r36860 - in /packages/unstable/rhythmbox/debian: changelog patches/series
pochu at users.alioth.debian.org
pochu at users.alioth.debian.org
Mon Mar 4 20:01:31 UTC 2013
Author: pochu
Date: Mon Mar 4 20:01:30 2013
New Revision: 36860
URL: http://svn.debian.org/wsvn/pkg-gnome/?sc=1&rev=36860
Log:
* Non-maintainer upload.
* Urgency high for security fix
* fix insecure directory for python module import in context plugin
(Closes: #616673)
- debian/patches/CVE-2012-3355.patch: update context plugin to use
tempfile.mkdtemp() instead of /tmp/context. Patch thanks to Andreas
Henriksson (used theUbuntu security fix instead of the upstream commit
because the upstream commit was a mix of functional changes and a
security fix))
- CVE-2012-3355
Modified:
packages/unstable/rhythmbox/debian/changelog
packages/unstable/rhythmbox/debian/patches/series
Modified: packages/unstable/rhythmbox/debian/changelog
URL: http://svn.debian.org/wsvn/pkg-gnome/packages/unstable/rhythmbox/debian/changelog?rev=36860&op=diff
==============================================================================
--- packages/unstable/rhythmbox/debian/changelog [utf-8] (original)
+++ packages/unstable/rhythmbox/debian/changelog [utf-8] Mon Mar 4 20:01:30 2013
@@ -1,3 +1,18 @@
+rhythmbox (2.97-2.1) unstable; urgency=high
+
+ * Non-maintainer upload.
+ * Urgency high for security fix
+ * fix insecure directory for python module import in context plugin
+ (Closes: #616673)
+ - debian/patches/CVE-2012-3355.patch: update context plugin to use
+ tempfile.mkdtemp() instead of /tmp/context. Patch thanks to Andreas
+ Henriksson (used theUbuntu security fix instead of the upstream commit
+ because the upstream commit was a mix of functional changes and a
+ security fix))
+ - CVE-2012-3355
+
+ -- Scott Kitterman <scott at kitterman.com> Fri, 27 Jul 2012 16:41:52 -0400
+
rhythmbox (2.97-2) unstable; urgency=low
[ Jon Dowland ]
Modified: packages/unstable/rhythmbox/debian/patches/series
URL: http://svn.debian.org/wsvn/pkg-gnome/packages/unstable/rhythmbox/debian/patches/series?rev=36860&op=diff
==============================================================================
--- packages/unstable/rhythmbox/debian/patches/series [utf-8] (original)
+++ packages/unstable/rhythmbox/debian/patches/series [utf-8] Mon Mar 4 20:01:30 2013
@@ -1,1 +1,2 @@
rb-mb5.patch
+CVE-2012-3355.patch
More information about the pkg-gnome-commits
mailing list