-
Committer:
Package Import Robot
-
Author(s):
Seth Arnold
-
Date:
2013-11-01 17:19:42 UTC
-
mfrom:
(28.1.2 raring-proposed)
-
Revision ID:
package-import@ubuntu.com-20131101171942-6infiavaz0na213e
Tags: 1.3+bzr1461+dfsg-0ubuntu2.3
* SECURITY UPDATE: failure to authenticate downloaded content (LP: #1039513)
- debian/patches/CVE-2013-1058.patch: Authenticate downloaded files with
GnuPG and MD5SUM files. Thanks to Julian Edwards.
- CVE-2013-1058
* SECURITY UPDATE: configuration options may be loaded from current working
directory (LP: #1158425)
- debian/patches/CVE-2013-1057-1-3.patch: Do not load configuration
options from the current working directory. Thanks to Julian Edwards.
- CVE-2013-1057