main/binary-sparc/libperl5.6_5.6.1-8.9_sparc.deb stable/main/binary-sparc/perl_5.6.1-8.9_sparc.deb stable/main/binary-sparc/perl-suid_5.6.1-8.9_sparc.deb stable/main/binary-sparc/perl-debug_5.6.1-8.9_sparc.deb stable/main/binary-sparc/perl-base_5.6.1-8.9_sparc.deb perl (5.6.1-8.9) stable-security; urgency=high * SECURITY [CAN-2005-0448]: rewrite File::Path::rmtree to avoid race condition which allows an attacker with write permission on directories in the tree being removed to make files setuid or to remove arbitrary files (closes: #286905, #286922). Supersedes the previous patch for CAN-2004-0452. stable/main/binary-s390/libperl-dev_5.6.1-8.9_s390.deb stable/main/binary-s390/perl-base_5.6.1-8.9_s390.deb stable/main/binary-s390/perl-suid_5.6.1-8.9_s390.deb stable/main/binary-s390/perl-debug_5.6.1-8.9_s390.deb stable/main/binary-s390/perl_5.6.1-8.9_s390.deb stable/main/binary-s390/libperl5.6_5.6.1-8.9_s390.deb perl (5.6.1-8.9) stable-security; urgency=high * SECURITY [CAN-2005-0448]: rewrite File::Path::rmtree to avoid race condition which allows an attacker with write permission on directories in the tree being removed to make files setuid or to remove arbitrary files (closes: #286905, #286922). Supersedes the previous patch for CAN-2004-0452. stable/main/binary-powerpc/libperl5.6_5.6.1-8.9_powerpc.deb stable/main/binary-powerpc/perl_5.6.1-8.9_powerpc.deb stable/main/binary-powerpc/perl-base_5.6.1-8.9_powerpc.deb stable/main/binary-powerpc/perl-suid_5.6.1-8.9_powerpc.deb stable/main/binary-powerpc/perl-debug_5.6.1-8.9_powerpc.deb stable/main/binary-powerpc/libperl-dev_5.6.1-8.9_powerpc.deb perl (5.6.1-8.9) stable-security; urgency=high * SECURITY [CAN-2005-0448]: rewrite File::Path::rmtree to avoid race condition which allows an attacker with write permission on directories in the tree being removed to make files setuid or to remove arbitrary files (closes: #286905, #286922). Supersedes the previous patch for CAN-2004-0452. stable/main/binary-mipsel/libperl5.6_5.6.1-8.9_mipsel.deb stable/main/binary-mipsel/libperl-dev_5.6.1-8.9_mipsel.deb stable/main/binary-mipsel/perl-suid_5.6.1-8.9_mipsel.deb stable/main/binary-mipsel/perl-debug_5.6.1-8.9_mipsel.deb stable/main/binary-mipsel/perl-base_5.6.1-8.9_mipsel.deb stable/main/binary-mipsel/perl_5.6.1-8.9_mipsel.deb perl (5.6.1-8.9) stable-security; urgency=high * SECURITY [CAN-2005-0448]: rewrite File::Path::rmtree to avoid race condition which allows an attacker with write permission on directories in the tree being removed to make files setuid or to remove arbitrary files (closes: #286905, #286922). Supersedes the previous patch for CAN-2004-0452. stable/main/binary-mips/perl_5.6.1-8.9_mips.deb stable/main/binary-mips/libperl5.6_5.6.1-8.9_mips.deb stable/main/binary-mips/libperl-dev_5.6.1-8.9_mips.deb stable/main/binary-mips/perl-suid_5.6.1-8.9_mips.deb stable/main/binary-mips/perl-debug_5.6.1-8.9_mips.deb stable/main/binary-mips/perl-base_5.6.1-8.9_mips.deb perl (5.6.1-8.9) stable-security; urgency=high * SECURITY [CAN-2005-0448]: rewrite File::Path::rmtree to avoid race condition which allows an attacker with write permission on directories in the tree being removed to make files setuid or to remove arbitrary files (closes: #286905, #286922). Supersedes the previous patch for CAN-2004-0452. stable/main/binary-m68k/libperl5.6_5.6.1-8.9_m68k.deb stable/main/binary-m68k/perl_5.6.1-8.9_m68k.deb stable/main/binary-m68k/libperl-dev_5.6.1-8.9_m68k.deb stable/main/binary-m68k/perl-base_5.6.1-8.9_m68k.deb stable/main/binary-m68k/perl-debug_5.6.1-8.9_m68k.deb stable/main/binary-m68k/perl-suid_5.6.1-8.9_m68k.deb perl (5.6.1-8.9) stable-security; urgency=high * SECURITY [CAN-2005-0448]: rewrite File::Path::rmtree to avoid race condition which allows an attacker with write permission on directories in the tree being removed to make files setuid or to remove arbitrary files (closes: #286905, #286922). Supersedes the previous patch for CAN-2004-0452. stable/main/binary-ia64/perl-debug_5.6.1-8.9_ia64.deb stable/main/binary-ia64/libperl-dev_5.6.1-8.9_ia64.deb stable/main/binary-ia64/perl-base_5.6.1-8.9_ia64.deb stable/main/binary-ia64/perl-suid_5.6.1-8.9_ia64.deb stable/main/binary-ia64/perl_5.6.1-8.9_ia64.deb stable/main/binary-ia64/libperl5.6_5.6.1-8.9_ia64.deb perl (5.6.1-8.9) stable-security; urgency=high * SECURITY [CAN-2005-0448]: rewrite File::Path::rmtree to avoid race condition which allows an attacker with write permission on directories in the tree being removed to make files setuid or to remove arbitrary files (closes: #286905, #286922). Supersedes the previous patch for CAN-2004-0452. stable/main/binary-hppa/perl-debug_5.6.1-8.9_hppa.deb stable/main/binary-hppa/perl-base_5.6.1-8.9_hppa.deb stable/main/binary-hppa/perl-suid_5.6.1-8.9_hppa.deb stable/main/binary-hppa/perl_5.6.1-8.9_hppa.deb stable/main/binary-hppa/libperl-dev_5.6.1-8.9_hppa.deb stable/main/binary-hppa/libperl5.6_5.6.1-8.9_hppa.deb perl (5.6.1-8.9) stable-security; urgency=high * SECURITY [CAN-2005-0448]: rewrite File::Path::rmtree to avoid race condition which allows an attacker with write permission on directories in the tree being removed to make files setuid or to remove arbitrary files (closes: #286905, #286922). Supersedes the previous patch for CAN-2004-0452. stable/main/source/perl_5.6.1-8.9.diff.gz stable/main/binary-all/libcgi-fast-perl_5.6.1-8.9_all.deb stable/main/source/perl_5.6.1-8.9.dsc stable/main/binary-all/perl-modules_5.6.1-8.9_all.deb stable/main/binary-i386/libperl-dev_5.6.1-8.9_i386.deb stable/main/binary-i386/perl-suid_5.6.1-8.9_i386.deb stable/main/binary-all/perl-doc_5.6.1-8.9_all.deb stable/main/binary-i386/perl-base_5.6.1-8.9_i386.deb stable/main/binary-i386/libperl5.6_5.6.1-8.9_i386.deb stable/main/binary-i386/perl_5.6.1-8.9_i386.deb stable/main/binary-i386/perl-debug_5.6.1-8.9_i386.deb perl (5.6.1-8.9) stable-security; urgency=high * SECURITY [CAN-2005-0448]: rewrite File::Path::rmtree to avoid race condition which allows an attacker with write permission on directories in the tree being removed to make files setuid or to remove arbitrary files (closes: #286905, #286922). Supersedes the previous patch for CAN-2004-0452. stable/main/binary-arm/perl-suid_5.6.1-8.9_arm.deb stable/main/binary-arm/perl-debug_5.6.1-8.9_arm.deb stable/main/binary-arm/libperl5.6_5.6.1-8.9_arm.deb stable/main/binary-arm/perl-base_5.6.1-8.9_arm.deb stable/main/binary-arm/libperl-dev_5.6.1-8.9_arm.deb stable/main/binary-arm/perl_5.6.1-8.9_arm.deb perl (5.6.1-8.9) stable-security; urgency=high * SECURITY [CAN-2005-0448]: rewrite File::Path::rmtree to avoid race condition which allows an attacker with write permission on directories in the tree being removed to make files setuid or to remove arbitrary files (closes: #286905, #286922). Supersedes the previous patch for CAN-2004-0452. stable/main/binary-alpha/perl-suid_5.6.1-8.9_alpha.deb stable/main/binary-alpha/perl-debug_5.6.1-8.9_alpha.deb stable/main/binary-alpha/libperl5.6_5.6.1-8.9_alpha.deb stable/main/binary-alpha/perl_5.6.1-8.9_alpha.deb stable/main/binary-alpha/perl-base_5.6.1-8.9_alpha.deb stable/main/binary-alpha/libperl-dev_5.6.1-8.9_alpha.deb perl (5.6.1-8.9) stable-security; urgency=high * SECURITY [CAN-2005-0448]: rewrite File::Path::rmtree to avoid race condition which allows an attacker with write permission on directories in the tree being removed to make files setuid or to remove arbitrary files (closes: #286905, #286922). Supersedes the previous patch for CAN-2004-0452. stable/main/binary-sparc/pcal_4.7-8woody1_sparc.deb pcal (4.7-8woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fix locally exploitable overflow in calandar file handling. [pcalutil.c, readfile.c, CAN-2004-1289] stable/main/binary-s390/pcal_4.7-8woody1_s390.deb pcal (4.7-8woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fix locally exploitable overflow in calandar file handling. [pcalutil.c, readfile.c, CAN-2004-1289] stable/main/binary-powerpc/pcal_4.7-8woody1_powerpc.deb pcal (4.7-8woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fix locally exploitable overflow in calandar file handling. [pcalutil.c, readfile.c, CAN-2004-1289] stable/main/binary-mipsel/pcal_4.7-8woody1_mipsel.deb pcal (4.7-8woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fix locally exploitable overflow in calandar file handling. [pcalutil.c, readfile.c, CAN-2004-1289] stable/main/binary-mips/pcal_4.7-8woody1_mips.deb pcal (4.7-8woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fix locally exploitable overflow in calandar file handling. [pcalutil.c, readfile.c, CAN-2004-1289] stable/main/binary-m68k/pcal_4.7-8woody1_m68k.deb pcal (4.7-8woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fix locally exploitable overflow in calandar file handling. [pcalutil.c, readfile.c, CAN-2004-1289] stable/main/binary-ia64/pcal_4.7-8woody1_ia64.deb pcal (4.7-8woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fix locally exploitable overflow in calandar file handling. [pcalutil.c, readfile.c, CAN-2004-1289] stable/main/binary-hppa/pcal_4.7-8woody1_hppa.deb pcal (4.7-8woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fix locally exploitable overflow in calandar file handling. [pcalutil.c, readfile.c, CAN-2004-1289] stable/main/binary-arm/pcal_4.7-8woody1_arm.deb pcal (4.7-8woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fix locally exploitable overflow in calandar file handling. [pcalutil.c, readfile.c, CAN-2004-1289] stable/main/binary-alpha/pcal_4.7-8woody1_alpha.deb pcal (4.7-8woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fix locally exploitable overflow in calandar file handling. [pcalutil.c, readfile.c, CAN-2004-1289] stable/main/source/pcal_4.7-8woody1.dsc stable/main/binary-i386/pcal_4.7-8woody1_i386.deb stable/main/source/pcal_4.7-8woody1.diff.gz pcal (4.7-8woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fix locally exploitable overflow in calandar file handling. [pcalutil.c, readfile.c, CAN-2004-1289] stable/main/binary-sparc/telnetd-ssl_0.17.17+0.1-2woody4_sparc.deb stable/main/binary-sparc/telnet-ssl_0.17.17+0.1-2woody4_sparc.deb netkit-telnet-ssl (0.17.17+0.1-2woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch to fix a buffer overflow in slc_add_reply() [telnet/telnet.cc, CAN-2005-0469] stable/main/binary-s390/telnet-ssl_0.17.17+0.1-2woody4_s390.deb stable/main/binary-s390/telnetd-ssl_0.17.17+0.1-2woody4_s390.deb netkit-telnet-ssl (0.17.17+0.1-2woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch to fix a buffer overflow in slc_add_reply() [telnet/telnet.cc, CAN-2005-0469] stable/main/binary-powerpc/telnet-ssl_0.17.17+0.1-2woody4_powerpc.deb stable/main/binary-powerpc/telnetd-ssl_0.17.17+0.1-2woody4_powerpc.deb netkit-telnet-ssl (0.17.17+0.1-2woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch to fix a buffer overflow in slc_add_reply() [telnet/telnet.cc, CAN-2005-0469] stable/main/binary-mips/telnet-ssl_0.17.17+0.1-2woody4_mips.deb stable/main/binary-mips/telnetd-ssl_0.17.17+0.1-2woody4_mips.deb netkit-telnet-ssl (0.17.17+0.1-2woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch to fix a buffer overflow in slc_add_reply() [telnet/telnet.cc, CAN-2005-0469] stable/main/binary-m68k/telnetd-ssl_0.17.17+0.1-2woody4_m68k.deb stable/main/binary-m68k/telnet-ssl_0.17.17+0.1-2woody4_m68k.deb netkit-telnet-ssl (0.17.17+0.1-2woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch to fix a buffer overflow in slc_add_reply() [telnet/telnet.cc, CAN-2005-0469] stable/main/binary-ia64/telnet-ssl_0.17.17+0.1-2woody4_ia64.deb stable/main/binary-ia64/telnetd-ssl_0.17.17+0.1-2woody4_ia64.deb netkit-telnet-ssl (0.17.17+0.1-2woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch to fix a buffer overflow in slc_add_reply() [telnet/telnet.cc, CAN-2005-0469] stable/main/binary-i386/telnetd-ssl_0.17.17+0.1-2woody4_i386.deb stable/main/binary-i386/telnet-ssl_0.17.17+0.1-2woody4_i386.deb netkit-telnet-ssl (0.17.17+0.1-2woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch to fix a buffer overflow in slc_add_reply() [telnet/telnet.cc, CAN-2005-0469] stable/main/binary-hppa/telnet-ssl_0.17.17+0.1-2woody4_hppa.deb stable/main/binary-hppa/telnetd-ssl_0.17.17+0.1-2woody4_hppa.deb netkit-telnet-ssl (0.17.17+0.1-2woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch to fix a buffer overflow in slc_add_reply() [telnet/telnet.cc, CAN-2005-0469] stable/main/binary-arm/telnet-ssl_0.17.17+0.1-2woody4_arm.deb stable/main/binary-arm/telnetd-ssl_0.17.17+0.1-2woody4_arm.deb netkit-telnet-ssl (0.17.17+0.1-2woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch to fix a buffer overflow in slc_add_reply() [telnet/telnet.cc, CAN-2005-0469] stable/main/binary-alpha/telnet-ssl_0.17.17+0.1-2woody4_alpha.deb stable/main/binary-alpha/telnetd-ssl_0.17.17+0.1-2woody4_alpha.deb netkit-telnet-ssl (0.17.17+0.1-2woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch to fix a buffer overflow in slc_add_reply() [telnet/telnet.cc, CAN-2005-0469] stable/main/source/netkit-telnet-ssl_0.17.17+0.1-2woody4.diff.gz stable/main/binary-mipsel/telnetd-ssl_0.17.17+0.1-2woody4_mipsel.deb stable/main/source/netkit-telnet-ssl_0.17.17+0.1-2woody4.dsc stable/main/binary-mipsel/telnet-ssl_0.17.17+0.1-2woody4_mipsel.deb netkit-telnet-ssl (0.17.17+0.1-2woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch to fix a buffer overflow in slc_add_reply() [telnet/telnet.cc, CAN-2005-0469] stable/main/binary-sparc/telnet_0.17-18woody3_sparc.deb stable/main/binary-sparc/telnetd_0.17-18woody3_sparc.deb netkit-telnet (0.17-18woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch to fix a buffer overflow in slc_add_reply() [telnet/telnet.cc, CAN-2005-0469] stable/main/binary-s390/telnet_0.17-18woody3_s390.deb stable/main/binary-s390/telnetd_0.17-18woody3_s390.deb netkit-telnet (0.17-18woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch to fix a buffer overflow in slc_add_reply() [telnet/telnet.cc, CAN-2005-0469] stable/main/binary-powerpc/telnetd_0.17-18woody3_powerpc.deb stable/main/binary-powerpc/telnet_0.17-18woody3_powerpc.deb netkit-telnet (0.17-18woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch to fix a buffer overflow in slc_add_reply() [telnet/telnet.cc, CAN-2005-0469] stable/main/binary-mips/telnet_0.17-18woody3_mips.deb stable/main/binary-mips/telnetd_0.17-18woody3_mips.deb netkit-telnet (0.17-18woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch to fix a buffer overflow in slc_add_reply() [telnet/telnet.cc, CAN-2005-0469] stable/main/binary-m68k/telnetd_0.17-18woody3_m68k.deb stable/main/binary-m68k/telnet_0.17-18woody3_m68k.deb netkit-telnet (0.17-18woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch to fix a buffer overflow in slc_add_reply() [telnet/telnet.cc, CAN-2005-0469] stable/main/binary-ia64/telnet_0.17-18woody3_ia64.deb stable/main/binary-ia64/telnetd_0.17-18woody3_ia64.deb netkit-telnet (0.17-18woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch to fix a buffer overflow in slc_add_reply() [telnet/telnet.cc, CAN-2005-0469] stable/main/binary-i386/telnetd_0.17-18woody3_i386.deb stable/main/binary-i386/telnet_0.17-18woody3_i386.deb netkit-telnet (0.17-18woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch to fix a buffer overflow in slc_add_reply() [telnet/telnet.cc, CAN-2005-0469] stable/main/binary-hppa/telnet_0.17-18woody3_hppa.deb stable/main/binary-hppa/telnetd_0.17-18woody3_hppa.deb netkit-telnet (0.17-18woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch to fix a buffer overflow in slc_add_reply() [telnet/telnet.cc, CAN-2005-0469] stable/main/binary-alpha/telnetd_0.17-18woody3_alpha.deb stable/main/binary-alpha/telnet_0.17-18woody3_alpha.deb netkit-telnet (0.17-18woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch to fix a buffer overflow in slc_add_reply() [telnet/telnet.cc, CAN-2005-0469] stable/main/binary-mipsel/telnet_0.17-18woody3_mipsel.deb stable/main/source/netkit-telnet_0.17-18woody3.diff.gz stable/main/binary-mipsel/telnetd_0.17-18woody3_mipsel.deb stable/main/source/netkit-telnet_0.17-18woody3.dsc netkit-telnet (0.17-18woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch to fix a buffer overflow in slc_add_reply() [telnet/telnet.cc, CAN-2005-0469] stable/main/binary-sparc/rwhod_0.17-4woody2_sparc.deb stable/main/binary-sparc/rwho_0.17-4woody2_sparc.deb netkit-rwho (0.17-4woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Leasened the security precaution a bit [rwhod/rwhod.c, CAN-2004-1180] stable/main/binary-s390/rwho_0.17-4woody2_s390.deb stable/main/binary-s390/rwhod_0.17-4woody2_s390.deb netkit-rwho (0.17-4woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Leasened the security precaution a bit [rwhod/rwhod.c, CAN-2004-1180] stable/main/binary-powerpc/rwhod_0.17-4woody2_powerpc.deb stable/main/binary-powerpc/rwho_0.17-4woody2_powerpc.deb netkit-rwho (0.17-4woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Leasened the security precaution a bit [rwhod/rwhod.c, CAN-2004-1180] stable/main/binary-mips/rwho_0.17-4woody2_mips.deb stable/main/binary-mips/rwhod_0.17-4woody2_mips.deb netkit-rwho (0.17-4woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Leasened the security precaution a bit [rwhod/rwhod.c, CAN-2004-1180] stable/main/binary-m68k/rwhod_0.17-4woody2_m68k.deb stable/main/binary-m68k/rwho_0.17-4woody2_m68k.deb netkit-rwho (0.17-4woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Leasened the security precaution a bit [rwhod/rwhod.c, CAN-2004-1180] stable/main/binary-ia64/rwhod_0.17-4woody2_ia64.deb stable/main/binary-ia64/rwho_0.17-4woody2_ia64.deb netkit-rwho (0.17-4woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Leasened the security precaution a bit [rwhod/rwhod.c, CAN-2004-1180] stable/main/binary-i386/rwhod_0.17-4woody2_i386.deb stable/main/binary-i386/rwho_0.17-4woody2_i386.deb netkit-rwho (0.17-4woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Leasened the security precaution a bit [rwhod/rwhod.c, CAN-2004-1180] stable/main/binary-hppa/rwho_0.17-4woody2_hppa.deb stable/main/binary-hppa/rwhod_0.17-4woody2_hppa.deb netkit-rwho (0.17-4woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Leasened the security precaution a bit [rwhod/rwhod.c, CAN-2004-1180] stable/main/binary-arm/rwho_0.17-4woody2_arm.deb stable/main/binary-arm/rwhod_0.17-4woody2_arm.deb netkit-rwho (0.17-4woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Leasened the security precaution a bit [rwhod/rwhod.c, CAN-2004-1180] stable/main/binary-alpha/rwho_0.17-4woody2_alpha.deb stable/main/binary-alpha/rwhod_0.17-4woody2_alpha.deb netkit-rwho (0.17-4woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Leasened the security precaution a bit [rwhod/rwhod.c, CAN-2004-1180] stable/main/source/netkit-rwho_0.17-4woody2.diff.gz stable/main/binary-mipsel/rwhod_0.17-4woody2_mipsel.deb stable/main/binary-mipsel/rwho_0.17-4woody2_mipsel.deb stable/main/source/netkit-rwho_0.17-4woody2.dsc netkit-rwho (0.17-4woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Leasened the security precaution a bit [rwhod/rwhod.c, CAN-2004-1180] stable/main/binary-sparc/ipx_2.2.0.18-10woody2_sparc.deb stable/main/binary-sparc/ncpfs_2.2.0.18-10woody2_sparc.deb ncpfs (2.2.0.18-10woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added ownership check for .nw* file and privilege release for fopen() [lib/ncplib.c, CAN-2005-0013] * Turned some sprintf() into snprintf () [lib/ncplib.c, util/nwpasswd.c, util/nwdir.c] * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-s390/ipx_2.2.0.18-10woody2_s390.deb stable/main/binary-s390/ncpfs_2.2.0.18-10woody2_s390.deb ncpfs (2.2.0.18-10woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added ownership check for .nw* file and privilege release for fopen() [lib/ncplib.c, CAN-2005-0013] * Turned some sprintf() into snprintf () [lib/ncplib.c, util/nwpasswd.c, util/nwdir.c] * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-powerpc/ncpfs_2.2.0.18-10woody2_powerpc.deb stable/main/binary-powerpc/ipx_2.2.0.18-10woody2_powerpc.deb ncpfs (2.2.0.18-10woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added ownership check for .nw* file and privilege release for fopen() [lib/ncplib.c, CAN-2005-0013] * Turned some sprintf() into snprintf () [lib/ncplib.c, util/nwpasswd.c, util/nwdir.c] * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-mips/ipx_2.2.0.18-10woody2_mips.deb stable/main/binary-mips/ncpfs_2.2.0.18-10woody2_mips.deb ncpfs (2.2.0.18-10woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added ownership check for .nw* file and privilege release for fopen() [lib/ncplib.c, CAN-2005-0013] * Turned some sprintf() into snprintf () [lib/ncplib.c, util/nwpasswd.c, util/nwdir.c] * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-m68k/ncpfs_2.2.0.18-10woody2_m68k.deb stable/main/binary-m68k/ipx_2.2.0.18-10woody2_m68k.deb ncpfs (2.2.0.18-10woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added ownership check for .nw* file and privilege release for fopen() [lib/ncplib.c, CAN-2005-0013] * Turned some sprintf() into snprintf () [lib/ncplib.c, util/nwpasswd.c, util/nwdir.c] * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-ia64/ipx_2.2.0.18-10woody2_ia64.deb stable/main/binary-ia64/ncpfs_2.2.0.18-10woody2_ia64.deb ncpfs (2.2.0.18-10woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added ownership check for .nw* file and privilege release for fopen() [lib/ncplib.c, CAN-2005-0013] * Turned some sprintf() into snprintf () [lib/ncplib.c, util/nwpasswd.c, util/nwdir.c] * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-i386/ncpfs_2.2.0.18-10woody2_i386.deb stable/main/binary-i386/ipx_2.2.0.18-10woody2_i386.deb ncpfs (2.2.0.18-10woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added ownership check for .nw* file and privilege release for fopen() [lib/ncplib.c, CAN-2005-0013] * Turned some sprintf() into snprintf () [lib/ncplib.c, util/nwpasswd.c, util/nwdir.c] * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-hppa/ipx_2.2.0.18-10woody2_hppa.deb stable/main/binary-hppa/ncpfs_2.2.0.18-10woody2_hppa.deb ncpfs (2.2.0.18-10woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added ownership check for .nw* file and privilege release for fopen() [lib/ncplib.c, CAN-2005-0013] * Turned some sprintf() into snprintf () [lib/ncplib.c, util/nwpasswd.c, util/nwdir.c] * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-arm/ncpfs_2.2.0.18-10woody2_arm.deb stable/main/binary-arm/ipx_2.2.0.18-10woody2_arm.deb ncpfs (2.2.0.18-10woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added ownership check for .nw* file and privilege release for fopen() [lib/ncplib.c, CAN-2005-0013] * Turned some sprintf() into snprintf () [lib/ncplib.c, util/nwpasswd.c, util/nwdir.c] * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-alpha/ncpfs_2.2.0.18-10woody2_alpha.deb stable/main/binary-alpha/ipx_2.2.0.18-10woody2_alpha.deb ncpfs (2.2.0.18-10woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added ownership check for .nw* file and privilege release for fopen() [lib/ncplib.c, CAN-2005-0013] * Turned some sprintf() into snprintf () [lib/ncplib.c, util/nwpasswd.c, util/nwdir.c] * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-mipsel/ipx_2.2.0.18-10woody2_mipsel.deb stable/main/source/ncpfs_2.2.0.18-10woody2.dsc stable/main/source/ncpfs_2.2.0.18-10woody2.diff.gz stable/main/binary-mipsel/ncpfs_2.2.0.18-10woody2_mipsel.deb ncpfs (2.2.0.18-10woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added ownership check for .nw* file and privilege release for fopen() [lib/ncplib.c, CAN-2005-0013] * Turned some sprintf() into snprintf () [lib/ncplib.c, util/nwpasswd.c, util/nwdir.c] * Added special detection routine for big/little endianess on MIPS since the line "byteorder : {big|little} endian" from /proc/cpuinfo was removed as of Linux 2.4.20, resulting in the mipsel buildd being unable to build this package. stable/main/binary-sparc/nasm_0.98.28cvs-1woody2_sparc.deb nasm (0.98.28cvs-1woody2) stable-security; urgency=high * Fix broken upload, which was sent to the wrong upload queue. stable/main/binary-s390/nasm_0.98.28cvs-1woody2_s390.deb nasm (0.98.28cvs-1woody2) stable-security; urgency=high * Fix broken upload, which was sent to the wrong upload queue. stable/main/binary-powerpc/nasm_0.98.28cvs-1woody2_powerpc.deb nasm (0.98.28cvs-1woody2) stable-security; urgency=high * Fix broken upload, which was sent to the wrong upload queue. stable/main/binary-mipsel/nasm_0.98.28cvs-1woody2_mipsel.deb nasm (0.98.28cvs-1woody2) stable-security; urgency=high * Fix broken upload, which was sent to the wrong upload queue. stable/main/binary-mips/nasm_0.98.28cvs-1woody2_mips.deb nasm (0.98.28cvs-1woody2) stable-security; urgency=high * Fix broken upload, which was sent to the wrong upload queue. stable/main/binary-m68k/nasm_0.98.28cvs-1woody2_m68k.deb nasm (0.98.28cvs-1woody2) stable-security; urgency=high * Fix broken upload, which was sent to the wrong upload queue. stable/main/binary-ia64/nasm_0.98.28cvs-1woody2_ia64.deb nasm (0.98.28cvs-1woody2) stable-security; urgency=high * Fix broken upload, which was sent to the wrong upload queue. stable/main/binary-hppa/nasm_0.98.28cvs-1woody2_hppa.deb nasm (0.98.28cvs-1woody2) stable-security; urgency=high * Fix broken upload, which was sent to the wrong upload queue. stable/main/binary-arm/nasm_0.98.28cvs-1woody2_arm.deb nasm (0.98.28cvs-1woody2) stable-security; urgency=high * Fix broken upload, which was sent to the wrong upload queue. stable/main/binary-alpha/nasm_0.98.28cvs-1woody2_alpha.deb nasm (0.98.28cvs-1woody2) stable-security; urgency=high * Fix broken upload, which was sent to the wrong upload queue. stable/main/source/nasm_0.98.28cvs-1woody2.dsc stable/main/source/nasm_0.98.28cvs-1woody2.diff.gz stable/main/binary-i386/nasm_0.98.28cvs-1woody2_i386.deb nasm (0.98.28cvs-1woody2) stable-security; urgency=high * Fix broken upload, which was sent to the wrong upload queue. stable/main/binary-sparc/libnmz3_2.0.10-1woody3_sparc.deb stable/main/binary-sparc/namazu2_2.0.10-1woody3_sparc.deb stable/main/binary-sparc/libnmz3-dev_2.0.10-1woody3_sparc.deb namazu2 (2.0.10-1woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Restricted build-dependency to tk8.2 so that buildds have a chance to select a wish implementation. stable/main/binary-s390/namazu2_2.0.10-1woody3_s390.deb stable/main/binary-s390/libnmz3-dev_2.0.10-1woody3_s390.deb stable/main/binary-s390/libnmz3_2.0.10-1woody3_s390.deb namazu2 (2.0.10-1woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Restricted build-dependency to tk8.2 so that buildds have a chance to select a wish implementation. stable/main/binary-powerpc/namazu2_2.0.10-1woody3_powerpc.deb stable/main/binary-powerpc/libnmz3_2.0.10-1woody3_powerpc.deb stable/main/binary-powerpc/libnmz3-dev_2.0.10-1woody3_powerpc.deb namazu2 (2.0.10-1woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Restricted build-dependency to tk8.2 so that buildds have a chance to select a wish implementation. stable/main/binary-mipsel/libnmz3-dev_2.0.10-1woody3_mipsel.deb stable/main/binary-mipsel/libnmz3_2.0.10-1woody3_mipsel.deb stable/main/binary-mipsel/namazu2_2.0.10-1woody3_mipsel.deb namazu2 (2.0.10-1woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Restricted build-dependency to tk8.2 so that buildds have a chance to select a wish implementation. stable/main/binary-mips/libnmz3_2.0.10-1woody3_mips.deb stable/main/binary-mips/namazu2_2.0.10-1woody3_mips.deb stable/main/binary-mips/libnmz3-dev_2.0.10-1woody3_mips.deb namazu2 (2.0.10-1woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Restricted build-dependency to tk8.2 so that buildds have a chance to select a wish implementation. stable/main/binary-m68k/libnmz3_2.0.10-1woody3_m68k.deb stable/main/binary-m68k/libnmz3-dev_2.0.10-1woody3_m68k.deb stable/main/binary-m68k/namazu2_2.0.10-1woody3_m68k.deb namazu2 (2.0.10-1woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Restricted build-dependency to tk8.2 so that buildds have a chance to select a wish implementation. stable/main/binary-ia64/libnmz3-dev_2.0.10-1woody3_ia64.deb stable/main/binary-ia64/namazu2_2.0.10-1woody3_ia64.deb stable/main/binary-ia64/libnmz3_2.0.10-1woody3_ia64.deb namazu2 (2.0.10-1woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Restricted build-dependency to tk8.2 so that buildds have a chance to select a wish implementation. stable/main/binary-hppa/libnmz3-dev_2.0.10-1woody3_hppa.deb stable/main/binary-hppa/libnmz3_2.0.10-1woody3_hppa.deb stable/main/binary-hppa/namazu2_2.0.10-1woody3_hppa.deb namazu2 (2.0.10-1woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Restricted build-dependency to tk8.2 so that buildds have a chance to select a wish implementation. stable/main/binary-arm/libnmz3-dev_2.0.10-1woody3_arm.deb stable/main/binary-arm/namazu2_2.0.10-1woody3_arm.deb stable/main/binary-arm/libnmz3_2.0.10-1woody3_arm.deb namazu2 (2.0.10-1woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Restricted build-dependency to tk8.2 so that buildds have a chance to select a wish implementation. stable/main/binary-alpha/namazu2_2.0.10-1woody3_alpha.deb stable/main/binary-alpha/libnmz3-dev_2.0.10-1woody3_alpha.deb stable/main/binary-alpha/libnmz3_2.0.10-1woody3_alpha.deb namazu2 (2.0.10-1woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Restricted build-dependency to tk8.2 so that buildds have a chance to select a wish implementation. stable/main/binary-i386/libnmz3-dev_2.0.10-1woody3_i386.deb stable/main/binary-i386/namazu2_2.0.10-1woody3_i386.deb stable/main/source/namazu2_2.0.10-1woody3.dsc stable/main/binary-all/namazu2-common_2.0.10-1woody3_all.deb stable/main/source/namazu2_2.0.10-1woody3.diff.gz stable/main/binary-i386/libnmz3_2.0.10-1woody3_i386.deb stable/main/binary-all/namazu2-index-tools_2.0.10-1woody3_all.deb namazu2 (2.0.10-1woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Restricted build-dependency to tk8.2 so that buildds have a chance to select a wish implementation. stable/main/binary-sparc/mysql-client_3.23.49-8.11_sparc.deb stable/main/binary-sparc/libmysqlclient10_3.23.49-8.11_sparc.deb stable/main/binary-sparc/mysql-server_3.23.49-8.11_sparc.deb stable/main/binary-sparc/libmysqlclient10-dev_3.23.49-8.11_sparc.deb mysql (3.23.49-8.11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added important fix digged out by Tom Lane for the patch below that will initialise a variable [sql/ha_myisam.cc, debian/patches/SECURITY__CAN-2005-0709,0710,0711.diff] stable/main/binary-s390/mysql-client_3.23.49-8.11_s390.deb stable/main/binary-s390/libmysqlclient10_3.23.49-8.11_s390.deb stable/main/binary-s390/mysql-server_3.23.49-8.11_s390.deb stable/main/binary-s390/libmysqlclient10-dev_3.23.49-8.11_s390.deb mysql (3.23.49-8.11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added important fix digged out by Tom Lane for the patch below that will initialise a variable [sql/ha_myisam.cc, debian/patches/SECURITY__CAN-2005-0709,0710,0711.diff] stable/main/binary-powerpc/libmysqlclient10_3.23.49-8.11_powerpc.deb stable/main/binary-powerpc/libmysqlclient10-dev_3.23.49-8.11_powerpc.deb stable/main/binary-powerpc/mysql-server_3.23.49-8.11_powerpc.deb stable/main/binary-powerpc/mysql-client_3.23.49-8.11_powerpc.deb mysql (3.23.49-8.11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added important fix digged out by Tom Lane for the patch below that will initialise a variable [sql/ha_myisam.cc, debian/patches/SECURITY__CAN-2005-0709,0710,0711.diff] stable/main/binary-mipsel/mysql-server_3.23.49-8.11_mipsel.deb stable/main/binary-mipsel/mysql-client_3.23.49-8.11_mipsel.deb stable/main/binary-mipsel/libmysqlclient10_3.23.49-8.11_mipsel.deb stable/main/binary-mipsel/libmysqlclient10-dev_3.23.49-8.11_mipsel.deb mysql (3.23.49-8.11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added important fix digged out by Tom Lane for the patch below that will initialise a variable [sql/ha_myisam.cc, debian/patches/SECURITY__CAN-2005-0709,0710,0711.diff] stable/main/binary-mips/libmysqlclient10_3.23.49-8.11_mips.deb stable/main/binary-mips/mysql-server_3.23.49-8.11_mips.deb stable/main/binary-mips/mysql-client_3.23.49-8.11_mips.deb stable/main/binary-mips/libmysqlclient10-dev_3.23.49-8.11_mips.deb mysql (3.23.49-8.11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added important fix digged out by Tom Lane for the patch below that will initialise a variable [sql/ha_myisam.cc, debian/patches/SECURITY__CAN-2005-0709,0710,0711.diff] stable/main/binary-m68k/mysql-server_3.23.49-8.11_m68k.deb stable/main/binary-m68k/libmysqlclient10_3.23.49-8.11_m68k.deb stable/main/binary-m68k/libmysqlclient10-dev_3.23.49-8.11_m68k.deb stable/main/binary-m68k/mysql-client_3.23.49-8.11_m68k.deb mysql (3.23.49-8.11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added important fix digged out by Tom Lane for the patch below that will initialise a variable [sql/ha_myisam.cc, debian/patches/SECURITY__CAN-2005-0709,0710,0711.diff] stable/main/binary-ia64/mysql-server_3.23.49-8.11_ia64.deb stable/main/binary-ia64/libmysqlclient10-dev_3.23.49-8.11_ia64.deb stable/main/binary-ia64/mysql-client_3.23.49-8.11_ia64.deb stable/main/binary-ia64/libmysqlclient10_3.23.49-8.11_ia64.deb mysql (3.23.49-8.11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added important fix digged out by Tom Lane for the patch below that will initialise a variable [sql/ha_myisam.cc, debian/patches/SECURITY__CAN-2005-0709,0710,0711.diff] stable/main/binary-i386/libmysqlclient10-dev_3.23.49-8.11_i386.deb stable/main/binary-i386/mysql-client_3.23.49-8.11_i386.deb stable/main/binary-i386/mysql-server_3.23.49-8.11_i386.deb stable/main/binary-i386/libmysqlclient10_3.23.49-8.11_i386.deb mysql (3.23.49-8.11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added important fix digged out by Tom Lane for the patch below that will initialise a variable [sql/ha_myisam.cc, debian/patches/SECURITY__CAN-2005-0709,0710,0711.diff] stable/main/binary-hppa/mysql-server_3.23.49-8.11_hppa.deb stable/main/binary-hppa/libmysqlclient10_3.23.49-8.11_hppa.deb stable/main/binary-hppa/mysql-client_3.23.49-8.11_hppa.deb stable/main/binary-hppa/libmysqlclient10-dev_3.23.49-8.11_hppa.deb mysql (3.23.49-8.11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added important fix digged out by Tom Lane for the patch below that will initialise a variable [sql/ha_myisam.cc, debian/patches/SECURITY__CAN-2005-0709,0710,0711.diff] stable/main/binary-alpha/mysql-server_3.23.49-8.11_alpha.deb stable/main/binary-alpha/libmysqlclient10-dev_3.23.49-8.11_alpha.deb stable/main/binary-alpha/mysql-client_3.23.49-8.11_alpha.deb stable/main/binary-alpha/libmysqlclient10_3.23.49-8.11_alpha.deb mysql (3.23.49-8.11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added important fix digged out by Tom Lane for the patch below that will initialise a variable [sql/ha_myisam.cc, debian/patches/SECURITY__CAN-2005-0709,0710,0711.diff] stable/main/binary-arm/mysql-client_3.23.49-8.11_arm.deb stable/main/binary-all/mysql-common_3.23.49-8.11_all.deb stable/main/binary-arm/libmysqlclient10_3.23.49-8.11_arm.deb stable/main/source/mysql_3.23.49-8.11.dsc stable/main/binary-arm/libmysqlclient10-dev_3.23.49-8.11_arm.deb stable/main/binary-arm/mysql-server_3.23.49-8.11_arm.deb stable/main/source/mysql_3.23.49-8.11.diff.gz mysql (3.23.49-8.11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added important fix digged out by Tom Lane for the patch below that will initialise a variable [sql/ha_myisam.cc, debian/patches/SECURITY__CAN-2005-0709,0710,0711.diff] stable/main/binary-sparc/libmm11-dev_1.1.3-6.3_sparc.deb stable/main/binary-sparc/libmm11_1.1.3-6.3_sparc.deb mm (1.1.3-6.3) stable; urgency=low * Force the use of System V shared memory instead: it was the more usual choice before and many Apache configurations can't cope if the backing store for MMFILE gets allocated (closes: #280233, #280871, #282787). This reverts the previous change. stable/main/binary-s390/libmm11_1.1.3-6.3_s390.deb stable/main/binary-s390/libmm11-dev_1.1.3-6.3_s390.deb mm (1.1.3-6.3) stable; urgency=low * Force the use of System V shared memory instead: it was the more usual choice before and many Apache configurations can't cope if the backing store for MMFILE gets allocated (closes: #280233, #280871, #282787). This reverts the previous change. stable/main/binary-powerpc/libmm11-dev_1.1.3-6.3_powerpc.deb stable/main/binary-powerpc/libmm11_1.1.3-6.3_powerpc.deb mm (1.1.3-6.3) stable; urgency=low * Force the use of System V shared memory instead: it was the more usual choice before and many Apache configurations can't cope if the backing store for MMFILE gets allocated (closes: #280233, #280871, #282787). This reverts the previous change. stable/main/binary-mipsel/libmm11_1.1.3-6.3_mipsel.deb stable/main/binary-mipsel/libmm11-dev_1.1.3-6.3_mipsel.deb mm (1.1.3-6.3) stable; urgency=low * Force the use of System V shared memory instead: it was the more usual choice before and many Apache configurations can't cope if the backing store for MMFILE gets allocated (closes: #280233, #280871, #282787). This reverts the previous change. stable/main/binary-mips/libmm11_1.1.3-6.3_mips.deb stable/main/binary-mips/libmm11-dev_1.1.3-6.3_mips.deb mm (1.1.3-6.3) stable; urgency=low * Force the use of System V shared memory instead: it was the more usual choice before and many Apache configurations can't cope if the backing store for MMFILE gets allocated (closes: #280233, #280871, #282787). This reverts the previous change. stable/main/binary-m68k/libmm11-dev_1.1.3-6.3_m68k.deb stable/main/binary-m68k/libmm11_1.1.3-6.3_m68k.deb mm (1.1.3-6.3) stable; urgency=low * Force the use of System V shared memory instead: it was the more usual choice before and many Apache configurations can't cope if the backing store for MMFILE gets allocated (closes: #280233, #280871, #282787). This reverts the previous change. stable/main/binary-ia64/libmm11_1.1.3-6.3_ia64.deb stable/main/binary-ia64/libmm11-dev_1.1.3-6.3_ia64.deb mm (1.1.3-6.3) stable; urgency=low * Force the use of System V shared memory instead: it was the more usual choice before and many Apache configurations can't cope if the backing store for MMFILE gets allocated (closes: #280233, #280871, #282787). This reverts the previous change. stable/main/binary-hppa/libmm11_1.1.3-6.3_hppa.deb stable/main/binary-hppa/libmm11-dev_1.1.3-6.3_hppa.deb mm (1.1.3-6.3) stable; urgency=low * Force the use of System V shared memory instead: it was the more usual choice before and many Apache configurations can't cope if the backing store for MMFILE gets allocated (closes: #280233, #280871, #282787). This reverts the previous change. stable/main/binary-arm/libmm11_1.1.3-6.3_arm.deb stable/main/binary-arm/libmm11-dev_1.1.3-6.3_arm.deb mm (1.1.3-6.3) stable; urgency=low * Force the use of System V shared memory instead: it was the more usual choice before and many Apache configurations can't cope if the backing store for MMFILE gets allocated (closes: #280233, #280871, #282787). This reverts the previous change. stable/main/binary-alpha/libmm11_1.1.3-6.3_alpha.deb stable/main/binary-alpha/libmm11-dev_1.1.3-6.3_alpha.deb mm (1.1.3-6.3) stable; urgency=low * Force the use of System V shared memory instead: it was the more usual choice before and many Apache configurations can't cope if the backing store for MMFILE gets allocated (closes: #280233, #280871, #282787). This reverts the previous change. stable/main/binary-i386/libmm11-dev_1.1.3-6.3_i386.deb stable/main/source/mm_1.1.3-6.3.dsc stable/main/binary-i386/libmm11_1.1.3-6.3_i386.deb stable/main/source/mm_1.1.3-6.3.diff.gz mm (1.1.3-6.3) stable; urgency=low * Force the use of System V shared memory instead: it was the more usual choice before and many Apache configurations can't cope if the backing store for MMFILE gets allocated (closes: #280233, #280871, #282787). This reverts the previous change. stable/main/binary-sparc/mc_4.5.55-1.2woody6_sparc.deb stable/main/binary-sparc/mc-common_4.5.55-1.2woody6_sparc.deb stable/main/binary-sparc/gmc_4.5.55-1.2woody6_sparc.deb mc (4.5.55-1.2woody6) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Andrew V. Samoilov to fix regression in buffer overflow patch [src/complete.c, CAN-2004-0226, Bug#246943, Bug#249366, debian/patches/52_security_CAN-2004-0226_fix.diff] * Applied patch by Andrew V. Samoilov to fix another buffer overflow [src/complete.c, debian/patches/52_security_CAN-2005-0763.diff] stable/main/binary-s390/mc_4.5.55-1.2woody6_s390.deb stable/main/binary-s390/mc-common_4.5.55-1.2woody6_s390.deb stable/main/binary-s390/gmc_4.5.55-1.2woody6_s390.deb mc (4.5.55-1.2woody6) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Andrew V. Samoilov to fix regression in buffer overflow patch [src/complete.c, CAN-2004-0226, Bug#246943, Bug#249366, debian/patches/52_security_CAN-2004-0226_fix.diff] * Applied patch by Andrew V. Samoilov to fix another buffer overflow [src/complete.c, debian/patches/52_security_CAN-2005-0763.diff] stable/main/binary-powerpc/mc_4.5.55-1.2woody6_powerpc.deb stable/main/binary-powerpc/gmc_4.5.55-1.2woody6_powerpc.deb stable/main/binary-powerpc/mc-common_4.5.55-1.2woody6_powerpc.deb mc (4.5.55-1.2woody6) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Andrew V. Samoilov to fix regression in buffer overflow patch [src/complete.c, CAN-2004-0226, Bug#246943, Bug#249366, debian/patches/52_security_CAN-2004-0226_fix.diff] * Applied patch by Andrew V. Samoilov to fix another buffer overflow [src/complete.c, debian/patches/52_security_CAN-2005-0763.diff] stable/main/binary-mipsel/mc-common_4.5.55-1.2woody6_mipsel.deb stable/main/binary-mipsel/mc_4.5.55-1.2woody6_mipsel.deb stable/main/binary-mipsel/gmc_4.5.55-1.2woody6_mipsel.deb mc (4.5.55-1.2woody6) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Andrew V. Samoilov to fix regression in buffer overflow patch [src/complete.c, CAN-2004-0226, Bug#246943, Bug#249366, debian/patches/52_security_CAN-2004-0226_fix.diff] * Applied patch by Andrew V. Samoilov to fix another buffer overflow [src/complete.c, debian/patches/52_security_CAN-2005-0763.diff] stable/main/binary-mips/mc_4.5.55-1.2woody6_mips.deb stable/main/binary-mips/gmc_4.5.55-1.2woody6_mips.deb stable/main/binary-mips/mc-common_4.5.55-1.2woody6_mips.deb mc (4.5.55-1.2woody6) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Andrew V. Samoilov to fix regression in buffer overflow patch [src/complete.c, CAN-2004-0226, Bug#246943, Bug#249366, debian/patches/52_security_CAN-2004-0226_fix.diff] * Applied patch by Andrew V. Samoilov to fix another buffer overflow [src/complete.c, debian/patches/52_security_CAN-2005-0763.diff] stable/main/binary-m68k/gmc_4.5.55-1.2woody6_m68k.deb stable/main/binary-m68k/mc_4.5.55-1.2woody6_m68k.deb stable/main/binary-m68k/mc-common_4.5.55-1.2woody6_m68k.deb mc (4.5.55-1.2woody6) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Andrew V. Samoilov to fix regression in buffer overflow patch [src/complete.c, CAN-2004-0226, Bug#246943, Bug#249366, debian/patches/52_security_CAN-2004-0226_fix.diff] * Applied patch by Andrew V. Samoilov to fix another buffer overflow [src/complete.c, debian/patches/52_security_CAN-2005-0763.diff] stable/main/binary-ia64/mc-common_4.5.55-1.2woody6_ia64.deb stable/main/binary-ia64/gmc_4.5.55-1.2woody6_ia64.deb stable/main/binary-ia64/mc_4.5.55-1.2woody6_ia64.deb mc (4.5.55-1.2woody6) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Andrew V. Samoilov to fix regression in buffer overflow patch [src/complete.c, CAN-2004-0226, Bug#246943, Bug#249366, debian/patches/52_security_CAN-2004-0226_fix.diff] * Applied patch by Andrew V. Samoilov to fix another buffer overflow [src/complete.c, debian/patches/52_security_CAN-2005-0763.diff] stable/main/binary-i386/mc-common_4.5.55-1.2woody6_i386.deb stable/main/binary-i386/gmc_4.5.55-1.2woody6_i386.deb stable/main/binary-i386/mc_4.5.55-1.2woody6_i386.deb mc (4.5.55-1.2woody6) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Andrew V. Samoilov to fix regression in buffer overflow patch [src/complete.c, CAN-2004-0226, Bug#246943, Bug#249366, debian/patches/52_security_CAN-2004-0226_fix.diff] * Applied patch by Andrew V. Samoilov to fix another buffer overflow [src/complete.c, debian/patches/52_security_CAN-2005-0763.diff] stable/main/binary-hppa/mc_4.5.55-1.2woody6_hppa.deb stable/main/binary-hppa/mc-common_4.5.55-1.2woody6_hppa.deb stable/main/binary-hppa/gmc_4.5.55-1.2woody6_hppa.deb mc (4.5.55-1.2woody6) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Andrew V. Samoilov to fix regression in buffer overflow patch [src/complete.c, CAN-2004-0226, Bug#246943, Bug#249366, debian/patches/52_security_CAN-2004-0226_fix.diff] * Applied patch by Andrew V. Samoilov to fix another buffer overflow [src/complete.c, debian/patches/52_security_CAN-2005-0763.diff] stable/main/binary-alpha/gmc_4.5.55-1.2woody6_alpha.deb stable/main/binary-alpha/mc_4.5.55-1.2woody6_alpha.deb stable/main/binary-alpha/mc-common_4.5.55-1.2woody6_alpha.deb mc (4.5.55-1.2woody6) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Andrew V. Samoilov to fix regression in buffer overflow patch [src/complete.c, CAN-2004-0226, Bug#246943, Bug#249366, debian/patches/52_security_CAN-2004-0226_fix.diff] * Applied patch by Andrew V. Samoilov to fix another buffer overflow [src/complete.c, debian/patches/52_security_CAN-2005-0763.diff] stable/main/binary-arm/mc_4.5.55-1.2woody6_arm.deb stable/main/binary-arm/mc-common_4.5.55-1.2woody6_arm.deb stable/main/source/mc_4.5.55-1.2woody6.dsc stable/main/binary-arm/gmc_4.5.55-1.2woody6_arm.deb stable/main/source/mc_4.5.55-1.2woody6.diff.gz mc (4.5.55-1.2woody6) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Andrew V. Samoilov to fix regression in buffer overflow patch [src/complete.c, CAN-2004-0226, Bug#246943, Bug#249366, debian/patches/52_security_CAN-2004-0226_fix.diff] * Applied patch by Andrew V. Samoilov to fix another buffer overflow [src/complete.c, debian/patches/52_security_CAN-2005-0763.diff] stable/main/binary-sparc/mailman_2.0.11-1woody11_sparc.deb mailman (2.0.11-1woody11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Rewrote patch to fix directory traversal (CAN-2005-0202) so it will work with Python 1.5 as well since that's the lowest requirement for mailman in Debian/stable and since Python 1.5.2 doesn't do list comprehensions [Mailman/Cgi/private.py] stable/main/binary-s390/mailman_2.0.11-1woody11_s390.deb mailman (2.0.11-1woody11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Rewrote patch to fix directory traversal (CAN-2005-0202) so it will work with Python 1.5 as well since that's the lowest requirement for mailman in Debian/stable and since Python 1.5.2 doesn't do list comprehensions [Mailman/Cgi/private.py] stable/main/binary-powerpc/mailman_2.0.11-1woody11_powerpc.deb mailman (2.0.11-1woody11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Rewrote patch to fix directory traversal (CAN-2005-0202) so it will work with Python 1.5 as well since that's the lowest requirement for mailman in Debian/stable and since Python 1.5.2 doesn't do list comprehensions [Mailman/Cgi/private.py] stable/main/binary-mips/mailman_2.0.11-1woody11_mips.deb mailman (2.0.11-1woody11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Rewrote patch to fix directory traversal (CAN-2005-0202) so it will work with Python 1.5 as well since that's the lowest requirement for mailman in Debian/stable and since Python 1.5.2 doesn't do list comprehensions [Mailman/Cgi/private.py] stable/main/binary-m68k/mailman_2.0.11-1woody11_m68k.deb mailman (2.0.11-1woody11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Rewrote patch to fix directory traversal (CAN-2005-0202) so it will work with Python 1.5 as well since that's the lowest requirement for mailman in Debian/stable and since Python 1.5.2 doesn't do list comprehensions [Mailman/Cgi/private.py] stable/main/binary-ia64/mailman_2.0.11-1woody11_ia64.deb mailman (2.0.11-1woody11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Rewrote patch to fix directory traversal (CAN-2005-0202) so it will work with Python 1.5 as well since that's the lowest requirement for mailman in Debian/stable and since Python 1.5.2 doesn't do list comprehensions [Mailman/Cgi/private.py] stable/main/binary-i386/mailman_2.0.11-1woody11_i386.deb mailman (2.0.11-1woody11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Rewrote patch to fix directory traversal (CAN-2005-0202) so it will work with Python 1.5 as well since that's the lowest requirement for mailman in Debian/stable and since Python 1.5.2 doesn't do list comprehensions [Mailman/Cgi/private.py] stable/main/binary-hppa/mailman_2.0.11-1woody11_hppa.deb mailman (2.0.11-1woody11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Rewrote patch to fix directory traversal (CAN-2005-0202) so it will work with Python 1.5 as well since that's the lowest requirement for mailman in Debian/stable and since Python 1.5.2 doesn't do list comprehensions [Mailman/Cgi/private.py] stable/main/binary-arm/mailman_2.0.11-1woody11_arm.deb mailman (2.0.11-1woody11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Rewrote patch to fix directory traversal (CAN-2005-0202) so it will work with Python 1.5 as well since that's the lowest requirement for mailman in Debian/stable and since Python 1.5.2 doesn't do list comprehensions [Mailman/Cgi/private.py] stable/main/binary-alpha/mailman_2.0.11-1woody11_alpha.deb mailman (2.0.11-1woody11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Rewrote patch to fix directory traversal (CAN-2005-0202) so it will work with Python 1.5 as well since that's the lowest requirement for mailman in Debian/stable and since Python 1.5.2 doesn't do list comprehensions [Mailman/Cgi/private.py] stable/main/binary-mipsel/mailman_2.0.11-1woody11_mipsel.deb stable/main/source/mailman_2.0.11-1woody11.diff.gz stable/main/source/mailman_2.0.11-1woody11.dsc mailman (2.0.11-1woody11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Rewrote patch to fix directory traversal (CAN-2005-0202) so it will work with Python 1.5 as well since that's the lowest requirement for mailman in Debian/stable and since Python 1.5.2 doesn't do list comprehensions [Mailman/Cgi/private.py] stable/main/binary-i386/luxman_0.41-17.2_i386.deb stable/main/source/luxman_0.41-17.2.dsc stable/main/source/luxman_0.41-17.2.diff.gz luxman (0.41-17.2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Steve Kemp to fix buffer overflow that can lead to a local root exploit [gtools/util.cc, CAN-2005-0385] stable/main/binary-all/lintian_1.20.17.1_all.deb stable/main/source/lintian_1.20.17.1.dsc stable/main/source/lintian_1.20.17.1.tar.gz lintian (1.20.17.1) stable-security; urgency=high * New-Maintainer upload for the Security Team * Fix insecure removal of files if lintian failed to create a temporary lab [frontend/lintian, CAN-2004-1000] (Closes: #286681) stable/main/binary-sparc/linpopup_1.2.0-2woody1_sparc.deb linpopup (1.2.0-2woody1) stable-security; urgency=high * Non-maintainer upload by the security team. * Fixed buffer overflow in string expansion. [string.c, CAN-2004-1282] stable/main/binary-s390/linpopup_1.2.0-2woody1_s390.deb linpopup (1.2.0-2woody1) stable-security; urgency=high * Non-maintainer upload by the security team. * Fixed buffer overflow in string expansion. [string.c, CAN-2004-1282] stable/main/binary-powerpc/linpopup_1.2.0-2woody1_powerpc.deb linpopup (1.2.0-2woody1) stable-security; urgency=high * Non-maintainer upload by the security team. * Fixed buffer overflow in string expansion. [string.c, CAN-2004-1282] stable/main/binary-mipsel/linpopup_1.2.0-2woody1_mipsel.deb linpopup (1.2.0-2woody1) stable-security; urgency=high * Non-maintainer upload by the security team. * Fixed buffer overflow in string expansion. [string.c, CAN-2004-1282] stable/main/binary-mips/linpopup_1.2.0-2woody1_mips.deb linpopup (1.2.0-2woody1) stable-security; urgency=high * Non-maintainer upload by the security team. * Fixed buffer overflow in string expansion. [string.c, CAN-2004-1282] stable/main/binary-m68k/linpopup_1.2.0-2woody1_m68k.deb linpopup (1.2.0-2woody1) stable-security; urgency=high * Non-maintainer upload by the security team. * Fixed buffer overflow in string expansion. [string.c, CAN-2004-1282] stable/main/binary-ia64/linpopup_1.2.0-2woody1_ia64.deb linpopup (1.2.0-2woody1) stable-security; urgency=high * Non-maintainer upload by the security team. * Fixed buffer overflow in string expansion. [string.c, CAN-2004-1282] stable/main/binary-hppa/linpopup_1.2.0-2woody1_hppa.deb linpopup (1.2.0-2woody1) stable-security; urgency=high * Non-maintainer upload by the security team. * Fixed buffer overflow in string expansion. [string.c, CAN-2004-1282] stable/main/binary-arm/linpopup_1.2.0-2woody1_arm.deb linpopup (1.2.0-2woody1) stable-security; urgency=high * Non-maintainer upload by the security team. * Fixed buffer overflow in string expansion. [string.c, CAN-2004-1282] stable/main/binary-alpha/linpopup_1.2.0-2woody1_alpha.deb linpopup (1.2.0-2woody1) stable-security; urgency=high * Non-maintainer upload by the security team. * Fixed buffer overflow in string expansion. [string.c, CAN-2004-1282] stable/main/source/linpopup_1.2.0-2woody1.diff.gz stable/main/binary-i386/linpopup_1.2.0-2woody1_i386.deb stable/main/source/linpopup_1.2.0-2woody1.dsc linpopup (1.2.0-2woody1) stable-security; urgency=high * Non-maintainer upload by the security team. * Fixed buffer overflow in string expansion. [string.c, CAN-2004-1282] stable/main/binary-sparc/libpam-radius-auth_1.3.14-1.3_sparc.deb libpam-radius-auth (1.3.14-1.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Changed the permissions of /etc/pam_radius_auth.conf to 600 to fix information leak [debian/preinst, debian/rules, CAN-2004-1340] * Fixed an integer underflow [pam_radius_auth.c, CAN-2005-0108] stable/main/binary-s390/libpam-radius-auth_1.3.14-1.3_s390.deb libpam-radius-auth (1.3.14-1.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Changed the permissions of /etc/pam_radius_auth.conf to 600 to fix information leak [debian/preinst, debian/rules, CAN-2004-1340] * Fixed an integer underflow [pam_radius_auth.c, CAN-2005-0108] stable/main/binary-powerpc/libpam-radius-auth_1.3.14-1.3_powerpc.deb libpam-radius-auth (1.3.14-1.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Changed the permissions of /etc/pam_radius_auth.conf to 600 to fix information leak [debian/preinst, debian/rules, CAN-2004-1340] * Fixed an integer underflow [pam_radius_auth.c, CAN-2005-0108] stable/main/binary-mips/libpam-radius-auth_1.3.14-1.3_mips.deb libpam-radius-auth (1.3.14-1.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Changed the permissions of /etc/pam_radius_auth.conf to 600 to fix information leak [debian/preinst, debian/rules, CAN-2004-1340] * Fixed an integer underflow [pam_radius_auth.c, CAN-2005-0108] stable/main/binary-m68k/libpam-radius-auth_1.3.14-1.3_m68k.deb libpam-radius-auth (1.3.14-1.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Changed the permissions of /etc/pam_radius_auth.conf to 600 to fix information leak [debian/preinst, debian/rules, CAN-2004-1340] * Fixed an integer underflow [pam_radius_auth.c, CAN-2005-0108] stable/main/binary-ia64/libpam-radius-auth_1.3.14-1.3_ia64.deb libpam-radius-auth (1.3.14-1.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Changed the permissions of /etc/pam_radius_auth.conf to 600 to fix information leak [debian/preinst, debian/rules, CAN-2004-1340] * Fixed an integer underflow [pam_radius_auth.c, CAN-2005-0108] stable/main/binary-i386/libpam-radius-auth_1.3.14-1.3_i386.deb libpam-radius-auth (1.3.14-1.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Changed the permissions of /etc/pam_radius_auth.conf to 600 to fix information leak [debian/preinst, debian/rules, CAN-2004-1340] * Fixed an integer underflow [pam_radius_auth.c, CAN-2005-0108] stable/main/binary-hppa/libpam-radius-auth_1.3.14-1.3_hppa.deb libpam-radius-auth (1.3.14-1.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Changed the permissions of /etc/pam_radius_auth.conf to 600 to fix information leak [debian/preinst, debian/rules, CAN-2004-1340] * Fixed an integer underflow [pam_radius_auth.c, CAN-2005-0108] stable/main/binary-arm/libpam-radius-auth_1.3.14-1.3_arm.deb libpam-radius-auth (1.3.14-1.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Changed the permissions of /etc/pam_radius_auth.conf to 600 to fix information leak [debian/preinst, debian/rules, CAN-2004-1340] * Fixed an integer underflow [pam_radius_auth.c, CAN-2005-0108] stable/main/binary-alpha/libpam-radius-auth_1.3.14-1.3_alpha.deb libpam-radius-auth (1.3.14-1.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Changed the permissions of /etc/pam_radius_auth.conf to 600 to fix information leak [debian/preinst, debian/rules, CAN-2004-1340] * Fixed an integer underflow [pam_radius_auth.c, CAN-2005-0108] stable/main/source/libpam-radius-auth_1.3.14-1.3.diff.gz stable/main/binary-mipsel/libpam-radius-auth_1.3.14-1.3_mipsel.deb stable/main/source/libpam-radius-auth_1.3.14-1.3.dsc libpam-radius-auth (1.3.14-1.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Changed the permissions of /etc/pam_radius_auth.conf to 600 to fix information leak [debian/preinst, debian/rules, CAN-2004-1340] * Fixed an integer underflow [pam_radius_auth.c, CAN-2005-0108] stable/main/binary-sparc/libgd-noxpm-dev_1.8.4-17.woody4_sparc.deb stable/main/binary-sparc/libgd1_1.8.4-17.woody4_sparc.deb stable/main/binary-sparc/libgd1-noxpm_1.8.4-17.woody4_sparc.deb stable/main/binary-sparc/libgd-dev_1.8.4-17.woody4_sparc.deb libgd (1.8.4-17.woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added overflow and failed malloc protections to prevend buffer overflows that could lead to arbitrary code execution [gd.c, wbmp.c, gd_gd.c, gd_io_dp.c, gdxpm.c, CAN-2004-0941, CAN-2004-0990] * Added missing free() [gd_png.c] stable/main/binary-s390/libgd1-noxpm_1.8.4-17.woody4_s390.deb stable/main/binary-s390/libgd-dev_1.8.4-17.woody4_s390.deb stable/main/binary-s390/libgd1_1.8.4-17.woody4_s390.deb stable/main/binary-s390/libgd-noxpm-dev_1.8.4-17.woody4_s390.deb libgd (1.8.4-17.woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added overflow and failed malloc protections to prevend buffer overflows that could lead to arbitrary code execution [gd.c, wbmp.c, gd_gd.c, gd_io_dp.c, gdxpm.c, CAN-2004-0941, CAN-2004-0990] * Added missing free() [gd_png.c] stable/main/binary-powerpc/libgd1-noxpm_1.8.4-17.woody4_powerpc.deb stable/main/binary-powerpc/libgd-noxpm-dev_1.8.4-17.woody4_powerpc.deb stable/main/binary-powerpc/libgd1_1.8.4-17.woody4_powerpc.deb stable/main/binary-powerpc/libgd-dev_1.8.4-17.woody4_powerpc.deb libgd (1.8.4-17.woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added overflow and failed malloc protections to prevend buffer overflows that could lead to arbitrary code execution [gd.c, wbmp.c, gd_gd.c, gd_io_dp.c, gdxpm.c, CAN-2004-0941, CAN-2004-0990] * Added missing free() [gd_png.c] stable/main/binary-mips/libgd1-noxpm_1.8.4-17.woody4_mips.deb stable/main/binary-mips/libgd1_1.8.4-17.woody4_mips.deb stable/main/binary-mips/libgd-noxpm-dev_1.8.4-17.woody4_mips.deb stable/main/binary-mips/libgd-dev_1.8.4-17.woody4_mips.deb libgd (1.8.4-17.woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added overflow and failed malloc protections to prevend buffer overflows that could lead to arbitrary code execution [gd.c, wbmp.c, gd_gd.c, gd_io_dp.c, gdxpm.c, CAN-2004-0941, CAN-2004-0990] * Added missing free() [gd_png.c] stable/main/binary-m68k/libgd1_1.8.4-17.woody4_m68k.deb stable/main/binary-m68k/libgd-dev_1.8.4-17.woody4_m68k.deb stable/main/binary-m68k/libgd1-noxpm_1.8.4-17.woody4_m68k.deb stable/main/binary-m68k/libgd-noxpm-dev_1.8.4-17.woody4_m68k.deb libgd (1.8.4-17.woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added overflow and failed malloc protections to prevend buffer overflows that could lead to arbitrary code execution [gd.c, wbmp.c, gd_gd.c, gd_io_dp.c, gdxpm.c, CAN-2004-0941, CAN-2004-0990] * Added missing free() [gd_png.c] stable/main/binary-ia64/libgd-dev_1.8.4-17.woody4_ia64.deb stable/main/binary-ia64/libgd1-noxpm_1.8.4-17.woody4_ia64.deb stable/main/binary-ia64/libgd1_1.8.4-17.woody4_ia64.deb stable/main/binary-ia64/libgd-noxpm-dev_1.8.4-17.woody4_ia64.deb libgd (1.8.4-17.woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added overflow and failed malloc protections to prevend buffer overflows that could lead to arbitrary code execution [gd.c, wbmp.c, gd_gd.c, gd_io_dp.c, gdxpm.c, CAN-2004-0941, CAN-2004-0990] * Added missing free() [gd_png.c] stable/main/binary-i386/libgd-noxpm-dev_1.8.4-17.woody4_i386.deb stable/main/binary-i386/libgd-dev_1.8.4-17.woody4_i386.deb stable/main/binary-i386/libgd1_1.8.4-17.woody4_i386.deb stable/main/binary-i386/libgd1-noxpm_1.8.4-17.woody4_i386.deb libgd (1.8.4-17.woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added overflow and failed malloc protections to prevend buffer overflows that could lead to arbitrary code execution [gd.c, wbmp.c, gd_gd.c, gd_io_dp.c, gdxpm.c, CAN-2004-0941, CAN-2004-0990] * Added missing free() [gd_png.c] stable/main/binary-hppa/libgd-noxpm-dev_1.8.4-17.woody4_hppa.deb stable/main/binary-hppa/libgd-dev_1.8.4-17.woody4_hppa.deb stable/main/binary-hppa/libgd1-noxpm_1.8.4-17.woody4_hppa.deb stable/main/binary-hppa/libgd1_1.8.4-17.woody4_hppa.deb libgd (1.8.4-17.woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added overflow and failed malloc protections to prevend buffer overflows that could lead to arbitrary code execution [gd.c, wbmp.c, gd_gd.c, gd_io_dp.c, gdxpm.c, CAN-2004-0941, CAN-2004-0990] * Added missing free() [gd_png.c] stable/main/binary-arm/libgd1_1.8.4-17.woody4_arm.deb stable/main/binary-arm/libgd-noxpm-dev_1.8.4-17.woody4_arm.deb stable/main/binary-arm/libgd-dev_1.8.4-17.woody4_arm.deb stable/main/binary-arm/libgd1-noxpm_1.8.4-17.woody4_arm.deb libgd (1.8.4-17.woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added overflow and failed malloc protections to prevend buffer overflows that could lead to arbitrary code execution [gd.c, wbmp.c, gd_gd.c, gd_io_dp.c, gdxpm.c, CAN-2004-0941, CAN-2004-0990] * Added missing free() [gd_png.c] stable/main/binary-alpha/libgd1_1.8.4-17.woody4_alpha.deb stable/main/binary-alpha/libgd-noxpm-dev_1.8.4-17.woody4_alpha.deb stable/main/binary-alpha/libgd1-noxpm_1.8.4-17.woody4_alpha.deb stable/main/binary-alpha/libgd-dev_1.8.4-17.woody4_alpha.deb libgd (1.8.4-17.woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added overflow and failed malloc protections to prevend buffer overflows that could lead to arbitrary code execution [gd.c, wbmp.c, gd_gd.c, gd_io_dp.c, gdxpm.c, CAN-2004-0941, CAN-2004-0990] * Added missing free() [gd_png.c] stable/main/binary-mipsel/libgd-noxpm-dev_1.8.4-17.woody4_mipsel.deb stable/main/binary-mipsel/libgd-dev_1.8.4-17.woody4_mipsel.deb stable/main/binary-mipsel/libgd1-noxpm_1.8.4-17.woody4_mipsel.deb stable/main/source/libgd_1.8.4-17.woody4.diff.gz stable/main/binary-mipsel/libgd1_1.8.4-17.woody4_mipsel.deb stable/main/source/libgd_1.8.4-17.woody4.dsc libgd (1.8.4-17.woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Added overflow and failed malloc protections to prevend buffer overflows that could lead to arbitrary code execution [gd.c, wbmp.c, gd_gd.c, gd_io_dp.c, gdxpm.c, CAN-2004-0941, CAN-2004-0990] * Added missing free() [gd_png.c] stable/main/binary-sparc/libdbi-perl_1.21-2woody2_sparc.deb libdbi-perl (1.21-2woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Javier Fernández-Sanguino Peña to not create an insecure temporary file anymore [dbiproxy.PL, lib/DBI/ProxyServer.pm, CAN-2005-0077] stable/main/binary-s390/libdbi-perl_1.21-2woody2_s390.deb libdbi-perl (1.21-2woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Javier Fernández-Sanguino Peña to not create an insecure temporary file anymore [dbiproxy.PL, lib/DBI/ProxyServer.pm, CAN-2005-0077] stable/main/binary-powerpc/libdbi-perl_1.21-2woody2_powerpc.deb libdbi-perl (1.21-2woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Javier Fernández-Sanguino Peña to not create an insecure temporary file anymore [dbiproxy.PL, lib/DBI/ProxyServer.pm, CAN-2005-0077] stable/main/binary-mips/libdbi-perl_1.21-2woody2_mips.deb libdbi-perl (1.21-2woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Javier Fernández-Sanguino Peña to not create an insecure temporary file anymore [dbiproxy.PL, lib/DBI/ProxyServer.pm, CAN-2005-0077] stable/main/binary-m68k/libdbi-perl_1.21-2woody2_m68k.deb libdbi-perl (1.21-2woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Javier Fernández-Sanguino Peña to not create an insecure temporary file anymore [dbiproxy.PL, lib/DBI/ProxyServer.pm, CAN-2005-0077] stable/main/binary-ia64/libdbi-perl_1.21-2woody2_ia64.deb libdbi-perl (1.21-2woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Javier Fernández-Sanguino Peña to not create an insecure temporary file anymore [dbiproxy.PL, lib/DBI/ProxyServer.pm, CAN-2005-0077] stable/main/binary-i386/libdbi-perl_1.21-2woody2_i386.deb libdbi-perl (1.21-2woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Javier Fernández-Sanguino Peña to not create an insecure temporary file anymore [dbiproxy.PL, lib/DBI/ProxyServer.pm, CAN-2005-0077] stable/main/binary-hppa/libdbi-perl_1.21-2woody2_hppa.deb libdbi-perl (1.21-2woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Javier Fernández-Sanguino Peña to not create an insecure temporary file anymore [dbiproxy.PL, lib/DBI/ProxyServer.pm, CAN-2005-0077] stable/main/binary-arm/libdbi-perl_1.21-2woody2_arm.deb libdbi-perl (1.21-2woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Javier Fernández-Sanguino Peña to not create an insecure temporary file anymore [dbiproxy.PL, lib/DBI/ProxyServer.pm, CAN-2005-0077] stable/main/binary-alpha/libdbi-perl_1.21-2woody2_alpha.deb libdbi-perl (1.21-2woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Javier Fernández-Sanguino Peña to not create an insecure temporary file anymore [dbiproxy.PL, lib/DBI/ProxyServer.pm, CAN-2005-0077] stable/main/source/libdbi-perl_1.21-2woody2.diff.gz stable/main/binary-mipsel/libdbi-perl_1.21-2woody2_mipsel.deb stable/main/source/libdbi-perl_1.21-2woody2.dsc libdbi-perl (1.21-2woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Javier Fernández-Sanguino Peña to not create an insecure temporary file anymore [dbiproxy.PL, lib/DBI/ProxyServer.pm, CAN-2005-0077] stable/main/binary-sparc/libapache-mod-python_2.7.8-0.0woody5_sparc.deb libapache-mod-python (2:2.7.8-0.0woody5) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes upload because I can't get wanna-build to accept the fact that the buildd hasn't uploaded it since the files were empty due to klecker being out of space. stable/main/binary-s390/libapache-mod-python_2.7.8-0.0woody5_s390.deb libapache-mod-python (2:2.7.8-0.0woody5) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes upload because I can't get wanna-build to accept the fact that the buildd hasn't uploaded it since the files were empty due to klecker being out of space. stable/main/binary-powerpc/libapache-mod-python_2.7.8-0.0woody5_powerpc.deb libapache-mod-python (2:2.7.8-0.0woody5) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes upload because I can't get wanna-build to accept the fact that the buildd hasn't uploaded it since the files were empty due to klecker being out of space. stable/main/binary-mips/libapache-mod-python_2.7.8-0.0woody5_mips.deb libapache-mod-python (2:2.7.8-0.0woody5) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes upload because I can't get wanna-build to accept the fact that the buildd hasn't uploaded it since the files were empty due to klecker being out of space. stable/main/binary-m68k/libapache-mod-python_2.7.8-0.0woody5_m68k.deb libapache-mod-python (2:2.7.8-0.0woody5) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes upload because I can't get wanna-build to accept the fact that the buildd hasn't uploaded it since the files were empty due to klecker being out of space. stable/main/binary-ia64/libapache-mod-python_2.7.8-0.0woody5_ia64.deb libapache-mod-python (2:2.7.8-0.0woody5) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes upload because I can't get wanna-build to accept the fact that the buildd hasn't uploaded it since the files were empty due to klecker being out of space. stable/main/binary-i386/libapache-mod-python_2.7.8-0.0woody5_i386.deb libapache-mod-python (2:2.7.8-0.0woody5) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes upload because I can't get wanna-build to accept the fact that the buildd hasn't uploaded it since the files were empty due to klecker being out of space. stable/main/binary-hppa/libapache-mod-python_2.7.8-0.0woody5_hppa.deb libapache-mod-python (2:2.7.8-0.0woody5) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes upload because I can't get wanna-build to accept the fact that the buildd hasn't uploaded it since the files were empty due to klecker being out of space. stable/main/binary-arm/libapache-mod-python_2.7.8-0.0woody5_arm.deb libapache-mod-python (2:2.7.8-0.0woody5) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes upload because I can't get wanna-build to accept the fact that the buildd hasn't uploaded it since the files were empty due to klecker being out of space. stable/main/binary-alpha/libapache-mod-python_2.7.8-0.0woody5_alpha.deb libapache-mod-python (2:2.7.8-0.0woody5) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes upload because I can't get wanna-build to accept the fact that the buildd hasn't uploaded it since the files were empty due to klecker being out of space. stable/main/source/libapache-mod-python_2.7.8-0.0woody5.diff.gz stable/main/binary-mipsel/libapache-mod-python_2.7.8-0.0woody5_mipsel.deb stable/main/source/libapache-mod-python_2.7.8-0.0woody5.dsc libapache-mod-python (2:2.7.8-0.0woody5) stable-security; urgency=high * Non-maintainer upload by the Security Team * No-changes upload because I can't get wanna-build to accept the fact that the buildd hasn't uploaded it since the files were empty due to klecker being out of space. stable/main/binary-sparc/krb5-rsh-server_1.2.4-5woody8_sparc.deb stable/main/binary-sparc/krb5-user_1.2.4-5woody8_sparc.deb stable/main/binary-sparc/krb5-admin-server_1.2.4-5woody8_sparc.deb stable/main/binary-sparc/libkrb5-dev_1.2.4-5woody8_sparc.deb stable/main/binary-sparc/krb5-clients_1.2.4-5woody8_sparc.deb stable/main/binary-sparc/krb5-kdc_1.2.4-5woody8_sparc.deb stable/main/binary-sparc/krb5-ftpd_1.2.4-5woody8_sparc.deb stable/main/binary-sparc/krb5-telnetd_1.2.4-5woody8_sparc.deb stable/main/binary-sparc/libkrb53_1.2.4-5woody8_sparc.deb stable/main/binary-sparc/libkadm55_1.2.4-5woody8_sparc.deb krb5 (1.2.4-5woody8) stable-security; urgency=low * Fixbuffer overflow in slc_add_reply in telnet.c (CAN-2005-0469) * Fix telnet.c env_opt_add buffer overflow (CAN-2005-0468 ) * Note that both of these vulnerabilities are client-side vulnerabilities that can be exploited only by a server. stable/main/binary-s390/krb5-rsh-server_1.2.4-5woody8_s390.deb stable/main/binary-s390/libkrb53_1.2.4-5woody8_s390.deb stable/main/binary-s390/libkadm55_1.2.4-5woody8_s390.deb stable/main/binary-s390/krb5-telnetd_1.2.4-5woody8_s390.deb stable/main/binary-s390/krb5-admin-server_1.2.4-5woody8_s390.deb stable/main/binary-s390/krb5-user_1.2.4-5woody8_s390.deb stable/main/binary-s390/krb5-clients_1.2.4-5woody8_s390.deb stable/main/binary-s390/libkrb5-dev_1.2.4-5woody8_s390.deb stable/main/binary-s390/krb5-kdc_1.2.4-5woody8_s390.deb stable/main/binary-s390/krb5-ftpd_1.2.4-5woody8_s390.deb krb5 (1.2.4-5woody8) stable-security; urgency=low * Fixbuffer overflow in slc_add_reply in telnet.c (CAN-2005-0469) * Fix telnet.c env_opt_add buffer overflow (CAN-2005-0468 ) * Note that both of these vulnerabilities are client-side vulnerabilities that can be exploited only by a server. stable/main/binary-powerpc/libkadm55_1.2.4-5woody8_powerpc.deb stable/main/binary-powerpc/krb5-admin-server_1.2.4-5woody8_powerpc.deb stable/main/binary-powerpc/krb5-telnetd_1.2.4-5woody8_powerpc.deb stable/main/binary-powerpc/krb5-clients_1.2.4-5woody8_powerpc.deb stable/main/binary-powerpc/krb5-user_1.2.4-5woody8_powerpc.deb stable/main/binary-powerpc/libkrb5-dev_1.2.4-5woody8_powerpc.deb stable/main/binary-powerpc/krb5-rsh-server_1.2.4-5woody8_powerpc.deb stable/main/binary-powerpc/krb5-ftpd_1.2.4-5woody8_powerpc.deb stable/main/binary-powerpc/krb5-kdc_1.2.4-5woody8_powerpc.deb stable/main/binary-powerpc/libkrb53_1.2.4-5woody8_powerpc.deb krb5 (1.2.4-5woody8) stable-security; urgency=low * Fixbuffer overflow in slc_add_reply in telnet.c (CAN-2005-0469) * Fix telnet.c env_opt_add buffer overflow (CAN-2005-0468 ) * Note that both of these vulnerabilities are client-side vulnerabilities that can be exploited only by a server. stable/main/binary-mipsel/libkrb53_1.2.4-5woody8_mipsel.deb stable/main/binary-mipsel/krb5-clients_1.2.4-5woody8_mipsel.deb stable/main/binary-mipsel/krb5-rsh-server_1.2.4-5woody8_mipsel.deb stable/main/binary-mipsel/krb5-admin-server_1.2.4-5woody8_mipsel.deb stable/main/binary-mipsel/krb5-ftpd_1.2.4-5woody8_mipsel.deb stable/main/binary-mipsel/krb5-user_1.2.4-5woody8_mipsel.deb stable/main/binary-mipsel/krb5-telnetd_1.2.4-5woody8_mipsel.deb stable/main/binary-mipsel/krb5-kdc_1.2.4-5woody8_mipsel.deb stable/main/binary-mipsel/libkrb5-dev_1.2.4-5woody8_mipsel.deb stable/main/binary-mipsel/libkadm55_1.2.4-5woody8_mipsel.deb krb5 (1.2.4-5woody8) stable-security; urgency=low * Fixbuffer overflow in slc_add_reply in telnet.c (CAN-2005-0469) * Fix telnet.c env_opt_add buffer overflow (CAN-2005-0468 ) * Note that both of these vulnerabilities are client-side vulnerabilities that can be exploited only by a server. stable/main/binary-mips/libkadm55_1.2.4-5woody8_mips.deb stable/main/binary-mips/krb5-telnetd_1.2.4-5woody8_mips.deb stable/main/binary-mips/krb5-user_1.2.4-5woody8_mips.deb stable/main/binary-mips/krb5-clients_1.2.4-5woody8_mips.deb stable/main/binary-mips/libkrb5-dev_1.2.4-5woody8_mips.deb stable/main/binary-mips/krb5-ftpd_1.2.4-5woody8_mips.deb stable/main/binary-mips/krb5-rsh-server_1.2.4-5woody8_mips.deb stable/main/binary-mips/libkrb53_1.2.4-5woody8_mips.deb stable/main/binary-mips/krb5-admin-server_1.2.4-5woody8_mips.deb stable/main/binary-mips/krb5-kdc_1.2.4-5woody8_mips.deb krb5 (1.2.4-5woody8) stable-security; urgency=low * Fixbuffer overflow in slc_add_reply in telnet.c (CAN-2005-0469) * Fix telnet.c env_opt_add buffer overflow (CAN-2005-0468 ) * Note that both of these vulnerabilities are client-side vulnerabilities that can be exploited only by a server. stable/main/binary-m68k/krb5-kdc_1.2.4-5woody8_m68k.deb stable/main/binary-m68k/libkadm55_1.2.4-5woody8_m68k.deb stable/main/binary-m68k/krb5-user_1.2.4-5woody8_m68k.deb stable/main/binary-m68k/libkrb53_1.2.4-5woody8_m68k.deb stable/main/binary-m68k/krb5-rsh-server_1.2.4-5woody8_m68k.deb stable/main/binary-m68k/krb5-ftpd_1.2.4-5woody8_m68k.deb stable/main/binary-m68k/libkrb5-dev_1.2.4-5woody8_m68k.deb stable/main/binary-m68k/krb5-admin-server_1.2.4-5woody8_m68k.deb stable/main/binary-m68k/krb5-clients_1.2.4-5woody8_m68k.deb stable/main/binary-m68k/krb5-telnetd_1.2.4-5woody8_m68k.deb krb5 (1.2.4-5woody8) stable-security; urgency=low * Fixbuffer overflow in slc_add_reply in telnet.c (CAN-2005-0469) * Fix telnet.c env_opt_add buffer overflow (CAN-2005-0468 ) * Note that both of these vulnerabilities are client-side vulnerabilities that can be exploited only by a server. stable/main/binary-ia64/libkrb53_1.2.4-5woody8_ia64.deb stable/main/binary-ia64/krb5-rsh-server_1.2.4-5woody8_ia64.deb stable/main/binary-ia64/libkadm55_1.2.4-5woody8_ia64.deb stable/main/binary-ia64/krb5-admin-server_1.2.4-5woody8_ia64.deb stable/main/binary-ia64/libkrb5-dev_1.2.4-5woody8_ia64.deb stable/main/binary-ia64/krb5-clients_1.2.4-5woody8_ia64.deb stable/main/binary-ia64/krb5-ftpd_1.2.4-5woody8_ia64.deb stable/main/binary-ia64/krb5-user_1.2.4-5woody8_ia64.deb stable/main/binary-ia64/krb5-kdc_1.2.4-5woody8_ia64.deb stable/main/binary-ia64/krb5-telnetd_1.2.4-5woody8_ia64.deb krb5 (1.2.4-5woody8) stable-security; urgency=low * Fixbuffer overflow in slc_add_reply in telnet.c (CAN-2005-0469) * Fix telnet.c env_opt_add buffer overflow (CAN-2005-0468 ) * Note that both of these vulnerabilities are client-side vulnerabilities that can be exploited only by a server. stable/main/binary-hppa/libkadm55_1.2.4-5woody8_hppa.deb stable/main/binary-hppa/libkrb53_1.2.4-5woody8_hppa.deb stable/main/binary-hppa/krb5-ftpd_1.2.4-5woody8_hppa.deb stable/main/binary-hppa/krb5-rsh-server_1.2.4-5woody8_hppa.deb stable/main/binary-hppa/krb5-admin-server_1.2.4-5woody8_hppa.deb stable/main/binary-hppa/krb5-clients_1.2.4-5woody8_hppa.deb stable/main/binary-hppa/krb5-user_1.2.4-5woody8_hppa.deb stable/main/binary-hppa/krb5-kdc_1.2.4-5woody8_hppa.deb stable/main/binary-hppa/libkrb5-dev_1.2.4-5woody8_hppa.deb stable/main/binary-hppa/krb5-telnetd_1.2.4-5woody8_hppa.deb krb5 (1.2.4-5woody8) stable-security; urgency=low * Fixbuffer overflow in slc_add_reply in telnet.c (CAN-2005-0469) * Fix telnet.c env_opt_add buffer overflow (CAN-2005-0468 ) * Note that both of these vulnerabilities are client-side vulnerabilities that can be exploited only by a server. stable/main/binary-arm/krb5-kdc_1.2.4-5woody8_arm.deb stable/main/binary-arm/libkrb5-dev_1.2.4-5woody8_arm.deb stable/main/binary-arm/krb5-clients_1.2.4-5woody8_arm.deb stable/main/binary-arm/libkadm55_1.2.4-5woody8_arm.deb stable/main/binary-arm/krb5-telnetd_1.2.4-5woody8_arm.deb stable/main/binary-arm/krb5-rsh-server_1.2.4-5woody8_arm.deb stable/main/binary-arm/krb5-ftpd_1.2.4-5woody8_arm.deb stable/main/binary-arm/krb5-user_1.2.4-5woody8_arm.deb stable/main/binary-arm/krb5-admin-server_1.2.4-5woody8_arm.deb stable/main/binary-arm/libkrb53_1.2.4-5woody8_arm.deb krb5 (1.2.4-5woody8) stable-security; urgency=low * Fixbuffer overflow in slc_add_reply in telnet.c (CAN-2005-0469) * Fix telnet.c env_opt_add buffer overflow (CAN-2005-0468 ) * Note that both of these vulnerabilities are client-side vulnerabilities that can be exploited only by a server. stable/main/binary-alpha/krb5-user_1.2.4-5woody8_alpha.deb stable/main/binary-alpha/libkrb5-dev_1.2.4-5woody8_alpha.deb stable/main/binary-alpha/krb5-telnetd_1.2.4-5woody8_alpha.deb stable/main/binary-alpha/krb5-ftpd_1.2.4-5woody8_alpha.deb stable/main/binary-alpha/libkrb53_1.2.4-5woody8_alpha.deb stable/main/binary-alpha/krb5-clients_1.2.4-5woody8_alpha.deb stable/main/binary-alpha/krb5-kdc_1.2.4-5woody8_alpha.deb stable/main/binary-alpha/krb5-rsh-server_1.2.4-5woody8_alpha.deb stable/main/binary-alpha/libkadm55_1.2.4-5woody8_alpha.deb stable/main/binary-alpha/krb5-admin-server_1.2.4-5woody8_alpha.deb krb5 (1.2.4-5woody8) stable-security; urgency=low * Fixbuffer overflow in slc_add_reply in telnet.c (CAN-2005-0469) * Fix telnet.c env_opt_add buffer overflow (CAN-2005-0468 ) * Note that both of these vulnerabilities are client-side vulnerabilities that can be exploited only by a server. stable/main/binary-i386/krb5-telnetd_1.2.4-5woody8_i386.deb stable/main/binary-i386/krb5-ftpd_1.2.4-5woody8_i386.deb stable/main/source/krb5_1.2.4-5woody8.diff.gz stable/main/binary-i386/libkrb5-dev_1.2.4-5woody8_i386.deb stable/main/binary-i386/krb5-admin-server_1.2.4-5woody8_i386.deb stable/main/binary-i386/libkrb53_1.2.4-5woody8_i386.deb stable/main/binary-i386/krb5-kdc_1.2.4-5woody8_i386.deb stable/main/binary-i386/libkadm55_1.2.4-5woody8_i386.deb stable/main/binary-i386/krb5-clients_1.2.4-5woody8_i386.deb stable/main/binary-i386/krb5-user_1.2.4-5woody8_i386.deb stable/main/binary-i386/krb5-rsh-server_1.2.4-5woody8_i386.deb stable/main/source/krb5_1.2.4-5woody8.dsc stable/main/binary-all/krb5-doc_1.2.4-5woody8_all.deb krb5 (1.2.4-5woody8) stable-security; urgency=low * Fixbuffer overflow in slc_add_reply in telnet.c (CAN-2005-0469) * Fix telnet.c env_opt_add buffer overflow (CAN-2005-0468 ) * Note that both of these vulnerabilities are client-side vulnerabilities that can be exploited only by a server. stable/main/binary-sparc/libkdenetwork1_2.2.2-14.7_sparc.deb stable/main/binary-sparc/ktalkd_2.2.2-14.7_sparc.deb stable/main/binary-sparc/knewsticker_2.2.2-14.7_sparc.deb stable/main/binary-sparc/kmail_2.2.2-14.7_sparc.deb stable/main/binary-sparc/kppp_2.2.2-14.7_sparc.deb stable/main/binary-sparc/kdict_2.2.2-14.7_sparc.deb stable/main/binary-sparc/libmimelib-dev_2.2.2-14.7_sparc.deb stable/main/binary-sparc/kit_2.2.2-14.7_sparc.deb stable/main/binary-sparc/korn_2.2.2-14.7_sparc.deb stable/main/binary-sparc/ksirc_2.2.2-14.7_sparc.deb stable/main/binary-sparc/klisa_2.2.2-14.7_sparc.deb stable/main/binary-sparc/libmimelib1_2.2.2-14.7_sparc.deb stable/main/binary-sparc/knode_2.2.2-14.7_sparc.deb kdenetwork (4:2.2.2-14.7) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from Dirk Müller to fix file descriptor leak [kppp/main.cpp, CAN-2005-0205] stable/main/binary-s390/kmail_2.2.2-14.7_s390.deb stable/main/binary-s390/libmimelib1_2.2.2-14.7_s390.deb stable/main/binary-s390/kppp_2.2.2-14.7_s390.deb stable/main/binary-s390/libkdenetwork1_2.2.2-14.7_s390.deb stable/main/binary-s390/ktalkd_2.2.2-14.7_s390.deb stable/main/binary-s390/korn_2.2.2-14.7_s390.deb stable/main/binary-s390/knode_2.2.2-14.7_s390.deb stable/main/binary-s390/kit_2.2.2-14.7_s390.deb stable/main/binary-s390/kdict_2.2.2-14.7_s390.deb stable/main/binary-s390/ksirc_2.2.2-14.7_s390.deb stable/main/binary-s390/libmimelib-dev_2.2.2-14.7_s390.deb stable/main/binary-s390/knewsticker_2.2.2-14.7_s390.deb stable/main/binary-s390/klisa_2.2.2-14.7_s390.deb kdenetwork (4:2.2.2-14.7) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from Dirk Müller to fix file descriptor leak [kppp/main.cpp, CAN-2005-0205] stable/main/binary-powerpc/knewsticker_2.2.2-14.7_powerpc.deb stable/main/binary-powerpc/ksirc_2.2.2-14.7_powerpc.deb stable/main/binary-powerpc/kit_2.2.2-14.7_powerpc.deb stable/main/binary-powerpc/korn_2.2.2-14.7_powerpc.deb stable/main/binary-powerpc/libmimelib-dev_2.2.2-14.7_powerpc.deb stable/main/binary-powerpc/kppp_2.2.2-14.7_powerpc.deb stable/main/binary-powerpc/kmail_2.2.2-14.7_powerpc.deb stable/main/binary-powerpc/kdict_2.2.2-14.7_powerpc.deb stable/main/binary-powerpc/libmimelib1_2.2.2-14.7_powerpc.deb stable/main/binary-powerpc/klisa_2.2.2-14.7_powerpc.deb stable/main/binary-powerpc/knode_2.2.2-14.7_powerpc.deb stable/main/binary-powerpc/libkdenetwork1_2.2.2-14.7_powerpc.deb stable/main/binary-powerpc/ktalkd_2.2.2-14.7_powerpc.deb kdenetwork (4:2.2.2-14.7) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from Dirk Müller to fix file descriptor leak [kppp/main.cpp, CAN-2005-0205] stable/main/binary-mipsel/ktalkd_2.2.2-14.7_mipsel.deb stable/main/binary-mipsel/knode_2.2.2-14.7_mipsel.deb stable/main/binary-mipsel/korn_2.2.2-14.7_mipsel.deb stable/main/binary-mipsel/kppp_2.2.2-14.7_mipsel.deb stable/main/binary-mipsel/ksirc_2.2.2-14.7_mipsel.deb stable/main/binary-mipsel/libkdenetwork1_2.2.2-14.7_mipsel.deb stable/main/binary-mipsel/klisa_2.2.2-14.7_mipsel.deb stable/main/binary-mipsel/kdict_2.2.2-14.7_mipsel.deb stable/main/binary-mipsel/kit_2.2.2-14.7_mipsel.deb stable/main/binary-mipsel/libmimelib-dev_2.2.2-14.7_mipsel.deb stable/main/binary-mipsel/libmimelib1_2.2.2-14.7_mipsel.deb stable/main/binary-mipsel/kmail_2.2.2-14.7_mipsel.deb stable/main/binary-mipsel/knewsticker_2.2.2-14.7_mipsel.deb kdenetwork (4:2.2.2-14.7) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from Dirk Müller to fix file descriptor leak [kppp/main.cpp, CAN-2005-0205] stable/main/binary-mips/libmimelib1_2.2.2-14.7_mips.deb stable/main/binary-mips/klisa_2.2.2-14.7_mips.deb stable/main/binary-mips/libkdenetwork1_2.2.2-14.7_mips.deb stable/main/binary-mips/korn_2.2.2-14.7_mips.deb stable/main/binary-mips/knode_2.2.2-14.7_mips.deb stable/main/binary-mips/kmail_2.2.2-14.7_mips.deb stable/main/binary-mips/kppp_2.2.2-14.7_mips.deb stable/main/binary-mips/knewsticker_2.2.2-14.7_mips.deb stable/main/binary-mips/libmimelib-dev_2.2.2-14.7_mips.deb stable/main/binary-mips/kdict_2.2.2-14.7_mips.deb stable/main/binary-mips/kit_2.2.2-14.7_mips.deb stable/main/binary-mips/ktalkd_2.2.2-14.7_mips.deb stable/main/binary-mips/ksirc_2.2.2-14.7_mips.deb kdenetwork (4:2.2.2-14.7) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from Dirk Müller to fix file descriptor leak [kppp/main.cpp, CAN-2005-0205] stable/main/binary-m68k/libkdenetwork1_2.2.2-14.7_m68k.deb stable/main/binary-m68k/klisa_2.2.2-14.7_m68k.deb stable/main/binary-m68k/libmimelib1_2.2.2-14.7_m68k.deb stable/main/binary-m68k/kmail_2.2.2-14.7_m68k.deb stable/main/binary-m68k/libmimelib-dev_2.2.2-14.7_m68k.deb stable/main/binary-m68k/knewsticker_2.2.2-14.7_m68k.deb stable/main/binary-m68k/kit_2.2.2-14.7_m68k.deb stable/main/binary-m68k/korn_2.2.2-14.7_m68k.deb stable/main/binary-m68k/ktalkd_2.2.2-14.7_m68k.deb stable/main/binary-m68k/knode_2.2.2-14.7_m68k.deb stable/main/binary-m68k/ksirc_2.2.2-14.7_m68k.deb stable/main/binary-m68k/kdict_2.2.2-14.7_m68k.deb stable/main/binary-m68k/kppp_2.2.2-14.7_m68k.deb kdenetwork (4:2.2.2-14.7) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from Dirk Müller to fix file descriptor leak [kppp/main.cpp, CAN-2005-0205] stable/main/binary-ia64/kmail_2.2.2-14.7_ia64.deb stable/main/binary-ia64/libmimelib-dev_2.2.2-14.7_ia64.deb stable/main/binary-ia64/kppp_2.2.2-14.7_ia64.deb stable/main/binary-ia64/libkdenetwork1_2.2.2-14.7_ia64.deb stable/main/binary-ia64/knewsticker_2.2.2-14.7_ia64.deb stable/main/binary-ia64/korn_2.2.2-14.7_ia64.deb stable/main/binary-ia64/klisa_2.2.2-14.7_ia64.deb stable/main/binary-ia64/libmimelib1_2.2.2-14.7_ia64.deb stable/main/binary-ia64/ksirc_2.2.2-14.7_ia64.deb stable/main/binary-ia64/ktalkd_2.2.2-14.7_ia64.deb stable/main/binary-ia64/knode_2.2.2-14.7_ia64.deb stable/main/binary-ia64/kit_2.2.2-14.7_ia64.deb stable/main/binary-ia64/kdict_2.2.2-14.7_ia64.deb kdenetwork (4:2.2.2-14.7) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from Dirk Müller to fix file descriptor leak [kppp/main.cpp, CAN-2005-0205] stable/main/binary-hppa/libmimelib1_2.2.2-14.7_hppa.deb stable/main/binary-hppa/knode_2.2.2-14.7_hppa.deb stable/main/binary-hppa/ksirc_2.2.2-14.7_hppa.deb stable/main/binary-hppa/ktalkd_2.2.2-14.7_hppa.deb stable/main/binary-hppa/klisa_2.2.2-14.7_hppa.deb stable/main/binary-hppa/kmail_2.2.2-14.7_hppa.deb stable/main/binary-hppa/knewsticker_2.2.2-14.7_hppa.deb stable/main/binary-hppa/kdict_2.2.2-14.7_hppa.deb stable/main/binary-hppa/kit_2.2.2-14.7_hppa.deb stable/main/binary-hppa/libkdenetwork1_2.2.2-14.7_hppa.deb stable/main/binary-hppa/kppp_2.2.2-14.7_hppa.deb stable/main/binary-hppa/korn_2.2.2-14.7_hppa.deb stable/main/binary-hppa/libmimelib-dev_2.2.2-14.7_hppa.deb kdenetwork (4:2.2.2-14.7) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from Dirk Müller to fix file descriptor leak [kppp/main.cpp, CAN-2005-0205] stable/main/binary-arm/libkdenetwork1_2.2.2-14.7_arm.deb stable/main/binary-arm/klisa_2.2.2-14.7_arm.deb stable/main/binary-arm/kdict_2.2.2-14.7_arm.deb stable/main/binary-arm/kmail_2.2.2-14.7_arm.deb stable/main/binary-arm/korn_2.2.2-14.7_arm.deb stable/main/binary-arm/knewsticker_2.2.2-14.7_arm.deb stable/main/binary-arm/ktalkd_2.2.2-14.7_arm.deb stable/main/binary-arm/knode_2.2.2-14.7_arm.deb stable/main/binary-arm/kit_2.2.2-14.7_arm.deb stable/main/binary-arm/ksirc_2.2.2-14.7_arm.deb stable/main/binary-arm/libmimelib-dev_2.2.2-14.7_arm.deb stable/main/binary-arm/kppp_2.2.2-14.7_arm.deb stable/main/binary-arm/libmimelib1_2.2.2-14.7_arm.deb kdenetwork (4:2.2.2-14.7) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from Dirk Müller to fix file descriptor leak [kppp/main.cpp, CAN-2005-0205] stable/main/binary-alpha/knode_2.2.2-14.7_alpha.deb stable/main/binary-alpha/libkdenetwork1_2.2.2-14.7_alpha.deb stable/main/binary-alpha/kit_2.2.2-14.7_alpha.deb stable/main/binary-alpha/kppp_2.2.2-14.7_alpha.deb stable/main/binary-alpha/klisa_2.2.2-14.7_alpha.deb stable/main/binary-alpha/libmimelib-dev_2.2.2-14.7_alpha.deb stable/main/binary-alpha/knewsticker_2.2.2-14.7_alpha.deb stable/main/binary-alpha/ktalkd_2.2.2-14.7_alpha.deb stable/main/binary-alpha/korn_2.2.2-14.7_alpha.deb stable/main/binary-alpha/kmail_2.2.2-14.7_alpha.deb stable/main/binary-alpha/kdict_2.2.2-14.7_alpha.deb stable/main/binary-alpha/ksirc_2.2.2-14.7_alpha.deb stable/main/binary-alpha/libmimelib1_2.2.2-14.7_alpha.deb kdenetwork (4:2.2.2-14.7) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from Dirk Müller to fix file descriptor leak [kppp/main.cpp, CAN-2005-0205] stable/main/binary-i386/ksirc_2.2.2-14.7_i386.deb stable/main/binary-i386/libmimelib-dev_2.2.2-14.7_i386.deb stable/main/binary-i386/libmimelib1_2.2.2-14.7_i386.deb stable/main/source/kdenetwork_2.2.2-14.7.dsc stable/main/binary-i386/kit_2.2.2-14.7_i386.deb stable/main/source/kdenetwork_2.2.2-14.7.diff.gz stable/main/binary-i386/kmail_2.2.2-14.7_i386.deb stable/main/binary-i386/kdict_2.2.2-14.7_i386.deb stable/main/binary-i386/klisa_2.2.2-14.7_i386.deb stable/main/binary-i386/knode_2.2.2-14.7_i386.deb stable/main/binary-i386/ktalkd_2.2.2-14.7_i386.deb stable/main/binary-i386/libkdenetwork1_2.2.2-14.7_i386.deb stable/main/binary-i386/korn_2.2.2-14.7_i386.deb stable/main/binary-i386/knewsticker_2.2.2-14.7_i386.deb stable/main/binary-i386/kppp_2.2.2-14.7_i386.deb kdenetwork (4:2.2.2-14.7) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch from Dirk Müller to fix file descriptor leak [kppp/main.cpp, CAN-2005-0205] stable/main/binary-sparc/libarts-dev_2.2.2-13.woody.13_sparc.deb stable/main/binary-sparc/kdelibs-dev_2.2.2-13.woody.13_sparc.deb stable/main/binary-sparc/kdelibs3-cups_2.2.2-13.woody.13_sparc.deb stable/main/binary-sparc/libarts-alsa_2.2.2-13.woody.13_sparc.deb stable/main/binary-sparc/libkmid-alsa_2.2.2-13.woody.13_sparc.deb stable/main/binary-sparc/libkmid_2.2.2-13.woody.13_sparc.deb stable/main/binary-sparc/libarts_2.2.2-13.woody.13_sparc.deb stable/main/binary-sparc/libkmid-dev_2.2.2-13.woody.13_sparc.deb stable/main/binary-sparc/kdelibs3_2.2.2-13.woody.13_sparc.deb stable/main/binary-sparc/kdelibs3-bin_2.2.2-13.woody.13_sparc.deb kdelibs (4:2.2.2-13.woody.13) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix arbitrary FTP command execution [kio/ftp/ftp.cc, CAN-2004-1165] stable/main/binary-s390/kdelibs-dev_2.2.2-13.woody.13_s390.deb stable/main/binary-s390/kdelibs3-cups_2.2.2-13.woody.13_s390.deb stable/main/binary-s390/libkmid-dev_2.2.2-13.woody.13_s390.deb stable/main/binary-s390/kdelibs3-bin_2.2.2-13.woody.13_s390.deb stable/main/binary-s390/libarts_2.2.2-13.woody.13_s390.deb stable/main/binary-s390/libarts-alsa_2.2.2-13.woody.13_s390.deb stable/main/binary-s390/libkmid-alsa_2.2.2-13.woody.13_s390.deb stable/main/binary-s390/libkmid_2.2.2-13.woody.13_s390.deb stable/main/binary-s390/kdelibs3_2.2.2-13.woody.13_s390.deb stable/main/binary-s390/libarts-dev_2.2.2-13.woody.13_s390.deb kdelibs (4:2.2.2-13.woody.13) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix arbitrary FTP command execution [kio/ftp/ftp.cc, CAN-2004-1165] stable/main/binary-powerpc/libkmid_2.2.2-13.woody.13_powerpc.deb stable/main/binary-powerpc/kdelibs3-bin_2.2.2-13.woody.13_powerpc.deb stable/main/binary-powerpc/libarts-alsa_2.2.2-13.woody.13_powerpc.deb stable/main/binary-powerpc/libarts_2.2.2-13.woody.13_powerpc.deb stable/main/binary-powerpc/libkmid-dev_2.2.2-13.woody.13_powerpc.deb stable/main/binary-powerpc/libkmid-alsa_2.2.2-13.woody.13_powerpc.deb stable/main/binary-powerpc/kdelibs-dev_2.2.2-13.woody.13_powerpc.deb stable/main/binary-powerpc/libarts-dev_2.2.2-13.woody.13_powerpc.deb stable/main/binary-powerpc/kdelibs3_2.2.2-13.woody.13_powerpc.deb stable/main/binary-powerpc/kdelibs3-cups_2.2.2-13.woody.13_powerpc.deb kdelibs (4:2.2.2-13.woody.13) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix arbitrary FTP command execution [kio/ftp/ftp.cc, CAN-2004-1165] stable/main/binary-mipsel/kdelibs3-cups_2.2.2-13.woody.13_mipsel.deb stable/main/binary-mipsel/kdelibs-dev_2.2.2-13.woody.13_mipsel.deb stable/main/binary-mipsel/libarts-dev_2.2.2-13.woody.13_mipsel.deb stable/main/binary-mipsel/kdelibs3-bin_2.2.2-13.woody.13_mipsel.deb stable/main/binary-mipsel/libarts_2.2.2-13.woody.13_mipsel.deb stable/main/binary-mipsel/libkmid-dev_2.2.2-13.woody.13_mipsel.deb stable/main/binary-mipsel/libkmid-alsa_2.2.2-13.woody.13_mipsel.deb stable/main/binary-mipsel/libarts-alsa_2.2.2-13.woody.13_mipsel.deb stable/main/binary-mipsel/kdelibs3_2.2.2-13.woody.13_mipsel.deb stable/main/binary-mipsel/libkmid_2.2.2-13.woody.13_mipsel.deb kdelibs (4:2.2.2-13.woody.13) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix arbitrary FTP command execution [kio/ftp/ftp.cc, CAN-2004-1165] stable/main/binary-mips/kdelibs3-cups_2.2.2-13.woody.13_mips.deb stable/main/binary-mips/libkmid-alsa_2.2.2-13.woody.13_mips.deb stable/main/binary-mips/kdelibs3-bin_2.2.2-13.woody.13_mips.deb stable/main/binary-mips/libarts_2.2.2-13.woody.13_mips.deb stable/main/binary-mips/kdelibs3_2.2.2-13.woody.13_mips.deb stable/main/binary-mips/libkmid-dev_2.2.2-13.woody.13_mips.deb stable/main/binary-mips/libarts-alsa_2.2.2-13.woody.13_mips.deb stable/main/binary-mips/kdelibs-dev_2.2.2-13.woody.13_mips.deb stable/main/binary-mips/libkmid_2.2.2-13.woody.13_mips.deb stable/main/binary-mips/libarts-dev_2.2.2-13.woody.13_mips.deb kdelibs (4:2.2.2-13.woody.13) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix arbitrary FTP command execution [kio/ftp/ftp.cc, CAN-2004-1165] stable/main/binary-m68k/libarts-alsa_2.2.2-13.woody.13_m68k.deb stable/main/binary-m68k/kdelibs3-cups_2.2.2-13.woody.13_m68k.deb stable/main/binary-m68k/libarts-dev_2.2.2-13.woody.13_m68k.deb stable/main/binary-m68k/libkmid_2.2.2-13.woody.13_m68k.deb stable/main/binary-m68k/kdelibs-dev_2.2.2-13.woody.13_m68k.deb stable/main/binary-m68k/kdelibs3-bin_2.2.2-13.woody.13_m68k.deb stable/main/binary-m68k/libkmid-dev_2.2.2-13.woody.13_m68k.deb stable/main/binary-m68k/kdelibs3_2.2.2-13.woody.13_m68k.deb stable/main/binary-m68k/libkmid-alsa_2.2.2-13.woody.13_m68k.deb stable/main/binary-m68k/libarts_2.2.2-13.woody.13_m68k.deb kdelibs (4:2.2.2-13.woody.13) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix arbitrary FTP command execution [kio/ftp/ftp.cc, CAN-2004-1165] stable/main/binary-ia64/kdelibs3-cups_2.2.2-13.woody.13_ia64.deb stable/main/binary-ia64/kdelibs-dev_2.2.2-13.woody.13_ia64.deb stable/main/binary-ia64/libkmid-dev_2.2.2-13.woody.13_ia64.deb stable/main/binary-ia64/libkmid-alsa_2.2.2-13.woody.13_ia64.deb stable/main/binary-ia64/kdelibs3-bin_2.2.2-13.woody.13_ia64.deb stable/main/binary-ia64/libkmid_2.2.2-13.woody.13_ia64.deb stable/main/binary-ia64/libarts_2.2.2-13.woody.13_ia64.deb stable/main/binary-ia64/libarts-alsa_2.2.2-13.woody.13_ia64.deb stable/main/binary-ia64/libarts-dev_2.2.2-13.woody.13_ia64.deb stable/main/binary-ia64/kdelibs3_2.2.2-13.woody.13_ia64.deb kdelibs (4:2.2.2-13.woody.13) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix arbitrary FTP command execution [kio/ftp/ftp.cc, CAN-2004-1165] stable/main/binary-hppa/kdelibs-dev_2.2.2-13.woody.13_hppa.deb stable/main/binary-hppa/kdelibs3_2.2.2-13.woody.13_hppa.deb stable/main/binary-hppa/libarts-alsa_2.2.2-13.woody.13_hppa.deb stable/main/binary-hppa/kdelibs3-cups_2.2.2-13.woody.13_hppa.deb stable/main/binary-hppa/libkmid_2.2.2-13.woody.13_hppa.deb stable/main/binary-hppa/libkmid-dev_2.2.2-13.woody.13_hppa.deb stable/main/binary-hppa/libkmid-alsa_2.2.2-13.woody.13_hppa.deb stable/main/binary-hppa/kdelibs3-bin_2.2.2-13.woody.13_hppa.deb stable/main/binary-hppa/libarts-dev_2.2.2-13.woody.13_hppa.deb stable/main/binary-hppa/libarts_2.2.2-13.woody.13_hppa.deb kdelibs (4:2.2.2-13.woody.13) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix arbitrary FTP command execution [kio/ftp/ftp.cc, CAN-2004-1165] stable/main/binary-arm/kdelibs3-bin_2.2.2-13.woody.13_arm.deb stable/main/binary-arm/kdelibs3-cups_2.2.2-13.woody.13_arm.deb stable/main/binary-arm/libarts-alsa_2.2.2-13.woody.13_arm.deb stable/main/binary-arm/libarts-dev_2.2.2-13.woody.13_arm.deb stable/main/binary-arm/libkmid_2.2.2-13.woody.13_arm.deb stable/main/binary-arm/libkmid-alsa_2.2.2-13.woody.13_arm.deb stable/main/binary-arm/kdelibs3_2.2.2-13.woody.13_arm.deb stable/main/binary-arm/libarts_2.2.2-13.woody.13_arm.deb stable/main/binary-arm/kdelibs-dev_2.2.2-13.woody.13_arm.deb stable/main/binary-arm/libkmid-dev_2.2.2-13.woody.13_arm.deb kdelibs (4:2.2.2-13.woody.13) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix arbitrary FTP command execution [kio/ftp/ftp.cc, CAN-2004-1165] stable/main/binary-alpha/kdelibs3-bin_2.2.2-13.woody.13_alpha.deb stable/main/binary-alpha/kdelibs3-cups_2.2.2-13.woody.13_alpha.deb stable/main/binary-alpha/libarts_2.2.2-13.woody.13_alpha.deb stable/main/binary-alpha/libarts-dev_2.2.2-13.woody.13_alpha.deb stable/main/binary-alpha/kdelibs3_2.2.2-13.woody.13_alpha.deb stable/main/binary-alpha/kdelibs-dev_2.2.2-13.woody.13_alpha.deb stable/main/binary-alpha/libkmid_2.2.2-13.woody.13_alpha.deb stable/main/binary-alpha/libkmid-alsa_2.2.2-13.woody.13_alpha.deb stable/main/binary-alpha/libkmid-dev_2.2.2-13.woody.13_alpha.deb stable/main/binary-alpha/libarts-alsa_2.2.2-13.woody.13_alpha.deb kdelibs (4:2.2.2-13.woody.13) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix arbitrary FTP command execution [kio/ftp/ftp.cc, CAN-2004-1165] stable/main/source/kdelibs_2.2.2-13.woody.13.diff.gz stable/main/binary-i386/libkmid-alsa_2.2.2-13.woody.13_i386.deb stable/main/binary-i386/libarts-alsa_2.2.2-13.woody.13_i386.deb stable/main/binary-i386/libkmid-dev_2.2.2-13.woody.13_i386.deb stable/main/binary-i386/libkmid_2.2.2-13.woody.13_i386.deb stable/main/binary-i386/kdelibs3-cups_2.2.2-13.woody.13_i386.deb stable/main/binary-i386/kdelibs3_2.2.2-13.woody.13_i386.deb stable/main/binary-i386/libarts_2.2.2-13.woody.13_i386.deb stable/main/binary-i386/kdelibs3-bin_2.2.2-13.woody.13_i386.deb stable/main/binary-all/kdelibs3-doc_2.2.2-13.woody.13_all.deb stable/main/binary-i386/kdelibs-dev_2.2.2-13.woody.13_i386.deb stable/main/source/kdelibs_2.2.2-13.woody.13.dsc stable/main/binary-i386/libarts-dev_2.2.2-13.woody.13_i386.deb kdelibs (4:2.2.2-13.woody.13) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix arbitrary FTP command execution [kio/ftp/ftp.cc, CAN-2004-1165] stable/main/binary-sparc/kdm_2.2.2-14.9_sparc.deb stable/main/binary-sparc/kscreensaver_2.2.2-14.9_sparc.deb stable/main/binary-sparc/kdebase-libs_2.2.2-14.9_sparc.deb stable/main/binary-sparc/kdebase-dev_2.2.2-14.9_sparc.deb stable/main/binary-sparc/kate_2.2.2-14.9_sparc.deb stable/main/binary-sparc/libkonq3_2.2.2-14.9_sparc.deb stable/main/binary-sparc/libkonq-dev_2.2.2-14.9_sparc.deb stable/main/binary-sparc/konsole_2.2.2-14.9_sparc.deb stable/main/binary-sparc/kdebase-audiolibs_2.2.2-14.9_sparc.deb stable/main/binary-sparc/konqueror_2.2.2-14.9_sparc.deb stable/main/binary-sparc/kdebase_2.2.2-14.9_sparc.deb kdebase (4:2.2.2-14.9) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Raphaël Enrici to fix password bypass in certain conditions [kdesktop/lockeng.cc, kdesktop/lockdlg.cc, CAN-2005-0078] stable/main/binary-s390/libkonq3_2.2.2-14.9_s390.deb stable/main/binary-s390/konsole_2.2.2-14.9_s390.deb stable/main/binary-s390/kdebase_2.2.2-14.9_s390.deb stable/main/binary-s390/kdebase-audiolibs_2.2.2-14.9_s390.deb stable/main/binary-s390/kscreensaver_2.2.2-14.9_s390.deb stable/main/binary-s390/kdebase-dev_2.2.2-14.9_s390.deb stable/main/binary-s390/kdebase-libs_2.2.2-14.9_s390.deb stable/main/binary-s390/kate_2.2.2-14.9_s390.deb stable/main/binary-s390/libkonq-dev_2.2.2-14.9_s390.deb stable/main/binary-s390/konqueror_2.2.2-14.9_s390.deb stable/main/binary-s390/kdm_2.2.2-14.9_s390.deb kdebase (4:2.2.2-14.9) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Raphaël Enrici to fix password bypass in certain conditions [kdesktop/lockeng.cc, kdesktop/lockdlg.cc, CAN-2005-0078] stable/main/binary-powerpc/konqueror_2.2.2-14.9_powerpc.deb stable/main/binary-powerpc/kdebase-libs_2.2.2-14.9_powerpc.deb stable/main/binary-powerpc/libkonq3_2.2.2-14.9_powerpc.deb stable/main/binary-powerpc/libkonq-dev_2.2.2-14.9_powerpc.deb stable/main/binary-powerpc/kdebase-audiolibs_2.2.2-14.9_powerpc.deb stable/main/binary-powerpc/kdebase_2.2.2-14.9_powerpc.deb stable/main/binary-powerpc/kate_2.2.2-14.9_powerpc.deb stable/main/binary-powerpc/konsole_2.2.2-14.9_powerpc.deb stable/main/binary-powerpc/kscreensaver_2.2.2-14.9_powerpc.deb stable/main/binary-powerpc/kdm_2.2.2-14.9_powerpc.deb stable/main/binary-powerpc/kdebase-dev_2.2.2-14.9_powerpc.deb kdebase (4:2.2.2-14.9) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Raphaël Enrici to fix password bypass in certain conditions [kdesktop/lockeng.cc, kdesktop/lockdlg.cc, CAN-2005-0078] stable/main/binary-mipsel/libkonq-dev_2.2.2-14.9_mipsel.deb stable/main/binary-mipsel/libkonq3_2.2.2-14.9_mipsel.deb stable/main/binary-mipsel/kscreensaver_2.2.2-14.9_mipsel.deb stable/main/binary-mipsel/kdm_2.2.2-14.9_mipsel.deb stable/main/binary-mipsel/kdebase-dev_2.2.2-14.9_mipsel.deb stable/main/binary-mipsel/konsole_2.2.2-14.9_mipsel.deb stable/main/binary-mipsel/kdebase_2.2.2-14.9_mipsel.deb stable/main/binary-mipsel/konqueror_2.2.2-14.9_mipsel.deb stable/main/binary-mipsel/kdebase-audiolibs_2.2.2-14.9_mipsel.deb stable/main/binary-mipsel/kdebase-libs_2.2.2-14.9_mipsel.deb stable/main/binary-mipsel/kate_2.2.2-14.9_mipsel.deb kdebase (4:2.2.2-14.9) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Raphaël Enrici to fix password bypass in certain conditions [kdesktop/lockeng.cc, kdesktop/lockdlg.cc, CAN-2005-0078] stable/main/binary-mips/konqueror_2.2.2-14.9_mips.deb stable/main/binary-mips/kate_2.2.2-14.9_mips.deb stable/main/binary-mips/libkonq3_2.2.2-14.9_mips.deb stable/main/binary-mips/kdm_2.2.2-14.9_mips.deb stable/main/binary-mips/kdebase_2.2.2-14.9_mips.deb stable/main/binary-mips/kscreensaver_2.2.2-14.9_mips.deb stable/main/binary-mips/libkonq-dev_2.2.2-14.9_mips.deb stable/main/binary-mips/kdebase-libs_2.2.2-14.9_mips.deb stable/main/binary-mips/konsole_2.2.2-14.9_mips.deb stable/main/binary-mips/kdebase-audiolibs_2.2.2-14.9_mips.deb stable/main/binary-mips/kdebase-dev_2.2.2-14.9_mips.deb kdebase (4:2.2.2-14.9) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Raphaël Enrici to fix password bypass in certain conditions [kdesktop/lockeng.cc, kdesktop/lockdlg.cc, CAN-2005-0078] stable/main/binary-m68k/konqueror_2.2.2-14.9_m68k.deb stable/main/binary-m68k/libkonq-dev_2.2.2-14.9_m68k.deb stable/main/binary-m68k/kdm_2.2.2-14.9_m68k.deb stable/main/binary-m68k/kdebase_2.2.2-14.9_m68k.deb stable/main/binary-m68k/kdebase-dev_2.2.2-14.9_m68k.deb stable/main/binary-m68k/kate_2.2.2-14.9_m68k.deb stable/main/binary-m68k/libkonq3_2.2.2-14.9_m68k.deb stable/main/binary-m68k/kscreensaver_2.2.2-14.9_m68k.deb stable/main/binary-m68k/kdebase-audiolibs_2.2.2-14.9_m68k.deb stable/main/binary-m68k/kdebase-libs_2.2.2-14.9_m68k.deb stable/main/binary-m68k/konsole_2.2.2-14.9_m68k.deb kdebase (4:2.2.2-14.9) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Raphaël Enrici to fix password bypass in certain conditions [kdesktop/lockeng.cc, kdesktop/lockdlg.cc, CAN-2005-0078] stable/main/binary-ia64/kdm_2.2.2-14.9_ia64.deb stable/main/binary-ia64/kscreensaver_2.2.2-14.9_ia64.deb stable/main/binary-ia64/konsole_2.2.2-14.9_ia64.deb stable/main/binary-ia64/kdebase-audiolibs_2.2.2-14.9_ia64.deb stable/main/binary-ia64/kdebase_2.2.2-14.9_ia64.deb stable/main/binary-ia64/libkonq-dev_2.2.2-14.9_ia64.deb stable/main/binary-ia64/kate_2.2.2-14.9_ia64.deb stable/main/binary-ia64/kdebase-dev_2.2.2-14.9_ia64.deb stable/main/binary-ia64/libkonq3_2.2.2-14.9_ia64.deb stable/main/binary-ia64/kdebase-libs_2.2.2-14.9_ia64.deb stable/main/binary-ia64/konqueror_2.2.2-14.9_ia64.deb kdebase (4:2.2.2-14.9) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Raphaël Enrici to fix password bypass in certain conditions [kdesktop/lockeng.cc, kdesktop/lockdlg.cc, CAN-2005-0078] stable/main/binary-hppa/kdebase_2.2.2-14.9_hppa.deb stable/main/binary-hppa/kdm_2.2.2-14.9_hppa.deb stable/main/binary-hppa/kate_2.2.2-14.9_hppa.deb stable/main/binary-hppa/konqueror_2.2.2-14.9_hppa.deb stable/main/binary-hppa/kdebase-dev_2.2.2-14.9_hppa.deb stable/main/binary-hppa/kdebase-audiolibs_2.2.2-14.9_hppa.deb stable/main/binary-hppa/libkonq3_2.2.2-14.9_hppa.deb stable/main/binary-hppa/libkonq-dev_2.2.2-14.9_hppa.deb stable/main/binary-hppa/kscreensaver_2.2.2-14.9_hppa.deb stable/main/binary-hppa/konsole_2.2.2-14.9_hppa.deb stable/main/binary-hppa/kdebase-libs_2.2.2-14.9_hppa.deb kdebase (4:2.2.2-14.9) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Raphaël Enrici to fix password bypass in certain conditions [kdesktop/lockeng.cc, kdesktop/lockdlg.cc, CAN-2005-0078] stable/main/binary-arm/kate_2.2.2-14.9_arm.deb stable/main/binary-arm/kdebase-dev_2.2.2-14.9_arm.deb stable/main/binary-arm/kdebase-libs_2.2.2-14.9_arm.deb stable/main/binary-arm/kdm_2.2.2-14.9_arm.deb stable/main/binary-arm/kdebase-audiolibs_2.2.2-14.9_arm.deb stable/main/binary-arm/konsole_2.2.2-14.9_arm.deb stable/main/binary-arm/kdebase_2.2.2-14.9_arm.deb stable/main/binary-arm/libkonq-dev_2.2.2-14.9_arm.deb stable/main/binary-arm/kscreensaver_2.2.2-14.9_arm.deb stable/main/binary-arm/konqueror_2.2.2-14.9_arm.deb stable/main/binary-arm/libkonq3_2.2.2-14.9_arm.deb kdebase (4:2.2.2-14.9) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Raphaël Enrici to fix password bypass in certain conditions [kdesktop/lockeng.cc, kdesktop/lockdlg.cc, CAN-2005-0078] stable/main/binary-alpha/konsole_2.2.2-14.9_alpha.deb stable/main/binary-alpha/libkonq3_2.2.2-14.9_alpha.deb stable/main/binary-alpha/kdebase_2.2.2-14.9_alpha.deb stable/main/binary-alpha/libkonq-dev_2.2.2-14.9_alpha.deb stable/main/binary-alpha/kate_2.2.2-14.9_alpha.deb stable/main/binary-alpha/kdebase-dev_2.2.2-14.9_alpha.deb stable/main/binary-alpha/konqueror_2.2.2-14.9_alpha.deb stable/main/binary-alpha/kscreensaver_2.2.2-14.9_alpha.deb stable/main/binary-alpha/kdm_2.2.2-14.9_alpha.deb stable/main/binary-alpha/kdebase-audiolibs_2.2.2-14.9_alpha.deb stable/main/binary-alpha/kdebase-libs_2.2.2-14.9_alpha.deb kdebase (4:2.2.2-14.9) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Raphaël Enrici to fix password bypass in certain conditions [kdesktop/lockeng.cc, kdesktop/lockdlg.cc, CAN-2005-0078] stable/main/binary-all/kdewallpapers_2.2.2-14.9_all.deb stable/main/binary-i386/kscreensaver_2.2.2-14.9_i386.deb stable/main/source/kdebase_2.2.2-14.9.dsc stable/main/binary-i386/kdebase-audiolibs_2.2.2-14.9_i386.deb stable/main/binary-i386/kdebase-dev_2.2.2-14.9_i386.deb stable/main/source/kdebase_2.2.2-14.9.diff.gz stable/main/binary-i386/libkonq-dev_2.2.2-14.9_i386.deb stable/main/binary-all/kdebase-doc_2.2.2-14.9_all.deb stable/main/binary-i386/kdebase_2.2.2-14.9_i386.deb stable/main/binary-i386/kdm_2.2.2-14.9_i386.deb stable/main/binary-i386/konsole_2.2.2-14.9_i386.deb stable/main/binary-i386/kdebase-libs_2.2.2-14.9_i386.deb stable/main/binary-i386/libkonq3_2.2.2-14.9_i386.deb stable/main/binary-i386/konqueror_2.2.2-14.9_i386.deb stable/main/binary-i386/kate_2.2.2-14.9_i386.deb kdebase (4:2.2.2-14.9) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Raphaël Enrici to fix password bypass in certain conditions [kdesktop/lockeng.cc, kdesktop/lockdlg.cc, CAN-2005-0078] stable/main/binary-sparc/libimlib2-dev_1.0.5-2woody2_sparc.deb stable/main/binary-sparc/libimlib2_1.0.5-2woody2_sparc.deb imlib2 (1.0.5-2woody2) stable-security; urgency=high * Non-maintainer upload by the Securty Team * Backported patch from imlib to integer overflows [loaders/loader_xpm.c, CAN-2004-1026] stable/main/binary-s390/libimlib2-dev_1.0.5-2woody2_s390.deb stable/main/binary-s390/libimlib2_1.0.5-2woody2_s390.deb imlib2 (1.0.5-2woody2) stable-security; urgency=high * Non-maintainer upload by the Securty Team * Backported patch from imlib to integer overflows [loaders/loader_xpm.c, CAN-2004-1026] stable/main/binary-powerpc/libimlib2-dev_1.0.5-2woody2_powerpc.deb stable/main/binary-powerpc/libimlib2_1.0.5-2woody2_powerpc.deb imlib2 (1.0.5-2woody2) stable-security; urgency=high * Non-maintainer upload by the Securty Team * Backported patch from imlib to integer overflows [loaders/loader_xpm.c, CAN-2004-1026] stable/main/binary-mips/libimlib2-dev_1.0.5-2woody2_mips.deb stable/main/binary-mips/libimlib2_1.0.5-2woody2_mips.deb imlib2 (1.0.5-2woody2) stable-security; urgency=high * Non-maintainer upload by the Securty Team * Backported patch from imlib to integer overflows [loaders/loader_xpm.c, CAN-2004-1026] stable/main/binary-m68k/libimlib2_1.0.5-2woody2_m68k.deb stable/main/binary-m68k/libimlib2-dev_1.0.5-2woody2_m68k.deb imlib2 (1.0.5-2woody2) stable-security; urgency=high * Non-maintainer upload by the Securty Team * Backported patch from imlib to integer overflows [loaders/loader_xpm.c, CAN-2004-1026] stable/main/binary-ia64/libimlib2-dev_1.0.5-2woody2_ia64.deb stable/main/binary-ia64/libimlib2_1.0.5-2woody2_ia64.deb imlib2 (1.0.5-2woody2) stable-security; urgency=high * Non-maintainer upload by the Securty Team * Backported patch from imlib to integer overflows [loaders/loader_xpm.c, CAN-2004-1026] stable/main/binary-i386/libimlib2_1.0.5-2woody2_i386.deb stable/main/binary-i386/libimlib2-dev_1.0.5-2woody2_i386.deb imlib2 (1.0.5-2woody2) stable-security; urgency=high * Non-maintainer upload by the Securty Team * Backported patch from imlib to integer overflows [loaders/loader_xpm.c, CAN-2004-1026] stable/main/binary-hppa/libimlib2-dev_1.0.5-2woody2_hppa.deb stable/main/binary-hppa/libimlib2_1.0.5-2woody2_hppa.deb imlib2 (1.0.5-2woody2) stable-security; urgency=high * Non-maintainer upload by the Securty Team * Backported patch from imlib to integer overflows [loaders/loader_xpm.c, CAN-2004-1026] stable/main/binary-arm/libimlib2_1.0.5-2woody2_arm.deb stable/main/binary-arm/libimlib2-dev_1.0.5-2woody2_arm.deb imlib2 (1.0.5-2woody2) stable-security; urgency=high * Non-maintainer upload by the Securty Team * Backported patch from imlib to integer overflows [loaders/loader_xpm.c, CAN-2004-1026] stable/main/binary-alpha/libimlib2_1.0.5-2woody2_alpha.deb stable/main/binary-alpha/libimlib2-dev_1.0.5-2woody2_alpha.deb imlib2 (1.0.5-2woody2) stable-security; urgency=high * Non-maintainer upload by the Securty Team * Backported patch from imlib to integer overflows [loaders/loader_xpm.c, CAN-2004-1026] stable/main/binary-mipsel/libimlib2-dev_1.0.5-2woody2_mipsel.deb stable/main/source/imlib2_1.0.5-2woody2.dsc stable/main/binary-mipsel/libimlib2_1.0.5-2woody2_mipsel.deb stable/main/source/imlib2_1.0.5-2woody2.diff.gz imlib2 (1.0.5-2woody2) stable-security; urgency=high * Non-maintainer upload by the Securty Team * Backported patch from imlib to integer overflows [loaders/loader_xpm.c, CAN-2004-1026] stable/main/binary-sparc/libmagick++5-dev_5.4.4.5-1woody6_sparc.deb stable/main/binary-sparc/libmagick++5_5.4.4.5-1woody6_sparc.deb stable/main/binary-sparc/libmagick5_5.4.4.5-1woody6_sparc.deb stable/main/binary-sparc/perlmagick_5.4.4.5-1woody6_sparc.deb stable/main/binary-sparc/libmagick5-dev_5.4.4.5-1woody6_sparc.deb stable/main/binary-sparc/imagemagick_5.4.4.5-1woody6_sparc.deb imagemagick (4:5.4.4.5-1woody6) stable-security; urgency=high * Non-maintainer upload by the Security Team. * Backported patch by Tavis Ormandy to fix format string vulnerability [magick/image.c, CAN-2005-0397] * Applied patch to fix denial of service [coders/tiff.c, CAN-2005-0759] * Applied patch to fix out of bounds memory access [coders/tiff.c, CAN-2005-0760] * Backported patch to fix heap buffer overflow [coders/sgi.c, CAN-2005-0762] stable/main/binary-s390/libmagick5-dev_5.4.4.5-1woody6_s390.deb stable/main/binary-s390/libmagick++5_5.4.4.5-1woody6_s390.deb stable/main/binary-s390/imagemagick_5.4.4.5-1woody6_s390.deb stable/main/binary-s390/libmagick++5-dev_5.4.4.5-1woody6_s390.deb stable/main/binary-s390/perlmagick_5.4.4.5-1woody6_s390.deb stable/main/binary-s390/libmagick5_5.4.4.5-1woody6_s390.deb imagemagick (4:5.4.4.5-1woody6) stable-security; urgency=high * Non-maintainer upload by the Security Team. * Backported patch by Tavis Ormandy to fix format string vulnerability [magick/image.c, CAN-2005-0397] * Applied patch to fix denial of service [coders/tiff.c, CAN-2005-0759] * Applied patch to fix out of bounds memory access [coders/tiff.c, CAN-2005-0760] * Backported patch to fix heap buffer overflow [coders/sgi.c, CAN-2005-0762] stable/main/binary-powerpc/imagemagick_5.4.4.5-1woody6_powerpc.deb stable/main/binary-powerpc/libmagick++5_5.4.4.5-1woody6_powerpc.deb stable/main/binary-powerpc/perlmagick_5.4.4.5-1woody6_powerpc.deb stable/main/binary-powerpc/libmagick++5-dev_5.4.4.5-1woody6_powerpc.deb stable/main/binary-powerpc/libmagick5_5.4.4.5-1woody6_powerpc.deb stable/main/binary-powerpc/libmagick5-dev_5.4.4.5-1woody6_powerpc.deb imagemagick (4:5.4.4.5-1woody6) stable-security; urgency=high * Non-maintainer upload by the Security Team. * Backported patch by Tavis Ormandy to fix format string vulnerability [magick/image.c, CAN-2005-0397] * Applied patch to fix denial of service [coders/tiff.c, CAN-2005-0759] * Applied patch to fix out of bounds memory access [coders/tiff.c, CAN-2005-0760] * Backported patch to fix heap buffer overflow [coders/sgi.c, CAN-2005-0762] stable/main/binary-mipsel/libmagick5_5.4.4.5-1woody6_mipsel.deb stable/main/binary-mipsel/perlmagick_5.4.4.5-1woody6_mipsel.deb stable/main/binary-mipsel/libmagick5-dev_5.4.4.5-1woody6_mipsel.deb stable/main/binary-mipsel/libmagick++5-dev_5.4.4.5-1woody6_mipsel.deb stable/main/binary-mipsel/libmagick++5_5.4.4.5-1woody6_mipsel.deb stable/main/binary-mipsel/imagemagick_5.4.4.5-1woody6_mipsel.deb imagemagick (4:5.4.4.5-1woody6) stable-security; urgency=high * Non-maintainer upload by the Security Team. * Backported patch by Tavis Ormandy to fix format string vulnerability [magick/image.c, CAN-2005-0397] * Applied patch to fix denial of service [coders/tiff.c, CAN-2005-0759] * Applied patch to fix out of bounds memory access [coders/tiff.c, CAN-2005-0760] * Backported patch to fix heap buffer overflow [coders/sgi.c, CAN-2005-0762] stable/main/binary-mips/perlmagick_5.4.4.5-1woody6_mips.deb stable/main/binary-mips/libmagick5-dev_5.4.4.5-1woody6_mips.deb stable/main/binary-mips/libmagick5_5.4.4.5-1woody6_mips.deb stable/main/binary-mips/libmagick++5-dev_5.4.4.5-1woody6_mips.deb stable/main/binary-mips/imagemagick_5.4.4.5-1woody6_mips.deb stable/main/binary-mips/libmagick++5_5.4.4.5-1woody6_mips.deb imagemagick (4:5.4.4.5-1woody6) stable-security; urgency=high * Non-maintainer upload by the Security Team. * Backported patch by Tavis Ormandy to fix format string vulnerability [magick/image.c, CAN-2005-0397] * Applied patch to fix denial of service [coders/tiff.c, CAN-2005-0759] * Applied patch to fix out of bounds memory access [coders/tiff.c, CAN-2005-0760] * Backported patch to fix heap buffer overflow [coders/sgi.c, CAN-2005-0762] stable/main/binary-m68k/libmagick5_5.4.4.5-1woody6_m68k.deb stable/main/binary-m68k/libmagick5-dev_5.4.4.5-1woody6_m68k.deb stable/main/binary-m68k/libmagick++5_5.4.4.5-1woody6_m68k.deb stable/main/binary-m68k/libmagick++5-dev_5.4.4.5-1woody6_m68k.deb stable/main/binary-m68k/imagemagick_5.4.4.5-1woody6_m68k.deb stable/main/binary-m68k/perlmagick_5.4.4.5-1woody6_m68k.deb imagemagick (4:5.4.4.5-1woody6) stable-security; urgency=high * Non-maintainer upload by the Security Team. * Backported patch by Tavis Ormandy to fix format string vulnerability [magick/image.c, CAN-2005-0397] * Applied patch to fix denial of service [coders/tiff.c, CAN-2005-0759] * Applied patch to fix out of bounds memory access [coders/tiff.c, CAN-2005-0760] * Backported patch to fix heap buffer overflow [coders/sgi.c, CAN-2005-0762] stable/main/binary-ia64/libmagick5-dev_5.4.4.5-1woody6_ia64.deb stable/main/binary-ia64/imagemagick_5.4.4.5-1woody6_ia64.deb stable/main/binary-ia64/perlmagick_5.4.4.5-1woody6_ia64.deb stable/main/binary-ia64/libmagick++5-dev_5.4.4.5-1woody6_ia64.deb stable/main/binary-ia64/libmagick++5_5.4.4.5-1woody6_ia64.deb stable/main/binary-ia64/libmagick5_5.4.4.5-1woody6_ia64.deb imagemagick (4:5.4.4.5-1woody6) stable-security; urgency=high * Non-maintainer upload by the Security Team. * Backported patch by Tavis Ormandy to fix format string vulnerability [magick/image.c, CAN-2005-0397] * Applied patch to fix denial of service [coders/tiff.c, CAN-2005-0759] * Applied patch to fix out of bounds memory access [coders/tiff.c, CAN-2005-0760] * Backported patch to fix heap buffer overflow [coders/sgi.c, CAN-2005-0762] stable/main/binary-i386/libmagick5_5.4.4.5-1woody6_i386.deb stable/main/binary-i386/libmagick++5-dev_5.4.4.5-1woody6_i386.deb stable/main/binary-i386/imagemagick_5.4.4.5-1woody6_i386.deb stable/main/binary-i386/perlmagick_5.4.4.5-1woody6_i386.deb stable/main/binary-i386/libmagick++5_5.4.4.5-1woody6_i386.deb stable/main/binary-i386/libmagick5-dev_5.4.4.5-1woody6_i386.deb imagemagick (4:5.4.4.5-1woody6) stable-security; urgency=high * Non-maintainer upload by the Security Team. * Backported patch by Tavis Ormandy to fix format string vulnerability [magick/image.c, CAN-2005-0397] * Applied patch to fix denial of service [coders/tiff.c, CAN-2005-0759] * Applied patch to fix out of bounds memory access [coders/tiff.c, CAN-2005-0760] * Backported patch to fix heap buffer overflow [coders/sgi.c, CAN-2005-0762] stable/main/binary-hppa/libmagick++5-dev_5.4.4.5-1woody6_hppa.deb stable/main/binary-hppa/libmagick5_5.4.4.5-1woody6_hppa.deb stable/main/binary-hppa/imagemagick_5.4.4.5-1woody6_hppa.deb stable/main/binary-hppa/libmagick5-dev_5.4.4.5-1woody6_hppa.deb stable/main/binary-hppa/perlmagick_5.4.4.5-1woody6_hppa.deb stable/main/binary-hppa/libmagick++5_5.4.4.5-1woody6_hppa.deb imagemagick (4:5.4.4.5-1woody6) stable-security; urgency=high * Non-maintainer upload by the Security Team. * Backported patch by Tavis Ormandy to fix format string vulnerability [magick/image.c, CAN-2005-0397] * Applied patch to fix denial of service [coders/tiff.c, CAN-2005-0759] * Applied patch to fix out of bounds memory access [coders/tiff.c, CAN-2005-0760] * Backported patch to fix heap buffer overflow [coders/sgi.c, CAN-2005-0762] stable/main/binary-alpha/perlmagick_5.4.4.5-1woody6_alpha.deb stable/main/binary-alpha/libmagick5-dev_5.4.4.5-1woody6_alpha.deb stable/main/binary-alpha/imagemagick_5.4.4.5-1woody6_alpha.deb stable/main/binary-alpha/libmagick5_5.4.4.5-1woody6_alpha.deb stable/main/binary-alpha/libmagick++5_5.4.4.5-1woody6_alpha.deb stable/main/binary-alpha/libmagick++5-dev_5.4.4.5-1woody6_alpha.deb imagemagick (4:5.4.4.5-1woody6) stable-security; urgency=high * Non-maintainer upload by the Security Team. * Backported patch by Tavis Ormandy to fix format string vulnerability [magick/image.c, CAN-2005-0397] * Applied patch to fix denial of service [coders/tiff.c, CAN-2005-0759] * Applied patch to fix out of bounds memory access [coders/tiff.c, CAN-2005-0760] * Backported patch to fix heap buffer overflow [coders/sgi.c, CAN-2005-0762] stable/main/source/imagemagick_5.4.4.5-1woody6.diff.gz stable/main/binary-arm/libmagick++5_5.4.4.5-1woody6_arm.deb stable/main/binary-arm/perlmagick_5.4.4.5-1woody6_arm.deb stable/main/binary-arm/imagemagick_5.4.4.5-1woody6_arm.deb stable/main/source/imagemagick_5.4.4.5-1woody6.dsc stable/main/binary-arm/libmagick++5-dev_5.4.4.5-1woody6_arm.deb stable/main/binary-arm/libmagick5_5.4.4.5-1woody6_arm.deb stable/main/binary-arm/libmagick5-dev_5.4.4.5-1woody6_arm.deb imagemagick (4:5.4.4.5-1woody6) stable-security; urgency=high * Non-maintainer upload by the Security Team. * Backported patch by Tavis Ormandy to fix format string vulnerability [magick/image.c, CAN-2005-0397] * Applied patch to fix denial of service [coders/tiff.c, CAN-2005-0759] * Applied patch to fix out of bounds memory access [coders/tiff.c, CAN-2005-0760] * Backported patch to fix heap buffer overflow [coders/sgi.c, CAN-2005-0762] stable/main/binary-sparc/hztty_2.0-5.2woody2_sparc.deb hztty (2.0-5.2woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Drop setgid privileges before executing the user supplied shell command [main.c, CAN-2005-0019] stable/main/binary-s390/hztty_2.0-5.2woody2_s390.deb hztty (2.0-5.2woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Drop setgid privileges before executing the user supplied shell command [main.c, CAN-2005-0019] stable/main/binary-powerpc/hztty_2.0-5.2woody2_powerpc.deb hztty (2.0-5.2woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Drop setgid privileges before executing the user supplied shell command [main.c, CAN-2005-0019] stable/main/binary-mips/hztty_2.0-5.2woody2_mips.deb hztty (2.0-5.2woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Drop setgid privileges before executing the user supplied shell command [main.c, CAN-2005-0019] stable/main/binary-m68k/hztty_2.0-5.2woody2_m68k.deb hztty (2.0-5.2woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Drop setgid privileges before executing the user supplied shell command [main.c, CAN-2005-0019] stable/main/binary-ia64/hztty_2.0-5.2woody2_ia64.deb hztty (2.0-5.2woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Drop setgid privileges before executing the user supplied shell command [main.c, CAN-2005-0019] stable/main/binary-i386/hztty_2.0-5.2woody2_i386.deb hztty (2.0-5.2woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Drop setgid privileges before executing the user supplied shell command [main.c, CAN-2005-0019] stable/main/binary-hppa/hztty_2.0-5.2woody2_hppa.deb hztty (2.0-5.2woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Drop setgid privileges before executing the user supplied shell command [main.c, CAN-2005-0019] stable/main/binary-arm/hztty_2.0-5.2woody2_arm.deb hztty (2.0-5.2woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Drop setgid privileges before executing the user supplied shell command [main.c, CAN-2005-0019] stable/main/binary-alpha/hztty_2.0-5.2woody2_alpha.deb hztty (2.0-5.2woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Drop setgid privileges before executing the user supplied shell command [main.c, CAN-2005-0019] stable/main/source/hztty_2.0-5.2woody2.dsc stable/main/binary-mipsel/hztty_2.0-5.2woody2_mipsel.deb stable/main/source/hztty_2.0-5.2woody2.diff.gz hztty (2.0-5.2woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Drop setgid privileges before executing the user supplied shell command [main.c, CAN-2005-0019] stable/main/binary-sparc/hylafax-server_4.1.1-3.1_sparc.deb stable/main/binary-sparc/hylafax-client_4.1.1-3.1_sparc.deb hylafax (1:4.1.1-3.1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix unauthorised access vulnerability [hfaxd/InetFaxServer.c++, User.c++, CAN-2004-1182] stable/main/binary-s390/hylafax-client_4.1.1-3.1_s390.deb stable/main/binary-s390/hylafax-server_4.1.1-3.1_s390.deb hylafax (1:4.1.1-3.1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix unauthorised access vulnerability [hfaxd/InetFaxServer.c++, User.c++, CAN-2004-1182] stable/main/binary-powerpc/hylafax-client_4.1.1-3.1_powerpc.deb stable/main/binary-powerpc/hylafax-server_4.1.1-3.1_powerpc.deb hylafax (1:4.1.1-3.1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix unauthorised access vulnerability [hfaxd/InetFaxServer.c++, User.c++, CAN-2004-1182] stable/main/binary-m68k/hylafax-server_4.1.1-3.1_m68k.deb stable/main/binary-m68k/hylafax-client_4.1.1-3.1_m68k.deb hylafax (1:4.1.1-3.1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix unauthorised access vulnerability [hfaxd/InetFaxServer.c++, User.c++, CAN-2004-1182] stable/main/binary-ia64/hylafax-client_4.1.1-3.1_ia64.deb stable/main/binary-ia64/hylafax-server_4.1.1-3.1_ia64.deb hylafax (1:4.1.1-3.1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix unauthorised access vulnerability [hfaxd/InetFaxServer.c++, User.c++, CAN-2004-1182] stable/main/binary-hppa/hylafax-client_4.1.1-3.1_hppa.deb stable/main/binary-hppa/hylafax-server_4.1.1-3.1_hppa.deb hylafax (1:4.1.1-3.1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix unauthorised access vulnerability [hfaxd/InetFaxServer.c++, User.c++, CAN-2004-1182] stable/main/binary-arm/hylafax-server_4.1.1-3.1_arm.deb stable/main/binary-arm/hylafax-client_4.1.1-3.1_arm.deb hylafax (1:4.1.1-3.1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix unauthorised access vulnerability [hfaxd/InetFaxServer.c++, User.c++, CAN-2004-1182] stable/main/binary-alpha/hylafax-server_4.1.1-3.1_alpha.deb stable/main/binary-alpha/hylafax-client_4.1.1-3.1_alpha.deb hylafax (1:4.1.1-3.1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix unauthorised access vulnerability [hfaxd/InetFaxServer.c++, User.c++, CAN-2004-1182] stable/main/source/hylafax_4.1.1-3.1.diff.gz stable/main/binary-i386/hylafax-client_4.1.1-3.1_i386.deb stable/main/binary-all/hylafax-doc_4.1.1-3.1_all.deb stable/main/source/hylafax_4.1.1-3.1.dsc stable/main/binary-i386/hylafax-server_4.1.1-3.1_i386.deb hylafax (1:4.1.1-3.1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix unauthorised access vulnerability [hfaxd/InetFaxServer.c++, User.c++, CAN-2004-1182] stable/main/source/htmlheadline_21.8-3.dsc stable/main/binary-all/htmlheadline_21.8-3_all.deb stable/main/source/htmlheadline_21.8-3.diff.gz htmlheadline (21.8-3) stable; urgency=high * Fix temporary file vulnerabilities by locating the temporary download directory in the user's homedir. [HtmlHeadLine.sh, START_HHL_30.sh, START_HHL.sh, CAN-2004-1181] stable/main/binary-sparc/htdig_3.1.6-3woody1_sparc.deb htdig (3.1.6-3woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Phil Knirsch to fix cross-site scripting vulnerability [htsearch/htsearch.cc, htfuzzy/htfuzzy.cc, htmerge/htmerge.cc, CAN-2005-0085] stable/main/binary-s390/htdig_3.1.6-3woody1_s390.deb htdig (3.1.6-3woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Phil Knirsch to fix cross-site scripting vulnerability [htsearch/htsearch.cc, htfuzzy/htfuzzy.cc, htmerge/htmerge.cc, CAN-2005-0085] stable/main/binary-powerpc/htdig_3.1.6-3woody1_powerpc.deb htdig (3.1.6-3woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Phil Knirsch to fix cross-site scripting vulnerability [htsearch/htsearch.cc, htfuzzy/htfuzzy.cc, htmerge/htmerge.cc, CAN-2005-0085] stable/main/binary-mips/htdig_3.1.6-3woody1_mips.deb htdig (3.1.6-3woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Phil Knirsch to fix cross-site scripting vulnerability [htsearch/htsearch.cc, htfuzzy/htfuzzy.cc, htmerge/htmerge.cc, CAN-2005-0085] stable/main/binary-m68k/htdig_3.1.6-3woody1_m68k.deb htdig (3.1.6-3woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Phil Knirsch to fix cross-site scripting vulnerability [htsearch/htsearch.cc, htfuzzy/htfuzzy.cc, htmerge/htmerge.cc, CAN-2005-0085] stable/main/binary-ia64/htdig_3.1.6-3woody1_ia64.deb htdig (3.1.6-3woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Phil Knirsch to fix cross-site scripting vulnerability [htsearch/htsearch.cc, htfuzzy/htfuzzy.cc, htmerge/htmerge.cc, CAN-2005-0085] stable/main/binary-i386/htdig_3.1.6-3woody1_i386.deb htdig (3.1.6-3woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Phil Knirsch to fix cross-site scripting vulnerability [htsearch/htsearch.cc, htfuzzy/htfuzzy.cc, htmerge/htmerge.cc, CAN-2005-0085] stable/main/binary-hppa/htdig_3.1.6-3woody1_hppa.deb htdig (3.1.6-3woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Phil Knirsch to fix cross-site scripting vulnerability [htsearch/htsearch.cc, htfuzzy/htfuzzy.cc, htmerge/htmerge.cc, CAN-2005-0085] stable/main/binary-arm/htdig_3.1.6-3woody1_arm.deb htdig (3.1.6-3woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Phil Knirsch to fix cross-site scripting vulnerability [htsearch/htsearch.cc, htfuzzy/htfuzzy.cc, htmerge/htmerge.cc, CAN-2005-0085] stable/main/binary-alpha/htdig_3.1.6-3woody1_alpha.deb htdig (3.1.6-3woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Phil Knirsch to fix cross-site scripting vulnerability [htsearch/htsearch.cc, htfuzzy/htfuzzy.cc, htmerge/htmerge.cc, CAN-2005-0085] stable/main/source/htdig_3.1.6-3woody1.dsc stable/main/binary-all/htdig-doc_3.1.6-3woody1_all.deb stable/main/binary-mipsel/htdig_3.1.6-3woody1_mipsel.deb stable/main/source/htdig_3.1.6-3woody1.diff.gz htdig (3.1.6-3woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Phil Knirsch to fix cross-site scripting vulnerability [htsearch/htsearch.cc, htfuzzy/htfuzzy.cc, htmerge/htmerge.cc, CAN-2005-0085] stable/main/binary-sparc/gopherd_3.0.3woody2_sparc.deb stable/main/binary-sparc/gopher_3.0.3woody2_sparc.deb gopher (3.0.3woody2) stable-security; urgency=high * Non-maintainer upload for the Security Team. * Fix integer overflow vulnerability [gopherd/command.c, CAN-2004-0560] * Fix format string vulnerability [gopherd/ftp.c, CAN-2004-0561] * Sponsored by Martin Schulze . Thank you! stable/main/binary-s390/gopherd_3.0.3woody2_s390.deb stable/main/binary-s390/gopher_3.0.3woody2_s390.deb gopher (3.0.3woody2) stable-security; urgency=high * Non-maintainer upload for the Security Team. * Fix integer overflow vulnerability [gopherd/command.c, CAN-2004-0560] * Fix format string vulnerability [gopherd/ftp.c, CAN-2004-0561] * Sponsored by Martin Schulze . Thank you! stable/main/binary-powerpc/gopherd_3.0.3woody2_powerpc.deb stable/main/binary-powerpc/gopher_3.0.3woody2_powerpc.deb gopher (3.0.3woody2) stable-security; urgency=high * Non-maintainer upload for the Security Team. * Fix integer overflow vulnerability [gopherd/command.c, CAN-2004-0560] * Fix format string vulnerability [gopherd/ftp.c, CAN-2004-0561] * Sponsored by Martin Schulze . Thank you! stable/main/binary-mips/gopherd_3.0.3woody2_mips.deb stable/main/binary-mips/gopher_3.0.3woody2_mips.deb gopher (3.0.3woody2) stable-security; urgency=high * Non-maintainer upload for the Security Team. * Fix integer overflow vulnerability [gopherd/command.c, CAN-2004-0560] * Fix format string vulnerability [gopherd/ftp.c, CAN-2004-0561] * Sponsored by Martin Schulze . Thank you! stable/main/binary-m68k/gopher_3.0.3woody2_m68k.deb stable/main/binary-m68k/gopherd_3.0.3woody2_m68k.deb gopher (3.0.3woody2) stable-security; urgency=high * Non-maintainer upload for the Security Team. * Fix integer overflow vulnerability [gopherd/command.c, CAN-2004-0560] * Fix format string vulnerability [gopherd/ftp.c, CAN-2004-0561] * Sponsored by Martin Schulze . Thank you! stable/main/binary-ia64/gopher_3.0.3woody2_ia64.deb stable/main/binary-ia64/gopherd_3.0.3woody2_ia64.deb gopher (3.0.3woody2) stable-security; urgency=high * Non-maintainer upload for the Security Team. * Fix integer overflow vulnerability [gopherd/command.c, CAN-2004-0560] * Fix format string vulnerability [gopherd/ftp.c, CAN-2004-0561] * Sponsored by Martin Schulze . Thank you! stable/main/binary-i386/gopher_3.0.3woody2_i386.deb stable/main/binary-i386/gopherd_3.0.3woody2_i386.deb gopher (3.0.3woody2) stable-security; urgency=high * Non-maintainer upload for the Security Team. * Fix integer overflow vulnerability [gopherd/command.c, CAN-2004-0560] * Fix format string vulnerability [gopherd/ftp.c, CAN-2004-0561] * Sponsored by Martin Schulze . Thank you! stable/main/binary-hppa/gopherd_3.0.3woody2_hppa.deb stable/main/binary-hppa/gopher_3.0.3woody2_hppa.deb gopher (3.0.3woody2) stable-security; urgency=high * Non-maintainer upload for the Security Team. * Fix integer overflow vulnerability [gopherd/command.c, CAN-2004-0560] * Fix format string vulnerability [gopherd/ftp.c, CAN-2004-0561] * Sponsored by Martin Schulze . Thank you! stable/main/binary-arm/gopher_3.0.3woody2_arm.deb stable/main/binary-arm/gopherd_3.0.3woody2_arm.deb gopher (3.0.3woody2) stable-security; urgency=high * Non-maintainer upload for the Security Team. * Fix integer overflow vulnerability [gopherd/command.c, CAN-2004-0560] * Fix format string vulnerability [gopherd/ftp.c, CAN-2004-0561] * Sponsored by Martin Schulze . Thank you! stable/main/binary-alpha/gopher_3.0.3woody2_alpha.deb stable/main/binary-alpha/gopherd_3.0.3woody2_alpha.deb gopher (3.0.3woody2) stable-security; urgency=high * Non-maintainer upload for the Security Team. * Fix integer overflow vulnerability [gopherd/command.c, CAN-2004-0560] * Fix format string vulnerability [gopherd/ftp.c, CAN-2004-0561] * Sponsored by Martin Schulze . Thank you! stable/main/binary-mipsel/gopher_3.0.3woody2_mipsel.deb stable/main/source/gopher_3.0.3woody2.dsc stable/main/source/gopher_3.0.3woody2.tar.gz stable/main/binary-mipsel/gopherd_3.0.3woody2_mipsel.deb gopher (3.0.3woody2) stable-security; urgency=high * Non-maintainer upload for the Security Team. * Fix integer overflow vulnerability [gopherd/command.c, CAN-2004-0560] * Fix format string vulnerability [gopherd/ftp.c, CAN-2004-0561] * Sponsored by Martin Schulze . Thank you! stable/main/binary-sparc/libc6-dev-sparc64_2.2.5-11.8_sparc.deb stable/main/binary-sparc/libc6-dev_2.2.5-11.8_sparc.deb stable/main/binary-sparc/nscd_2.2.5-11.8_sparc.deb stable/main/binary-sparc/libc6_2.2.5-11.8_sparc.deb stable/main/binary-sparc/libc6-prof_2.2.5-11.8_sparc.deb stable/main/binary-sparc/libc6-dbg_2.2.5-11.8_sparc.deb stable/main/binary-sparc/libc6-sparc64_2.2.5-11.8_sparc.deb stable/main/binary-sparc/libc6-pic_2.2.5-11.8_sparc.deb glibc (2.2.5-11.8) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patches Owl (glibcbug) and Trustix (catchsegv) to fix insecure temporary files [glibcbug.in, debug/catchsegv.sh, CAN-2004-0968, debian/patches/CAN-2004-0968_tempfile.dpatch] * Added explicit dependency to kernel-headers-2.4.17 for S/390 since the buildd tends to install the wrong package stable/main/binary-s390/libc6-dbg_2.2.5-11.8_s390.deb stable/main/binary-s390/libc6-pic_2.2.5-11.8_s390.deb stable/main/binary-s390/libc6-prof_2.2.5-11.8_s390.deb stable/main/binary-s390/libc6-dev_2.2.5-11.8_s390.deb stable/main/binary-s390/nscd_2.2.5-11.8_s390.deb stable/main/binary-s390/libc6_2.2.5-11.8_s390.deb glibc (2.2.5-11.8) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patches Owl (glibcbug) and Trustix (catchsegv) to fix insecure temporary files [glibcbug.in, debug/catchsegv.sh, CAN-2004-0968, debian/patches/CAN-2004-0968_tempfile.dpatch] * Added explicit dependency to kernel-headers-2.4.17 for S/390 since the buildd tends to install the wrong package stable/main/binary-powerpc/libc6-dev_2.2.5-11.8_powerpc.deb stable/main/binary-powerpc/libc6-pic_2.2.5-11.8_powerpc.deb stable/main/binary-powerpc/libc6-dbg_2.2.5-11.8_powerpc.deb stable/main/binary-powerpc/libc6-prof_2.2.5-11.8_powerpc.deb stable/main/binary-powerpc/libc6_2.2.5-11.8_powerpc.deb stable/main/binary-powerpc/nscd_2.2.5-11.8_powerpc.deb glibc (2.2.5-11.8) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patches Owl (glibcbug) and Trustix (catchsegv) to fix insecure temporary files [glibcbug.in, debug/catchsegv.sh, CAN-2004-0968, debian/patches/CAN-2004-0968_tempfile.dpatch] * Added explicit dependency to kernel-headers-2.4.17 for S/390 since the buildd tends to install the wrong package stable/main/binary-mipsel/libc6-dev_2.2.5-11.8_mipsel.deb stable/main/binary-mipsel/libc6-pic_2.2.5-11.8_mipsel.deb stable/main/binary-mipsel/libc6_2.2.5-11.8_mipsel.deb stable/main/binary-mipsel/nscd_2.2.5-11.8_mipsel.deb stable/main/binary-mipsel/libc6-dbg_2.2.5-11.8_mipsel.deb stable/main/binary-mipsel/libc6-prof_2.2.5-11.8_mipsel.deb glibc (2.2.5-11.8) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patches Owl (glibcbug) and Trustix (catchsegv) to fix insecure temporary files [glibcbug.in, debug/catchsegv.sh, CAN-2004-0968, debian/patches/CAN-2004-0968_tempfile.dpatch] * Added explicit dependency to kernel-headers-2.4.17 for S/390 since the buildd tends to install the wrong package stable/main/binary-mips/libc6-dev_2.2.5-11.8_mips.deb stable/main/binary-mips/libc6-pic_2.2.5-11.8_mips.deb stable/main/binary-mips/libc6-dbg_2.2.5-11.8_mips.deb stable/main/binary-mips/nscd_2.2.5-11.8_mips.deb stable/main/binary-mips/libc6_2.2.5-11.8_mips.deb stable/main/binary-mips/libc6-prof_2.2.5-11.8_mips.deb glibc (2.2.5-11.8) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patches Owl (glibcbug) and Trustix (catchsegv) to fix insecure temporary files [glibcbug.in, debug/catchsegv.sh, CAN-2004-0968, debian/patches/CAN-2004-0968_tempfile.dpatch] * Added explicit dependency to kernel-headers-2.4.17 for S/390 since the buildd tends to install the wrong package stable/main/binary-m68k/nscd_2.2.5-11.8_m68k.deb stable/main/binary-m68k/libc6-dev_2.2.5-11.8_m68k.deb stable/main/binary-m68k/libc6_2.2.5-11.8_m68k.deb stable/main/binary-m68k/libc6-pic_2.2.5-11.8_m68k.deb stable/main/binary-m68k/libc6-dbg_2.2.5-11.8_m68k.deb stable/main/binary-m68k/libc6-prof_2.2.5-11.8_m68k.deb glibc (2.2.5-11.8) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patches Owl (glibcbug) and Trustix (catchsegv) to fix insecure temporary files [glibcbug.in, debug/catchsegv.sh, CAN-2004-0968, debian/patches/CAN-2004-0968_tempfile.dpatch] * Added explicit dependency to kernel-headers-2.4.17 for S/390 since the buildd tends to install the wrong package stable/main/binary-ia64/libc6.1-dev_2.2.5-11.8_ia64.deb stable/main/binary-ia64/libc6.1_2.2.5-11.8_ia64.deb stable/main/binary-ia64/libc6.1-dbg_2.2.5-11.8_ia64.deb stable/main/binary-ia64/libc6.1-pic_2.2.5-11.8_ia64.deb stable/main/binary-ia64/nscd_2.2.5-11.8_ia64.deb stable/main/binary-ia64/libc6.1-prof_2.2.5-11.8_ia64.deb glibc (2.2.5-11.8) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patches Owl (glibcbug) and Trustix (catchsegv) to fix insecure temporary files [glibcbug.in, debug/catchsegv.sh, CAN-2004-0968, debian/patches/CAN-2004-0968_tempfile.dpatch] * Added explicit dependency to kernel-headers-2.4.17 for S/390 since the buildd tends to install the wrong package stable/main/binary-hppa/libc6_2.2.5-11.8_hppa.deb stable/main/binary-hppa/libc6-dev_2.2.5-11.8_hppa.deb stable/main/binary-hppa/libc6-prof_2.2.5-11.8_hppa.deb stable/main/binary-hppa/libc6-pic_2.2.5-11.8_hppa.deb stable/main/binary-hppa/libc6-dbg_2.2.5-11.8_hppa.deb stable/main/binary-hppa/nscd_2.2.5-11.8_hppa.deb glibc (2.2.5-11.8) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patches Owl (glibcbug) and Trustix (catchsegv) to fix insecure temporary files [glibcbug.in, debug/catchsegv.sh, CAN-2004-0968, debian/patches/CAN-2004-0968_tempfile.dpatch] * Added explicit dependency to kernel-headers-2.4.17 for S/390 since the buildd tends to install the wrong package stable/main/binary-arm/libc6-prof_2.2.5-11.8_arm.deb stable/main/binary-arm/libc6_2.2.5-11.8_arm.deb stable/main/binary-arm/libc6-dbg_2.2.5-11.8_arm.deb stable/main/binary-arm/nscd_2.2.5-11.8_arm.deb stable/main/binary-arm/libc6-pic_2.2.5-11.8_arm.deb stable/main/binary-arm/libc6-dev_2.2.5-11.8_arm.deb glibc (2.2.5-11.8) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patches Owl (glibcbug) and Trustix (catchsegv) to fix insecure temporary files [glibcbug.in, debug/catchsegv.sh, CAN-2004-0968, debian/patches/CAN-2004-0968_tempfile.dpatch] * Added explicit dependency to kernel-headers-2.4.17 for S/390 since the buildd tends to install the wrong package stable/main/binary-alpha/libc6.1-dev_2.2.5-11.8_alpha.deb stable/main/binary-alpha/libc6.1-prof_2.2.5-11.8_alpha.deb stable/main/binary-alpha/nscd_2.2.5-11.8_alpha.deb stable/main/binary-alpha/libc6.1-dbg_2.2.5-11.8_alpha.deb stable/main/binary-alpha/libc6.1-pic_2.2.5-11.8_alpha.deb stable/main/binary-alpha/libc6.1_2.2.5-11.8_alpha.deb glibc (2.2.5-11.8) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patches Owl (glibcbug) and Trustix (catchsegv) to fix insecure temporary files [glibcbug.in, debug/catchsegv.sh, CAN-2004-0968, debian/patches/CAN-2004-0968_tempfile.dpatch] * Added explicit dependency to kernel-headers-2.4.17 for S/390 since the buildd tends to install the wrong package stable/main/binary-i386/libc6-prof_2.2.5-11.8_i386.deb stable/main/binary-all/locales_2.2.5-11.8_all.deb stable/main/binary-i386/libc6_2.2.5-11.8_i386.deb stable/main/binary-i386/libc6-pic_2.2.5-11.8_i386.deb stable/main/binary-i386/libc6-dev_2.2.5-11.8_i386.deb stable/main/source/glibc_2.2.5-11.8.dsc stable/main/source/glibc_2.2.5-11.8.diff.gz stable/main/binary-all/glibc-doc_2.2.5-11.8_all.deb stable/main/binary-i386/nscd_2.2.5-11.8_i386.deb stable/main/binary-i386/libc6-dbg_2.2.5-11.8_i386.deb glibc (2.2.5-11.8) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patches Owl (glibcbug) and Trustix (catchsegv) to fix insecure temporary files [glibcbug.in, debug/catchsegv.sh, CAN-2004-0968, debian/patches/CAN-2004-0968_tempfile.dpatch] * Added explicit dependency to kernel-headers-2.4.17 for S/390 since the buildd tends to install the wrong package stable/main/binary-sparc/gftp-common_2.0.11-1woody1_sparc.deb stable/main/binary-sparc/gftp_2.0.11-1woody1_sparc.deb stable/main/binary-sparc/gftp-text_2.0.11-1woody1_sparc.deb stable/main/binary-sparc/gftp-gtk_2.0.11-1woody1_sparc.deb gftp (2.0.11-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix a directory traversal [lib/protocols.c, CAN-2005-0372] stable/main/binary-s390/gftp-common_2.0.11-1woody1_s390.deb stable/main/binary-s390/gftp-text_2.0.11-1woody1_s390.deb stable/main/binary-s390/gftp_2.0.11-1woody1_s390.deb stable/main/binary-s390/gftp-gtk_2.0.11-1woody1_s390.deb gftp (2.0.11-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix a directory traversal [lib/protocols.c, CAN-2005-0372] stable/main/binary-powerpc/gftp_2.0.11-1woody1_powerpc.deb stable/main/binary-powerpc/gftp-gtk_2.0.11-1woody1_powerpc.deb stable/main/binary-powerpc/gftp-text_2.0.11-1woody1_powerpc.deb stable/main/binary-powerpc/gftp-common_2.0.11-1woody1_powerpc.deb gftp (2.0.11-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix a directory traversal [lib/protocols.c, CAN-2005-0372] stable/main/binary-mips/gftp-gtk_2.0.11-1woody1_mips.deb stable/main/binary-mips/gftp_2.0.11-1woody1_mips.deb stable/main/binary-mips/gftp-text_2.0.11-1woody1_mips.deb stable/main/binary-mips/gftp-common_2.0.11-1woody1_mips.deb gftp (2.0.11-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix a directory traversal [lib/protocols.c, CAN-2005-0372] stable/main/binary-m68k/gftp-gtk_2.0.11-1woody1_m68k.deb stable/main/binary-m68k/gftp-common_2.0.11-1woody1_m68k.deb stable/main/binary-m68k/gftp-text_2.0.11-1woody1_m68k.deb stable/main/binary-m68k/gftp_2.0.11-1woody1_m68k.deb gftp (2.0.11-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix a directory traversal [lib/protocols.c, CAN-2005-0372] stable/main/binary-ia64/gftp-gtk_2.0.11-1woody1_ia64.deb stable/main/binary-ia64/gftp_2.0.11-1woody1_ia64.deb stable/main/binary-ia64/gftp-text_2.0.11-1woody1_ia64.deb stable/main/binary-ia64/gftp-common_2.0.11-1woody1_ia64.deb gftp (2.0.11-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix a directory traversal [lib/protocols.c, CAN-2005-0372] stable/main/binary-i386/gftp-common_2.0.11-1woody1_i386.deb stable/main/binary-i386/gftp_2.0.11-1woody1_i386.deb stable/main/binary-i386/gftp-text_2.0.11-1woody1_i386.deb stable/main/binary-i386/gftp-gtk_2.0.11-1woody1_i386.deb gftp (2.0.11-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix a directory traversal [lib/protocols.c, CAN-2005-0372] stable/main/binary-hppa/gftp_2.0.11-1woody1_hppa.deb stable/main/binary-hppa/gftp-common_2.0.11-1woody1_hppa.deb stable/main/binary-hppa/gftp-gtk_2.0.11-1woody1_hppa.deb stable/main/binary-hppa/gftp-text_2.0.11-1woody1_hppa.deb gftp (2.0.11-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix a directory traversal [lib/protocols.c, CAN-2005-0372] stable/main/binary-arm/gftp-gtk_2.0.11-1woody1_arm.deb stable/main/binary-arm/gftp-text_2.0.11-1woody1_arm.deb stable/main/binary-arm/gftp_2.0.11-1woody1_arm.deb stable/main/binary-arm/gftp-common_2.0.11-1woody1_arm.deb gftp (2.0.11-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix a directory traversal [lib/protocols.c, CAN-2005-0372] stable/main/binary-alpha/gftp-common_2.0.11-1woody1_alpha.deb stable/main/binary-alpha/gftp-text_2.0.11-1woody1_alpha.deb stable/main/binary-alpha/gftp_2.0.11-1woody1_alpha.deb stable/main/binary-alpha/gftp-gtk_2.0.11-1woody1_alpha.deb gftp (2.0.11-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix a directory traversal [lib/protocols.c, CAN-2005-0372] stable/main/binary-mipsel/gftp-common_2.0.11-1woody1_mipsel.deb stable/main/binary-mipsel/gftp-text_2.0.11-1woody1_mipsel.deb stable/main/binary-mipsel/gftp_2.0.11-1woody1_mipsel.deb stable/main/source/gftp_2.0.11-1woody1.dsc stable/main/binary-mipsel/gftp-gtk_2.0.11-1woody1_mipsel.deb stable/main/source/gftp_2.0.11-1woody1.diff.gz gftp (2.0.11-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported upstream patch to fix a directory traversal [lib/protocols.c, CAN-2005-0372] stable/main/binary-sparc/gobjc-2.95_2.95.4-11woody1_sparc.deb stable/main/binary-sparc/libstdc++2.10-dev_2.95.4-11woody1_sparc.deb stable/main/binary-sparc/g++-2.95_2.95.4-11woody1_sparc.deb stable/main/binary-sparc/chill-2.95_2.95.4-11woody1_sparc.deb stable/main/binary-sparc/cpp-2.95_2.95.4-11woody1_sparc.deb stable/main/binary-sparc/libstdc++2.10-glibc2.2_2.95.4-11woody1_sparc.deb stable/main/binary-sparc/libg++2.8.1.3-glibc2.2_2.95.4-11woody1_sparc.deb stable/main/binary-sparc/gpc-2.95_2.95.4-11woody1_sparc.deb stable/main/binary-sparc/g77-2.95_2.95.4-11woody1_sparc.deb stable/main/binary-sparc/libg++2.8.1.3-dbg_2.95.4-11woody1_sparc.deb stable/main/binary-sparc/gcc-2.95_2.95.4-11woody1_sparc.deb stable/main/binary-sparc/libg++2.8.1.3-dev_2.95.4-11woody1_sparc.deb stable/main/binary-sparc/protoize-2.95_2.95.4-11woody1_sparc.deb stable/main/binary-sparc/libstdc++2.10-dbg_2.95.4-11woody1_sparc.deb gcc-2.95 (2.95.4.ds13-11woody1) stable; urgency=low * Upload to woody-proposed-updates: - Fix profiling for arm. - Fix internal compiler errors on s390. - Update Pascal release candidate 7 to final release. - Build the protoize-2.95 package again just in case that somebody relies on the protoize-2.95 and unprotoize-2.95 binaries. - No other changes to other compilers and architectures. stable/main/binary-mipsel/g77-2.95_2.95.4-11woody1_mipsel.deb stable/main/binary-mipsel/protoize-2.95_2.95.4-11woody1_mipsel.deb stable/main/binary-mipsel/libstdc++2.10-glibc2.2_2.95.4-11woody1_mipsel.deb stable/main/binary-mipsel/chill-2.95_2.95.4-11woody1_mipsel.deb stable/main/binary-mipsel/gobjc-2.95_2.95.4-11woody1_mipsel.deb stable/main/binary-mipsel/libstdc++2.10-dbg_2.95.4-11woody1_mipsel.deb stable/main/binary-mipsel/cpp-2.95_2.95.4-11woody1_mipsel.deb stable/main/binary-mipsel/gpc-2.95_2.95.4-11woody1_mipsel.deb stable/main/binary-mipsel/gcc-2.95_2.95.4-11woody1_mipsel.deb stable/main/binary-mipsel/libg++2.8.1.3-dev_2.95.4-11woody1_mipsel.deb stable/main/binary-mipsel/libg++2.8.1.3-glibc2.2_2.95.4-11woody1_mipsel.deb stable/main/binary-mipsel/libstdc++2.10-dev_2.95.4-11woody1_mipsel.deb stable/main/binary-mipsel/libg++2.8.1.3-dbg_2.95.4-11woody1_mipsel.deb stable/main/binary-mipsel/g++-2.95_2.95.4-11woody1_mipsel.deb gcc-2.95 (2.95.4.ds13-11woody1) stable; urgency=low * Upload to woody-proposed-updates: - Fix profiling for arm. - Fix internal compiler errors on s390. - Update Pascal release candidate 7 to final release. - Build the protoize-2.95 package again just in case that somebody relies on the protoize-2.95 and unprotoize-2.95 binaries. - No other changes to other compilers and architectures. stable/main/binary-mips/cpp-2.95_2.95.4-11woody1_mips.deb stable/main/binary-mips/libstdc++2.10-dev_2.95.4-11woody1_mips.deb stable/main/binary-mips/chill-2.95_2.95.4-11woody1_mips.deb stable/main/binary-mips/gcc-2.95_2.95.4-11woody1_mips.deb stable/main/binary-mips/protoize-2.95_2.95.4-11woody1_mips.deb stable/main/binary-mips/libstdc++2.10-dbg_2.95.4-11woody1_mips.deb stable/main/binary-mips/libg++2.8.1.3-glibc2.2_2.95.4-11woody1_mips.deb stable/main/binary-mips/gobjc-2.95_2.95.4-11woody1_mips.deb stable/main/binary-mips/libstdc++2.10-glibc2.2_2.95.4-11woody1_mips.deb stable/main/binary-mips/gpc-2.95_2.95.4-11woody1_mips.deb stable/main/binary-mips/g77-2.95_2.95.4-11woody1_mips.deb stable/main/binary-mips/libg++2.8.1.3-dev_2.95.4-11woody1_mips.deb stable/main/binary-mips/g++-2.95_2.95.4-11woody1_mips.deb stable/main/binary-mips/libg++2.8.1.3-dbg_2.95.4-11woody1_mips.deb gcc-2.95 (2.95.4.ds13-11woody1) stable; urgency=low * Upload to woody-proposed-updates: - Fix profiling for arm. - Fix internal compiler errors on s390. - Update Pascal release candidate 7 to final release. - Build the protoize-2.95 package again just in case that somebody relies on the protoize-2.95 and unprotoize-2.95 binaries. - No other changes to other compilers and architectures. stable/main/source/gatos_0.0.5-6woody3.dsc stable/main/source/gatos_0.0.5-6woody3.diff.gz stable/main/binary-i386/gatos_0.0.5-6woody3_i386.deb stable/main/binary-i386/libgatos0_0.0.5-6woody3_i386.deb stable/main/binary-i386/libgatos-dev_0.0.5-6woody3_i386.deb gatos (0.0.5-6woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected size calculation to fix a buffer overflow [src/xutils.c, CAN-2005-0016] stable/main/source/gallery_1.2.5-8woody3.dsc stable/main/binary-all/gallery_1.2.5-8woody3_all.deb stable/main/source/gallery_1.2.5-8woody3.diff.gz gallery (1.2.5-8woody3) stable-security; urgency=high * Non-maintainer upload for the Security Team * Fix cross-site scripting vulnerability in include parameter [index.php, CAN-2004-1106] * Added dbhost and GLOBALS to sensitive list [init.php, CAN] * Check for imported variables via $_REQUEST and $_FILES as well [init.php, CVE-NOMATCH] stable/main/binary-sparc/f2c_20010821-3.1_sparc.deb f2c (20010821-3.1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Hacked debian/rules so that additional patches can be applied, since the package itself does check whether it's using the pristine source * Corrected creating of temporary files f2c [src/sysdep.c, patches/patch.CAN-2005-0017.f2c, CAN-2005-0017] * Added patch by Javier Fernández-Sanguino Peña to fix temporary file problem in fc [fc, patches/patch.CAN-2005-0018.f2c, CAN-2005-0018] * Surgically removed xsum comparison since it prevents security updates from being applied [src/makefile] stable/main/binary-s390/f2c_20010821-3.1_s390.deb f2c (20010821-3.1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Hacked debian/rules so that additional patches can be applied, since the package itself does check whether it's using the pristine source * Corrected creating of temporary files f2c [src/sysdep.c, patches/patch.CAN-2005-0017.f2c, CAN-2005-0017] * Added patch by Javier Fernández-Sanguino Peña to fix temporary file problem in fc [fc, patches/patch.CAN-2005-0018.f2c, CAN-2005-0018] * Surgically removed xsum comparison since it prevents security updates from being applied [src/makefile] stable/main/binary-powerpc/f2c_20010821-3.1_powerpc.deb f2c (20010821-3.1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Hacked debian/rules so that additional patches can be applied, since the package itself does check whether it's using the pristine source * Corrected creating of temporary files f2c [src/sysdep.c, patches/patch.CAN-2005-0017.f2c, CAN-2005-0017] * Added patch by Javier Fernández-Sanguino Peña to fix temporary file problem in fc [fc, patches/patch.CAN-2005-0018.f2c, CAN-2005-0018] * Surgically removed xsum comparison since it prevents security updates from being applied [src/makefile] stable/main/binary-mips/f2c_20010821-3.1_mips.deb f2c (20010821-3.1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Hacked debian/rules so that additional patches can be applied, since the package itself does check whether it's using the pristine source * Corrected creating of temporary files f2c [src/sysdep.c, patches/patch.CAN-2005-0017.f2c, CAN-2005-0017] * Added patch by Javier Fernández-Sanguino Peña to fix temporary file problem in fc [fc, patches/patch.CAN-2005-0018.f2c, CAN-2005-0018] * Surgically removed xsum comparison since it prevents security updates from being applied [src/makefile] stable/main/binary-m68k/f2c_20010821-3.1_m68k.deb f2c (20010821-3.1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Hacked debian/rules so that additional patches can be applied, since the package itself does check whether it's using the pristine source * Corrected creating of temporary files f2c [src/sysdep.c, patches/patch.CAN-2005-0017.f2c, CAN-2005-0017] * Added patch by Javier Fernández-Sanguino Peña to fix temporary file problem in fc [fc, patches/patch.CAN-2005-0018.f2c, CAN-2005-0018] * Surgically removed xsum comparison since it prevents security updates from being applied [src/makefile] stable/main/binary-ia64/f2c_20010821-3.1_ia64.deb f2c (20010821-3.1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Hacked debian/rules so that additional patches can be applied, since the package itself does check whether it's using the pristine source * Corrected creating of temporary files f2c [src/sysdep.c, patches/patch.CAN-2005-0017.f2c, CAN-2005-0017] * Added patch by Javier Fernández-Sanguino Peña to fix temporary file problem in fc [fc, patches/patch.CAN-2005-0018.f2c, CAN-2005-0018] * Surgically removed xsum comparison since it prevents security updates from being applied [src/makefile] stable/main/binary-i386/f2c_20010821-3.1_i386.deb f2c (20010821-3.1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Hacked debian/rules so that additional patches can be applied, since the package itself does check whether it's using the pristine source * Corrected creating of temporary files f2c [src/sysdep.c, patches/patch.CAN-2005-0017.f2c, CAN-2005-0017] * Added patch by Javier Fernández-Sanguino Peña to fix temporary file problem in fc [fc, patches/patch.CAN-2005-0018.f2c, CAN-2005-0018] * Surgically removed xsum comparison since it prevents security updates from being applied [src/makefile] stable/main/binary-hppa/f2c_20010821-3.1_hppa.deb f2c (20010821-3.1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Hacked debian/rules so that additional patches can be applied, since the package itself does check whether it's using the pristine source * Corrected creating of temporary files f2c [src/sysdep.c, patches/patch.CAN-2005-0017.f2c, CAN-2005-0017] * Added patch by Javier Fernández-Sanguino Peña to fix temporary file problem in fc [fc, patches/patch.CAN-2005-0018.f2c, CAN-2005-0018] * Surgically removed xsum comparison since it prevents security updates from being applied [src/makefile] stable/main/binary-arm/f2c_20010821-3.1_arm.deb f2c (20010821-3.1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Hacked debian/rules so that additional patches can be applied, since the package itself does check whether it's using the pristine source * Corrected creating of temporary files f2c [src/sysdep.c, patches/patch.CAN-2005-0017.f2c, CAN-2005-0017] * Added patch by Javier Fernández-Sanguino Peña to fix temporary file problem in fc [fc, patches/patch.CAN-2005-0018.f2c, CAN-2005-0018] * Surgically removed xsum comparison since it prevents security updates from being applied [src/makefile] stable/main/binary-alpha/f2c_20010821-3.1_alpha.deb f2c (20010821-3.1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Hacked debian/rules so that additional patches can be applied, since the package itself does check whether it's using the pristine source * Corrected creating of temporary files f2c [src/sysdep.c, patches/patch.CAN-2005-0017.f2c, CAN-2005-0017] * Added patch by Javier Fernández-Sanguino Peña to fix temporary file problem in fc [fc, patches/patch.CAN-2005-0018.f2c, CAN-2005-0018] * Surgically removed xsum comparison since it prevents security updates from being applied [src/makefile] stable/main/source/f2c_20010821-3.1.diff.gz stable/main/binary-mipsel/f2c_20010821-3.1_mipsel.deb stable/main/source/f2c_20010821-3.1.dsc f2c (20010821-3.1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Hacked debian/rules so that additional patches can be applied, since the package itself does check whether it's using the pristine source * Corrected creating of temporary files f2c [src/sysdep.c, patches/patch.CAN-2005-0017.f2c, CAN-2005-0017] * Added patch by Javier Fernández-Sanguino Peña to fix temporary file problem in fc [fc, patches/patch.CAN-2005-0018.f2c, CAN-2005-0018] * Surgically removed xsum comparison since it prevents security updates from being applied [src/makefile] stable/main/binary-sparc/exim_3.35-1woody4_sparc.deb stable/main/binary-sparc/eximon_3.35-1woody4_sparc.deb exim (3.35-1woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a buffer overflow in the IPv6 address handling code [src/host.c, src/lookups/dnsdb.c, CAN-2005-0021] stable/main/binary-s390/eximon_3.35-1woody4_s390.deb stable/main/binary-s390/exim_3.35-1woody4_s390.deb exim (3.35-1woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a buffer overflow in the IPv6 address handling code [src/host.c, src/lookups/dnsdb.c, CAN-2005-0021] stable/main/binary-powerpc/exim_3.35-1woody4_powerpc.deb stable/main/binary-powerpc/eximon_3.35-1woody4_powerpc.deb exim (3.35-1woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a buffer overflow in the IPv6 address handling code [src/host.c, src/lookups/dnsdb.c, CAN-2005-0021] stable/main/binary-mips/eximon_3.35-1woody4_mips.deb stable/main/binary-mips/exim_3.35-1woody4_mips.deb exim (3.35-1woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a buffer overflow in the IPv6 address handling code [src/host.c, src/lookups/dnsdb.c, CAN-2005-0021] stable/main/binary-m68k/exim_3.35-1woody4_m68k.deb stable/main/binary-m68k/eximon_3.35-1woody4_m68k.deb exim (3.35-1woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a buffer overflow in the IPv6 address handling code [src/host.c, src/lookups/dnsdb.c, CAN-2005-0021] stable/main/binary-ia64/exim_3.35-1woody4_ia64.deb stable/main/binary-ia64/eximon_3.35-1woody4_ia64.deb exim (3.35-1woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a buffer overflow in the IPv6 address handling code [src/host.c, src/lookups/dnsdb.c, CAN-2005-0021] stable/main/binary-i386/exim_3.35-1woody4_i386.deb stable/main/binary-i386/eximon_3.35-1woody4_i386.deb exim (3.35-1woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a buffer overflow in the IPv6 address handling code [src/host.c, src/lookups/dnsdb.c, CAN-2005-0021] stable/main/binary-hppa/eximon_3.35-1woody4_hppa.deb stable/main/binary-hppa/exim_3.35-1woody4_hppa.deb exim (3.35-1woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a buffer overflow in the IPv6 address handling code [src/host.c, src/lookups/dnsdb.c, CAN-2005-0021] stable/main/binary-arm/eximon_3.35-1woody4_arm.deb stable/main/binary-arm/exim_3.35-1woody4_arm.deb exim (3.35-1woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a buffer overflow in the IPv6 address handling code [src/host.c, src/lookups/dnsdb.c, CAN-2005-0021] stable/main/binary-alpha/eximon_3.35-1woody4_alpha.deb stable/main/binary-alpha/exim_3.35-1woody4_alpha.deb exim (3.35-1woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a buffer overflow in the IPv6 address handling code [src/host.c, src/lookups/dnsdb.c, CAN-2005-0021] stable/main/source/exim_3.35-1woody4.diff.gz stable/main/source/exim_3.35-1woody4.dsc stable/main/binary-mipsel/exim_3.35-1woody4_mipsel.deb stable/main/binary-mipsel/eximon_3.35-1woody4_mipsel.deb exim (3.35-1woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied upstream patch to fix a buffer overflow in the IPv6 address handling code [src/host.c, src/lookups/dnsdb.c, CAN-2005-0021] stable/main/binary-sparc/libcamel-dev_1.0.5-1woody2_sparc.deb stable/main/binary-sparc/evolution_1.0.5-1woody2_sparc.deb stable/main/binary-sparc/libcamel0_1.0.5-1woody2_sparc.deb evolution (1.0.5-1woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Max Vozeler to fix integer overflow [evolution-1.0.5/camel/camel-lock-helper.c, CAN-2005-0102] * Non-changes buildd so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-s390/evolution_1.0.5-1woody2_s390.deb stable/main/binary-s390/libcamel0_1.0.5-1woody2_s390.deb stable/main/binary-s390/libcamel-dev_1.0.5-1woody2_s390.deb evolution (1.0.5-1woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Max Vozeler to fix integer overflow [evolution-1.0.5/camel/camel-lock-helper.c, CAN-2005-0102] * Non-changes buildd so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-powerpc/evolution_1.0.5-1woody2_powerpc.deb stable/main/binary-powerpc/libcamel-dev_1.0.5-1woody2_powerpc.deb stable/main/binary-powerpc/libcamel0_1.0.5-1woody2_powerpc.deb evolution (1.0.5-1woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Max Vozeler to fix integer overflow [evolution-1.0.5/camel/camel-lock-helper.c, CAN-2005-0102] * Non-changes buildd so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-m68k/evolution_1.0.5-1woody2_m68k.deb stable/main/binary-m68k/libcamel-dev_1.0.5-1woody2_m68k.deb stable/main/binary-m68k/libcamel0_1.0.5-1woody2_m68k.deb evolution (1.0.5-1woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Max Vozeler to fix integer overflow [evolution-1.0.5/camel/camel-lock-helper.c, CAN-2005-0102] * Non-changes buildd so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-i386/libcamel-dev_1.0.5-1woody2_i386.deb stable/main/binary-i386/libcamel0_1.0.5-1woody2_i386.deb stable/main/binary-i386/evolution_1.0.5-1woody2_i386.deb evolution (1.0.5-1woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Max Vozeler to fix integer overflow [evolution-1.0.5/camel/camel-lock-helper.c, CAN-2005-0102] * Non-changes buildd so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-arm/libcamel0_1.0.5-1woody2_arm.deb stable/main/binary-arm/evolution_1.0.5-1woody2_arm.deb stable/main/binary-arm/libcamel-dev_1.0.5-1woody2_arm.deb evolution (1.0.5-1woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Max Vozeler to fix integer overflow [evolution-1.0.5/camel/camel-lock-helper.c, CAN-2005-0102] * Non-changes buildd so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-alpha/evolution_1.0.5-1woody2_alpha.deb stable/main/binary-alpha/libcamel-dev_1.0.5-1woody2_alpha.deb stable/main/binary-alpha/libcamel0_1.0.5-1woody2_alpha.deb evolution (1.0.5-1woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Max Vozeler to fix integer overflow [evolution-1.0.5/camel/camel-lock-helper.c, CAN-2005-0102] * Non-changes buildd so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-ia64/libcamel0_1.0.5-1woody2_ia64.deb stable/main/source/evolution_1.0.5-1woody2.dsc stable/main/binary-ia64/evolution_1.0.5-1woody2_ia64.deb stable/main/source/evolution_1.0.5-1woody2.diff.gz stable/main/binary-ia64/libcamel-dev_1.0.5-1woody2_ia64.deb evolution (1.0.5-1woody2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Max Vozeler to fix integer overflow [evolution-1.0.5/camel/camel-lock-helper.c, CAN-2005-0102] * Non-changes buildd so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-sparc/ethereal_0.9.4-1woody11_sparc.deb stable/main/binary-sparc/ethereal-dev_0.9.4-1woody11_sparc.deb stable/main/binary-sparc/ethereal-common_0.9.4-1woody11_sparc.deb stable/main/binary-sparc/tethereal_0.9.4-1woody11_sparc.deb ethereal (0.9.4-1woody11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the backported patch to fix buffer overflow in X11 dissector [packet-x11.c, CAN-2005-0084] stable/main/binary-s390/ethereal_0.9.4-1woody11_s390.deb stable/main/binary-s390/ethereal-common_0.9.4-1woody11_s390.deb stable/main/binary-s390/ethereal-dev_0.9.4-1woody11_s390.deb stable/main/binary-s390/tethereal_0.9.4-1woody11_s390.deb ethereal (0.9.4-1woody11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the backported patch to fix buffer overflow in X11 dissector [packet-x11.c, CAN-2005-0084] stable/main/binary-powerpc/ethereal_0.9.4-1woody11_powerpc.deb stable/main/binary-powerpc/ethereal-dev_0.9.4-1woody11_powerpc.deb stable/main/binary-powerpc/tethereal_0.9.4-1woody11_powerpc.deb stable/main/binary-powerpc/ethereal-common_0.9.4-1woody11_powerpc.deb ethereal (0.9.4-1woody11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the backported patch to fix buffer overflow in X11 dissector [packet-x11.c, CAN-2005-0084] stable/main/binary-mipsel/ethereal-common_0.9.4-1woody11_mipsel.deb stable/main/binary-mipsel/tethereal_0.9.4-1woody11_mipsel.deb stable/main/binary-mipsel/ethereal_0.9.4-1woody11_mipsel.deb stable/main/binary-mipsel/ethereal-dev_0.9.4-1woody11_mipsel.deb ethereal (0.9.4-1woody11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the backported patch to fix buffer overflow in X11 dissector [packet-x11.c, CAN-2005-0084] stable/main/binary-mips/ethereal_0.9.4-1woody11_mips.deb stable/main/binary-mips/ethereal-common_0.9.4-1woody11_mips.deb stable/main/binary-mips/ethereal-dev_0.9.4-1woody11_mips.deb stable/main/binary-mips/tethereal_0.9.4-1woody11_mips.deb ethereal (0.9.4-1woody11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the backported patch to fix buffer overflow in X11 dissector [packet-x11.c, CAN-2005-0084] stable/main/binary-m68k/ethereal_0.9.4-1woody11_m68k.deb stable/main/binary-m68k/ethereal-dev_0.9.4-1woody11_m68k.deb stable/main/binary-m68k/tethereal_0.9.4-1woody11_m68k.deb stable/main/binary-m68k/ethereal-common_0.9.4-1woody11_m68k.deb ethereal (0.9.4-1woody11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the backported patch to fix buffer overflow in X11 dissector [packet-x11.c, CAN-2005-0084] stable/main/binary-ia64/ethereal-common_0.9.4-1woody11_ia64.deb stable/main/binary-ia64/tethereal_0.9.4-1woody11_ia64.deb stable/main/binary-ia64/ethereal-dev_0.9.4-1woody11_ia64.deb stable/main/binary-ia64/ethereal_0.9.4-1woody11_ia64.deb ethereal (0.9.4-1woody11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the backported patch to fix buffer overflow in X11 dissector [packet-x11.c, CAN-2005-0084] stable/main/binary-hppa/ethereal_0.9.4-1woody11_hppa.deb stable/main/binary-hppa/ethereal-common_0.9.4-1woody11_hppa.deb stable/main/binary-hppa/ethereal-dev_0.9.4-1woody11_hppa.deb stable/main/binary-hppa/tethereal_0.9.4-1woody11_hppa.deb ethereal (0.9.4-1woody11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the backported patch to fix buffer overflow in X11 dissector [packet-x11.c, CAN-2005-0084] stable/main/binary-arm/ethereal-common_0.9.4-1woody11_arm.deb stable/main/binary-arm/ethereal-dev_0.9.4-1woody11_arm.deb stable/main/binary-arm/tethereal_0.9.4-1woody11_arm.deb stable/main/binary-arm/ethereal_0.9.4-1woody11_arm.deb ethereal (0.9.4-1woody11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the backported patch to fix buffer overflow in X11 dissector [packet-x11.c, CAN-2005-0084] stable/main/binary-alpha/ethereal-dev_0.9.4-1woody11_alpha.deb stable/main/binary-alpha/ethereal_0.9.4-1woody11_alpha.deb stable/main/binary-alpha/tethereal_0.9.4-1woody11_alpha.deb stable/main/binary-alpha/ethereal-common_0.9.4-1woody11_alpha.deb ethereal (0.9.4-1woody11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the backported patch to fix buffer overflow in X11 dissector [packet-x11.c, CAN-2005-0084] stable/main/binary-i386/ethereal-common_0.9.4-1woody11_i386.deb stable/main/binary-i386/ethereal_0.9.4-1woody11_i386.deb stable/main/binary-i386/ethereal-dev_0.9.4-1woody11_i386.deb stable/main/binary-i386/tethereal_0.9.4-1woody11_i386.deb stable/main/source/ethereal_0.9.4-1woody11.diff.gz stable/main/source/ethereal_0.9.4-1woody11.dsc ethereal (0.9.4-1woody11) stable-security; urgency=high * Non-maintainer upload by the Security Team * Corrected the backported patch to fix buffer overflow in X11 dissector [packet-x11.c, CAN-2005-0084] stable/main/binary-sparc/enscript_1.6.3-1.3_sparc.deb enscript (1.6.3-1.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Reverted bogus change to fix buffer overflow [src/util.c, CAN-2004-1186] stable/main/binary-s390/enscript_1.6.3-1.3_s390.deb enscript (1.6.3-1.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Reverted bogus change to fix buffer overflow [src/util.c, CAN-2004-1186] stable/main/binary-powerpc/enscript_1.6.3-1.3_powerpc.deb enscript (1.6.3-1.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Reverted bogus change to fix buffer overflow [src/util.c, CAN-2004-1186] stable/main/binary-mips/enscript_1.6.3-1.3_mips.deb enscript (1.6.3-1.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Reverted bogus change to fix buffer overflow [src/util.c, CAN-2004-1186] stable/main/binary-m68k/enscript_1.6.3-1.3_m68k.deb enscript (1.6.3-1.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Reverted bogus change to fix buffer overflow [src/util.c, CAN-2004-1186] stable/main/binary-ia64/enscript_1.6.3-1.3_ia64.deb enscript (1.6.3-1.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Reverted bogus change to fix buffer overflow [src/util.c, CAN-2004-1186] stable/main/binary-i386/enscript_1.6.3-1.3_i386.deb enscript (1.6.3-1.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Reverted bogus change to fix buffer overflow [src/util.c, CAN-2004-1186] stable/main/binary-hppa/enscript_1.6.3-1.3_hppa.deb enscript (1.6.3-1.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Reverted bogus change to fix buffer overflow [src/util.c, CAN-2004-1186] stable/main/binary-arm/enscript_1.6.3-1.3_arm.deb enscript (1.6.3-1.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Reverted bogus change to fix buffer overflow [src/util.c, CAN-2004-1186] stable/main/binary-alpha/enscript_1.6.3-1.3_alpha.deb enscript (1.6.3-1.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Reverted bogus change to fix buffer overflow [src/util.c, CAN-2004-1186] stable/main/binary-mipsel/enscript_1.6.3-1.3_mipsel.deb stable/main/source/enscript_1.6.3-1.3.diff.gz stable/main/source/enscript_1.6.3-1.3.dsc enscript (1.6.3-1.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Reverted bogus change to fix buffer overflow [src/util.c, CAN-2004-1186] stable/main/binary-sparc/emacs21_21.2-1woody3_sparc.deb emacs21 (21.2-1woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Adjusted the security patch [lib-src/movemail.c, CAN-2005-0100] stable/main/binary-s390/emacs21_21.2-1woody3_s390.deb emacs21 (21.2-1woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Adjusted the security patch [lib-src/movemail.c, CAN-2005-0100] stable/main/binary-powerpc/emacs21_21.2-1woody3_powerpc.deb emacs21 (21.2-1woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Adjusted the security patch [lib-src/movemail.c, CAN-2005-0100] stable/main/binary-mipsel/emacs21_21.2-1woody3_mipsel.deb emacs21 (21.2-1woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Adjusted the security patch [lib-src/movemail.c, CAN-2005-0100] stable/main/binary-mips/emacs21_21.2-1woody3_mips.deb emacs21 (21.2-1woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Adjusted the security patch [lib-src/movemail.c, CAN-2005-0100] stable/main/binary-m68k/emacs21_21.2-1woody3_m68k.deb emacs21 (21.2-1woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Adjusted the security patch [lib-src/movemail.c, CAN-2005-0100] stable/main/binary-i386/emacs21_21.2-1woody3_i386.deb emacs21 (21.2-1woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Adjusted the security patch [lib-src/movemail.c, CAN-2005-0100] stable/main/binary-hppa/emacs21_21.2-1woody3_hppa.deb emacs21 (21.2-1woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Adjusted the security patch [lib-src/movemail.c, CAN-2005-0100] stable/main/binary-arm/emacs21_21.2-1woody3_arm.deb emacs21 (21.2-1woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Adjusted the security patch [lib-src/movemail.c, CAN-2005-0100] stable/main/binary-alpha/emacs21_21.2-1woody3_alpha.deb emacs21 (21.2-1woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Adjusted the security patch [lib-src/movemail.c, CAN-2005-0100] stable/main/source/emacs21_21.2-1woody3.dsc stable/main/binary-all/emacs21-el_21.2-1woody3_all.deb stable/main/binary-ia64/emacs21_21.2-1woody3_ia64.deb stable/main/source/emacs21_21.2-1woody3.diff.gz emacs21 (21.2-1woody3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Adjusted the security patch [lib-src/movemail.c, CAN-2005-0100] stable/main/binary-sparc/emacs20_20.7-13.3_sparc.deb emacs20 (20.7-13.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Max Vozeler to fix format string vulnerabilities [lib-src/movemail.c, CAN-2005-0100] * Non-changes build so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-s390/emacs20_20.7-13.3_s390.deb emacs20 (20.7-13.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Max Vozeler to fix format string vulnerabilities [lib-src/movemail.c, CAN-2005-0100] * Non-changes build so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-powerpc/emacs20_20.7-13.3_powerpc.deb emacs20 (20.7-13.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Max Vozeler to fix format string vulnerabilities [lib-src/movemail.c, CAN-2005-0100] * Non-changes build so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-mipsel/emacs20_20.7-13.3_mipsel.deb emacs20 (20.7-13.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Max Vozeler to fix format string vulnerabilities [lib-src/movemail.c, CAN-2005-0100] * Non-changes build so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-mips/emacs20_20.7-13.3_mips.deb emacs20 (20.7-13.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Max Vozeler to fix format string vulnerabilities [lib-src/movemail.c, CAN-2005-0100] * Non-changes build so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-m68k/emacs20_20.7-13.3_m68k.deb emacs20 (20.7-13.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Max Vozeler to fix format string vulnerabilities [lib-src/movemail.c, CAN-2005-0100] * Non-changes build so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-i386/emacs20_20.7-13.3_i386.deb emacs20 (20.7-13.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Max Vozeler to fix format string vulnerabilities [lib-src/movemail.c, CAN-2005-0100] * Non-changes build so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-hppa/emacs20_20.7-13.3_hppa.deb emacs20 (20.7-13.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Max Vozeler to fix format string vulnerabilities [lib-src/movemail.c, CAN-2005-0100] * Non-changes build so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-arm/emacs20_20.7-13.3_arm.deb emacs20 (20.7-13.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Max Vozeler to fix format string vulnerabilities [lib-src/movemail.c, CAN-2005-0100] * Non-changes build so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-alpha/emacs20_20.7-13.3_alpha.deb emacs20 (20.7-13.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Max Vozeler to fix format string vulnerabilities [lib-src/movemail.c, CAN-2005-0100] * Non-changes build so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/source/emacs20_20.7-13.3.diff.gz stable/main/binary-all/emacs20-el_20.7-13.3_all.deb stable/main/binary-ia64/emacs20_20.7-13.3_ia64.deb stable/main/source/emacs20_20.7-13.3.dsc emacs20 (20.7-13.3) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Max Vozeler to fix format string vulnerabilities [lib-src/movemail.c, CAN-2005-0100] * Non-changes build so that the i386 buildd can pick up the package again so that the build might eventually end up in the archive stable/main/binary-sparc/cupsys-bsd_1.1.14-5woody12_sparc.deb stable/main/binary-sparc/cupsys-pstoraster_1.1.14-5woody12_sparc.deb stable/main/binary-sparc/libcupsys2-dev_1.1.14-5woody12_sparc.deb stable/main/binary-sparc/libcupsys2_1.1.14-5woody12_sparc.deb stable/main/binary-sparc/cupsys_1.1.14-5woody12_sparc.deb stable/main/binary-sparc/cupsys-client_1.1.14-5woody12_sparc.deb cupsys (1.1.14-5woody12) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow that could overwrite the stack and hence cause the execution of arbitrary code as reported by iDEFENSE [pdftops/Decrypt.cxx, CAN-2005-0064] stable/main/binary-s390/libcupsys2_1.1.14-5woody12_s390.deb stable/main/binary-s390/cupsys-pstoraster_1.1.14-5woody12_s390.deb stable/main/binary-s390/cupsys_1.1.14-5woody12_s390.deb stable/main/binary-s390/libcupsys2-dev_1.1.14-5woody12_s390.deb stable/main/binary-s390/cupsys-bsd_1.1.14-5woody12_s390.deb stable/main/binary-s390/cupsys-client_1.1.14-5woody12_s390.deb cupsys (1.1.14-5woody12) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow that could overwrite the stack and hence cause the execution of arbitrary code as reported by iDEFENSE [pdftops/Decrypt.cxx, CAN-2005-0064] stable/main/binary-powerpc/libcupsys2-dev_1.1.14-5woody12_powerpc.deb stable/main/binary-powerpc/cupsys-bsd_1.1.14-5woody12_powerpc.deb stable/main/binary-powerpc/libcupsys2_1.1.14-5woody12_powerpc.deb stable/main/binary-powerpc/cupsys-pstoraster_1.1.14-5woody12_powerpc.deb stable/main/binary-powerpc/cupsys-client_1.1.14-5woody12_powerpc.deb stable/main/binary-powerpc/cupsys_1.1.14-5woody12_powerpc.deb cupsys (1.1.14-5woody12) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow that could overwrite the stack and hence cause the execution of arbitrary code as reported by iDEFENSE [pdftops/Decrypt.cxx, CAN-2005-0064] stable/main/binary-mips/libcupsys2-dev_1.1.14-5woody12_mips.deb stable/main/binary-mips/libcupsys2_1.1.14-5woody12_mips.deb stable/main/binary-mips/cupsys-client_1.1.14-5woody12_mips.deb stable/main/binary-mips/cupsys_1.1.14-5woody12_mips.deb stable/main/binary-mips/cupsys-bsd_1.1.14-5woody12_mips.deb stable/main/binary-mips/cupsys-pstoraster_1.1.14-5woody12_mips.deb cupsys (1.1.14-5woody12) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow that could overwrite the stack and hence cause the execution of arbitrary code as reported by iDEFENSE [pdftops/Decrypt.cxx, CAN-2005-0064] stable/main/binary-m68k/libcupsys2-dev_1.1.14-5woody12_m68k.deb stable/main/binary-m68k/cupsys-bsd_1.1.14-5woody12_m68k.deb stable/main/binary-m68k/libcupsys2_1.1.14-5woody12_m68k.deb stable/main/binary-m68k/cupsys-client_1.1.14-5woody12_m68k.deb stable/main/binary-m68k/cupsys_1.1.14-5woody12_m68k.deb stable/main/binary-m68k/cupsys-pstoraster_1.1.14-5woody12_m68k.deb cupsys (1.1.14-5woody12) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow that could overwrite the stack and hence cause the execution of arbitrary code as reported by iDEFENSE [pdftops/Decrypt.cxx, CAN-2005-0064] stable/main/binary-ia64/cupsys-pstoraster_1.1.14-5woody12_ia64.deb stable/main/binary-ia64/cupsys-client_1.1.14-5woody12_ia64.deb stable/main/binary-ia64/cupsys-bsd_1.1.14-5woody12_ia64.deb stable/main/binary-ia64/libcupsys2-dev_1.1.14-5woody12_ia64.deb stable/main/binary-ia64/cupsys_1.1.14-5woody12_ia64.deb stable/main/binary-ia64/libcupsys2_1.1.14-5woody12_ia64.deb cupsys (1.1.14-5woody12) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow that could overwrite the stack and hence cause the execution of arbitrary code as reported by iDEFENSE [pdftops/Decrypt.cxx, CAN-2005-0064] stable/main/binary-i386/libcupsys2_1.1.14-5woody12_i386.deb stable/main/binary-i386/libcupsys2-dev_1.1.14-5woody12_i386.deb stable/main/binary-i386/cupsys_1.1.14-5woody12_i386.deb stable/main/binary-i386/cupsys-client_1.1.14-5woody12_i386.deb stable/main/binary-i386/cupsys-pstoraster_1.1.14-5woody12_i386.deb stable/main/binary-i386/cupsys-bsd_1.1.14-5woody12_i386.deb cupsys (1.1.14-5woody12) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow that could overwrite the stack and hence cause the execution of arbitrary code as reported by iDEFENSE [pdftops/Decrypt.cxx, CAN-2005-0064] stable/main/binary-hppa/cupsys-pstoraster_1.1.14-5woody12_hppa.deb stable/main/binary-hppa/libcupsys2_1.1.14-5woody12_hppa.deb stable/main/binary-hppa/cupsys-bsd_1.1.14-5woody12_hppa.deb stable/main/binary-hppa/libcupsys2-dev_1.1.14-5woody12_hppa.deb stable/main/binary-hppa/cupsys_1.1.14-5woody12_hppa.deb stable/main/binary-hppa/cupsys-client_1.1.14-5woody12_hppa.deb cupsys (1.1.14-5woody12) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow that could overwrite the stack and hence cause the execution of arbitrary code as reported by iDEFENSE [pdftops/Decrypt.cxx, CAN-2005-0064] stable/main/binary-arm/cupsys-client_1.1.14-5woody12_arm.deb stable/main/binary-arm/cupsys_1.1.14-5woody12_arm.deb stable/main/binary-arm/libcupsys2_1.1.14-5woody12_arm.deb stable/main/binary-arm/cupsys-pstoraster_1.1.14-5woody12_arm.deb stable/main/binary-arm/libcupsys2-dev_1.1.14-5woody12_arm.deb stable/main/binary-arm/cupsys-bsd_1.1.14-5woody12_arm.deb cupsys (1.1.14-5woody12) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow that could overwrite the stack and hence cause the execution of arbitrary code as reported by iDEFENSE [pdftops/Decrypt.cxx, CAN-2005-0064] stable/main/binary-alpha/cupsys_1.1.14-5woody12_alpha.deb stable/main/binary-alpha/libcupsys2_1.1.14-5woody12_alpha.deb stable/main/binary-alpha/libcupsys2-dev_1.1.14-5woody12_alpha.deb stable/main/binary-alpha/cupsys-bsd_1.1.14-5woody12_alpha.deb stable/main/binary-alpha/cupsys-pstoraster_1.1.14-5woody12_alpha.deb stable/main/binary-alpha/cupsys-client_1.1.14-5woody12_alpha.deb cupsys (1.1.14-5woody12) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow that could overwrite the stack and hence cause the execution of arbitrary code as reported by iDEFENSE [pdftops/Decrypt.cxx, CAN-2005-0064] stable/main/binary-mipsel/cupsys_1.1.14-5woody12_mipsel.deb stable/main/source/cupsys_1.1.14-5woody12.dsc stable/main/binary-mipsel/cupsys-client_1.1.14-5woody12_mipsel.deb stable/main/binary-mipsel/libcupsys2_1.1.14-5woody12_mipsel.deb stable/main/binary-mipsel/cupsys-pstoraster_1.1.14-5woody12_mipsel.deb stable/main/binary-mipsel/cupsys-bsd_1.1.14-5woody12_mipsel.deb stable/main/source/cupsys_1.1.14-5woody12.diff.gz stable/main/binary-mipsel/libcupsys2-dev_1.1.14-5woody12_mipsel.deb cupsys (1.1.14-5woody12) stable-security; urgency=high * Non-maintainer upload by the Security Team * Fixed buffer overflow that could overwrite the stack and hence cause the execution of arbitrary code as reported by iDEFENSE [pdftops/Decrypt.cxx, CAN-2005-0064] stable/main/binary-sparc/cpio_2.4.2-39woody1_sparc.deb cpio (2.4.2-39woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Forward ported patch from Albert Chin-A-Young to fix broken permissions on output file with -O/-F [main.c, CAN-1999-1572, http://groups-beta.google.com/group/gnu.utils.bug/msg/4db088ee6031c9ec] stable/main/binary-s390/cpio_2.4.2-39woody1_s390.deb cpio (2.4.2-39woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Forward ported patch from Albert Chin-A-Young to fix broken permissions on output file with -O/-F [main.c, CAN-1999-1572, http://groups-beta.google.com/group/gnu.utils.bug/msg/4db088ee6031c9ec] stable/main/binary-powerpc/cpio_2.4.2-39woody1_powerpc.deb cpio (2.4.2-39woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Forward ported patch from Albert Chin-A-Young to fix broken permissions on output file with -O/-F [main.c, CAN-1999-1572, http://groups-beta.google.com/group/gnu.utils.bug/msg/4db088ee6031c9ec] stable/main/binary-mips/cpio_2.4.2-39woody1_mips.deb cpio (2.4.2-39woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Forward ported patch from Albert Chin-A-Young to fix broken permissions on output file with -O/-F [main.c, CAN-1999-1572, http://groups-beta.google.com/group/gnu.utils.bug/msg/4db088ee6031c9ec] stable/main/binary-m68k/cpio_2.4.2-39woody1_m68k.deb cpio (2.4.2-39woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Forward ported patch from Albert Chin-A-Young to fix broken permissions on output file with -O/-F [main.c, CAN-1999-1572, http://groups-beta.google.com/group/gnu.utils.bug/msg/4db088ee6031c9ec] stable/main/binary-ia64/cpio_2.4.2-39woody1_ia64.deb cpio (2.4.2-39woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Forward ported patch from Albert Chin-A-Young to fix broken permissions on output file with -O/-F [main.c, CAN-1999-1572, http://groups-beta.google.com/group/gnu.utils.bug/msg/4db088ee6031c9ec] stable/main/binary-i386/cpio_2.4.2-39woody1_i386.deb cpio (2.4.2-39woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Forward ported patch from Albert Chin-A-Young to fix broken permissions on output file with -O/-F [main.c, CAN-1999-1572, http://groups-beta.google.com/group/gnu.utils.bug/msg/4db088ee6031c9ec] stable/main/binary-hppa/cpio_2.4.2-39woody1_hppa.deb cpio (2.4.2-39woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Forward ported patch from Albert Chin-A-Young to fix broken permissions on output file with -O/-F [main.c, CAN-1999-1572, http://groups-beta.google.com/group/gnu.utils.bug/msg/4db088ee6031c9ec] stable/main/binary-arm/cpio_2.4.2-39woody1_arm.deb cpio (2.4.2-39woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Forward ported patch from Albert Chin-A-Young to fix broken permissions on output file with -O/-F [main.c, CAN-1999-1572, http://groups-beta.google.com/group/gnu.utils.bug/msg/4db088ee6031c9ec] stable/main/binary-alpha/cpio_2.4.2-39woody1_alpha.deb cpio (2.4.2-39woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Forward ported patch from Albert Chin-A-Young to fix broken permissions on output file with -O/-F [main.c, CAN-1999-1572, http://groups-beta.google.com/group/gnu.utils.bug/msg/4db088ee6031c9ec] stable/main/source/cpio_2.4.2-39woody1.diff.gz stable/main/source/cpio_2.4.2-39woody1.dsc stable/main/binary-mipsel/cpio_2.4.2-39woody1_mipsel.deb cpio (2.4.2-39woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Forward ported patch from Albert Chin-A-Young to fix broken permissions on output file with -O/-F [main.c, CAN-1999-1572, http://groups-beta.google.com/group/gnu.utils.bug/msg/4db088ee6031c9ec] stable/main/binary-sparc/chbg_1.5-1woody1_sparc.deb chbg (1.5-1woody1) stable-security; urgency=high * Non maintainer upload by The Security Team * Fix buffer overflow when reading scenario files. [config.c, CAN-2004-1264] stable/main/binary-s390/chbg_1.5-1woody1_s390.deb chbg (1.5-1woody1) stable-security; urgency=high * Non maintainer upload by The Security Team * Fix buffer overflow when reading scenario files. [config.c, CAN-2004-1264] stable/main/binary-powerpc/chbg_1.5-1woody1_powerpc.deb chbg (1.5-1woody1) stable-security; urgency=high * Non maintainer upload by The Security Team * Fix buffer overflow when reading scenario files. [config.c, CAN-2004-1264] stable/main/binary-mipsel/chbg_1.5-1woody1_mipsel.deb chbg (1.5-1woody1) stable-security; urgency=high * Non maintainer upload by The Security Team * Fix buffer overflow when reading scenario files. [config.c, CAN-2004-1264] stable/main/binary-mips/chbg_1.5-1woody1_mips.deb chbg (1.5-1woody1) stable-security; urgency=high * Non maintainer upload by The Security Team * Fix buffer overflow when reading scenario files. [config.c, CAN-2004-1264] stable/main/binary-m68k/chbg_1.5-1woody1_m68k.deb chbg (1.5-1woody1) stable-security; urgency=high * Non maintainer upload by The Security Team * Fix buffer overflow when reading scenario files. [config.c, CAN-2004-1264] stable/main/binary-ia64/chbg_1.5-1woody1_ia64.deb chbg (1.5-1woody1) stable-security; urgency=high * Non maintainer upload by The Security Team * Fix buffer overflow when reading scenario files. [config.c, CAN-2004-1264] stable/main/binary-arm/chbg_1.5-1woody1_arm.deb chbg (1.5-1woody1) stable-security; urgency=high * Non maintainer upload by The Security Team * Fix buffer overflow when reading scenario files. [config.c, CAN-2004-1264] stable/main/binary-alpha/chbg_1.5-1woody1_alpha.deb chbg (1.5-1woody1) stable-security; urgency=high * Non maintainer upload by The Security Team * Fix buffer overflow when reading scenario files. [config.c, CAN-2004-1264] stable/main/binary-i386/chbg_1.5-1woody1_i386.deb stable/main/source/chbg_1.5-1woody1.diff.gz stable/main/source/chbg_1.5-1woody1.dsc chbg (1.5-1woody1) stable-security; urgency=high * Non maintainer upload by The Security Team * Fix buffer overflow when reading scenario files. [config.c, CAN-2004-1264] stable/main/binary-all/cacti_0.6.7-2.2_all.deb stable/main/source/cacti_0.6.7-2.2.diff.gz stable/main/source/cacti_0.6.7-2.2.dsc cacti (0.6.7-2.2) stable-security; urgency=medium * Non-maintainer upload by Stable Release Manager * Bumped version number and rebuilt so that the package can make it into stable (DSA 164) stable/main/binary-sparc/bsmtpd_2.3pl8b-12woody1_sparc.deb bsmtpd (2.3pl8b-12woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Bastian Blank to properly sanitise addresses before they are used as commandline arguments [bsmtpd.c, CAN-2005-0107] stable/main/binary-s390/bsmtpd_2.3pl8b-12woody1_s390.deb bsmtpd (2.3pl8b-12woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Bastian Blank to properly sanitise addresses before they are used as commandline arguments [bsmtpd.c, CAN-2005-0107] stable/main/binary-powerpc/bsmtpd_2.3pl8b-12woody1_powerpc.deb bsmtpd (2.3pl8b-12woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Bastian Blank to properly sanitise addresses before they are used as commandline arguments [bsmtpd.c, CAN-2005-0107] stable/main/binary-mips/bsmtpd_2.3pl8b-12woody1_mips.deb bsmtpd (2.3pl8b-12woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Bastian Blank to properly sanitise addresses before they are used as commandline arguments [bsmtpd.c, CAN-2005-0107] stable/main/binary-m68k/bsmtpd_2.3pl8b-12woody1_m68k.deb bsmtpd (2.3pl8b-12woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Bastian Blank to properly sanitise addresses before they are used as commandline arguments [bsmtpd.c, CAN-2005-0107] stable/main/binary-ia64/bsmtpd_2.3pl8b-12woody1_ia64.deb bsmtpd (2.3pl8b-12woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Bastian Blank to properly sanitise addresses before they are used as commandline arguments [bsmtpd.c, CAN-2005-0107] stable/main/binary-i386/bsmtpd_2.3pl8b-12woody1_i386.deb bsmtpd (2.3pl8b-12woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Bastian Blank to properly sanitise addresses before they are used as commandline arguments [bsmtpd.c, CAN-2005-0107] stable/main/binary-hppa/bsmtpd_2.3pl8b-12woody1_hppa.deb bsmtpd (2.3pl8b-12woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Bastian Blank to properly sanitise addresses before they are used as commandline arguments [bsmtpd.c, CAN-2005-0107] stable/main/binary-arm/bsmtpd_2.3pl8b-12woody1_arm.deb bsmtpd (2.3pl8b-12woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Bastian Blank to properly sanitise addresses before they are used as commandline arguments [bsmtpd.c, CAN-2005-0107] stable/main/binary-alpha/bsmtpd_2.3pl8b-12woody1_alpha.deb bsmtpd (2.3pl8b-12woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Bastian Blank to properly sanitise addresses before they are used as commandline arguments [bsmtpd.c, CAN-2005-0107] stable/main/binary-mipsel/bsmtpd_2.3pl8b-12woody1_mipsel.deb stable/main/source/bsmtpd_2.3pl8b-12woody1.dsc stable/main/source/bsmtpd_2.3pl8b-12woody1.diff.gz bsmtpd (2.3pl8b-12woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Bastian Blank to properly sanitise addresses before they are used as commandline arguments [bsmtpd.c, CAN-2005-0107] stable/main/source/bmv_1.2-14.2.dsc stable/main/source/bmv_1.2-14.2.diff.gz stable/main/binary-i386/bmv_1.2-14.2_i386.deb bmv (1.2-14.2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Reverted upstream patch from Peter Samuelson [gsinterf.c] * Applied patch from Guillem Jover to fix insecure temporary file use [gsinterf.c, CAN-2003-0014] stable/main/binary-sparc/bidwatcher_1.3.3-1woody1_sparc.deb bidwatcher (1.3.3-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Ulf Haernhammar to fix format string vulnerability [netstuff.cpp, CAN-2005-0158] stable/main/binary-s390/bidwatcher_1.3.3-1woody1_s390.deb bidwatcher (1.3.3-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Ulf Haernhammar to fix format string vulnerability [netstuff.cpp, CAN-2005-0158] stable/main/binary-powerpc/bidwatcher_1.3.3-1woody1_powerpc.deb bidwatcher (1.3.3-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Ulf Haernhammar to fix format string vulnerability [netstuff.cpp, CAN-2005-0158] stable/main/binary-mips/bidwatcher_1.3.3-1woody1_mips.deb bidwatcher (1.3.3-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Ulf Haernhammar to fix format string vulnerability [netstuff.cpp, CAN-2005-0158] stable/main/binary-m68k/bidwatcher_1.3.3-1woody1_m68k.deb bidwatcher (1.3.3-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Ulf Haernhammar to fix format string vulnerability [netstuff.cpp, CAN-2005-0158] stable/main/binary-ia64/bidwatcher_1.3.3-1woody1_ia64.deb bidwatcher (1.3.3-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Ulf Haernhammar to fix format string vulnerability [netstuff.cpp, CAN-2005-0158] stable/main/binary-i386/bidwatcher_1.3.3-1woody1_i386.deb bidwatcher (1.3.3-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Ulf Haernhammar to fix format string vulnerability [netstuff.cpp, CAN-2005-0158] stable/main/binary-hppa/bidwatcher_1.3.3-1woody1_hppa.deb bidwatcher (1.3.3-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Ulf Haernhammar to fix format string vulnerability [netstuff.cpp, CAN-2005-0158] stable/main/binary-arm/bidwatcher_1.3.3-1woody1_arm.deb bidwatcher (1.3.3-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Ulf Haernhammar to fix format string vulnerability [netstuff.cpp, CAN-2005-0158] stable/main/binary-alpha/bidwatcher_1.3.3-1woody1_alpha.deb bidwatcher (1.3.3-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Ulf Haernhammar to fix format string vulnerability [netstuff.cpp, CAN-2005-0158] stable/main/source/bidwatcher_1.3.3-1woody1.dsc stable/main/binary-mipsel/bidwatcher_1.3.3-1woody1_mipsel.deb stable/main/source/bidwatcher_1.3.3-1woody1.diff.gz bidwatcher (1.3.3-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Backported patch by Ulf Haernhammar to fix format string vulnerability [netstuff.cpp, CAN-2005-0158] stable/main/binary-sparc/axel_1.0a-1woody1_sparc.deb axel (1.0a-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Ulf Härnhammar to fix remotely exploitible buffer overflow [conn.c, CAN-2005-0390] stable/main/binary-s390/axel_1.0a-1woody1_s390.deb axel (1.0a-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Ulf Härnhammar to fix remotely exploitible buffer overflow [conn.c, CAN-2005-0390] stable/main/binary-powerpc/axel_1.0a-1woody1_powerpc.deb axel (1.0a-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Ulf Härnhammar to fix remotely exploitible buffer overflow [conn.c, CAN-2005-0390] stable/main/binary-mipsel/axel_1.0a-1woody1_mipsel.deb axel (1.0a-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Ulf Härnhammar to fix remotely exploitible buffer overflow [conn.c, CAN-2005-0390] stable/main/binary-mips/axel_1.0a-1woody1_mips.deb axel (1.0a-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Ulf Härnhammar to fix remotely exploitible buffer overflow [conn.c, CAN-2005-0390] stable/main/binary-m68k/axel_1.0a-1woody1_m68k.deb axel (1.0a-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Ulf Härnhammar to fix remotely exploitible buffer overflow [conn.c, CAN-2005-0390] stable/main/binary-ia64/axel_1.0a-1woody1_ia64.deb axel (1.0a-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Ulf Härnhammar to fix remotely exploitible buffer overflow [conn.c, CAN-2005-0390] stable/main/binary-i386/axel_1.0a-1woody1_i386.deb axel (1.0a-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Ulf Härnhammar to fix remotely exploitible buffer overflow [conn.c, CAN-2005-0390] stable/main/binary-hppa/axel_1.0a-1woody1_hppa.deb axel (1.0a-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Ulf Härnhammar to fix remotely exploitible buffer overflow [conn.c, CAN-2005-0390] stable/main/binary-alpha/axel_1.0a-1woody1_alpha.deb axel (1.0a-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Ulf Härnhammar to fix remotely exploitible buffer overflow [conn.c, CAN-2005-0390] stable/main/binary-arm/axel_1.0a-1woody1_arm.deb stable/main/source/axel_1.0a-1woody1.diff.gz stable/main/binary-all/axel-kapt_1.0a-1woody1_all.deb stable/main/source/axel_1.0a-1woody1.dsc axel (1.0a-1woody1) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Ulf Härnhammar to fix remotely exploitible buffer overflow [conn.c, CAN-2005-0390] stable/main/source/awstats_4.0-0.woody.2.dsc stable/main/source/awstats_4.0-0.woody.2.diff.gz stable/main/binary-all/awstats_4.0-0.woody.2_all.deb awstats (4.0-0.woody.2) stable-security; urgency=high * Non-maintainer upload by the Security Team * Applied patch by Martin Pitt to fix a cross-site scripting vulnerability [wwwroot/cgi-bin/awstats.pl, CAN-2005-0363] stable/main/binary-sparc/abuse_2.00+-3woody4_sparc.deb abuse (2.00+-3woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Adjusted debian/patches/13_tmpfiles.diff so it can regain privileges after dropping them in the fix for unsafe file creation [imlib/specs.c, abuse/src/cache.c, CAN-2005-0099] stable/main/binary-s390/abuse_2.00+-3woody4_s390.deb abuse (2.00+-3woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Adjusted debian/patches/13_tmpfiles.diff so it can regain privileges after dropping them in the fix for unsafe file creation [imlib/specs.c, abuse/src/cache.c, CAN-2005-0099] stable/main/binary-powerpc/abuse_2.00+-3woody4_powerpc.deb abuse (2.00+-3woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Adjusted debian/patches/13_tmpfiles.diff so it can regain privileges after dropping them in the fix for unsafe file creation [imlib/specs.c, abuse/src/cache.c, CAN-2005-0099] stable/main/binary-mipsel/abuse_2.00+-3woody4_mipsel.deb abuse (2.00+-3woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Adjusted debian/patches/13_tmpfiles.diff so it can regain privileges after dropping them in the fix for unsafe file creation [imlib/specs.c, abuse/src/cache.c, CAN-2005-0099] stable/main/binary-mips/abuse_2.00+-3woody4_mips.deb abuse (2.00+-3woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Adjusted debian/patches/13_tmpfiles.diff so it can regain privileges after dropping them in the fix for unsafe file creation [imlib/specs.c, abuse/src/cache.c, CAN-2005-0099] stable/main/binary-m68k/abuse_2.00+-3woody4_m68k.deb abuse (2.00+-3woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Adjusted debian/patches/13_tmpfiles.diff so it can regain privileges after dropping them in the fix for unsafe file creation [imlib/specs.c, abuse/src/cache.c, CAN-2005-0099] stable/main/binary-ia64/abuse_2.00+-3woody4_ia64.deb abuse (2.00+-3woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Adjusted debian/patches/13_tmpfiles.diff so it can regain privileges after dropping them in the fix for unsafe file creation [imlib/specs.c, abuse/src/cache.c, CAN-2005-0099] stable/main/binary-hppa/abuse_2.00+-3woody4_hppa.deb abuse (2.00+-3woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Adjusted debian/patches/13_tmpfiles.diff so it can regain privileges after dropping them in the fix for unsafe file creation [imlib/specs.c, abuse/src/cache.c, CAN-2005-0099] stable/main/binary-arm/abuse_2.00+-3woody4_arm.deb abuse (2.00+-3woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Adjusted debian/patches/13_tmpfiles.diff so it can regain privileges after dropping them in the fix for unsafe file creation [imlib/specs.c, abuse/src/cache.c, CAN-2005-0099] stable/main/binary-alpha/abuse_2.00+-3woody4_alpha.deb abuse (2.00+-3woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Adjusted debian/patches/13_tmpfiles.diff so it can regain privileges after dropping them in the fix for unsafe file creation [imlib/specs.c, abuse/src/cache.c, CAN-2005-0099] stable/main/source/abuse_2.00+-3woody4.diff.gz stable/main/binary-i386/abuse_2.00+-3woody4_i386.deb stable/main/source/abuse_2.00+-3woody4.dsc abuse (2.00+-3woody4) stable-security; urgency=high * Non-maintainer upload by the Security Team * Adjusted debian/patches/13_tmpfiles.diff so it can regain privileges after dropping them in the fix for unsafe file creation [imlib/specs.c, abuse/src/cache.c, CAN-2005-0099] stable/main/binary-sparc/php3_3.0.18-23.1woody3_sparc.deb stable/main/binary-sparc/php3-cgi-ldap_3.0.18-23.1woody3_sparc.deb stable/main/binary-sparc/php3-cgi-mhash_3.0.18-23.1woody3_sparc.deb stable/main/binary-sparc/php3-mysql_3.0.18-23.1woody3_sparc.deb stable/main/binary-sparc/php3-xml_3.0.18-23.1woody3_sparc.deb stable/main/binary-sparc/php3-cgi_3.0.18-23.1woody3_sparc.deb stable/main/binary-sparc/php3-mhash_3.0.18-23.1woody3_sparc.deb stable/main/binary-sparc/php3-cgi-snmp_3.0.18-23.1woody3_sparc.deb stable/main/binary-sparc/php3-cgi-mysql_3.0.18-23.1woody3_sparc.deb stable/main/binary-sparc/php3-ldap_3.0.18-23.1woody3_sparc.deb stable/main/binary-sparc/php3-cgi-xml_3.0.18-23.1woody3_sparc.deb stable/main/binary-sparc/php3-dev_3.0.18-23.1woody3_sparc.deb stable/main/binary-sparc/php3-cgi-gd_3.0.18-23.1woody3_sparc.deb stable/main/binary-sparc/php3-snmp_3.0.18-23.1woody3_sparc.deb stable/main/binary-sparc/php3-imap_3.0.18-23.1woody3_sparc.deb stable/main/binary-sparc/php3-magick_3.0.18-23.1woody3_sparc.deb stable/main/binary-sparc/php3-cgi-magick_3.0.18-23.1woody3_sparc.deb stable/main/binary-sparc/php3-cgi-imap_3.0.18-23.1woody3_sparc.deb stable/main/binary-sparc/php3-gd_3.0.18-23.1woody3_sparc.deb php3 (3:3.0.18-23.1woody3) stable-security; urgency=high * Backport fixes to functions/image.c from the 4.3 branch: - Avoid infinite loops in the php3_skip_variable() function and the php3_read_APP() function which were being called indirectly by getimagesize() function. As this function is commonly called with untrusted data, this becomes a remote DoS. [functions/image.c] - Addresses CAN-2005-0525 (for refrence, PHP 3.0.18 is not vulnerable to CAN-2005-0524, the sister bug to this one) stable/main/binary-s390/php3-cgi-imap_3.0.18-23.1woody3_s390.deb stable/main/binary-s390/php3-cgi-magick_3.0.18-23.1woody3_s390.deb stable/main/binary-s390/php3-ldap_3.0.18-23.1woody3_s390.deb stable/main/binary-s390/php3-cgi-snmp_3.0.18-23.1woody3_s390.deb stable/main/binary-s390/php3-mysql_3.0.18-23.1woody3_s390.deb stable/main/binary-s390/php3-cgi-gd_3.0.18-23.1woody3_s390.deb stable/main/binary-s390/php3-cgi_3.0.18-23.1woody3_s390.deb stable/main/binary-s390/php3-magick_3.0.18-23.1woody3_s390.deb stable/main/binary-s390/php3-cgi-ldap_3.0.18-23.1woody3_s390.deb stable/main/binary-s390/php3-snmp_3.0.18-23.1woody3_s390.deb stable/main/binary-s390/php3-cgi-mysql_3.0.18-23.1woody3_s390.deb stable/main/binary-s390/php3-cgi-mhash_3.0.18-23.1woody3_s390.deb stable/main/binary-s390/php3-imap_3.0.18-23.1woody3_s390.deb stable/main/binary-s390/php3-cgi-xml_3.0.18-23.1woody3_s390.deb stable/main/binary-s390/php3-gd_3.0.18-23.1woody3_s390.deb stable/main/binary-s390/php3-dev_3.0.18-23.1woody3_s390.deb stable/main/binary-s390/php3-mhash_3.0.18-23.1woody3_s390.deb stable/main/binary-s390/php3_3.0.18-23.1woody3_s390.deb stable/main/binary-s390/php3-xml_3.0.18-23.1woody3_s390.deb php3 (3:3.0.18-23.1woody3) stable-security; urgency=high * Backport fixes to functions/image.c from the 4.3 bra