r36860 - in /packages/unstable/rhythmbox/debian: changelog patches/series

pochu at users.alioth.debian.org pochu at users.alioth.debian.org
Mon Mar 4 20:01:31 UTC 2013 

Author: pochu
Date: Mon Mar  4 20:01:30 2013
New Revision: 36860

URL: http://svn.debian.org/wsvn/pkg-gnome/?sc=1&rev=36860
Log:
* Non-maintainer upload.
* Urgency high for security fix
* fix insecure directory for python module import in context plugin
  (Closes: #616673)
  - debian/patches/CVE-2012-3355.patch: update context plugin to use
    tempfile.mkdtemp() instead of /tmp/context. Patch thanks to Andreas
    Henriksson (used theUbuntu security fix instead of the upstream commit
    because the upstream commit was a mix of functional changes and a
    security fix))
  - CVE-2012-3355

Modified:
    packages/unstable/rhythmbox/debian/changelog
    packages/unstable/rhythmbox/debian/patches/series

Modified: packages/unstable/rhythmbox/debian/changelog
URL: http://svn.debian.org/wsvn/pkg-gnome/packages/unstable/rhythmbox/debian/changelog?rev=36860&op=diff
==============================================================================
--- packages/unstable/rhythmbox/debian/changelog [utf-8] (original)
+++ packages/unstable/rhythmbox/debian/changelog [utf-8] Mon Mar  4 20:01:30 2013
@@ -1,3 +1,18 @@
+rhythmbox (2.97-2.1) unstable; urgency=high
+
+  * Non-maintainer upload.
+  * Urgency high for security fix
+  * fix insecure directory for python module import in context plugin
+    (Closes: #616673)
+    - debian/patches/CVE-2012-3355.patch: update context plugin to use
+      tempfile.mkdtemp() instead of /tmp/context. Patch thanks to Andreas
+      Henriksson (used theUbuntu security fix instead of the upstream commit
+      because the upstream commit was a mix of functional changes and a
+      security fix))
+    - CVE-2012-3355
+
+ -- Scott Kitterman <scott at kitterman.com>  Fri, 27 Jul 2012 16:41:52 -0400
+
 rhythmbox (2.97-2) unstable; urgency=low
 
   [ Jon Dowland ]

Modified: packages/unstable/rhythmbox/debian/patches/series
URL: http://svn.debian.org/wsvn/pkg-gnome/packages/unstable/rhythmbox/debian/patches/series?rev=36860&op=diff
==============================================================================
--- packages/unstable/rhythmbox/debian/patches/series [utf-8] (original)
+++ packages/unstable/rhythmbox/debian/patches/series [utf-8] Mon Mar  4 20:01:30 2013
@@ -1,1 +1,2 @@
 rb-mb5.patch
+CVE-2012-3355.patch

More information about the pkg-gnome-commits mailing list