[SCM] Debian packaging for XML-Security-C annotated tag, debian/1.5.1-3+squeeze3, created. debian/1.5.1-3+squeeze3

Russ Allbery rra at debian.org
Fri Jun 28 05:17:43 UTC 2013 

The annotated tag, debian/1.5.1-3+squeeze3 has been created
        at  3a4df75b069b005e5c920404215e6f746ba53430 (tag)
   tagging  c6cbb5d6572015e65f9b916429d8303571d06af1 (commit)
  replaces  debian/1.5.1-3+squeeze2
 tagged by  Russ Allbery
        on  Thu Jun 27 21:56:22 2013 -0700

- Shortlog ------------------------------------------------------------
Debian release 1.5.1-3+squeeze3

Format: 1.8
Date: Thu, 27 Jun 2013 15:15:18 -0700
Source: xml-security-c
Binary: libxml-security-c15 libxml-security-c-dev
Architecture: source i386
Version: 1.5.1-3+squeeze3
Distribution: oldstable-security
Urgency: high
Maintainer: Debian Shib Team <pkg-shibboleth-devel at lists.alioth.debian.org>
Changed-By: Russ Allbery <rra at debian.org>
Description:
 libxml-security-c-dev - C++ library for XML Digital Signatures (development)
 libxml-security-c15 - C++ library for XML Digital Signatures (runtime)
Closes: 714241
Changes:
 xml-security-c (1.5.1-3+squeeze3) oldstable-security; urgency=high
 .
   * The attempted fix to address CVE-2013-2154 introduced the possibility
     of a heap overflow, possibly leading to arbitrary code execution, in
     the processing of malformed XPointer expressions in the XML Signature
     Reference processing code.  Apply upstream patch to fix that heap
     overflow.  (Closes: #714241, CVE-2013-2210)
Checksums-Sha1:
 2a80886cd3e7cdaf9b949c72c6ffe503d7c4f427 1130 xml-security-c_1.5.1-3+squeeze3.dsc
 0baa3d982be6e10174b3c44ec6fdbe5844ccefd4 11620 xml-security-c_1.5.1-3+squeeze3.diff.gz
 d6ad35760bc00e601e1f57b2dcccde1b9279c716 353922 libxml-security-c15_1.5.1-3+squeeze3_i386.deb
 40f1e58a8c278dacca0a9f6ccbb2499aad20148c 141932 libxml-security-c-dev_1.5.1-3+squeeze3_i386.deb
Checksums-Sha256:
 e42a83c4a6484ec6e73743683332a395191998d1df761e1a88c2e76c0ca6ffbd 1130 xml-security-c_1.5.1-3+squeeze3.dsc
 b1e4d83a267a40316e30f1b961b51e7cb7a9b2b7fb82929f2cfb396136936b1f 11620 xml-security-c_1.5.1-3+squeeze3.diff.gz
 887e28919a86e19cbdd6a496ed06c9b366366374ae00a78a8637da7f1b2397d3 353922 libxml-security-c15_1.5.1-3+squeeze3_i386.deb
 956a172a4debd28ef6cc61b7b3803a72f65bf9357fb4c4f9eec7b5444f254e66 141932 libxml-security-c-dev_1.5.1-3+squeeze3_i386.deb
Files:
 ed1ad13b816a5d23a108f3d984f41293 1130 libs extra xml-security-c_1.5.1-3+squeeze3.dsc
 d224b034021957819fa8f08f3058a971 11620 libs extra xml-security-c_1.5.1-3+squeeze3.diff.gz
 7e60f8d3ffe67987d98a773986d985b2 353922 libs extra libxml-security-c15_1.5.1-3+squeeze3_i386.deb
 c0fc7af171374aa6e1ba762d797460ff 141932 libdevel extra libxml-security-c-dev_1.5.1-3+squeeze3_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQEcBAABCAAGBQJRzReGAAoJEH2AMVxXNt51JwsH/0BaCjJFEgNuV11jFexLvlby
PvnjNMYZFHXWl3v5OmqZIizgk9QQ74wIMxDkdYG1/T9VcsFT7W1tKH4q1kYGvtk6
s8Z97GaeDdqtvrRN4Nh20hBTK3h79c00ktVijgSiHpBqwRyT3FiHhjvNq55g4qW3
Q+ebqouFdqxZ6RucOzE/pd93gR4LAk1K7AvIiFMkvDd5qubR+y2dQlPf32wiF2Cf
0/SHqvT4C1+WF+aJHDkP2JoER1MdZfcSHLGVz5nl4VW8cyxYpgmUwJ5jBp4KqUxY
Em65oqv06p7qfWZ2VJi0bgDnBDTltkPbD9ZsE4u2mzFPHCIDV+Q+2/pCC1W8oOk=
=0l3D
-----END PGP SIGNATURE-----

Russ Allbery (1):
      Apply upstream patch for heap overflow (CVE-2013-2210)

-----------------------------------------------------------------------

-- 
Debian packaging for XML-Security-C

More information about the Pkg-shibboleth-devel mailing list