Hosting Provided By

debian-changes-digest Digest V2007 #96

From: <debian-changes-digest-request(at)lists.debian.org>
Date: Wed Aug 22 2007 - 04:09:46 EDT

Content-Type: text/plain

debian-changes-digest Digest Volume 2007 : Issue 96

Today's Topics:

  Accepted php4 4:4.3.10-22 (source i3  [ sean finney  ]
  Accepted libexif 0.6.9-6sarge1 (sour  [ Steve Kemp  ]
  Accepted postgresql 7.4.7-6sarge5 (s  [ Martin Pitt  ]
  Accepted bind9 1:9.2.4-1sarge3 (sour  [ Moritz Muehlenhoff  ]
  Accepted vlc 0.8.1.svn20050314-1sarg  [ Sam Hocevar (Debian packages)  ]

Date: Wed, 22 Aug 2007 07:56:45 +0000
From: sean finney <seanius@debian.org>
To: debian-changes@lists.debian.org
Subject: Accepted php4 4:4.3.10-22 (source i386 all) Message-Id: <E1INl53-0001yB-29@ries.debian.org>

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA1

Format: 1.7
Date: Sat, 30 Jun 2007 15:42:26 +0200
Source: php4
Binary: php4-cgi php4-sybase php4-recode libapache-mod-php4 php4-cli php4-dev libapache2-mod-php4 php4-snmp php4-odbc php4-xslt php4-mysql php4-domxml php4-gd php4-ldap php4-imap php4-common php4-curl php4 php4-pear php4-mcal php4-mhash Architecture: source i386 all
Version: 4:4.3.10-22
Distribution: oldstable-security
Urgency: low
Maintainer: Adam Conrad <adconrad@0c3.net> Changed-By: sean finney <seanius@debian.org> Description:
libapache-mod-php4 - server-side, HTML-embedded scripting language (apache 1.3 module) libapache2-mod-php4 - server-side, HTML-embedded scripting language (apache 2.0 module)

 php4       - server-side, HTML-embedded scripting language (meta-package)
 php4-cgi   - server-side, HTML-embedded scripting language (CGI binary)
 php4-cli   - command-line interpreter for the php4 scripting language
 php4-common - Common files for packages built from the php4 source
 php4-curl  - CURL module for php4
 php4-dev   - Files for PHP4 module development
 php4-domxml - XMLv2 module for php4
 php4-gd    - GD module for php4
 php4-imap  - IMAP module for php4
 php4-ldap  - LDAP module for php4
 php4-mcal  - MCAL calendar module for php4
 php4-mhash - MHASH module for php4
 php4-mysql - MySQL module for php4
 php4-odbc  - ODBC module for php4
 php4-pear  - PEAR - PHP Extension and Application Repository
 php4-recode - Character recoding module for php4
 php4-snmp  - SNMP module for php4

php4-sybase - Sybase / MS SQL Server module for php4 php4-xslt - XSLT module for php4
Closes: 354683
Changes:
php4 (4:4.3.10-22) oldstable-security; urgency=low .

NMU prepared for the security team by the package maintainer.
The following security issue is addressed with this update:
- CVE-2007-1864: Buffer overflow in the bundled libxmlrpc library. (Thanks to Joe Orton from redhat for sharing the patch.)
- CVE-2006-0207: HTTP response splitting vulnerabilities. This was reported to not affect this version of PHP, but it has been independantly verified that it does (closes: #354683).
- CVE-2006-4486: Int. overflows in memory mgmt code for 64bit architectures. Files: 275d3bf152c7eb24f9054726f259dd19 1686 web optional php4_4.3.10-22.dsc 8b08b97d85d96ce4a6f0ba89ef8ed143 288318 web optional php4_4.3.10-22.diff.gz 676b990017df9375e0ea1e3b4c1c67da 168870 web optional php4-common_4.3.10-22_i386.deb b7e9671a31a898da1b4219c9b6185bbc 1614348 web optional libapache-mod-php4_4.3.10-22_i386.deb 432a163c9c38c44b56d3f27824025a2c 17898 web optional php4-curl_4.3.10-22_i386.deb 03ff79a59154f66184d0fcf4e8a379aa 37234 web optional php4-domxml_4.3.10-22_i386.deb bdf0858fe4420e0cf60069bff264a41a 32384 web optional php4-gd_4.3.10-22_i386.deb 5c07a7052ac4f02447ad77b19464a603 37402 web optional php4-imap_4.3.10-22_i386.deb b1fd1e18a808f5cb6d3a8f5479a5051c 19950 web optional php4-ldap_4.3.10-22_i386.deb c73e8db0b128547cc48c3a7c5774aa44 17668 web optional php4-mcal_4.3.10-22_i386.deb 14dadeb2766bf4f19bf9baf963dc73a9 8036 web optional php4-mhash_4.3.10-22_i386.deb 7a559e0f4fad6d665dddca9b11f6b63a 21214 web optional php4-mysql_4.3.10-22_i386.deb 9d2d1eefc0b491c8fe9a751e67976e46 27142 web optional php4-odbc_4.3.10-22_i386.deb 30d3f5bd63c502fe916d72f09f018239 7702 web optional php4-recode_4.3.10-22_i386.deb 0e22226e9175a10a31c8c62e30b80896 16396 web optional php4-xslt_4.3.10-22_i386.deb fbe8760da5b8bcac850a9b252158bfca 13154 web optional php4-snmp_4.3.10-22_i386.deb 162dbfd71fa586711386fff21f6f57d7 21378 web optional php4-sybase_4.3.10-22_i386.deb fb172effe3844f33b959219546070273 3209432 web optional php4-cgi_4.3.10-22_i386.deb 4e876ed4ec3ff6b24af1624d303d2c7f 1609704 web optional php4-cli_4.3.10-22_i386.deb 3ac78abeaf7e06d7f28a40731e0e6a0e 325160 devel optional php4-dev_4.3.10-22_i386.deb 9d108ee7b6f85ba2097e8b676529c9c3 1612354 web optional libapache2-mod-php4_4.3.10-22_i386.deb 8de38b3066c2a9e5e18cb5a4efff4856 1146 web optional php4_4.3.10-22_all.deb 9542829963ecc9a84d0c5ae8e6d5543c 249994 web optional php4-pear_4.3.10-22_all.deb

-----BEGIN PGP SIGNATURE-----

Version: GnuPG v1.4.6 (GNU/Linux)

Do you need help?

iD8DBQFGhm+OynjLPm522B0RAtBJAJ0b0XLkfear0k2qRFbRPEPP3xkGtgCfVU6B PSjFEYC8QCwmOk8fFNCtupM=
=Z8vP
-----END PGP SIGNATURE-----
Accepted:
libapache-mod-php4_4.3.10-22_i386.deb
  to pool/main/p/php4/libapache-mod-php4_4.3.10-22_i386.deb libapache2-mod-php4_4.3.10-22_i386.deb
  to pool/main/p/php4/libapache2-mod-php4_4.3.10-22_i386.deb php4-cgi_4.3.10-22_i386.deb
  to pool/main/p/php4/php4-cgi_4.3.10-22_i386.deb php4-cli_4.3.10-22_i386.deb
  to pool/main/p/php4/php4-cli_4.3.10-22_i386.deb php4-common_4.3.10-22_i386.deb
  to pool/main/p/php4/php4-common_4.3.10-22_i386.deb php4-curl_4.3.10-22_i386.deb
  to pool/main/p/php4/php4-curl_4.3.10-22_i386.deb php4-dev_4.3.10-22_i386.deb
  to pool/main/p/php4/php4-dev_4.3.10-22_i386.deb php4-domxml_4.3.10-22_i386.deb
  to pool/main/p/php4/php4-domxml_4.3.10-22_i386.deb php4-gd_4.3.10-22_i386.deb
  to pool/main/p/php4/php4-gd_4.3.10-22_i386.deb php4-imap_4.3.10-22_i386.deb
  to pool/main/p/php4/php4-imap_4.3.10-22_i386.deb php4-ldap_4.3.10-22_i386.deb
  to pool/main/p/php4/php4-ldap_4.3.10-22_i386.deb php4-mcal_4.3.10-22_i386.deb
  to pool/main/p/php4/php4-mcal_4.3.10-22_i386.deb php4-mhash_4.3.10-22_i386.deb
  to pool/main/p/php4/php4-mhash_4.3.10-22_i386.deb php4-mysql_4.3.10-22_i386.deb
  to pool/main/p/php4/php4-mysql_4.3.10-22_i386.deb php4-odbc_4.3.10-22_i386.deb
  to pool/main/p/php4/php4-odbc_4.3.10-22_i386.deb php4-pear_4.3.10-22_all.deb
  to pool/main/p/php4/php4-pear_4.3.10-22_all.deb php4-recode_4.3.10-22_i386.deb
  to pool/main/p/php4/php4-recode_4.3.10-22_i386.deb php4-snmp_4.3.10-22_i386.deb
  to pool/main/p/php4/php4-snmp_4.3.10-22_i386.deb php4-sybase_4.3.10-22_i386.deb
  to pool/main/p/php4/php4-sybase_4.3.10-22_i386.deb php4-xslt_4.3.10-22_i386.deb
  to pool/main/p/php4/php4-xslt_4.3.10-22_i386.deb php4_4.3.10-22.diff.gz
  to pool/main/p/php4/php4_4.3.10-22.diff.gz php4_4.3.10-22.dsc
  to pool/main/p/php4/php4_4.3.10-22.dsc php4_4.3.10-22_all.deb
  to pool/main/p/php4/php4_4.3.10-22_all.deb

Date: Wed, 22 Aug 2007 07:56:37 +0000
From: Steve Kemp <skx@debian.org>
To: debian-changes@lists.debian.org
Subject: Accepted libexif 0.6.9-6sarge1 (source i386) Message-Id: <E1INl4v-0001xR-HZ@ries.debian.org>

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA1

Format: 1.7
Date: Wed, 13 Jun 2007 19:32:32 +0000
Source: libexif
Binary: libexif10 libexif-dev
Architecture: source i386
Version: 0.6.9-6sarge1
Distribution: oldstable-security
Urgency: high
Maintainer: Frederic Peters <fpeters@debian.org> Changed-By: Steve Kemp <skx@debian.org>
Description:
libexif-dev - library to parse EXIF files (development files) libexif10 - library to parse EXIF files Changes:
libexif (0.6.9-6sarge1) oldstable-security; urgency=high .

Non-maintainer upload by The Security Team
Fix integer overflow in loading images. [CVE-2006-4168] Files: 42d25baee97586f3ea1498a8f48ccf4a 591 libs optional libexif_0.6.9-6sarge1.dsc 7f1c3acc1bd7a5cbba3d5902243641f3 4786 libs optional libexif_0.6.9-6sarge1.diff.gz d068596d9648d1ce07eab1cc960cc64c 67106 libdevel optional libexif-dev_0.6.9-6sarge1_i386.deb c160054570be46b37aea3eab9b4eaccb 81852 libs optional libexif10_0.6.9-6sarge1_i386.deb

-----BEGIN PGP SIGNATURE-----

Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFGqgFYhuANDBmkLRkRAryCAJ947IWx8WhbRZ9OgvvGybgly+IEpQCfYlXI BHxVRjuthu+yc6UHAomERbo=
=L1QV
-----END PGP SIGNATURE-----
Accepted:
libexif-dev_0.6.9-6sarge1_i386.deb
  to pool/main/libe/libexif/libexif-dev_0.6.9-6sarge1_i386.deb libexif10_0.6.9-6sarge1_i386.deb
  to pool/main/libe/libexif/libexif10_0.6.9-6sarge1_i386.deb libexif_0.6.9-6sarge1.diff.gz
  to pool/main/libe/libexif/libexif_0.6.9-6sarge1.diff.gz libexif_0.6.9-6sarge1.dsc
  to pool/main/libe/libexif/libexif_0.6.9-6sarge1.dsc

Do you need more help?

Date: Wed, 22 Aug 2007 07:56:52 +0000
From: Martin Pitt <mpitt@debian.org>
To: debian-changes@lists.debian.org
Subject: Accepted postgresql 7.4.7-6sarge5 (source i386 all) Message-Id: <E1INl5A-0001yb-Ml@ries.debian.org>

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA1

Format: 1.7
Date: Fri, 20 Apr 2007 11:30:38 +0200
Source: postgresql
Binary: postgresql-client libecpg4 libpgtcl-dev libpq3 postgresql-doc libecpg-dev postgresql-dev postgresql libpgtcl postgresql-contrib Architecture: source i386 all
Version: 7.4.7-6sarge5
Distribution: oldstable-security
Urgency: high
Maintainer: Martin Pitt <mpitt@debian.org> Changed-By: Martin Pitt <mpitt@debian.org> Description:
libecpg-dev - development files for ECPG (Embedded PostgreSQL for C) libecpg4 - run-time library for ECPG programs libpgtcl - Tcl procedural language, library and front-end for PostgreSQL libpgtcl-dev - Tcl library for PostgreSQL - development files libpq3 - PostgreSQL C client library postgresql - object-relational SQL database management system

 postgresql-client - front-end programs for PostgreSQL
 postgresql-contrib - additional facilities for PostgreSQL
 postgresql-dev - development files for libpq (PostgreSQL library)
 postgresql-doc - documentation for the PostgreSQL database management system

Changes:
postgresql (7.4.7-6sarge5) oldstable-security; urgency=high .

SECURITY UPDATE: User privilege escalation.
Add debian/patches/62secure_search_path.path:
- Support explicit placement of the temporary-table schema within search_path. This is needed to allow a security-definer function to set a truly secure value of search_path. Without it, a malicious user can use temporary objects to execute code with the privileges of the security-definer function. Even pushing the temp schema to the back of the search path is not quite good enough, because a function or operator at the back of the path might still capture control from one nearer the front due to having a more exact datatype match. Hence, disable searching the temp schema altogether for functions and operators. [CVE-2007-2138]
- Patch backported from 7.4.17 CVS: http://developer.postgresql.org/cvsweb.cgi/pgsql/src/backend/catalog/namespace.c.diff?r1=1.58;r2=1.58.2.1
- Add test cases for the placement of the temp schema in the search path. Backported from 7.4.17 CVS: http://developer.postgresql.org/cvsweb.cgi/pgsql/src/test/regress/expected/temp.out.diff?r1=1.9;r2=1.9.2.1 http://developer.postgresql.org/cvsweb.cgi/pgsql/src/test/regress/sql/temp.sql.diff?r1=1.5;r2=1.5.4.1
Add debian/docs.patch: manpage and HTML documentation patches which explain the changes above. Upstream keeps them in the SGML source, but since we do not build this and instead use the pre-built files which come in man.tar.gz and postgresql.tar.gz, we cannot use a regular debian/patches/ patch for this.
debian/rules: Apply debian/docs.patch in the install target to update the files in the binary install directories. Files: 42364a5bc0fbda1e5ec7100b8f3fc8b9 985 misc optional postgresql_7.4.7-6sarge5.dsc 6546035d00ff6536cb8b6dbdf8491659 197037 misc optional postgresql_7.4.7-6sarge5.diff.gz f4af6b5d537415580d0f2bd7e625f28f 2269634 doc optional postgresql-doc_7.4.7-6sarge5_all.deb e92888dde398de6637cc6686ca900f7e 3801758 misc optional postgresql_7.4.7-6sarge5_i386.deb cdac43dd3b3e669c524f939db8f5c755 540308 misc optional postgresql-client_7.4.7-6sarge5_i386.deb b89b25ac78829c550789fc0c042a0969 517604 libdevel optional postgresql-dev_7.4.7-6sarge5_i386.deb 71a0df3eb8af64d10eae8413a3aa02b7 129396 libs optional libpq3_7.4.7-6sarge5_i386.deb 2d2732964bfb537535af6d9ebc77e33c 96294 libs optional libecpg4_7.4.7-6sarge5_i386.deb dc044eab8600c9dc4acc68314529a365 208340 libdevel optional libecpg-dev_7.4.7-6sarge5_i386.deb 31ecb4321020e974b743d5b001f0d845 79188 libs optional libpgtcl_7.4.7-6sarge5_i386.deb 1afed3a2e4530040e358392bcda5f710 56800 libdevel optional libpgtcl-dev_7.4.7-6sarge5_i386.deb 9228e22f7d6b7e9f9ae9e69cba579ed9 627058 misc optional postgresql-contrib_7.4.7-6sarge5_i386.deb

-----BEGIN PGP SIGNATURE-----

Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFGZwJ3Xm3vHE4uyloRAmswAKDbvsUMosxiDfHt6uW36o9c949qkwCg1/Wt ZylAheV3VoVQKUZEMvuz4W0=
=HnD5
-----END PGP SIGNATURE-----
Accepted:
libecpg-dev_7.4.7-6sarge5_i386.deb
  to pool/main/p/postgresql/libecpg-dev_7.4.7-6sarge5_i386.deb libecpg4_7.4.7-6sarge5_i386.deb
  to pool/main/p/postgresql/libecpg4_7.4.7-6sarge5_i386.deb libpgtcl-dev_7.4.7-6sarge5_i386.deb
  to pool/main/p/postgresql/libpgtcl-dev_7.4.7-6sarge5_i386.deb libpgtcl_7.4.7-6sarge5_i386.deb
  to pool/main/p/postgresql/libpgtcl_7.4.7-6sarge5_i386.deb libpq3_7.4.7-6sarge5_i386.deb
  to pool/main/p/postgresql/libpq3_7.4.7-6sarge5_i386.deb postgresql-client_7.4.7-6sarge5_i386.deb   to pool/main/p/postgresql/postgresql-client_7.4.7-6sarge5_i386.deb postgresql-contrib_7.4.7-6sarge5_i386.deb   to pool/main/p/postgresql/postgresql-contrib_7.4.7-6sarge5_i386.deb postgresql-dev_7.4.7-6sarge5_i386.deb
  to pool/main/p/postgresql/postgresql-dev_7.4.7-6sarge5_i386.deb postgresql-doc_7.4.7-6sarge5_all.deb
  to pool/main/p/postgresql/postgresql-doc_7.4.7-6sarge5_all.deb postgresql_7.4.7-6sarge5.diff.gz
  to pool/main/p/postgresql/postgresql_7.4.7-6sarge5.diff.gz postgresql_7.4.7-6sarge5.dsc
  to pool/main/p/postgresql/postgresql_7.4.7-6sarge5.dsc postgresql_7.4.7-6sarge5_i386.deb
  to pool/main/p/postgresql/postgresql_7.4.7-6sarge5_i386.deb

Date: Wed, 22 Aug 2007 07:56:57 +0000
From: Moritz Muehlenhoff <jmm@debian.org> To: debian-changes@lists.debian.org
Subject: Accepted bind9 1:9.2.4-1sarge3 (source i386 all) Message-Id: <E1INl5F-0001yz-N6@ries.debian.org>

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA1

Can we help you?

Format: 1.7
Date: Wed, 25 Jul 2007 21:30:55 +0000
Source: bind9
Binary: libisccc0 libdns16 lwresd bind9-doc dnsutils bind9 libbind-dev libisc7 libisccfg0 bind9-host liblwres1 Architecture: source i386 all
Version: 1:9.2.4-1sarge3
Distribution: oldstable-security
Urgency: high
Maintainer: LaMont Jones <lamont@debian.org> Changed-By: Moritz Muehlenhoff <jmm@debian.org> Description:

 bind9      - Internet Domain Name Server
 bind9-doc  - Documentation for BIND
 bind9-host - Version of 'host' bundled with BIND 9.X
 dnsutils   - Clients provided with BIND

libbind-dev - Static Libraries and Headers used by BIND

 libdns16   - DNS Shared Library used by BIND
 libisc7    - ISC Shared Library used by BIND
Can't find what you're looking for? 
In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software:Learn more about Pantek's Technical Support offerings
Place an order for 24/7/365 Technical Support here
Learn more about Pantek, who we are, and what we do
Chat with a Live Operator
Related lists.debian.org Links
debian-announce
debian-apache
debian-arm-changes
debian-beowulf
debian-boot
debian-cd
debian-cd-vendors
debian-changes
debian-changes-digest
debian-isp
debian-kde
debian-laptop
debian-mirrors-announce
debian-news
debian-security
debian-security-announce
debian-testing
debian-user
debian-user-digest
Request more information about Pantek
 libisccc0  - Command Channel Library used by BIND
 libisccfg0 - Config File Handling Library used by BIND
 liblwres1  - Lightweight Resolver Library used by BIND
 lwresd     - Lightweight Resolver Daemon

Changes:
bind9 (1:9.2.4-1sarge3) oldstable-security; urgency=high .

Backport fix for CVE-2007-2926 Files: 1fa2bc8b46a0411cd491c0473105a342 741 net optional bind9_9.2.4-1sarge3.dsc 7adc3b3d1c7c87908a73e7d2456985bb 101841 net optional bind9_9.2.4-1sarge3.diff.gz 0340dcd085472e06ec9dad363f80ebeb 156958 doc optional bind9-doc_9.2.4-1sarge3_all.deb 64ca5ef977558b9285edf566a94814cd 276544 net optional bind9_9.2.4-1sarge3_i386.deb 597a51f25f9fd80d7caabc1769d31c1d 93858 net standard bind9-host_9.2.4-1sarge3_i386.deb ed02b89b85afd0a0673b6cd5da14b851 955636 libdevel optional libbind-dev_9.2.4-1sarge3_i386.deb bf2027e9d8f0c7248d5b9c2ff9456363 459738 libs standard libdns16_9.2.4-1sarge3_i386.deb 2f168be9dc8375bfa1e3ff3fae2a6a63 154000 libs standard libisc7_9.2.4-1sarge3_i386.deb 360f7264f25229d894e7f54d2823d15f 91854 libs standard liblwres1_9.2.4-1sarge3_i386.deb c539fdb6acc7b6ed46a39fa153eab1c5 76272 libs optional libisccc0_9.2.4-1sarge3_i386.deb 663bea9b196c95975cce3bedc955d95d 88566 libs optional libisccfg0_9.2.4-1sarge3_i386.deb 70d5cd53971f696002b8442900eae50a 158670 net standard dnsutils_9.2.4-1sarge3_i386.deb dbe15064e007ab38e99b0a6fc9cca0fa 182562 net optional lwresd_9.2.4-1sarge3_i386.deb

-----BEGIN PGP SIGNATURE-----

Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFGp8K4Xm3vHE4uyloRAt/pAKDTfyw0mZMVU0qB8JVTXAJWcAzLVgCeNdaE HMqbtUQDhaVhhkXBA2N2KJE=
=vVGA
-----END PGP SIGNATURE-----
Accepted:
bind9-doc_9.2.4-1sarge3_all.deb
  to pool/main/b/bind9/bind9-doc_9.2.4-1sarge3_all.deb bind9-host_9.2.4-1sarge3_i386.deb
  to pool/main/b/bind9/bind9-host_9.2.4-1sarge3_i386.deb bind9_9.2.4-1sarge3.diff.gz
  to pool/main/b/bind9/bind9_9.2.4-1sarge3.diff.gz bind9_9.2.4-1sarge3.dsc
  to pool/main/b/bind9/bind9_9.2.4-1sarge3.dsc bind9_9.2.4-1sarge3_i386.deb
  to pool/main/b/bind9/bind9_9.2.4-1sarge3_i386.deb dnsutils_9.2.4-1sarge3_i386.deb
  to pool/main/b/bind9/dnsutils_9.2.4-1sarge3_i386.deb libbind-dev_9.2.4-1sarge3_i386.deb
  to pool/main/b/bind9/libbind-dev_9.2.4-1sarge3_i386.deb libdns16_9.2.4-1sarge3_i386.deb
  to pool/main/b/bind9/libdns16_9.2.4-1sarge3_i386.deb libisc7_9.2.4-1sarge3_i386.deb
  to pool/main/b/bind9/libisc7_9.2.4-1sarge3_i386.deb libisccc0_9.2.4-1sarge3_i386.deb
  to pool/main/b/bind9/libisccc0_9.2.4-1sarge3_i386.deb libisccfg0_9.2.4-1sarge3_i386.deb
  to pool/main/b/bind9/libisccfg0_9.2.4-1sarge3_i386.deb liblwres1_9.2.4-1sarge3_i386.deb
  to pool/main/b/bind9/liblwres1_9.2.4-1sarge3_i386.deb lwresd_9.2.4-1sarge3_i386.deb
  to pool/main/b/bind9/lwresd_9.2.4-1sarge3_i386.deb

Date: Wed, 22 Aug 2007 07:57:14 +0000
From: Sam Hocevar (Debian packages) <sam+deb@zoy.org> To: debian-changes@lists.debian.org
Subject: Accepted vlc 0.8.1.svn20050314-1sarge3 (source i386) Message-Id: <E1INl5W-00020z-6b@ries.debian.org>

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA1

Format: 1.7
Date: Wed, 20 Jun 2007 22:08:33 +0000
Source: vlc
Binary: vlc-esd wxvlc vlc-plugin-sdl kvlc gvlc vlc-plugin-alsa gnome-vlc vlc-qt vlc-ggi mozilla-plugin-vlc vlc vlc-gnome vlc-gtk vlc-sdl vlc-alsa vlc-plugin-svgalib vlc-glide vlc-plugin-ggi qvlc vlc-plugin-esd vlc-plugin-glide vlc-plugin-arts libvlc0-dev Architecture: source i386
Version: 0.8.1.svn20050314-1sarge3
Distribution: oldstable-security
Urgency: high
Maintainer: Sam Hocevar (Debian packages) <sam+deb@zoy.org> Changed-By: Sam Hocevar (Debian packages) <sam+deb@zoy.org> Description:

 gnome-vlc  - GNOME frontend for VLC (dummy legacy package)
 gvlc       - GTK+ frontend for VLC (dummy legacy package)
 kvlc       - KDE frontend for VLC (dummy legacy package)

libvlc0-dev - development files for VLC mozilla-plugin-vlc - multimedia plugin for Mozilla based on VLC

 qvlc       - Qt frontend for VLC (dummy legacy package)
 vlc        - multimedia player for all audio and video formats
 vlc-alsa   - ALSA audio output plugin for VLC (dummy legacy package)
 vlc-esd    - Esound audio output plugin for VLC (dummy legacy package)
 vlc-ggi    - GGI video output plugin for VLC (dummy legacy package)
 vlc-glide  - Glide video output plugin for VLC (dummy legacy package)
 vlc-gnome  - GNOME frontend for VLC (dummy legacy package)
 vlc-gtk    - GTK+ frontend for VLC (dummy legacy package)
 vlc-plugin-alsa - ALSA audio output plugin for VLC
 vlc-plugin-arts - aRts audio output plugin for VLC
 vlc-plugin-esd - Esound audio output plugin for VLC
 vlc-plugin-ggi - GGI video output plugin for VLC
 vlc-plugin-glide - Glide video output plugin for VLC
 vlc-plugin-sdl - SDL video and audio output plugin for VLC
 vlc-plugin-svgalib - SVGAlib video output plugin for VLC
 vlc-qt     - Qt frontend for VLC (dummy legacy package)
 vlc-sdl    - SDL video and audio output plugin for VLC (dummy legacy package)
 wxvlc      - wxWindows frontend for VLC

Closes: 429726
Changes:
vlc (0.8.1.svn20050314-1sarge3) oldstable-security; urgency=high .

modules/codec/theora.c modules/codec/vorbis.c modules/services_discovery/sap.c: + Fix format string vulnerabilities (VideoLAN-SA-0702) (Closes: #429726).
modules/misc/svg.c: + Fix memory leaks that could cause denials of service.
modules/demux/avi/libavi.c: + Fix a buffer overflow.
modules/codec/flac.c modules/demux/wav.c modules/misc/freetype.c src/video_output/vout_subpictures.c src/audio_output/dec.c: + Fix missing checks that could cause denials of service. Files: 5902b04c1e1b526a1bc5817e70daa34e 1916 graphics optional vlc_0.8.1.svn20050314-1sarge3.dsc 0c881ec5261a7c670ab35e2068b3a4b3 3877 graphics optional vlc_0.8.1.svn20050314-1sarge3.diff.gz e469192f315a024ef1d5f7ea8fbb17ce 5248706 graphics optional vlc_0.8.1.svn20050314-1sarge3_i386.deb fbce776d067f9c7c44479d7613169b23 736546 libdevel optional libvlc0-dev_0.8.1.svn20050314-1sarge3_i386.deb f36ad7b97dc9009b1860e6933634d84a 1266 oldlibs optional gnome-vlc_0.8.1.svn20050314-1sarge3_i386.deb cedc5bb40e56d3ab2a67775730335885 1270 oldlibs optional gvlc_0.8.1.svn20050314-1sarge3_i386.deb 46c8c84550748386e1986a81a2cbc053 4666 graphics optional vlc-plugin-esd_0.8.1.svn20050314-1sarge3_i386.deb eac10b6ca4426e778c67a9c6d2f9b80a 10476 graphics optional vlc-plugin-alsa_0.8.1.svn20050314-1sarge3_i386.deb a215ef7fa994cb7c2c62605e6e993e00 10590 graphics optional vlc-plugin-sdl_0.8.1.svn20050314-1sarge3_i386.deb f2a51c5a740904f6033a10e120a86fae 6394 graphics optional vlc-plugin-ggi_0.8.1.svn20050314-1sarge3_i386.deb 46d191653b8a18d4ce5470180eb09ff9 4670 graphics optional vlc-plugin-glide_0.8.1.svn20050314-1sarge3_i386.deb 808716d59e2a962c1fe39992178886cc 962 oldlibs optional qvlc_0.8.1.svn20050314-1sarge3_i386.deb 413d8a7978830fc2393037a4c61a5997 4422 graphics optional vlc-plugin-arts_0.8.1.svn20050314-1sarge3_i386.deb 22c0dd3f865f8cb6b5033d1eb5fccc55 582404 graphics optional mozilla-plugin-vlc_0.8.1.svn20050314-1sarge3_i386.deb 4c4ec5557139c28341c8ea7c307fee55 974 oldlibs optional kvlc_0.8.1.svn20050314-1sarge3_i386.deb ff9641f1ed96fd04d35dd67987f5560c 4760 graphics optional vlc-plugin-svgalib_0.8.1.svn20050314-1sarge3_i386.deb 190fe495c41bcb7ccf218c8691d0228a 302670 graphics optional wxvlc_0.8.1.svn20050314-1sarge3_i386.deb 1d2cfec3d34a277e797f2cbae71bdf82 874 oldlibs optional vlc-alsa_0.8.1.svn20050314-1sarge3_i386.deb 18a7414979e45f307d69e56c148b6f6e 874 oldlibs optional vlc-esd_0.8.1.svn20050314-1sarge3_i386.deb d949314bc1b63b771abbb5d77751c989 876 oldlibs optional vlc-ggi_0.8.1.svn20050314-1sarge3_i386.deb 12e0f9d1a1e0510c78a43cc23d4f133b 878 oldlibs optional vlc-glide_0.8.1.svn20050314-1sarge3_i386.deb d4e1708e97bff2da33e8a5e16486c12b 874 oldlibs optional vlc-gnome_0.8.1.svn20050314-1sarge3_i386.deb 97338ecea63d9de8d1f6eba834b3921e 866 oldlibs optional vlc-gtk_0.8.1.svn20050314-1sarge3_i386.deb 62374cc455429e596e6a841a81073cfc 862 oldlibs optional vlc-qt_0.8.1.svn20050314-1sarge3_i386.deb ed943da06bea3318189df46fa6a7cb67 880 oldlibs optional vlc-sdl_0.8.1.svn20050314-1sarge3_i386.deb

-----BEGIN PGP SIGNATURE-----

Version: GnuPG v1.4.1 (GNU/Linux)

Don't know where to look next?

iD8DBQFGeb4xfPP1rylJn2ERAuffAJ43nP64EtzOBWYqP8ItX9BCnBwR/gCfcUCw PKh7l3RsJk/jxVWiqImrJWk=
=4M5T
-----END PGP SIGNATURE-----
Accepted:
gnome-vlc_0.8.1.svn20050314-1sarge3_i386.deb   to pool/main/v/vlc/gnome-vlc_0.8.1.svn20050314-1sarge3_i386.deb gvlc_0.8.1.svn20050314-1sarge3_i386.deb
  to pool/main/v/vlc/gvlc_0.8.1.svn20050314-1sarge3_i386.deb kvlc_0.8.1.svn20050314-1sarge3_i386.deb
  to pool/main/v/vlc/kvlc_0.8.1.svn20050314-1sarge3_i386.deb libvlc0-dev_0.8.1.svn20050314-1sarge3_i386.deb   to pool/main/v/vlc/libvlc0-dev_0.8.1.svn20050314-1sarge3_i386.deb mozilla-plugin-vlc_0.8.1.svn20050314-1sarge3_i386.deb   to pool/main/v/vlc/mozilla-plugin-vlc_0.8.1.svn20050314-1sarge3_i386.deb qvlc_0.8.1.svn20050314-1sarge3_i386.deb
  to pool/main/v/vlc/qvlc_0.8.1.svn20050314-1sarge3_i386.deb vlc-alsa_0.8.1.svn20050314-1sarge3_i386.deb   to pool/main/v/vlc/vlc-alsa_0.8.1.svn20050314-1sarge3_i386.deb vlc-esd_0.8.1.svn20050314-1sarge3_i386.deb   to pool/main/v/vlc/vlc-esd_0.8.1.svn20050314-1sarge3_i386.deb vlc-ggi_0.8.1.svn20050314-1sarge3_i386.deb   to pool/main/v/vlc/vlc-ggi_0.8.1.svn20050314-1sarge3_i386.deb vlc-glide_0.8.1.svn20050314-1sarge3_i386.deb   to pool/main/v/vlc/vlc-glide_0.8.1.svn20050314-1sarge3_i386.deb vlc-gnome_0.8.1.svn20050314-1sarge3_i386.deb   to pool/main/v/vlc/vlc-gnome_0.8.1.svn20050314-1sarge3_i386.deb vlc-gtk_0.8.1.svn20050314-1sarge3_i386.deb   to pool/main/v/vlc/vlc-gtk_0.8.1.svn20050314-1sarge3_i386.deb vlc-plugin-alsa_0.8.1.svn20050314-1sarge3_i386.deb   to pool/main/v/vlc/vlc-plugin-alsa_0.8.1.svn20050314-1sarge3_i386.deb vlc-plugin-arts_0.8.1.svn20050314-1sarge3_i386.deb   to pool/main/v/vlc/vlc-plugin-arts_0.8.1.svn20050314-1sarge3_i386.deb vlc-plugin-esd_0.8.1.svn20050314-1sarge3_i386.deb   to pool/main/v/vlc/vlc-plugin-esd_0.8.1.svn20050314-1sarge3_i386.deb vlc-plugin-ggi_0.8.1.svn20050314-1sarge3_i386.deb   to pool/main/v/vlc/vlc-plugin-ggi_0.8.1.svn20050314-1sarge3_i386.deb vlc-plugin-glide_0.8.1.svn20050314-1sarge3_i386.deb   to pool/main/v/vlc/vlc-plugin-glide_0.8.1.svn20050314-1sarge3_i386.deb vlc-plugin-sdl_0.8.1.svn20050314-1sarge3_i386.deb   to pool/main/v/vlc/vlc-plugin-sdl_0.8.1.svn20050314-1sarge3_i386.deb vlc-plugin-svgalib_0.8.1.svn20050314-1sarge3_i386.deb

  to pool/main/v/vlc/vlc-plugin-svgalib_0.8.1.svn20050314-1sarge3_i386.deb
vlc-qt_0.8.1.svn20050314-1sarge3_i386.deb
  to pool/main/v/vlc/vlc-qt_0.8.1.svn20050314-1sarge3_i386.deb

vlc-sdl_0.8.1.svn20050314-1sarge3_i386.deb   to pool/main/v/vlc/vlc-sdl_0.8.1.svn20050314-1sarge3_i386.deb vlc_0.8.1.svn20050314-1sarge3.diff.gz
  to pool/main/v/vlc/vlc_0.8.1.svn20050314-1sarge3.diff.gz vlc_0.8.1.svn20050314-1sarge3.dsc
  to pool/main/v/vlc/vlc_0.8.1.svn20050314-1sarge3.dsc vlc_0.8.1.svn20050314-1sarge3_i386.deb
  to pool/main/v/vlc/vlc_0.8.1.svn20050314-1sarge3_i386.deb wxvlc_0.8.1.svn20050314-1sarge3_i386.deb   to pool/main/v/vlc/wxvlc_0.8.1.svn20050314-1sarge3_i386.deb

Date: Wed, 22 Aug 2007 07:56:24 +0000
From: Stephen Gran <sgran@debian.org>
To: debian-changes@lists.debian.org
Subject: Accepted clamav 0.90.1-3etch4 (source i386 all) Message-Id: <E1INl4i-0001wA-Dn@ries.debian.org>

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA1

Format: 1.7
Date: Sun, 15 Jul 2007 18:01:48 +0100
Source: clamav
Binary: clamav libclamav-dev clamav-dbg clamav-milter clamav-base clamav-freshclam clamav-testfiles clamav-daemon libclamav2 clamav-docs Architecture: source i386 all
Version: 0.90.1-3etch4
Distribution: stable-security
Urgency: high
Maintainer: Stephen Gran <sgran@debian.org> Changed-By: Stephen Gran <sgran@debian.org> Description:
clamav - antivirus scanner for Unix

 clamav-base - base package for clamav, an anti-virus utility for Unix
 clamav-daemon - antivirus scanner daemon
Confused? Frustrated? 
In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software:Learn more about Pantek's Technical Support offerings
Place an order for 24/7/365 Technical Support here
Learn more about Pantek, who we are, and what we do
Chat with a Live Operator
Related lists.debian.org Links
debian-announce
debian-apache
debian-arm-changes
debian-beowulf
debian-boot
debian-cd
debian-cd-vendors
debian-changes
debian-changes-digest
debian-isp
debian-kde
debian-laptop
debian-mirrors-announce
debian-news
debian-security
debian-security-announce
debian-testing
debian-user
debian-user-digest
Request more information about Pantek
 clamav-dbg - debug symbols for clamav
 clamav-docs - documentation package for clamav, an anti-virus utility for Unix
 clamav-freshclam - downloads clamav virus databases from the Internet
 clamav-milter - antivirus scanner for sendmail
 clamav-testfiles - use these files to test that your Antivirus program works

libclamav-dev - clam Antivirus library development files libclamav2 - virus scanner library
Changes:
clamav (0.90.1-3etch4) stable-security; urgency=high .

[CVE-2007-3725]: libclamav/unrar/unrarvm.c: fix NULL pointer dereference Files: 4322482c1fb82b108aa43cb9db54efd1 886 utils optional clamav_0.90.1-3etch4.dsc a5c2bfc45cc81fd1f85c3bfca605c2eb 201403 utils optional clamav_0.90.1-3etch4.diff.gz cf1df37f823c25b62bb341da58b13cb9 201448 utils optional clamav-base_0.90.1-3etch4_all.deb 548abf569b73b094e3807888f2f5038d 157626 utils optional clamav-testfiles_0.90.1-3etch4_all.deb fda3003977260e1b5cea1547167d492c 1003244 utils optional clamav-docs_0.90.1-3etch4_all.deb 156a20aba1b91eb24f8a8b668e3a46cd 365686 libs optional libclamav2_0.90.1-3etch4_i386.deb 51d46ae39ed2a720e584b5b52b2d3409 853720 utils optional clamav_0.90.1-3etch4_i386.deb d07358cba9e467fdf2159739016d00a7 174618 utils optional clamav-daemon_0.90.1-3etch4_i386.deb d9f5a5d77235452c19669d71a6a13a93 9300044 utils optional clamav-freshclam_0.90.1-3etch4_i386.deb c863d6372b97823c5cd052b22ade00b0 174752 utils extra clamav-milter_0.90.1-3etch4_i386.deb b1380aa6e0fe222916605f08a89c16f9 367668 libdevel optional libclamav-dev_0.90.1-3etch4_i386.deb 2987ddb46e82447f8e6e20d33080aa37 603774 utils extra clamav-dbg_0.90.1-3etch4_i386.deb

-----BEGIN PGP SIGNATURE-----

Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFGnTqZSYIMHOpZA44RAr6zAJ4ofK0ZC/Xd9p9T54yjFMLNoeZocQCgv6Zu FWNOocheUMcDAOKuRs8SgxI=
=gdrh
-----END PGP SIGNATURE-----
Accepted:
clamav-base_0.90.1-3etch4_all.deb
  to pool/main/c/clamav/clamav-base_0.90.1-3etch4_all.deb clamav-daemon_0.90.1-3etch4_i386.deb
  to pool/main/c/clamav/clamav-daemon_0.90.1-3etch4_i386.deb clamav-dbg_0.90.1-3etch4_i386.deb
  to pool/main/c/clamav/clamav-dbg_0.90.1-3etch4_i386.deb clamav-docs_0.90.1-3etch4_all.deb
  to pool/main/c/clamav/clamav-docs_0.90.1-3etch4_all.deb clamav-freshclam_0.90.1-3etch4_i386.deb
  to pool/main/c/clamav/clamav-freshclam_0.90.1-3etch4_i386.deb clamav-milter_0.90.1-3etch4_i386.deb
  to pool/main/c/clamav/clamav-milter_0.90.1-3etch4_i386.deb clamav-testfiles_0.90.1-3etch4_all.deb
  to pool/main/c/clamav/clamav-testfiles_0.90.1-3etch4_all.deb clamav_0.90.1-3etch4.diff.gz
  to pool/main/c/clamav/clamav_0.90.1-3etch4.diff.gz clamav_0.90.1-3etch4.dsc
  to pool/main/c/clamav/clamav_0.90.1-3etch4.dsc clamav_0.90.1-3etch4_i386.deb
  to pool/main/c/clamav/clamav_0.90.1-3etch4_i386.deb libclamav-dev_0.90.1-3etch4_i386.deb
  to pool/main/c/clamav/libclamav-dev_0.90.1-3etch4_i386.deb libclamav2_0.90.1-3etch4_i386.deb
  to pool/main/c/clamav/libclamav2_0.90.1-3etch4_i386.deb

End of debian-changes-digest Digest V2007 Issue #96

Received on Wed Aug 22 04:05:28 2007

Call Pantek today for Open Source Technical Support at 1-877-546-8934 - 24/7/365

This message: [ Message body ]
Next message: debian-changes-digest-request(at)lists.debian.org: "debian-changes-digest Digest V2007 #97"
Previous message: debian-changes-digest-request(at)lists.debian.org: "debian-changes-digest Digest V2007 #95"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Sun Oct 07 2007 - 07:58:53 EDT