Re: squeeze update of libmodule-signature-perl?

2015-06-30 Thread Santiago Ruano Rincón
El 15/05/15 a las 20:23, Salvatore Bonaccorso escribió: Hi, On Fri, Apr 24, 2015 at 06:36:28AM +0200, Salvatore Bonaccorso wrote: Hi Raphael, On Mon, Apr 20, 2015 at 03:54:51PM +0200, Raphael Hertzog wrote: Hello dear maintainer(s), the Debian LTS team would like to fix the

[SECURITY] [DLA 261-1] aptdaemon security update

2015-06-30 Thread Raphael Hertzog
Package: aptdaemon Version: 0.31+bzr413-1.1+deb6u1 CVE ID : CVE-2015-1323 Debian Bug : 789162 Tavis Ormandy discovered that Aptdeamon incorrectly handled the simulate dbus method. A local attacker could use this issue to possibly expose sensitive information, or

Re: Accepted unattended-upgrades 0.62.2+squeeze1 (source all) into squeeze-lts

2015-06-30 Thread Michael Vogt
On Mon, Jun 29, 2015 at 11:45:56PM +0200, Raphael Hertzog wrote: Hi Michael, Hi Raphael, thanks for your mail! On Mon, 29 Jun 2015, Michael Vogt wrote: unattended-upgrades (0.62.2+squeeze1) squeeze-lts; urgency=high . * fix missing package authentication check for apt

Accepted libcrypto++ 5.6.0-6+deb6u1 (source all i386) into squeeze-lts

2015-06-30 Thread Thorsten Alteholz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 30 Jun 2015 20:03:02 +0200 Source: libcrypto++ Binary: libcrypto++8 libcrypto++8-dbg libcrypto++-dev libcrypto++-utils libcrypto++-doc Architecture: source all i386 Version: 5.6.0-6+deb6u1 Distribution: squeeze-lts Urgency:

Accepted libxml2 2.7.8.dfsg-2+squeeze12 (source amd64 all) into squeeze-lts

2015-06-30 Thread Mike Gabriel
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Fri, 29 May 2015 13:37:58 +0200 Source: libxml2 Binary: libxml2 libxml2-utils libxml2-dev libxml2-dbg libxml2-doc python-libxml2 python-libxml2-dbg Architecture: source amd64 all Version: 2.7.8.dfsg-2+squeeze12 Distribution:

squeeze-pu: package ftpd-ssl/0.17.32+0.3-1+deb6u1

2015-06-30 Thread Mats Erik Andersson
Hello there, fairly recently it was observed in #788331 that the SSL-enhanced FTP server, as built from linux-ftpd-ssl, will suffer a segmentation fault, should the client ask for an NLST listing of an empty directory, thus causing a denial of service but no further side effects. Updates

debdiff for CVE-2015-3206 (pykerberos)

2015-06-30 Thread Mike Gabriel
Hi Guido, I just saw that you are co-maintainer of pykerberos. I realized after I had already put my name behind the package name in dla-needed.txt. As you are also on the LTS team, do you want to continue with uploading the package? Or shall I see to the upload and DLA? Maybe you just