[Pkg-voip-commits] r5038 - in /pwlib-titan/branches: ./ lenny/ lenny/debian/changelog lenny/debian/patches/00list lenny/debian/patches/CVE-2007-4896.dpatch

[kilian at alioth.debian.org]

Author: kilian
Date: Wed Dec  5 08:26:05 2007
New Revision: 5038

URL: http://svn.debian.org/wsvn/pkg-voip/?sc=1&rev=5038
Log:
prepare upload to testing-security fixing CVE-2007-4896.

Added:
    pwlib-titan/branches/
    pwlib-titan/branches/lenny/
      - copied from r5023, pwlib-titan/tags/1.11.2-1/
    pwlib-titan/branches/lenny/debian/patches/CVE-2007-4896.dpatch
      - copied unchanged from r5023, pwlib-titan/trunk/debian/patches/CVE-2007-4896.dpatch
Modified:
    pwlib-titan/branches/lenny/debian/changelog
    pwlib-titan/branches/lenny/debian/patches/00list

Modified: pwlib-titan/branches/lenny/debian/changelog
URL: http://svn.debian.org/wsvn/pkg-voip/pwlib-titan/branches/lenny/debian/changelog?rev=5038&op=diff
==============================================================================
--- pwlib-titan/branches/lenny/debian/changelog (original)
+++ pwlib-titan/branches/lenny/debian/changelog Wed Dec  5 08:26:05 2007
@@ -1,3 +1,11 @@
+pwlib-titan (1.11.2-1+lenny1) testing-security; urgency=high
+
+  * Fix remote denial of service vulnerability caused
+    by a call to PString::vsprintf if the used object already
+    contained more than 1000 characters (CVE-2007-4897; Closes: #454139).
+
+ -- Kilian Krause <kilian at debian.org>  Wed,  5 Dec 2007 09:24:52 +0100
+
 pwlib-titan (1.11.2-1) unstable; urgency=low
 
   * New upstream release (unstable branch).

Modified: pwlib-titan/branches/lenny/debian/patches/00list
URL: http://svn.debian.org/wsvn/pkg-voip/pwlib-titan/branches/lenny/debian/patches/00list?rev=5038&op=diff
==============================================================================
--- pwlib-titan/branches/lenny/debian/patches/00list (original)
+++ pwlib-titan/branches/lenny/debian/patches/00list Wed Dec  5 08:26:05 2007
@@ -2,3 +2,4 @@
 04_names
 05_hppa
 06_plugins_shared
+CVE-2007-4896