Accepted squid3 3.1.6-1.2+squeeze6 (source all amd64) into squeeze-lts
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Mon, 29 Feb 2016 20:02:20 +0100 Source: squid3 Binary: squid3 squid3-dbg squid3-common squidclient squid-cgi Architecture: source all amd64 Version: 3.1.6-1.2+squeeze6 Distribution: squeeze-lts Urgency: medium Maintainer: Luigi GangitanoChanged-By: Santiago Ruano Rincón Description: squid-cgi - A full featured Web Proxy cache (HTTP proxy) - control CGI squid3 - A full featured Web Proxy cache (HTTP proxy) squid3-common - A full featured Web Proxy cache (HTTP proxy) - common files squid3-dbg - A full featured Web Proxy cache (HTTP proxy) - Debug symbols squidclient - A full featured Web Proxy cache (HTTP proxy) - control utility Changes: squid3 (3.1.6-1.2+squeeze6) squeeze-lts; urgency=medium . * Non-maintainer upload by the Debian LTS Team. * Fix CVE-2016-2569: Denial-of-Service by wrongly handling of String data. * Fix CVE-2016-2571: DoS cuased by storing a certain kind of data after failing to parse a response. Checksums-Sha1: 6d36e7b0a91eea83aa6c02c7fa8a92f1813c50b3 1910 squid3_3.1.6-1.2+squeeze6.dsc 955aa00419c755baf10516d13f9666c30ce90e1a 33489 squid3_3.1.6-1.2+squeeze6.diff.gz 5ee6a8fefe0c64b22fb5175c5ecf90fd54d98428 195328 squid3-common_3.1.6-1.2+squeeze6_all.deb 1519251d39c6d67cdfc6a80018d7a3ba1e247be0 1508262 squid3_3.1.6-1.2+squeeze6_amd64.deb 9a6d763d531d53461e791e9823a401ed6607ed6a 5638330 squid3-dbg_3.1.6-1.2+squeeze6_amd64.deb 234673523bb1ca8d99826c61196b372dab3aa33a 106340 squidclient_3.1.6-1.2+squeeze6_amd64.deb dcb8dae20f2a347f26109c856459436659ce8a62 109020 squid-cgi_3.1.6-1.2+squeeze6_amd64.deb Checksums-Sha256: b5d0b4d4daf91feb216b968ab4ae6c25bdb979b6ace8ea24024ef8d45c37d817 1910 squid3_3.1.6-1.2+squeeze6.dsc 7357a72d607a6bb2b85023c404f76734ea55c6cc7b7e2504aaad8037d8ae1c37 33489 squid3_3.1.6-1.2+squeeze6.diff.gz 68d4662a3dbd4ef8c4c03a2c37b7b663dc253b3df821900b6ae2c95eafa5a099 195328 squid3-common_3.1.6-1.2+squeeze6_all.deb 3b0cd7bee8049ffede99f32a227042640d0f53bbcff5f8d2d60b1d0680be71bb 1508262 squid3_3.1.6-1.2+squeeze6_amd64.deb 089acffd35519bf64761a4ccbea5db132c96ef45d7c57ea4f69803eaf1dd4fbc 5638330 squid3-dbg_3.1.6-1.2+squeeze6_amd64.deb 897564979fcee6d5419bffcb1dd6737b105dbe7bcb62b9b182520558321cf431 106340 squidclient_3.1.6-1.2+squeeze6_amd64.deb 43e4e7d44924230c20ad758df55950e01b671424e3aa717c236aac3b9ddb3de9 109020 squid-cgi_3.1.6-1.2+squeeze6_amd64.deb Files: e65056df56afad2a2143548dc1725211 1910 web optional squid3_3.1.6-1.2+squeeze6.dsc aa58ba7c8c6607422017c5fb871f18f6 33489 web optional squid3_3.1.6-1.2+squeeze6.diff.gz 40a89a9d6e5c0eb9ac56b53ef9810da8 195328 web optional squid3-common_3.1.6-1.2+squeeze6_all.deb 1d54fac3381094d536b3911e292e3d31 1508262 web optional squid3_3.1.6-1.2+squeeze6_amd64.deb 0f4457261576d352fbf78e5ea820fab9 5638330 debug extra squid3-dbg_3.1.6-1.2+squeeze6_amd64.deb 062772d89a5faa04b5aaf34cc0125d67 106340 web optional squidclient_3.1.6-1.2+squeeze6_amd64.deb bb0b97e7e78db560e573619a9db3a9d0 109020 web optional squid-cgi_3.1.6-1.2+squeeze6_amd64.deb -BEGIN PGP SIGNATURE- iQIcBAEBCgAGBQJW1JfdAAoJEN5v/bjI1ki9zbQQALbhlRT9vaj7Zo9GhIJVv10q A0xQdydd2atFRmCmdZXU9eWsbbG5PlgVaZfVn+cZgLtzq6alzDlSJC07jGDBhXJW 3MJLiNBnPr+1JWg1ZCw+msf8dbPkLn0r2YJx1boLqKoQ7zcQXe8eg+2bOfozdGsB 99IQIpT53nVNqGvWASb4Ei4GHsmDcP/GFUWam5+FbxTA5LWVhoZkjTFK8Oo3BIBB ohktBVYwZkvw9IGsNl088glTPLyKLhx8ioda2xTbzTthYFqT0zuFaCGuFNOyS715 f/ZwK5ri2CHH0Jm4SPkfMfFXcJiIDdhUVfzRDWad8JIJNstEnqRgNssAVJvoOp0i YVL+qy9+751JkaVW91RMyz/dCuC1HbAyRFw7i7PDxmSrt2kk1kwfVIW7WCaJoR3f ovW0kCUmp/Fl7yTWB3Xyg/pI0wY8Zvkmx25kd01kgdsjtyczVPs5t9E4scWKiCpx NI7shWaG+vKO12ZNd3FLzzFGXrUOVim+Je+mQ7Xxsu6Wg9DAw/gUoSuP5Oh/KwaZ 2GbttjKpaHz4PJ0Kx4ZBH5cQen1PfjyzVOupox5jwsLbfkebys+n+iBQcuiRnLZb pGwfXQzmvqTTAbR5BDYAiexDLBEhUfH2Glyf4g5/63hGs5hu4NQdLSs+M186Rv5s y5UxWQ1I4oZygznXkrB8 =9I/t -END PGP SIGNATURE-
Accepted bsh 2.0b4-12+deb6u1 (source all i386) into squeeze-lts
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Mon, 29 Feb 2016 12:59:05 +0100 Source: bsh Binary: bsh bsh-gcj bsh-doc bsh-src Architecture: source all i386 Version: 2.0b4-12+deb6u1 Distribution: squeeze-lts Urgency: high Maintainer: Debian Java MaintainersChanged-By: Markus Koschany Description: bsh- Java scripting environment (BeanShell) Version 2 bsh-doc- Documentation for bsh bsh-gcj- Java scripting environment (BeanShell) Version 2 (native code) bsh-src- Java scripting environment (BeanShell) Version 2 (source code) Changes: bsh (2.0b4-12+deb6u1) squeeze-lts; urgency=high . * Non-maintainer upload by the Debian LTS Team. * Fix CVE-2016-2510. An application that includes BeanShell on the classpath may be vulnerable if another part of the application uses Java serialization or XStream to deserialize data from an untrusted source. A vulnerable application could be exploited for remote code execution, including executing arbitrary shell commands. Checksums-Sha1: 3de393df4e6eb989e0a9a3676157ce5540dc0d45 2069 bsh_2.0b4-12+deb6u1.dsc 227b9e694a110075d023e013fc3c672b94169460 9096 bsh_2.0b4-12+deb6u1.debian.tar.gz 83eee716310250bfd20d5ef9a005c2620c8b111b 270696 bsh_2.0b4-12+deb6u1_all.deb 2dd4227df41b772c02c0f1e870e749244802cc9c 422198 bsh-doc_2.0b4-12+deb6u1_all.deb 11cf0a93c023e081f5066a2d081b78c45aada546 836072 bsh-src_2.0b4-12+deb6u1_all.deb 23abe7b31de747c5d92f577b265d5ba67292f6ef 360178 bsh-gcj_2.0b4-12+deb6u1_i386.deb Checksums-Sha256: 799cd893a68a748fb30a774d38272a6f94554cb7a482650bb1a15adef8cb0b45 2069 bsh_2.0b4-12+deb6u1.dsc 490dfac19faf7a89496acbc1c497190b38109487f7e0b5204eb1479883c40f51 9096 bsh_2.0b4-12+deb6u1.debian.tar.gz 73b3da5565832155958fd18ca50cce842ba5b727e09cffce1ed1c9616f835430 270696 bsh_2.0b4-12+deb6u1_all.deb 1fae8ff921141c03a62d9a6d429984ea772eacb6a9f28b743a34135eece46a10 422198 bsh-doc_2.0b4-12+deb6u1_all.deb 277c0b07f17901b37500025d2eb85ef50531277840083e96ccf8a54c89993373 836072 bsh-src_2.0b4-12+deb6u1_all.deb 3650b72260d6e88e37ca36eb298327503dbd2da7747e7714f8300c73f1b7aec6 360178 bsh-gcj_2.0b4-12+deb6u1_i386.deb Files: c5debd2bd9310e552627619878a4b002 2069 java optional bsh_2.0b4-12+deb6u1.dsc 8c7d2c6b4bc6974150e21b6b1d2df8df 9096 java optional bsh_2.0b4-12+deb6u1.debian.tar.gz 657f4e78d136aa3f02098cef12da54d7 270696 java optional bsh_2.0b4-12+deb6u1_all.deb 46aa7ee9ebfdb083ab5f9414664c7174 422198 doc optional bsh-doc_2.0b4-12+deb6u1_all.deb 808b48a1bb416dff62dcc24c664fdc63 836072 java optional bsh-src_2.0b4-12+deb6u1_all.deb 2b1ece331b284874513d7c9577279ee9 360178 libs optional bsh-gcj_2.0b4-12+deb6u1_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQJ8BAEBCgBmBQJW1D1SXxSAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXRBQ0YzRDA4OEVGMzJFREVGNkExQTgzNUZE OUFEMTRCOTUxM0I1MUU0AAoJENmtFLlRO1HknGQP/R1+81lXTaOUb4hUpZXtRpE+ BaP60OPK4g0r1244lKrBM32y8nvpwd4S44yV6pAy84hO/I/xeIMTw0zOEqBxo4oV Yoz9ngnrMA0GHxEnM5L00cRhXUCN1VIAyAXJa/R8R29y23k62WRHN2SmOfhCH+BP oqf8NzaKAS5DPrpJf8nAZVv1wU8tR90PcjUqfwzWt+m/WtdYhrtNmTtTYVw5JBmW xQSaSEFgOattPxrqet42J0h1MErb1QnkL6RzRDs3Lfcjb3YtkHHWgHtBkKPREhoY 2UL/KsrsaC8V1GLr6iAZzy+irafC6yVuS2RubWKpqKyeBhLXezLzkSH1SFWlaEEi oQoFJJIi28Qus44wHWW23/IrTDGfRAHdrNGvJqhRQU+X+43mSJ9Pc0O2yEFfBfBf EII7KT54Myf8dK9tRQKYUQoOcLly8/bXTCFM1pp0OALUlhoV2P6Gyp1k9TwEK/qh FZjUvoGtlzJoklqV1dBT6ckRX9aV68tfabdr5wspvq3qNYsZktvi0G50vT5Ov3n8 D7c++X5Zyd/fqXvMjKDuUgzD3n5OJ3ITMy87v0Xpi/C8LC+ibiPouD9P12T9bKqL LSUoZvCo8QQVZmwiynbVDnahjNr2YomRzFZfoGPEJJnFtDAWuIK/N4NeDwIFeX3a m7++FQMzVJeSTslj7KRa =3yJe -END PGP SIGNATURE-
Accepted lxc 0.7.2-1+deb6u1 (source amd64) into squeeze-lts
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Fri, 04 Dec 2015 16:17:06 +0100 Source: lxc Binary: lxc Architecture: source amd64 Version: 0.7.2-1+deb6u1 Distribution: squeeze-lts Urgency: medium Maintainer: Guido TrotterChanged-By: Mike Gabriel Description: lxc- Linux containers userspace tools Closes: 800471 Changes: lxc (0.7.2-1+deb6u1) squeeze-lts; urgency=medium . * Non-maintainer upload by the Debian LTS team. * debian/patches: + Add CVE-2015-1335.patch. Backport safe_mount support. Protect container mounts against symlinks. Resoled CVE-2015-1335. (Closes: #800471). + Add CVE-2013-6441.patch. Use read-only permissions when mounting /sbin/init. Resolved CVE-2013-6441. Checksums-Sha1: ad811a7fbb1c70c328356856acbef2813d737b6f 1749 lxc_0.7.2-1+deb6u1.dsc 75dfc113a576fa15d46a3736ff788a168de0b258 266877 lxc_0.7.2.orig.tar.gz ed09487ae2f4b6d8912fbfddbb413357625c73cd 10818 lxc_0.7.2-1+deb6u1.debian.tar.gz 0e101694c5fa957596cc4d14381c106b9269656c 142220 lxc_0.7.2-1+deb6u1_amd64.deb Checksums-Sha256: 56a9265a4894b892e2d3eb3bedc65cb6964684fa3099a228ee0167d5b7b1a400 1749 lxc_0.7.2-1+deb6u1.dsc 0660edbc08d74275968cb18c8e634aafd6f1ad395419e037d7018f2b1d669b1a 266877 lxc_0.7.2.orig.tar.gz 026a61f4a9f20ff8077fec26310308cc6425484057624ac0113f5d48d79648a9 10818 lxc_0.7.2-1+deb6u1.debian.tar.gz 38fd5bd4ca5b14a57dfb43e23e792b17ed20e55333ba565acbb23a3d2119af50 142220 lxc_0.7.2-1+deb6u1_amd64.deb Files: e96437dc8c4769a36a257c8a85e01245 1749 admin optional lxc_0.7.2-1+deb6u1.dsc 5c9c6889ba1255217078ea5d1aaf0c82 266877 admin optional lxc_0.7.2.orig.tar.gz 26b977f71ffeea672b74309285442981 10818 admin optional lxc_0.7.2-1+deb6u1.debian.tar.gz 3fb351d3dee78fa896524a12472ea1db 142220 admin optional lxc_0.7.2-1+deb6u1_amd64.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJW1DmHAAoJEJr0azAldxsx4cEQAIs6f+3taDlHq+rwT26YbCdg J0119WqKb/ASSj1gRUrXIET68d6zyiFhcqAtMisLOvxQqmHZZ5piRctzL+6wOhZu 47F3b9S4kaz4CypNy4fHSj6i7outU8AE1O5mIzwmxqiA1knGPT8iP+aRj/l4J/JC OWq+oXgYnlVJLrUFBb1l+6uDVY56G1RK+7ASoMIWaW3ow2PC+bhNK4FcAwCQkdai nnqdQ72IXIaRhtA6LCqwV+zgSEpgNUR7WP3mJkiWIEiATKYu3KOfhTbsJ0UNPB6U jFxG0OtptKIFdo5JnwJkM3VjrUpoFniq6eC2t+bBPLfQ6EWtZxzR64pkT5VVagcO D8C7+0E6kwCJgsYzUQxUw/tHiKEQV2y89BA5iuxwJOOqkXoYPYntYdAiE41m/zQa h7+xOaxho3AiRXE3aaAD1kqLYePajOqV6y9xBRNpP3+dR0a+ZhwBxK0ehlta8uDD OuLCsVB9nVfUuElc6C0+5X+bQyw3qVdKObD/5sDxyyLCgie3QOSGJSuYYi/bjmbG TpNTMza5wFc1u0vMHbdCdNJH5RZrSRO4Mp5Fr04lQtjGTYHL4gI8EECrHdIZGOjI rIO0XOmoTu7PzJR7jERjhhcGWfpaM6MiSJvREmfY1fhove7fMVgqxH8VwGMIFQhG Yj7ZjEbmdx6R4tomjCUe =oVMt -END PGP SIGNATURE-