* Adam D. Barratt: " Bug#749366: squeeze-pu: package suds/0.3.9-1+deb6u2 Bug#749073" (Mon, 26 May 2014 19:57:33 +0100):
> Control: tags -1 + confirmed > > On Mon, 2014-05-26 at 18:08 +0200, Mathias Behrle wrote: > > the original fix for CVE-2013-2217 was missing a proper cleanup of the > > cache directories in tmp (#749073), which can lead to saturation of > > the subdirectory limit (~32000 on ext3). > > > > I would like to upload suds_0.3.9-1+deb6u2 with this patch backported from > > > > https://bitbucket.org/jurko/suds/issue/15/insecure-temporary-directory-use > > > > https://bitbucket.org/jurko/suds/commits/3126ac3a406c37f9982f01ad0ca4ed42cf9a47cb > > > > https://bitbucket.org/jurko/suds/commits/aee4b2f0318f4b4545a1da826149edaa2c047460 > > Please go ahead; thanks. Uploaded by sponsor Raphael Hertzog. BTW: Do I need to confirm this? ftpmaster already sent 'suds_0.3.9-1+deb6u2_amd64.changes ACCEPTED into oldstable-proposed-updates->oldstable-new' Cheers -- Mathias Behrle PGP/GnuPG key availabable from any keyserver, ID: 0x8405BBF6
signature.asc
Description: PGP signature