-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Sun, 24 Feb 2019 12:35:35 +0100
Source: freedink-dfarc
Binary: freedink-dfarc freedink-dfarc-dbg
Architecture: source amd64
Version: 3.12-1+deb8u1
Distribution: jessie-security
Urgency: high
Maintainer: Debian Games Team
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Package: freedink-dfarc
Version: 3.12-1+deb8u1
CVE ID : CVE-2018-0496
Sylvain Beucler and Dan Walma discovered several directory traversal
issues in DFArc, a frontend and extensions manager for the Dink
Smallwood game,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Format: 1.8
Date: Sun, 24 Feb 2019 18:04:09 +0200
Source: sox
Binary: sox libsox2 libsox-fmt-base libsox-fmt-alsa libsox-fmt-ao
libsox-fmt-mp3 libsox-fmt-oss libsox-fmt-pulse libsox-fmt-all libsox-dev
Architecture: source amd64
Version:
Hello Bastian,
I noticed your upload of waagent 2.2.18-3~deb8u1 to jessie-security but
no DLA announcement was sent. Please claim an DLA id and follow our
recommendations. [1] If there are any problems, please let us know.
Regards,
Markus
[1] https://wiki.debian.org/LTS/Development
söndag 30 december 2018 kl. 09:38:57 CET skrev Salvatore Bonaccorso:
> There is an alternative approach wich was raised by Magnus in the
> respective bug: https://bugs.debian.org/914632#12 (and see followup
> from Moritz).
So, is it OK to upload this (assuming there's no code out there that
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Package: sox
Version: 14.4.1-5+deb8u1
CVE ID : CVE-2014-8145
Debian Bug : 773720
Mike Salvatore discovered that the fixes for these heap-based buffer
overflows had not been properly applied in the Debian package.
For