Accepted dia 0.94.0-17.1ubuntu3 (source)
Martin Pitt
martin.pitt at ubuntu.com
Tue May 23 16:50:10 BST 2006
Accepted:
OK: dia_0.94.0-17.1ubuntu3.dsc
-> Component: main Section: graphics
OK: dia_0.94.0-17.1ubuntu3.diff.gz
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Tue, 23 May 2006 17:08:57 +0200
Source: dia
Binary: dia-libs dia-common dia-gnome dia
Architecture: source
Version: 0.94.0-17.1ubuntu3
Distribution: dapper
Urgency: low
Maintainer: Debian Dia Team <pkg-dia-team at lists.alioth.debian.org>
Changed-By: Martin Pitt <martin.pitt at ubuntu.com>
Description:
dia - Diagram editor
dia-common - Diagram editor (common files)
dia-gnome - Diagram editor (GNOME version)
dia-libs - Diagram editor (library files)
Changes:
dia (0.94.0-17.1ubuntu3) dapper; urgency=low
.
* SECURITY UPDATE: Arbitrary code execution with crafted dia file names and
files.
* Add debian/patches/10_formatstring_vulnerabilities.dpatch:
- Fix several format string vulnerabilities in the file name handling and
error messages about file content.
- CVE-2006-2480, CVE-2006-2453
Files:
7a1830af875d3675434671ca42676967 956 graphics optional dia_0.94.0-17.1ubuntu3.dsc
4f40bb0e2ef5c32c7d40b4dd878bda31 185955 graphics optional dia_0.94.0-17.1ubuntu3.diff.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)
iD8DBQFEcyYfDecnbV4Fd/IRAlrkAKDRa0SvTMi4T46oSu5BW2f4tduNrACg1XnD
S/vCcGSy+qbZrp4AVc+13+8=
=ZmOJ
-----END PGP SIGNATURE-----
More information about the dapper-changes
mailing list