Accepted musescore 2.3.2+dfsg2-7~deb10u1 (source) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA384 Format: 1.8 Date: Wed, 03 Jul 2019 14:22:57 +0200 Source: musescore Architecture: source Version: 2.3.2+dfsg2-7~deb10u1 Distribution: buster Urgency: high Maintainer: Debian Multimedia Maintainers Changed-By: Thorsten Glaser Closes: 931021 Changes: musescore (2.3.2+dfsg2-7~deb10u1) buster; urgency=high . * Rebuild 2.3.2+dfsg2-7 for buster-updates (cf. #931040) . musescore (2.3.2+dfsg2-7) unstable; urgency=high . * Disable webkit functionality (Closes: #931021) Checksums-Sha1: 15485357985d9c0c120592cd695ef6772ee177d4 2756 musescore_2.3.2+dfsg2-7~deb10u1.dsc 58f9acbbdf58e8c67c7f8acfa3c9e4995594358d 52204 musescore_2.3.2+dfsg2-7~deb10u1.debian.tar.xz Checksums-Sha256: d4e2d7e50863ed648bbb8d71983914c6ab7e3dc4adb1976dda0188ac01ca757a 2756 musescore_2.3.2+dfsg2-7~deb10u1.dsc 26583da340be5af3684496ba47c4ee66fd803e1412b3ac6ca3cbf570353fbb29 52204 musescore_2.3.2+dfsg2-7~deb10u1.debian.tar.xz Files: a4bae2c35992d7c391faa0eaa33fe761 2756 sound optional musescore_2.3.2+dfsg2-7~deb10u1.dsc f85067f65d0f6aecce8cc3283ef85e53 52204 sound optional musescore_2.3.2+dfsg2-7~deb10u1.debian.tar.xz -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.14 (MirBSD) Comment: ☃ ЦΤℱ—8 ☕☂☄ iQIcBAEBCQAGBQJdMcsQAAoJEHa1NLLpkAfgShgP/3b7owh2n5yYkaqlFlwaIeNe zUl67VMm7mkZhRO9reaMv5SNmug8jlXnAa7tfn+EZuDIO5TYR1HKgAS9W2dtun25 joSsHB2D6j9+NCaRMvfUmwYWPsgJCFisVt+5hkVj75iWJ8uyk6E1v0ZoEcXWL+uN flZYwBytLzPkmZbVB6q56+aFNPDU4mmQto+8ZOtoxkvTdBVMWbsHgE3feFg0IRFn O13KtypefgxUWgzFWS9joWQVN2IhZJ4FYwyzP+wWDX54LyvTmVlntBjgBxfoV7je dOKSlNfkE14bTXKuUupocuIZ3gWQJhPzbrk+AyA8nFmxycM0Lnp7RKqzPG8jhRpV qKppLiMtR7moWEovDa7sfY9fJU/fiFPfrmaWCIxxu+DmKz9Pf5MS++NY2D3K5qyF rAlcxnIH6KO9DGDBAbCpC6P8Vj5PvdOTlljdhx8Qyyt+8yTyHMNYTU3gBuYMXO2X nxTb+7CuN4rXocNf+t2e66ZVLpXIbPSp7ybq5x7N4HvdwMUuMYhv3DTDt2j/QHZG ZjOdg/jr9EZVGyvaxe+1z7aC8ymT4tPqVjlJkt0YvLohCNsN84I0loXHGLi3jD9K Xjq9aMvGbqNhK8mipZvChDtnUryflE6qNoYFzBlqD4wLldUBiiazzoc6WVOW1AGn IDuaYYby6OYZ9OguFqPg =fbNG -END PGP SIGNATURE-
Accepted cvs 2:1.12.13+real-15+deb8u1 (source i386) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA384 Format: 1.8 Date: Sat, 12 Aug 2017 19:22:05 +0200 Source: cvs Binary: cvs Architecture: source i386 Version: 2:1.12.13+real-15+deb8u1 Distribution: jessie-security Urgency: high Maintainer: Debian QA Group Changed-By: Thorsten Glaser Description: cvs- Concurrent Versions System Closes: 871810 Changes: cvs (2:1.12.13+real-15+deb8u1) jessie-security; urgency=high . * Fix CVE-2017-12836 (Closes: #871810) Checksums-Sha1: 6273e61f2eb17e6aad42f295aa4bbcc0f1736f29 2094 cvs_1.12.13+real-15+deb8u1.dsc 4035e96f084517c7d6a71d35420876d508b00376 105645 cvs_1.12.13+real-15+deb8u1.diff.gz d13bb504d101e3f64926fed63fff5d7c409fe98c 2638090 cvs_1.12.13+real-15+deb8u1_i386.deb Checksums-Sha256: 5315f661fd8f8a5978106835aea6b7c33e7fef4a87a6564be986844bb17f6bb9 2094 cvs_1.12.13+real-15+deb8u1.dsc c39ca3d80b13265d3d8d7370148835b3f5892e0af8ae9c32d2cc34a945ec7585 105645 cvs_1.12.13+real-15+deb8u1.diff.gz 7b8d16b8c93e6425a38d09454e69c69c50039a71f35311abea568e5a50a793e5 2638090 cvs_1.12.13+real-15+deb8u1_i386.deb Files: 451b3557f24de1b5160998e82dab44eb 2094 vcs optional cvs_1.12.13+real-15+deb8u1.dsc e20d975ba3aaf6b72e22bf7b55ff6292 105645 vcs optional cvs_1.12.13+real-15+deb8u1.diff.gz c9fd2d0366dca5aff0eb60cd1f7c05f1 2638090 vcs optional cvs_1.12.13+real-15+deb8u1_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.14 (MirBSD) Comment: ☃ ЦΤℱ—8 ☕☂☄ iQIcBAEBCQAGBQJZj0KgAAoJEHa1NLLpkAfgPfcP+wQgWA/30xYSbaMZpKv2GSCt AyzwZiHDvHar7BBxzAcS2FKwAROFl9zSOwPpfAAUZ0NHXanSzIIjcGzbXJMFLuPB AbBJGC2bRQLEUbQbw/9G55mrTmpoRiyIdb1PNlyiVKVjzMvUD3U19X4e67BAt5xV MBEkjuyePg6CvxKrNFVXlqBH331Ss+XMaVwWk96UhQ1i3YgWnTsVTtCqI1GfkWfI asnEGor3sYvYoCZWC4S8zNC5J/7KmSqDbUSgOad5h2xE/1dtwVd1ytvw1CNgeVzu /LQoukZFjS2SPzY9k52VROtid1SZb7CAoaMuuuZCsr1Tv4BO963X0tEv28oT2SsW XUhToM4pMvTFG2QgtZNpuXxhALY2/qLZJHesS4eA+rdvAG/6Sihe5Qxkat7BnFbH 8rF+6PnT8sqLEJk+I10mV0wGAsvA45WQs+r7njyO7K/phWD57rlgfxeX+tzBY39G J073o5B3+qJhk+xmepotiRXn6EWxyIN6yJY10dLwRrCTGd7hTZNVVJSVo2ZfV6if jJggSye+srY1SR2xiRWMyDpVofVqW8G0wSIz3tBdryqAcSqcQfpVbQxcldi0BZ8Q KgbqGOJFY8cFlFg08XwViY/A1f6RHM0eK/gft+LMMAsfrQcJJNLE8MGxZ5TWaWqr KnxoPIPuoqlGgSFyl2rJ =sU5L -END PGP SIGNATURE-
Accepted cvs 2:1.12.13+real-22+deb9u1 (source i386) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA384 Format: 1.8 Date: Sat, 12 Aug 2017 19:19:53 +0200 Source: cvs Binary: cvs Architecture: source i386 Version: 2:1.12.13+real-22+deb9u1 Distribution: stretch-security Urgency: high Maintainer: Thorsten Glaser Changed-By: Thorsten Glaser Description: cvs- Concurrent Versions System Closes: 871810 Changes: cvs (2:1.12.13+real-22+deb9u1) stretch-security; urgency=high . * Fix CVE-2017-12836 (Closes: #871810) Checksums-Sha1: 83f20b8d0e613d15af92c838210d7a399470927a 2054 cvs_1.12.13+real-22+deb9u1.dsc a868aaad46c54cb1f7510b79c8cb0b38534483ce 4737137 cvs_1.12.13+real.orig.tar.gz d2c68eab48de7fe0d3a41329051072967f1f484d 114637 cvs_1.12.13+real-22+deb9u1.diff.gz ecf7938cf6312024287ca8696b6062389775afbe 792316 cvs-dbgsym_1.12.13+real-22+deb9u1_i386.deb 63478ddb25a555092a217becaf3a72212a4ea950 7987 cvs_1.12.13+real-22+deb9u1_i386.buildinfo 87e764065d003867d354a88e409c7f7295ff83f6 2809120 cvs_1.12.13+real-22+deb9u1_i386.deb Checksums-Sha256: 6b949a1dfc77e523971a1607524718f6f5fe92c92fdc9fb022e34ed82e13dd96 2054 cvs_1.12.13+real-22+deb9u1.dsc 4734971a59471744e4ad8665c1dca54cb3ebf9fc66ce9c2dff3d04670d3f7312 4737137 cvs_1.12.13+real.orig.tar.gz d7baf701538a9e5b6f97d5248ef1b61867113622ebe4250f6bdd3772e2012596 114637 cvs_1.12.13+real-22+deb9u1.diff.gz a250e9cffb04c20e97216da12f467155bb3b191ea5559192bbc0dd0fd49b1994 792316 cvs-dbgsym_1.12.13+real-22+deb9u1_i386.deb 9599fa632bd5769b382145a08185ea9040ed0d1e2c236828d26e53366b75d394 7987 cvs_1.12.13+real-22+deb9u1_i386.buildinfo 1650978a8f75d8ce32872280acb76418fe82fc37e202277cc4518393ba4aa7ce 2809120 cvs_1.12.13+real-22+deb9u1_i386.deb Files: 5bfca3ba05f848def66403bc880a7b60 2054 vcs optional cvs_1.12.13+real-22+deb9u1.dsc 7a71a2e7a64973ecf255965956a1d338 4737137 vcs optional cvs_1.12.13+real.orig.tar.gz f579edf186184c3eff3a774f93952f82 114637 vcs optional cvs_1.12.13+real-22+deb9u1.diff.gz c4c796327a128a77b042ccc14610ac8b 792316 debug extra cvs-dbgsym_1.12.13+real-22+deb9u1_i386.deb dcbdd1b226477098017dc92958c6bb27 7987 vcs optional cvs_1.12.13+real-22+deb9u1_i386.buildinfo b6a30c12490dd29b6209b2ca85deb412 2809120 vcs optional cvs_1.12.13+real-22+deb9u1_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.14 (MirBSD) Comment: ☃ ЦΤℱ—8 ☕☂☄ iQIcBAEBCQAGBQJZjz0oAAoJEHa1NLLpkAfgx0oP/3T2uiXTI2yz28h+PJvqgSwM PLAiPUFu2Fez3a7NlIsePPPbGKO1nv6otTOyNS+QrjJKlSD3ZcXRKzrDO/9hRCN0 zrBpwNAUzgPJlutpX5aJrE67EYpeQ8iskMvaBEJqRA0gEcpHgkoAuDf/P71eTOqr XtQqo0uZLsuSP9pdpQf4YJ7oTak5q9+8yW4Dzq5jneuPHiMv2stt515tWYhPgpJ0 35N04u+rOfJcimoz5iFkYa7dLBLPfHlWoZqipmPuGEn4z8yOoV7Cuh+xYaeM0UFd Ym2v0KBO9aF4sx9sSFPg7jUgn/kICwHWWsXYXAMiePzB5Ux+vN6DI4OT6C1bnb6Q WwGRd/yIzc/jXxEypl6KepgOjcc1NeoYjJ1RFbHI56gPzL6T4PeHt1cpb/OsaWQk b/JCIdB/n0pTc0xWq0SYsVQK110TcQYM9uilKlFkCRmxIgQouptU+Choj8fuHwEQ WB0a05um2tHdUL6R04C55kHaPRXFrtqjKL7EMLJJlvZ7byXB61BxVAFpJFTx8h3h AwodkE0ONrAiqtaFq8eChXyPQFxms4ShqMS7A1OZ2Ktggf/a1wHiRyckmMF12Mnt htUGZ/yg1EXf2cBYM1bKPWtiUz+yb0cQZhXFTbVWqRu3mQNK4BtIDFSA0YvUcsq0 iokoLzwBEdvJeqPp3RoX =RcS5 -END PGP SIGNATURE-
Accepted mediawiki 1:1.19.20+dfsg-0+deb7u1 (source all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA384 Format: 1.8 Date: Thu, 02 Oct 2014 10:57:16 +0200 Source: mediawiki Binary: mediawiki Architecture: source all Version: 1:1.19.20+dfsg-0+deb7u1 Distribution: wheezy-security Urgency: high Maintainer: Mediawiki Maintenance Team Changed-By: Thorsten Glaser Description: mediawiki - website engine for collaborative work Changes: mediawiki (1:1.19.20+dfsg-0+deb7u1) wheezy-security; urgency=high . * New upstream security release: - CVE-2014-7295 (bug 70672) SECURITY: OutputPage: Remove separation of css and js module allowance. Checksums-Sha1: 610dce6e96b19735187807a47f98a6bf735ba771 2149 mediawiki_1.19.20+dfsg-0+deb7u1.dsc d6f73d41b4c1cdc88870dadfc32405f7f149c054 11632368 mediawiki_1.19.20+dfsg.orig.tar.xz abfc18de0ac6916a5c096d4342e4ca1fd5a73e5b 65584 mediawiki_1.19.20+dfsg-0+deb7u1.debian.tar.gz 468520c5593d0d731f632229ce230fc8e0c8e8f5 17873620 mediawiki_1.19.20+dfsg-0+deb7u1_all.deb Checksums-Sha256: f79288752ccb9a2135eacd3073d3817604bf8a966059790c09adab02700ab1dd 2149 mediawiki_1.19.20+dfsg-0+deb7u1.dsc 0c263ad5e869bbb94c5d4901f89795c52a45fc59a7c6b2fbcac67a9935f3c544 11632368 mediawiki_1.19.20+dfsg.orig.tar.xz 105ae0da58c6b6d05cb8f7be2a6af5a7f5b9606147437e0ddd3c1ff6f5fd66ad 65584 mediawiki_1.19.20+dfsg-0+deb7u1.debian.tar.gz f437c017d69c9e772945a7b4eb40572c1551be370f62c2f7b81db37e65e7d5c0 17873620 mediawiki_1.19.20+dfsg-0+deb7u1_all.deb Files: 44f43872c550771dfac2847cc11c7188 2149 web optional mediawiki_1.19.20+dfsg-0+deb7u1.dsc bfd6477e017ae32c787d16adddac66a2 11632368 web optional mediawiki_1.19.20+dfsg.orig.tar.xz 26ee03ba41672d7511cfc92d6ccd549f 65584 web optional mediawiki_1.19.20+dfsg-0+deb7u1.debian.tar.gz c43a1192359fe665ab944fa8e34f974f 17873620 web optional mediawiki_1.19.20+dfsg-0+deb7u1_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.14 (MirBSD) iQIcBAEBCQAGBQJULwu8AAoJEHa1NLLpkAfgrOAP/i11CN6gIgKdwu5IkNuz+BfJ x6OcRNHyicH1E+Ie/1rvjEw7ny7bde2XnxymU82BpZHyxZwveQEPoE5XQqGAMBKz wLiHMIiXOQz5MENGOLYSM3dUj9+QHPqGhMEsDK7dHByUGZJ7agDn/B8c25mRqjCw CQznGLpRHkq07jbRaPmecoOdmaI/N0QlnHz/PC93LRfFBI33ddb/5QwRRl8EJ2H4 wypVBGeqCMRBmdZ9WOlanBeVTWGaRIXyjDMRqWxLVflAMfcfPUhcqx/3mxxqUevV o0lXDGL1Ar0hBmfB1EVdO4TPLE3dQ4iP1AaDqG49A/Wo89BNzLI1WOWC1J9U128U qEUqX+6OgLZNgkoEn/ST3oIWRQ/sh+Ck+vs923x7hFEiBmx2n/+jTb9lt0tC+OxA 7Kje+/PaSciNGtaEw1ERAzpGDQ1xYiA1vLIn63Y5tU/7qByDvawQyJgWDdFLcQxB 3u/i6Lg7Q/uGdxtkIFpsguwfTWrx8CMlStvuflqvSGPUG3pzbMwxwFDcIsiGT25U N/9hepTAME3geUdP1/TyL71Q9SgH6K27QXcDDbgO1sAoJ7jOsSzQKYyxEVYkP1Ft j2nz8IUb9nJnOAIF5FSCAZzYZ0JDIHnXfq7WLtLURDJlWAqO8PebPhG8ypiAFM+l Ru0bcEq5Uc+rCJWF/zuZ =kTqo -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1xbgm2-0001v5...@franck.debian.org
Accepted mediawiki 1:1.19.19+dfsg-0+deb7u1 (source all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA384 Format: 1.8 Date: Thu, 25 Sep 2014 16:48:28 +0200 Source: mediawiki Binary: mediawiki Architecture: source all Version: 1:1.19.19+dfsg-0+deb7u1 Distribution: wheezy-security Urgency: medium Maintainer: Mediawiki Maintenance Team Changed-By: Thorsten Glaser Description: mediawiki - website engine for collaborative work Changes: mediawiki (1:1.19.19+dfsg-0+deb7u1) wheezy-security; urgency=medium . * Remove Romain Beauxis’ bouncing eMail address * Acknowledge NMU (1:1.19.18+dfsg-0+deb7u1) – thanks! * New upstream security and maintenance release: - (bug 69008) SECURITY: Enhance CSS filtering in SVG files. Filter
Accepted mediawiki 1:1.19.16+dfsg-0+deb7u1 (source all)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA384 Format: 1.8 Date: Wed, 11 Jun 2014 16:42:23 +0200 Source: mediawiki Binary: mediawiki Architecture: source all Version: 1:1.19.16+dfsg-0+deb7u1 Distribution: wheezy-security Urgency: medium Maintainer: Mediawiki Maintenance Team Changed-By: Thorsten Glaser Description: mediawiki - website engine for collaborative work Closes: 748941 Changes: mediawiki (1:1.19.16+dfsg-0+deb7u1) wheezy-security; urgency=medium . * New upstream security and maintenance release: - CVE-2014-3966 (bug 65501) SECURITY: Don't parse usernames as wikitext on Special:PasswordReset. * Update debian/upstream/signing-key.asc * Conflicts: mediawiki-classes (Closes: #748941) Checksums-Sha1: 1e74bf7110537737145fe20d8d39a0618379ee4d 2188 mediawiki_1.19.16+dfsg-0+deb7u1.dsc 90c83abc98f4d57bfc30211e0ebb1306bb004f1b 11631456 mediawiki_1.19.16+dfsg.orig.tar.xz 1d0d91a058158a1475b2a7909e98b560241e3a24 64978 mediawiki_1.19.16+dfsg-0+deb7u1.debian.tar.gz aa460a48cc3b1419a3b59ce3e56e55525144a3e9 17871150 mediawiki_1.19.16+dfsg-0+deb7u1_all.deb Checksums-Sha256: 946a60baae1d6e92affb83499fe4705157aee1a48cf8a8724c8be8e30edd5c98 2188 mediawiki_1.19.16+dfsg-0+deb7u1.dsc fb0adf46e5c2fbffe2fc1d90f4e8dc1d12414bc3db25628b8177add65a352860 11631456 mediawiki_1.19.16+dfsg.orig.tar.xz e999cbd12039997a5994662ca1715660dadc953ccde7e51e63dd956cbc19672d 64978 mediawiki_1.19.16+dfsg-0+deb7u1.debian.tar.gz df10909818a122e5fbf1922508411cc441ecc59ac616a74ef9c7fa0ff909c499 17871150 mediawiki_1.19.16+dfsg-0+deb7u1_all.deb Files: 6036c17545762dbaa93a0d66508113a9 2188 web optional mediawiki_1.19.16+dfsg-0+deb7u1.dsc 8fd874b51ead858ba294080a292fb648 11631456 web optional mediawiki_1.19.16+dfsg.orig.tar.xz c283c8a66aec3f16a84f29564cdc1ec6 64978 web optional mediawiki_1.19.16+dfsg-0+deb7u1.debian.tar.gz d3a0e7254fde49ad690aeb0c89d90dbe 17871150 web optional mediawiki_1.19.16+dfsg-0+deb7u1_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.14 (MirBSD) iQIcBAEBCQAGBQJTmG0TAAoJEHa1NLLpkAfgvY8P/iGYqVkzHkINrpquOZhsDEVT B4+oLSfVrme6DQnYSjIE+1CbpD5cGik3BuAM+0tl0k1pwqSjTAACVFiblcoDebDW cWYTIyo0u9eBrvMa02GtC4N4rqOMAL19ux0harwjVPmyN42eE+g9dZIushYcIkwd yEaP2COIuJihwUBd7vHqB7RZJgpqdxgjOFOPOt7yGR5+a1nEMUhkZP+A7WivB+Eh cQRdMuxNK+191HOG0Jkh1qN/J6W4S3gtdf6Xsp+d3fQ2Gey+M8oe7gbgGbg0xK0q anl+YgY2UlFPJzlN3ZOB1z2vfC2VJP37gkVuK9ekWW1Qlz494ckWgRnzbamJWdls zS8n6cZw6pRiDg0g2BsX/1XEsvRfRwv5e6FHdWO2azXcIqx7/NUlUs6Y3H2rf7bn CZ2r+ZNa0SmU7Ci524IAEo9fc7K7euTa/4Y5FRWJVNvTZLcxdmlX81bxgvpvlLk9 a3ESCymnlkTLQ+RlyBzIrqPqLebDukFY7V/GMEat3h2PXyu/1AoPFAutd3rf8HvX Qf+eBCSEgcETFO8UDDduhfL02VBpTdnOvBpUDG6QhXQlWW4JkuFA9An4LkpHUlxy Az76T2UkYSHWlNjPge/1UTsS9JT12JjNc06x+IRovGoNrUADS9lhXhg0z+ViBfnG SPeHm+GIHT8E3kO+hWrg =m9vd -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1wwi86-0005pz...@franck.debian.org
Accepted mediawiki-extensions 3.5~deb7u2 (source all)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA384 Format: 1.8 Date: Thu, 03 Apr 2014 09:53:18 +0200 Source: mediawiki-extensions Binary: mediawiki-extensions-base mediawiki-extensions-geshi mediawiki-extensions-ldapauth mediawiki-extensions-openid mediawiki-extensions-collection mediawiki-extensions-graphviz mediawiki-extensions Architecture: source all Version: 3.5~deb7u2 Distribution: wheezy-security Urgency: low Maintainer: Mediawiki Maintenance Team Changed-By: Thorsten Glaser Description: mediawiki-extensions - Extensions for MediaWiki -- Meta package mediawiki-extensions-base - Extensions for MediaWiki -- Base package mediawiki-extensions-collection - Extensions for MediaWiki -- Collection extension mediawiki-extensions-geshi - Extensions for MediaWiki -- SyntaxHighlight_GeSHi extension mediawiki-extensions-graphviz - Extensions for MediaWiki -- GraphViz extension mediawiki-extensions-ldapauth - Extensions for MediaWiki -- LdapAuthentication extension mediawiki-extensions-openid - Extensions for MediaWiki -- OpenID extension Closes: 736558 743430 Changes: mediawiki-extensions (3.5~deb7u2) wheezy-security; urgency=low . * Regenerate debian/control file with cdbs from stable; fixes uninstallability of the mediawiki-extensions metapackage (and shipping the mediawiki-extensions-confirmedit package); found by Axel “XTaran” Beckert; thanks! (Closes: #743430) * Do not install into symlinks to directories (Closes: #736558) Checksums-Sha1: 8fe63bbbe11260d235c9eec6708665e10038e7c0 2306 mediawiki-extensions_3.5~deb7u2.dsc 07c791814c25ba66ce50aec9bfe02aa84c10a76c 1647827 mediawiki-extensions_3.5~deb7u2.tar.gz 8646dc8e512aaff25e71ebbc878805a7e5b97cff 835510 mediawiki-extensions-base_3.5~deb7u2_all.deb b189c5df2e32cd2a917fbd86329f9f06864dfd0a 36688 mediawiki-extensions-geshi_3.5~deb7u2_all.deb 913e417d0c7375a0bd03ed722747a3e61eea237f 29276 mediawiki-extensions-ldapauth_3.5~deb7u2_all.deb 9d346f812ff3e9620ed7323806f7a83a7962a10c 200646 mediawiki-extensions-openid_3.5~deb7u2_all.deb 8759fcbc1cc94cdd95d1eb461c53a49af11543a3 336762 mediawiki-extensions-collection_3.5~deb7u2_all.deb 3226a7b8b87d64a1a812cf3a964d4ba02da3975c 19240 mediawiki-extensions-graphviz_3.5~deb7u2_all.deb 2adb203682820a1f52f8e4421204c9afc633248d 9526 mediawiki-extensions_3.5~deb7u2_all.deb Checksums-Sha256: 8cc7c515b03bbc2c8c276e9854780cce17e640f2d41bd77a6e95eb783c47721f 2306 mediawiki-extensions_3.5~deb7u2.dsc 14ee875b3eb036c56657a5c997ea6983eb5535fe653c9fd442ed2a35e5376955 1647827 mediawiki-extensions_3.5~deb7u2.tar.gz 602a9cf06370629277817f70420e81c4d1fb12f5a133055d89b9db0c7579a60f 835510 mediawiki-extensions-base_3.5~deb7u2_all.deb 026474ab02b13d39ba4f9f12174533c630ef9cad6410f1fb7f58230fd9aa1770 36688 mediawiki-extensions-geshi_3.5~deb7u2_all.deb 99d400d5312ce6c7a3ecf90c046bbcc6ff3e4fde98084f39b857c2105cbc47e5 29276 mediawiki-extensions-ldapauth_3.5~deb7u2_all.deb a5320c214c57930e1795ebb8d51e557e197b186da35cce715f034ac2aacbab4d 200646 mediawiki-extensions-openid_3.5~deb7u2_all.deb 39a64899ce90ce93258418c6c3228629f9132761ce93e877fa9b86a496b5bc51 336762 mediawiki-extensions-collection_3.5~deb7u2_all.deb f14cdd6efcf00f0058592cccbfe907f2411141abe7239215c142c82b5e47b7f5 19240 mediawiki-extensions-graphviz_3.5~deb7u2_all.deb 057826e890cb002a497e3679fffd4053152ffe71b0f3858e3842b76685fef4ef 9526 mediawiki-extensions_3.5~deb7u2_all.deb Files: 3aa788866cc4b17991fbbfb2e137d7fa 2306 web optional mediawiki-extensions_3.5~deb7u2.dsc e849182776fc67b73829f0310c772070 1647827 web optional mediawiki-extensions_3.5~deb7u2.tar.gz e2fa75f24c8b4f89cef59db0228d0149 835510 web optional mediawiki-extensions-base_3.5~deb7u2_all.deb 46c6594f149e779678583f38fc66e35c 36688 web optional mediawiki-extensions-geshi_3.5~deb7u2_all.deb fcc998d674c2f4b3f9927be0bc9f3386 29276 web optional mediawiki-extensions-ldapauth_3.5~deb7u2_all.deb e0d89b776b082fd76b19f7890bde472f 200646 web optional mediawiki-extensions-openid_3.5~deb7u2_all.deb 4a3775ec2f69851ef8f274573c026407 336762 web optional mediawiki-extensions-collection_3.5~deb7u2_all.deb f6297c7586763b753d02b66e50241880 19240 web optional mediawiki-extensions-graphviz_3.5~deb7u2_all.deb fa84e425b3fd2abe3ce1936ffc47bc15 9526 web optional mediawiki-extensions_3.5~deb7u2_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.14 (MirBSD) iQIcBAEBCQAGBQJTPRZpAAoJEHa1NLLpkAfgfZIP/38RAtXeZgmEsyVc/id/MJev bFkk3MlQMTMdfdBgMMP3v7pGnsKMqkOU+lkrFJxG10JW+1668jCgxm1LgLtmBLuD uaG2FbnU/hgXHau3tUV2XScs2cM4htTS7tbDmcur4S9CdHv5zH91rVAetODdmJ+p sJfd26J+qADp1FefmnWhanP7MSFMCUeKqsQ8e48AowhQYKZjszeSdPRts/FBl1aG /kOT4XtH5P0c405yJDvyDPckiGhdru/5mpVj572ss1MP4YOi4pno30ALf1B9bevc AXAJ4jC51c/SoustpV5lPMn45ophTNlomvxekNZpxIwHx6gGvHlRxDnTPEAJjL+2 TXDcPIVmVYFHgSwDs4/UUIWEXZq22KTInpynFwmKpOWRW5c8sxMZxcKq3jfehEaA 2gUdQhXjK2MzjeFLOkNG3G/f8GyfqHO0kipEksxkIjfifaMSiC3IKFmV4K9FrVpi QTOV7JCyHBCFUoOCvzqGVy1VOEjJZ8QahiizgLZRZFHyDs9Caj9PFYDi7ojEP/0P og7N8jAJb5QojJ4yzve
Accepted mediawiki 1:1.19.15+dfsg-0+deb7u1 (source all)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA384 Format: 1.8 Date: Thu, 03 Apr 2014 10:27:07 +0200 Source: mediawiki Binary: mediawiki Architecture: source all Version: 1:1.19.15+dfsg-0+deb7u1 Distribution: wheezy-security Urgency: medium Maintainer: Mediawiki Maintenance Team Changed-By: Thorsten Glaser Description: mediawiki - website engine for collaborative work Changes: mediawiki (1:1.19.15+dfsg-0+deb7u1) wheezy-security; urgency=medium . * New upstream security and maintenance release: - Fixed resetting passwords - (bug 58640) Fixed compatibility issue with PCRE 8.34 that caused pages to appear blank or with missing text Checksums-Sha1: 8d54e249e41602e1dc0619a2c0564b9ca50bff7c 2188 mediawiki_1.19.15+dfsg-0+deb7u1.dsc 65b3b8c8b1054369fe957b9f3b29b343afe320d2 11630760 mediawiki_1.19.15+dfsg.orig.tar.xz 278f618af3f75d014b4e8e660c7ee048ee925a44 63664 mediawiki_1.19.15+dfsg-0+deb7u1.debian.tar.gz 4dfe80cb569b9b7b05fbec7c2b555c37b016f1e1 17871048 mediawiki_1.19.15+dfsg-0+deb7u1_all.deb Checksums-Sha256: a61e922c452a334c7961038abe6f949cf7a5ba11f53a3fce993348336ff2562c 2188 mediawiki_1.19.15+dfsg-0+deb7u1.dsc 0af1b47e40d59e7f3abd13018be93f41a9a1f9fc502ca074ea174599d4aa2029 11630760 mediawiki_1.19.15+dfsg.orig.tar.xz 918e47ba30b4c75c5ad70cd06d2e11dafd2c33a1613dad88692b7b222d574e58 63664 mediawiki_1.19.15+dfsg-0+deb7u1.debian.tar.gz 1813f5d03122e0ab578fce56ba81fde888698ac43a1e297510329aad0055ca3b 17871048 mediawiki_1.19.15+dfsg-0+deb7u1_all.deb Files: 49c385251529aee474d4a5b7e27f4d6b 2188 web optional mediawiki_1.19.15+dfsg-0+deb7u1.dsc dc5991675d860b3e0c67b24c87401334 11630760 web optional mediawiki_1.19.15+dfsg.orig.tar.xz 6109408ee2f6aacd9c57cdca30ddf403 63664 web optional mediawiki_1.19.15+dfsg-0+deb7u1.debian.tar.gz 15ff34c2ab16fb6d5c2a38dfbc811316 17871048 web optional mediawiki_1.19.15+dfsg-0+deb7u1_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.14 (MirBSD) iQIcBAEBCQAGBQJTPR+NAAoJEHa1NLLpkAfgP1wP/2q0rTcGfet1Xk5htalheeKF 3mHolQimI0fIKTN/KTYIjTsYB773nRH6oWNqhaaUjC4AarKO+XQSMAy24W7CQJvn NH648zYSkYO8ATrKRW9t3w70OuaMeC63jor37e1VOIHRvAHJBeGm/F6qcMVJsK5U QH75EKS4CVAp6MYhh96a6J9751MU1aySBaI4sGXkr5jVAT5hfTQUxjhyKitrPAom pq55PUN5PNUU7suUSUSIJ09m9z5JINnj7m8oN2IBHp/IEWrrERUQ46JehN+B78AA 1K9EUdjSlnDw4Q+WqZzkg/lBAHZLAfLcf2n7LthqguAzsW3oHr9mkxTgIgJDxJ1Y fxVho0wvgeXpXIhrVHaSFFQOxtwECHGlJ06DK7TO8S0ZMgjLgeb5aA9rjTHKACy2 MD5HjXD6fUjcUKh8ElvMPOLGi7QO4QkcqXSWwUeJDrLl07yML9zR3DYdJiGE19Qm 9rVpH+gzlXWDMy/Snisal/yKVy4QCjGCOk4TIg7mZAuyjHDLGJNnMZfAZWVkRTMv 70+EXaBkiEk4tyZCdAhscpOmPo2MQLePWbLD7roTWtYcilV5NmpdXVKGkDMmelMH yrlkgCaQoSb4sMLkwKxRo8PEv7T86K4ziGk/iMsSMy7jCscjrylHRBFOdq2+JSfK uTCIgE1zhaowlnzaWH/e =8z/8 -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1wwuur-0001yj...@franck.debian.org
Accepted mediawiki 1:1.19.14+dfsg-0+deb7u2 (source all)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA384 Format: 1.8 Date: Mon, 31 Mar 2014 09:24:23 +0200 Source: mediawiki Binary: mediawiki Architecture: source all Version: 1:1.19.14+dfsg-0+deb7u2 Distribution: wheezy-security Urgency: high Maintainer: Mediawiki Maintenance Team Changed-By: Thorsten Glaser Description: mediawiki - website engine for collaborative work Closes: 743165 Changes: mediawiki (1:1.19.14+dfsg-0+deb7u2) wheezy-security; urgency=high . * “Oops…” release (Closes: #743165) * Remove two lines from d/rules that slipped in despite review left over from the package split in jessie/sid which should not have gone in here Checksums-Sha1: 354276d95388218cd8ee0a59cc1dd6f364011269 2188 mediawiki_1.19.14+dfsg-0+deb7u2.dsc 103cb37f4a712b13416e6eddd480d276e474dcf7 63495 mediawiki_1.19.14+dfsg-0+deb7u2.debian.tar.gz 8dc70e0bb1f62b1632586719d504d0d31ab6eec1 17930578 mediawiki_1.19.14+dfsg-0+deb7u2_all.deb Checksums-Sha256: c9acb126fdc2c81af8b4131807583f12f98cdda7719f563cb3957d6d03f36e9b 2188 mediawiki_1.19.14+dfsg-0+deb7u2.dsc 3ebad74e8ccb665132c02f531c7adee4184439d4063507e566c8e996d7ce6be9 63495 mediawiki_1.19.14+dfsg-0+deb7u2.debian.tar.gz 21cf43b3a182a985faf9d5525cd9f5f394eb3eb029a143f0f05bd6a0cd5833b3 17930578 mediawiki_1.19.14+dfsg-0+deb7u2_all.deb Files: c7c814ed6bacfed7741e4973818c27d9 2188 web optional mediawiki_1.19.14+dfsg-0+deb7u2.dsc 850edfdd16ae505b192cf516a51059de 63495 web optional mediawiki_1.19.14+dfsg-0+deb7u2.debian.tar.gz ae2cd8578d3339f1eabea60d3b0d68f8 17930578 web optional mediawiki_1.19.14+dfsg-0+deb7u2_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.14 (MirBSD) iQIcBAEBCQAGBQJTORtOAAoJEHa1NLLpkAfg2Z0QAKiZX4Cq99TFROqTNO4K88cP ufKbsOm9LrTSFox2eCZPKdmB/M0mbt81XEdK0T4sgoVp39oRzCDnqA/ZUHspZYpi Y1DoSVuf9H5RiMPDO7VOSIUwMpMU4WdhGHg8uyLAQD+FsQ7pn4sTgmqJOrNPYrWB KbRGFr/H9SFpZk8RjOLOOwhkANsQ5TI27KviMkc1ICzX1Fore6mEdXrM7dwV1hjj O2Yi+vtwBf3prVtgx4SR0HWZrperT9ZRlyd8+PQ5JxpHXmD4hczpfKGVanjV8lQm TJLMcMwat8E0ta7hElumxIYn1AmcOT1X65je9rC494EfJ2oVV16Xz/qMuCLs3VOw K6iGHgKklPI6sfRFue8QIPJQi58NX8hBJwHsEXxcVmjf89mNNX4/mYtIpF4uj2Xb MJbey3H5y9ZSDv3cwbtIpGJShH2Xjj540ZWvkfc4c3aYjPkmMj+xJx4meiCV06YX mnehVt2liL6LT/nazhgL/P34BWMG5pOHhGy4ykRzHPkwDKJPA8xSd9WaipZy5wL/ HSwQCJbsYqWTIw9bMv4TDi1rtxvEAThk8rVB/vXtwpNU+wbav4gIRU99aqByhBum LAVxxaZiC1gMDF0ev525YknArD7vwT38fWcxbKz1EUNpifS+LE94cPawhdnyuDbG 7o8VEvo/iRxDHMvKKYg7 =VXry -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1wv63k-0003q3...@franck.debian.org
Accepted mediawiki 1:1.19.14+dfsg-0+deb7u1 (source all)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA384 Format: 1.8 Date: Fri, 28 Mar 2014 10:36:48 +0100 Source: mediawiki Binary: mediawiki Architecture: source all Version: 1:1.19.14+dfsg-0+deb7u1 Distribution: wheezy-security Urgency: high Maintainer: Mediawiki Maintenance Team Changed-By: Thorsten Glaser Description: mediawiki - website engine for collaborative work Closes: 706601 716884 719208 729629 742857 Changes: mediawiki (1:1.19.14+dfsg-0+deb7u1) wheezy-security; urgency=high . * New upstream security fix release (Closes: #742857): - (bug 62497) SECURITY: Add CSRF token on Special:ChangePassword - (bug 62467) Set a title for the context during import on the cli - (bug 61362) Don't find links in the middle of api.php links - (bug 60771) disallow iframe and unusual namespaces in SVG - (bug 61346) make token comparison use constant time * Fix bugs (file permissions; superfluous COPYING files) lintian pointed out (backported from sid) * Backport debian/rules get-orig-source-*, debian/upstream/signing-key.asc and debian/watch changes from sid, to prepare for sid (or experimental) switching to MediaWiki 1.23 (in which case further updates for stable will need to be made using this SVN branch) . mediawiki (1:1.19.11+dfsg-0+deb7u1) wheezy-security; urgency=high . [ Thorsten Glaser ] * New upstream security fix release (Closes: #729629, #706601): - CVE-2014-1610 (bug 60339) remote code exec in Djvu thumbnailer - CVE-2013-4568 (bug 58088) Don't normalize U+FF3C to \ in CSS Checks - CVE-2013-6452 (bug 57550) Disallow stylesheets in SVG Uploads - CVE-2013-6453 (bug 58553) Return error on invalid XML for SVG Uploads - CVE-2013-6454 (bug 58472) Disallow -o-link in styles - CVE-2013-6472 (bug 58699) Fix RevDel log entry information leaks - CVE-2013-4572 (bug 53032) Don't cache when a call could autocreate - CVE-2013-4567 (bug 55332) Vertical tab allows bypassing filters - CVE-2013-4568 (bug 55332) "expression" filtering in IE6 bypass - SVG script filtering could be bypassed for Chrome and Firefox clients by using an encoding that MediaWiki understood, but these browsers interpreted as UTF-8. (CVE-2013-2031) - Internal review discovered that extensions were not given the opportunity to disable a password reset, which could lead to circumvention of two-factor authentication (CVE-2013-2032) - (and others) * Replace trademarked image files by self-drawn Free ones * Secure the default images directory (Closes: #716884) * Handle /var/lib/mediawiki/extensions/* always as symlinks, for both core and extra extensions, with upgrade path (Closes: #719208) * Ship files in /etc/mediawiki-extensions/extensions-available/ for extensions shipped with the mediawiki core * Change watch file to track upstream LTS version * debian/control: Change VCS-* URLs (unbreak; point to stable) * Update copyright file with things noted by Paul Tagliamonte, thanks! * Refresh one patch to make it apply cleanly against 1.19.11 . [ Florian Weimer ] * Add “Replaces: mediawiki-extensions-confirmedit” Checksums-Sha1: c2db91f2c15e1a51bcb4d174713abde1114980f3 2188 mediawiki_1.19.14+dfsg-0+deb7u1.dsc 67861a47e0efa62acef52afa6847801d3902f686 12190640 mediawiki_1.19.14+dfsg.orig.tar.xz e2afb0a81af2149755a8007418b4e8a58842940f 63556 mediawiki_1.19.14+dfsg-0+deb7u1.debian.tar.gz c6e7957555bd63dc3117991d05227862b89a88a9 17894734 mediawiki_1.19.14+dfsg-0+deb7u1_all.deb Checksums-Sha256: 013bc9cd9aa2efcfad9cffe3e1f91778a85d546823b8badf71bbbcf3187a5ab9 2188 mediawiki_1.19.14+dfsg-0+deb7u1.dsc 01d6a757612728a753522de792187069dd9ebded0066357b0cb0fab517f38d50 12190640 mediawiki_1.19.14+dfsg.orig.tar.xz 265a8126a217faa3c5eb9b74edebbefc6479bbfa3844e793ea7f7a42729484e3 63556 mediawiki_1.19.14+dfsg-0+deb7u1.debian.tar.gz e0c4f8f300e441b4565eaa8b84b5d1bb9607229f856a344f88afc84b88ccb674 17894734 mediawiki_1.19.14+dfsg-0+deb7u1_all.deb Files: c1ce7dbe37b2336b3713f4f3a9512a35 2188 web optional mediawiki_1.19.14+dfsg-0+deb7u1.dsc 100c399d3701f16e718c42db502d18da 12190640 web optional mediawiki_1.19.14+dfsg.orig.tar.xz 4d7e77999d9f7f0442cf4cec14ed7a48 63556 web optional mediawiki_1.19.14+dfsg-0+deb7u1.debian.tar.gz 7519221851db2c899d3854fe287d6258 17894734 web optional mediawiki_1.19.14+dfsg-0+deb7u1_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.14 (MirBSD) iQIcBAEBCQAGBQJTNYT7AAoJEHa1NLLpkAfgIEoQAIQnqBPztnuRv4pBbaKKPm9c eSRCBvpqlltc5aIfaDPTbCiJ5xiHbg8ZFAWYS3/GWTMwD76z+Vz9gWIuHfD7GoyW 7iMGUazfwUty5dn5ogIeq+txFHZJMgY9UbzP9/VNslV04GOx8S3mkwUqjCou4zHS bO7VOJSl1u9AZ28SiTomTvS3C+yaMpp97bIJvJXOh+H97P0rNlGHx3k/l1wom5hh bTcKOUTIHccI0YgDL/n0VB61nI0yBD/UvrabJnvtnxWN03l4as0iQt0SUaVD0mWh jrFRjyTd1soZAcHQP66JhRafh3cFd7zk3Mn1m3G2A96GGV6hbDcXYmWm5yhc1Gy6 UoMMLormzR5FoNccn/viqWZL/jpQVrn4pjexuvc
Accepted mediawiki-extensions 3.5~deb7u1 (source all)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA384 Format: 1.8 Date: Mon, 10 Feb 2014 13:07:38 +0100 Source: mediawiki-extensions Binary: mediawiki-extensions-base mediawiki-extensions-geshi mediawiki-extensions-ldapauth mediawiki-extensions-openid mediawiki-extensions-confirmedit mediawiki-extensions-collection mediawiki-extensions-graphviz mediawiki-extensions Architecture: source all Version: 3.5~deb7u1 Distribution: wheezy-security Urgency: high Maintainer: Mediawiki Maintenance Team Changed-By: Thorsten Glaser Description: mediawiki-extensions - Extensions for MediaWiki -- Meta package mediawiki-extensions-base - Extensions for MediaWiki -- Base package mediawiki-extensions-collection - Extensions for MediaWiki -- Collection extension mediawiki-extensions-confirmedit - Extensions for MediaWiki -- ConfirmEdit extension mediawiki-extensions-geshi - Extensions for MediaWiki -- SyntaxHighlight_GeSHi extension mediawiki-extensions-graphviz - Extensions for MediaWiki -- GraphViz extension mediawiki-extensions-ldapauth - Extensions for MediaWiki -- LdapAuthentication extension mediawiki-extensions-openid - Extensions for MediaWiki -- OpenID extension Closes: 698438 Changes: mediawiki-extensions (3.5~deb7u1) wheezy-security; urgency=high . * Remove old (harmful) mediawiki-extensions postrm in new mediawiki-extensions-base preinst (Closes: #698438) * Stop shipping extensions that moved to core in 1.19 - mediawiki-extensions-confirmedit is gone and will need manual removal; the functionality of this package is fully provided by mediawiki’s core now * debian/control: Change VCS-* URLs (unbreak; point to stable) Checksums-Sha1: 6836deb3b63f7dfcf27769cd6973c5639f2ca559 2354 mediawiki-extensions_3.5~deb7u1.dsc d9ec14d539c72c76dd78eaba135781fe71545341 1648124 mediawiki-extensions_3.5~deb7u1.tar.gz 5f75c9dc5c351cec9080680b3a93a8fb3cc05f6d 833170 mediawiki-extensions-base_3.5~deb7u1_all.deb e9746f35b42e1da4b8e94e748b772775c38f119a 34490 mediawiki-extensions-geshi_3.5~deb7u1_all.deb de4f2aa5486fb5d11200d8d21a81428f87f6b7d4 26992 mediawiki-extensions-ldapauth_3.5~deb7u1_all.deb 3b5b8e71a2353642d81edb669cee1ff2f0344461 199378 mediawiki-extensions-openid_3.5~deb7u1_all.deb 3e823b2963bb2ba8ab705439fc764765e74d9b29 244126 mediawiki-extensions-confirmedit_3.5~deb7u1_all.deb 743734941bec1fc0887b69e5a7ef4caca0186d45 334694 mediawiki-extensions-collection_3.5~deb7u1_all.deb d73bd83dadf990bd8a1cb3e2ebb8effb273c4ab7 16988 mediawiki-extensions-graphviz_3.5~deb7u1_all.deb 30581f29987b038cf1786d459a0d3629235ebbd9 7408 mediawiki-extensions_3.5~deb7u1_all.deb Checksums-Sha256: 18c7ee05c266db82c8d4344377505758c69e70543246a49d9d9ab3a3c6caedb3 2354 mediawiki-extensions_3.5~deb7u1.dsc fc13e5182b1112996ddb371f1f031219c78ce56093fa060e70feb84045e65649 1648124 mediawiki-extensions_3.5~deb7u1.tar.gz 5fa5a2c773e40705829efe81cad3dc31ffedc1056446f67da6a27f1a61c8404a 833170 mediawiki-extensions-base_3.5~deb7u1_all.deb 8930edd7f5c27c35c30c741a4786b8b132cb1083ab64cffa880349dafa12d148 34490 mediawiki-extensions-geshi_3.5~deb7u1_all.deb 6ffabed1d0c8ac1663ddbfc4a89812b46ccdcd4d6f59ea6d9fb59d61cb16ba7d 26992 mediawiki-extensions-ldapauth_3.5~deb7u1_all.deb cda0441b2b41ffa1d974e10f4c8729b0798d7c8ee24eb248e14ff64709244c42 199378 mediawiki-extensions-openid_3.5~deb7u1_all.deb 6de9e0bc93b021eb8104551956bd7841e07e73868e8a783f813658b54867ad92 244126 mediawiki-extensions-confirmedit_3.5~deb7u1_all.deb b2996bc996de9feb413efd807083ebc58eba3cdd8884176b888c245bc081daa9 334694 mediawiki-extensions-collection_3.5~deb7u1_all.deb b25a805278aff3fbb6dea9bab8bd518b2c09cde0f63142eab4541f6b924125ca 16988 mediawiki-extensions-graphviz_3.5~deb7u1_all.deb 36b1ce32bd399b5bc3c6ece5cce03a9d1642eaa6c2deb363bcf6fa097fa60e31 7408 mediawiki-extensions_3.5~deb7u1_all.deb Files: f4bacf202b0a288bc421986f705d3b55 2354 web optional mediawiki-extensions_3.5~deb7u1.dsc 6e978e0de1dafadfe839a983bdc7cfcc 1648124 web optional mediawiki-extensions_3.5~deb7u1.tar.gz 63bd172ddf04c4301719f49eb5c36968 833170 web optional mediawiki-extensions-base_3.5~deb7u1_all.deb 6f6950baed636a4bec7e1d0c5fb85e4e 34490 web optional mediawiki-extensions-geshi_3.5~deb7u1_all.deb 994771b270e81148223f0ec25a51e59c 26992 web optional mediawiki-extensions-ldapauth_3.5~deb7u1_all.deb e92c9b17b58988dbd810b5ffe8bc1018 199378 web optional mediawiki-extensions-openid_3.5~deb7u1_all.deb 5faff53e7ab6111bc8f6a5a5375039e7 244126 web optional mediawiki-extensions-confirmedit_3.5~deb7u1_all.deb 20fed833ad1768b249a9967f8ee45668 334694 web optional mediawiki-extensions-collection_3.5~deb7u1_all.deb 9f349d416e1da3a31c8ec1418cd794cd 16988 web optional mediawiki-extensions-graphviz_3.5~deb7u1_all.deb 663c7970980afbc42ba301a7326d15c6 7408 web optional mediawiki-extensions_3.5~deb7u1_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.14 (MirBSD) iQIcBAEBCQAGBQJS+MOHAAoJEHa1NLLpkAfgpWoQAK6E70hvQsNQv2HJ31hJU/se
Accepted mediawiki 1:1.19.11+dfsg-0+deb7u1 (source all)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA384 Format: 1.8 Date: Mon, 10 Feb 2014 13:07:38 +0100 Source: mediawiki Binary: mediawiki Architecture: source all Version: 1:1.19.11+dfsg-0+deb7u1 Distribution: wheezy-security Urgency: high Maintainer: Mediawiki Maintenance Team Changed-By: Thorsten Glaser Description: mediawiki - website engine for collaborative work Closes: 706601 716884 719208 729629 Changes: mediawiki (1:1.19.11+dfsg-0+deb7u1) wheezy-security; urgency=high . [ Thorsten Glaser ] * New upstream security fix release (Closes: #729629, #706601): - CVE-2014-1610 (bug 60339) remote code exec in Djvu thumbnailer - CVE-2013-4568 (bug 58088) Don't normalize U+FF3C to \ in CSS Checks - CVE-2013-6452 (bug 57550) Disallow stylesheets in SVG Uploads - CVE-2013-6453 (bug 58553) Return error on invalid XML for SVG Uploads - CVE-2013-6454 (bug 58472) Disallow -o-link in styles - CVE-2013-6472 (bug 58699) Fix RevDel log entry information leaks - CVE-2013-4572 (bug 53032) Don't cache when a call could autocreate - CVE-2013-4567 (bug 55332) Vertical tab allows bypassing filters - CVE-2013-4568 (bug 55332) "expression" filtering in IE6 bypass - SVG script filtering could be bypassed for Chrome and Firefox clients by using an encoding that MediaWiki understood, but these browsers interpreted as UTF-8. (CVE-2013-2031) - Internal review discovered that extensions were not given the opportunity to disable a password reset, which could lead to circumvention of two-factor authentication (CVE-2013-2032) - (and others) * Replace trademarked image files by self-drawn Free ones * Secure the default images directory (Closes: #716884) * Handle /var/lib/mediawiki/extensions/* always as symlinks, for both core and extra extensions, with upgrade path (Closes: #719208) * Ship files in /etc/mediawiki-extensions/extensions-available/ for extensions shipped with the mediawiki core * Change watch file to track upstream LTS version * debian/control: Change VCS-* URLs (unbreak; point to stable) * Update copyright file with things noted by Paul Tagliamonte, thanks! * Refresh one patch to make it apply cleanly against 1.19.11 . [ Florian Weimer ] * Add “Replaces: mediawiki-extensions-confirmedit” Checksums-Sha1: c61b517425027bc44be1f6dbc6a72ff353152347 2188 mediawiki_1.19.11+dfsg-0+deb7u1.dsc 42d4fa35c6ff582219b180cb69d4099d59eca4f3 12189368 mediawiki_1.19.11+dfsg.orig.tar.xz 033ec597f6cd62848da7ee96345a876489c763fc 50414 mediawiki_1.19.11+dfsg-0+deb7u1.debian.tar.gz 28a2695bd847275cc22008365603e4ad5f9c323b 17927408 mediawiki_1.19.11+dfsg-0+deb7u1_all.deb Checksums-Sha256: d91815807eb61087e376b8fcfde170f51d59f6276e0481ed6188509a2bf37b5d 2188 mediawiki_1.19.11+dfsg-0+deb7u1.dsc 14e36582b785269699285b52db3e9bf29ee76e19786250423cc45f0759444a4c 12189368 mediawiki_1.19.11+dfsg.orig.tar.xz 0859ecb375816910f5db6494efdfbaa44c6617b59dad9e68d2c7af4023fa9288 50414 mediawiki_1.19.11+dfsg-0+deb7u1.debian.tar.gz 8b3dbbbed99d384139cbd1b7809bf55c43964c2ff34c066ab706b0a0e2bde45c 17927408 mediawiki_1.19.11+dfsg-0+deb7u1_all.deb Files: 1f37cd4cf3bc9d682c834a9e9b825c29 2188 web optional mediawiki_1.19.11+dfsg-0+deb7u1.dsc 9094bd7f18c6beaf29d1122fa6fd16a2 12189368 web optional mediawiki_1.19.11+dfsg.orig.tar.xz 7579dd8418ca77d2fc348fb939bab081 50414 web optional mediawiki_1.19.11+dfsg-0+deb7u1.debian.tar.gz c7275d12037419139ed1cea6fe3d1835 17927408 web optional mediawiki_1.19.11+dfsg-0+deb7u1_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.14 (MirBSD) iQIcBAEBCQAGBQJS+MN0AAoJEHa1NLLpkAfg2uAP/0j3cJ7BDtusb6XlSob9fCsT A1/sz5V7P2eWzk2vqx6bexhyFBLceAQlwWoNhB1IOe8wy7VGxf7+aIeJoqbRr/6T ucHCzq/x/uj3JnRqMXfqFzU9DyS3r+jzaCl9jqpUCMknwxrOFIRWtpXn/AL17dbH 3x5LJvxJQISv/LljPmP1zDF5Wl8Z1jd6ZsRhJtM/0Ws1fpL8Y+omQrngk+1g7sDL AUSVAhHupDJphXG7A7USu7GdvIikGYs9di4HnkUMS+i2VTkzq1Hs2ARxCKuGDAg+ AW7xERrTmWb+6aOfmY8SDUM+iCzmEMq4CcK5syYCRN+g2r/2syGcGfuC1hz/SO4x UUGqDbC6fBqGX1SFz9nLLOlU9naSUfpY9hmmd4iM/1/pMMj8yUkZTHc+16G5HV/w HuDrDrbg5NWnNNWrIfSc5YnhEKVILyo3hQMUWXdaTf0HZD/kIz/HurN+7Z5E/xtP 8xh6ZrO//O/7IhQPHv+Dn0Ur8/HHcyboEzkLlRkdvNGoqcebtvlOAoZKIFWbv/A+ RAw6Ssf5Ybtzk7BQVyCI4b+nNbf38cg2vkHBM+1s2t4nAySG0sv7NzTz16Nh746y 2i2V8+p9FK1eQ+taCKcpu8pkxP1psJxxJfOnWVMlv95u3G7M3BtSEIFYhp877nEc HGP0q0eSE4pzUPlxJYAF =1ki5 -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: https://lists.debian.org/e1wv63f-0003nk...@franck.debian.org
Accepted cvs 1:1.12.13-12+squeeze1 (source amd64)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Tue, 07 Feb 2012 18:32:16 + Source: cvs Binary: cvs Architecture: source amd64 Version: 1:1.12.13-12+squeeze1 Distribution: stable-security Urgency: high Maintainer: Thorsten Glaser Changed-By: Thorsten Glaser Description: cvs- Concurrent Versions System Changes: cvs (1:1.12.13-12+squeeze1) stable-security; urgency=high . * Security update of the squeeze package. Update Maintainer (keep Steve in Uploaders, though); add Vcs-* information in d/control to point to the development location of the new package for the curious. * Apply suggested patch for CVE-2012-0804 from Petr Pisar Checksums-Sha1: 506e14a842e0b2d569fd4a889f9e1e99f42a8295 1665 cvs_1.12.13-12+squeeze1.dsc 3a1a72e6a084497f6cf39f5ee5b148220ed7cca1 3909612 cvs_1.12.13.orig.tar.gz 331218307dfd3870ddefa209e0d8b940822c0b17 106038 cvs_1.12.13-12+squeeze1.diff.gz 905ae7d3986d51938e89296997c870bb4264f5e7 1734170 cvs_1.12.13-12+squeeze1_amd64.deb Checksums-Sha256: 6430932ac7e243787b5737a2a14e3121306edae5c61b2f2bc722cd50996e8d08 1665 cvs_1.12.13-12+squeeze1.dsc b5961c2476b996e5758fa5e22b60af085adca41164cac0d8f68a1d3b49d4e4f1 3909612 cvs_1.12.13.orig.tar.gz d52a9232d9cf36302a150d782fc7e5b6f92f8115505ae8a7dc6acfc83e809d2f 106038 cvs_1.12.13-12+squeeze1.diff.gz 7431b49a606626e5aa6a12df7f836bb9eed5a3aef4ddf6b4aaf4d01161011ed0 1734170 cvs_1.12.13-12+squeeze1_amd64.deb Files: 1956a04254929facbd8945a1a5259b97 1665 devel optional cvs_1.12.13-12+squeeze1.dsc aca3fe92ffc32d57079f74e92751a094 3909612 devel optional cvs_1.12.13.orig.tar.gz 1607a691d77b0a1793fd27885a01f5d6 106038 devel optional cvs_1.12.13-12+squeeze1.diff.gz 5b0469f1ab881d1aeea5f591017b2bd6 1734170 devel optional cvs_1.12.13-12+squeeze1_amd64.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.9 (GNU/Linux) iQEcBAEBAgAGBQJPM7hGAAoJEL97/wQC1SS+xKcH/1jXJbHrkYYxlCfhfFajnZwW YMLJnjtfERdq9LuHpdou2ynMDdhzDoaMm1DqEVJyvrc6VTy9/1GTL2UJzzwIW3GH siQJqTg9JLLNkmkKbAN2zDPzaC50oraG098LL3VJIsv/89e6QSHx5Nvoku3sRmly ip9DscSaEDatSZNed4VhkWTDE4oV1/C/XrWo9bq/UAastNgwmWzBNb22bmfHq1TT 4O8/uWTszqHG8vthh3h1c9UVp0jRuUtds3X3oqWXXi0657saQcgMgjJUjGeHiT9N nwNTcSYp93wMrN/7yEBHEpy1yHg2tIiV9vIkWqVF4aT0vVZHiKsZ0xcke1tR3bw= =GhQT -END PGP SIGNATURE- Accepted: cvs_1.12.13-12+squeeze1.diff.gz to main/c/cvs/cvs_1.12.13-12+squeeze1.diff.gz cvs_1.12.13-12+squeeze1.dsc to main/c/cvs/cvs_1.12.13-12+squeeze1.dsc cvs_1.12.13-12+squeeze1_amd64.deb to main/c/cvs/cvs_1.12.13-12+squeeze1_amd64.deb -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/e1rwkye-0001xg...@franck.debian.org
Accepted mksh 28.0-3 (source i386)
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Thu, 17 Apr 2008 21:55:05 + Source: mksh Binary: mksh Architecture: source i386 Version: 28.0-3 Distribution: oldstable Urgency: high Maintainer: Thorsten Glaser Changed-By: Thorsten Glaser Description: mksh - enhanced version of the Korn shell Changes: mksh (28.0-3) oldstable; urgency=high . * Fix CVE-2008-1845 (unauthenticated local privilege escalation) using upstream-provided diff Checksums-Sha1: 7e5f4632cbc1052c000a90352ffd22ab61d3799b 916 mksh_28.0-3.dsc bb83fe7e696503f4a98c349c298a8126c0d70c24 5611 mksh_28.0-3.diff.gz c170c2ad7582a6af3e6beb0b4a65f96a013b9407 149820 mksh_28.0-3_i386.deb Checksums-Sha256: 2707622e2367fb97dc0822ce9db256c13f8611d9f557fd70038c3238508d5ef4 916 mksh_28.0-3.dsc f8aa52c275a0d75eb8423e64218541ed0902ab99f3fea7463d3742f82f3a35c1 5611 mksh_28.0-3.diff.gz 399c2b5aad74b85705ef70194de113cd949aa3de0e386e358c7def63e4258cff 149820 mksh_28.0-3_i386.deb Files: 44c22fdc38bc69b4193e6a526ac17268 916 shells optional mksh_28.0-3.dsc 130fa66fbfa5abe0f9ececbbf447602a 5611 shells optional mksh_28.0-3.diff.gz a35364f93f5630d768b11b150b48d478 149820 shells optional mksh_28.0-3_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAkraIs0ACgkQbdB4RPTVesoF0QCePgZYTS4C0iUijkhghHG8otgQ 3lkAnjCRYY0GynoIv66ERVbWTH2rpsoa =u0se -END PGP SIGNATURE- Accepted: mksh_28.0-3.diff.gz to pool/main/m/mksh/mksh_28.0-3.diff.gz mksh_28.0-3.dsc to pool/main/m/mksh/mksh_28.0-3.dsc mksh_28.0-3_i386.deb to pool/main/m/mksh/mksh_28.0-3_i386.deb -- To UNSUBSCRIBE, email to debian-changes-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
