[Pkg-voip-commits] r5016 - in /pwlib/branches: ./ etch/ etch/debian/ etch/debian/patches/ lenny/ lenny/debian/ lenny/debian/patches/ sarge/ sarge/debian/ sarge/debian/patches/
kilian at alioth.debian.org
kilian at alioth.debian.org
Tue Dec 4 11:24:37 UTC 2007
Author: kilian
Date: Tue Dec 4 11:24:37 2007
New Revision: 5016
URL: http://svn.debian.org/wsvn/pkg-voip/?sc=1&rev=5016
Log:
add upload branches fixing CVE-2007-4897
Added:
pwlib/branches/
pwlib/branches/build-area (with props)
pwlib/branches/etch/
- copied from r5015, pwlib/tags/1.10.2-2/
pwlib/branches/etch/debian/patches/CVE-2007-4897.dpatch
- copied unchanged from r5015, pwlib/trunk/debian/patches/CVE-2007-4897.dpatch
pwlib/branches/lenny/
- copied from r5015, pwlib/tags/1.10.7~dfsg1-4/
pwlib/branches/lenny/debian/patches/CVE-2007-4897.dpatch
- copied unchanged from r5015, pwlib/trunk/debian/patches/CVE-2007-4897.dpatch
pwlib/branches/sarge/
- copied from r5015, pwlib/tags/1.8.4-1/
pwlib/branches/sarge/debian/patches/CVE-2007-4897.dpatch
- copied unchanged from r5015, pwlib/trunk/debian/patches/CVE-2007-4897.dpatch
pwlib/branches/tarballs (with props)
Modified:
pwlib/branches/etch/debian/changelog
pwlib/branches/etch/debian/patches/00list
pwlib/branches/lenny/debian/changelog
pwlib/branches/lenny/debian/patches/00list
pwlib/branches/sarge/debian/changelog
pwlib/branches/sarge/debian/patches/00list
Added: pwlib/branches/build-area
URL: http://svn.debian.org/wsvn/pkg-voip/pwlib/branches/build-area?rev=5016&op=file
==============================================================================
--- pwlib/branches/build-area (added)
+++ pwlib/branches/build-area Tue Dec 4 11:24:37 2007
@@ -1,0 +1,1 @@
+link ../build-area
Propchange: pwlib/branches/build-area
------------------------------------------------------------------------------
svn:special = *
Modified: pwlib/branches/etch/debian/changelog
URL: http://svn.debian.org/wsvn/pkg-voip/pwlib/branches/etch/debian/changelog?rev=5016&op=diff
==============================================================================
--- pwlib/branches/etch/debian/changelog (original)
+++ pwlib/branches/etch/debian/changelog Tue Dec 4 11:24:37 2007
@@ -1,3 +1,11 @@
+pwlib (1.10.2-2+etch1) stable-security; urgency=high
+
+ * Fix remote denial of service vulnerability caused
+ by a call to PString::vsprintf if the used object already
+ contained more than 1000 characters (CVE-2007-4897; Closes: #454133).
+
+ -- Kilian Krause <kilian at debian.org> Tue, 4 Dec 2007 12:20:23 +0100
+
pwlib (1.10.2-2) unstable; urgency=high
* Correct the versioned dependency to the lib we're building right now to
Modified: pwlib/branches/etch/debian/patches/00list
URL: http://svn.debian.org/wsvn/pkg-voip/pwlib/branches/etch/debian/patches/00list?rev=5016&op=diff
==============================================================================
--- pwlib/branches/etch/debian/patches/00list (original)
+++ pwlib/branches/etch/debian/patches/00list Tue Dec 4 11:24:37 2007
@@ -3,3 +3,4 @@
04_names
05_hppa
06_plugins_shared
+CVE-2007-4897
Modified: pwlib/branches/lenny/debian/changelog
URL: http://svn.debian.org/wsvn/pkg-voip/pwlib/branches/lenny/debian/changelog?rev=5016&op=diff
==============================================================================
--- pwlib/branches/lenny/debian/changelog (original)
+++ pwlib/branches/lenny/debian/changelog Tue Dec 4 11:24:37 2007
@@ -1,3 +1,11 @@
+pwlib (1.10.7~dfsg1-4+lenny1) testing-security; urgency=high
+
+ * Fix remote denial of service vulnerability caused
+ by a call to PString::vsprintf if the used object already
+ contained more than 1000 characters (CVE-2007-4897; Closes: #454133).
+
+ -- Kilian Krause <kilian at debian.org> Tue, 4 Dec 2007 12:20:23 +0100
+
pwlib (1.10.7~dfsg1-4) unstable; urgency=high
* Add missing libpt.so.* compat symlinks. The libpt.so.1.10 is supposed to
Modified: pwlib/branches/lenny/debian/patches/00list
URL: http://svn.debian.org/wsvn/pkg-voip/pwlib/branches/lenny/debian/patches/00list?rev=5016&op=diff
==============================================================================
--- pwlib/branches/lenny/debian/patches/00list (original)
+++ pwlib/branches/lenny/debian/patches/00list Tue Dec 4 11:24:37 2007
@@ -4,3 +4,4 @@
05_hppa
06_plugins_shared
v4l2_plugin_on_i386
+CVE-2007-4897
Modified: pwlib/branches/sarge/debian/changelog
URL: http://svn.debian.org/wsvn/pkg-voip/pwlib/branches/sarge/debian/changelog?rev=5016&op=diff
==============================================================================
--- pwlib/branches/sarge/debian/changelog (original)
+++ pwlib/branches/sarge/debian/changelog Tue Dec 4 11:24:37 2007
@@ -1,3 +1,11 @@
+pwlib (1.8.4-1+sarge1) oldstable-security; urgency=high
+
+ * Fix remote denial of service vulnerability caused
+ by a call to PString::vsprintf if the used object already
+ contained more than 1000 characters (CVE-2007-4897; Closes: #454133).
+
+ -- Kilian Krause <kilian at debian.org> Tue, 4 Dec 2007 12:20:23 +0100
+
pwlib (1.8.4-1) unstable; urgency=low
* New upstream release, codename Mimas.
Modified: pwlib/branches/sarge/debian/patches/00list
URL: http://svn.debian.org/wsvn/pkg-voip/pwlib/branches/sarge/debian/patches/00list?rev=5016&op=diff
==============================================================================
--- pwlib/branches/sarge/debian/patches/00list (original)
+++ pwlib/branches/sarge/debian/patches/00list Tue Dec 4 11:24:37 2007
@@ -5,3 +5,4 @@
05_hppa
06_plugins_shared
07_nostrip
+CVE-2007-4897
Added: pwlib/branches/tarballs
URL: http://svn.debian.org/wsvn/pkg-voip/pwlib/branches/tarballs?rev=5016&op=file
==============================================================================
--- pwlib/branches/tarballs (added)
+++ pwlib/branches/tarballs Tue Dec 4 11:24:37 2007
@@ -1,0 +1,1 @@
+link ../tarballs
Propchange: pwlib/branches/tarballs
------------------------------------------------------------------------------
svn:special = *
More information about the Pkg-voip-commits
mailing list