r2687 - in zope2.12/trunk/debian (changelog control)
arnau at users.alioth.debian.org
arnau at users.alioth.debian.org
Sat Nov 24 05:53:45 UTC 2012
Date: Saturday, November 24, 2012 @ 05:53:43
Author: arnau
Revision: 2687
Bump zope.common required version as the debconf template has been updated to fix #656552.
Modified:
zope2.12/trunk/debian/changelog
zope2.12/trunk/debian/control
Modified: zope2.12/trunk/debian/changelog
===================================================================
--- zope2.12/trunk/debian/changelog 2012-11-24 05:29:02 UTC (rev 2686)
+++ zope2.12/trunk/debian/changelog 2012-11-24 05:53:43 UTC (rev 2687)
@@ -4,6 +4,9 @@
+ Fix Reflexive HTTP header injection (CVE-2012-5486).
+ Fix Timing attack in password validation (CVE-2012-5507).
+ Fix PRNG which wasn't reseeded (CVE-2012-5508).
+ * debian/control:
+ + Bump zope.common required version as the debconf template
+ has been updated to fix #656552.
-- Arnaud Fontaine <arnau at debian.org> Sat, 24 Nov 2012 13:36:11 +0900
Modified: zope2.12/trunk/debian/control
===================================================================
--- zope2.12/trunk/debian/control 2012-11-24 05:29:02 UTC (rev 2686)
+++ zope2.12/trunk/debian/control 2012-11-24 05:53:43 UTC (rev 2687)
@@ -16,7 +16,7 @@
Package: zope2.12
Architecture: any
-Pre-Depends: zope-common (>= 0.5.51~)
+Pre-Depends: zope-common (>= 0.5.52~)
Depends: lsb-base, ${shlibs:Depends}, debconf | debconf-2.0, ${misc:Depends},
${python:Depends},
python-docutils (>= 0.7), python-mechanize (>= 0.1.11),
More information about the pkg-zope-developers
mailing list