Bug#1137317: trixie-pu: package errands/46.2.8-1+deb13u1

Fri, 22 May 2026 02:59:14 -0700 

Package: release.debian.org
Severity: normal
Tags: trixie
X-Debbugs-Cc: [email protected], [email protected]
Control: affects -1 + src:errands
User: [email protected]
Usertags: pu

  * CVE-2025-71063: TLS certificates for CalDAV servers were not verified
    (Closes: #1123738)

diffstat for errands-46.2.8 errands-46.2.8

 changelog                                      |    8 ++++++++
 patches/0001-Enable-back-ssl_verify_cert.patch |   24 ++++++++++++++++++++++++
 patches/series                                 |    1 +
 3 files changed, 33 insertions(+)

diff -Nru errands-46.2.8/debian/changelog errands-46.2.8/debian/changelog
--- errands-46.2.8/debian/changelog     2025-03-21 06:01:57.000000000 +0200
+++ errands-46.2.8/debian/changelog     2026-05-22 12:46:18.000000000 +0300
@@ -1,3 +1,11 @@
+errands (46.2.8-1+deb13u1) trixie; urgency=medium
+
+  * Non-maintainer upload.
+  * CVE-2025-71063: TLS certificates for CalDAV servers were not verified
+    (Closes: #1123738)
+
+ -- Adrian Bunk <[email protected]>  Fri, 22 May 2026 12:46:18 +0300
+
 errands (46.2.8-1) unstable; urgency=medium
 
   * New upstream release
diff -Nru errands-46.2.8/debian/patches/0001-Enable-back-ssl_verify_cert.patch 
errands-46.2.8/debian/patches/0001-Enable-back-ssl_verify_cert.patch
--- errands-46.2.8/debian/patches/0001-Enable-back-ssl_verify_cert.patch        
1970-01-01 02:00:00.000000000 +0200
+++ errands-46.2.8/debian/patches/0001-Enable-back-ssl_verify_cert.patch        
2026-05-22 12:46:18.000000000 +0300
@@ -0,0 +1,24 @@
+From 90f0af39207a23df3d53c9b7430f01e80b9be326 Mon Sep 17 00:00:00 2001
+From: mrvladus <[email protected]>
+Date: Mon, 22 Dec 2025 14:37:38 +0300
+Subject: Enable back ssl_verify_cert
+
+---
+ errands/lib/sync/providers/caldav.py | 1 -
+ 1 file changed, 1 deletion(-)
+
+diff --git a/errands/lib/sync/providers/caldav.py 
b/errands/lib/sync/providers/caldav.py
+index 94cfbc35..f9f7b782 100644
+--- a/errands/lib/sync/providers/caldav.py
++++ b/errands/lib/sync/providers/caldav.py
+@@ -86,7 +86,6 @@ class SyncProviderCalDAV:
+             url=self.url,
+             username=self.username,
+             password=self.password,
+-            ssl_verify_cert=False,
+         ) as client:
+             try:
+                 self.principal: Principal = client.principal()
+-- 
+2.47.3
+
diff -Nru errands-46.2.8/debian/patches/series 
errands-46.2.8/debian/patches/series
--- errands-46.2.8/debian/patches/series        1970-01-01 02:00:00.000000000 
+0200
+++ errands-46.2.8/debian/patches/series        2026-05-22 12:45:59.000000000 
+0300
@@ -0,0 +1 @@
+0001-Enable-back-ssl_verify_cert.patch

Reply via email to