Accepted irssi 1.0.2-1+deb9u2 (source amd64) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Thu, 03 Aug 2017 15:59:51 -0400 Source: irssi Binary: irssi irssi-dev Architecture: source amd64 Version: 1.0.2-1+deb9u2 Distribution: stretch Urgency: high Maintainer: Rhonda D'Vine Changed-By: Rhonda D'Vine Description: irssi - terminal based IRC client irssi-dev - terminal based IRC client - development files Closes: 867598 Changes: irssi (1.0.2-1+deb9u2) stretch; urgency=high . * Security related update pulling upstream 5e26325317 (closes: 867598): - Fix null pointer dereference (CVE-2017-10965) - Fix use-after-free condition for nicklist (CVE-2017-10966) Checksums-Sha1: adb9bb0dd1bba31c21457147e140516c9560b127 1938 irssi_1.0.2-1+deb9u2.dsc ff9c8d829431eba09e401ac4885ab651069a0a7f 20944 irssi_1.0.2-1+deb9u2.debian.tar.xz 8b376a9d7ce53bdef3be852d9a106e6b4c7d7abb 2943402 irssi-dbgsym_1.0.2-1+deb9u2_amd64.deb 87c281ff45a38929e0d7fe097417e9b839f91fa5 449468 irssi-dev_1.0.2-1+deb9u2_amd64.deb 4f8dd3fc55c4365f07a6f67c0d2f09b9a758d23f 6873 irssi_1.0.2-1+deb9u2_amd64.buildinfo c721728ad6e280c87cf07b93642babff124a6dda 1075880 irssi_1.0.2-1+deb9u2_amd64.deb Checksums-Sha256: 094de63b3e9bce8fc3fc185717cc55ed5647c6b3113dca85134c7eb00950fdd1 1938 irssi_1.0.2-1+deb9u2.dsc 56b90c5a4d4d37c28e1930df2e444f3e83b7f6a601701ba7d4cc8e63ea4e8c3a 20944 irssi_1.0.2-1+deb9u2.debian.tar.xz 01569712ea1bb69decceb49b855f28757ca6ca1f189c8f563dd14693cb7e0e71 2943402 irssi-dbgsym_1.0.2-1+deb9u2_amd64.deb d962ae1814ede60e3201f7e38592807986d39e13e503321ef302648dc1472d66 449468 irssi-dev_1.0.2-1+deb9u2_amd64.deb 030a42ae1bec084484f1e9ae166bfaeb4494160a122e1da9d6b3c36e3b86d677 6873 irssi_1.0.2-1+deb9u2_amd64.buildinfo b34038e8428654a03011f3abe55cbc0e8d07a15670aaf33a5fe8732e81eab475 1075880 irssi_1.0.2-1+deb9u2_amd64.deb Files: af33e66af4333672ed9c2efec46670c2 1938 net optional irssi_1.0.2-1+deb9u2.dsc c2201fb282d6382dc140f4671ca38bec 20944 net optional irssi_1.0.2-1+deb9u2.debian.tar.xz f23e4d19747dfdc5ff253bb58b5e446d 2943402 debug extra irssi-dbgsym_1.0.2-1+deb9u2_amd64.deb 6942922f5fcc1a4225e2e5a1100ad892 449468 net extra irssi-dev_1.0.2-1+deb9u2_amd64.deb 6c5530654c7327b0f281e405074f8b9c 6873 net optional irssi_1.0.2-1+deb9u2_amd64.buildinfo 45135836024ee46d025055a23def9377 1075880 net optional irssi_1.0.2-1+deb9u2_amd64.deb -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEELHLzKO0XByBPs0mU3ugEPuF+uzAFAlmF3B4ACgkQ3ugEPuF+ uzDvzQ/9FeSpieDJ5S4GhvDFnV9LUBkHCul8l19RuRs84oMiuojBKmJrby9I4Ak+ oznxorHAk1C3fImC1+YyFriUyuquSVWhDtHgytbGtoZ8SjivjFO+sAt0eAGP+zkz OPcWcU27S3RZqL403xuzNHb3RC/1FWJGMignt4PkeTFBX80kiaqqmhfUnaMCzvTj 8+pxzpZBw75DqX18b+TAZydvBn6J5J/vSxkuvyRHRsJuUNJxhYyqEZDsLScOVi1I xBeW9t4yh7ebxGqc+rgEXoUzAe3QMyWaizslF54TcYc5nYZBzNmHRP/r1qH55gQ/ YajiWz2aTW4Vv3gmZCupcRkiw1z8fuJXGHUynPgZvPklwLNu9ygp/5wFudcLOC/t h/grbJ8w+wTb14m6fMnZJ/fkV3yHQDP973pKoR578Enazq8jb1hYUDYCHef810BV NpD5VTILd2h12cA36a3RO65hgGr+qmLhHZW8uteMCG7lcuEuUFTkTezo/tyY2yo7 1ngPwtz0OQLn2p8AFWwV1CU1pSg9lztUUifqj6dOSz0qKH96aKnWVRD2hSaT3YP5 37tZTX0l0ucXetTQvekyfvYIS0SPTB1rmKmI5WKDNE2Pm9pHD+AMbGItIZgY1aQY 46H1ID41Xj4JpXQOk1/cd8f8v3V6dhX/Qf8oITz44eCCnVPaVS8= =EwUS -END PGP SIGNATURE-
Accepted irssi 1.0.7-1~deb9u1 (source amd64) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 27 Mar 2018 10:22:28 +0200 Source: irssi Binary: irssi irssi-dev Architecture: source amd64 Version: 1.0.7-1~deb9u1 Distribution: stretch-security Urgency: high Maintainer: Rhonda D'Vine Changed-By: Rhonda D'Vine Description: irssi - terminal based IRC client irssi-dev - terminal based IRC client - development files Closes: 879521 886475 890674 890675 890676 890677 890678 Changes: irssi (1.0.7-1~deb9u1) stretch-security; urgency=high . * Security update using upstream version 1.0.7. See changelog entries of 1.0.7-1 and 1.0.5-1 for the CVE lists. * Remove pulled patches that were put on top of 1.0.2. * Lower debhelper compat to 10. . irssi (1.0.7-1) unstable; urgency=high . * New upstream bugfix release (closes: #886475): From 1.0.6: - Fix invalid memory access when reading hilight configuration (#787, #788). - Fix null pointer dereference when the channel topic is set without specifying a sender [CVE-2018-5206] - Fix return of random memory when using incomplete escape codes [CVE-2018-5205] - Fix heap buffer overflow when completing certain strings [CVE-2018-5208] - Fix return of random memory when using an incomplete variable argument [CVE-2018-5207] . From 1.0.7: - Prevent use after free error during the execution of some commands. Found by Joseph Bisch [CVE-2018-7054] (closes: #890674) - Revert netsplit print optimisation due to crashes - Fix use after free when SASL messages are received in unexpected order [CVE-2018-7053] (closes: #890675) - Fix null pointer dereference in the tab completion when an empty nick is joined [CVE-2018-7050] (closes: #890678) - Fix use after free when entering oper password - Fix null pointer dereference when too many windows are opened [CVE-2018-7052] (closes: #890676) - Fix out of bounds access in theme strings when the last escape is incomplete. Credit to Oss-Fuzz [CVE-2018-7051] (closes: #890677) - Fix out of bounds write when using negative counts on window resize - Minor help correction. By William Jackson . * Fix watch URL. * Bump to debhelper compat 11, remove autotools-dev Build-Depends. * Bump Standards-Version to 4.1.3. * Add lintian overrides for the spelling of "hilight" in the changelog mentioning the lintian overrides for the spelling of "hilight" in irssi itself. . irssi (1.0.5-1) unstable; urgency=high . * New upstream bugfix release (closes: #879521): - Fix missing -sasl_method '' in /NETWORK. - Fix incorrect restoration of term state when hitting SUSP inside screen. - Fix out of bounds read when compressing colour sequences. Found by Hanno Böck. [CVE-2017-15228] - Fix use after free condition during a race condition when waiting on channel sync during a rejoin [CVE-2017-15227] - Fix null pointer dereference when parsing certain malformed CTCP DCC messages. [CVE-2017-15721] - Fix crash due to null pointer dereference when failing to split messages due to overlong nick or target. [CVE-2017-15723] - Fix out of bounds read when trying to skip a safe channel ID without verifying that the ID is long enough. [CVE-2017-15722] - Fix return of random memory when inet_ntop failed. - Minor statusbar help update. * Remove deprecated --with autotools_dev call to dh. * Bump Standards-Version to 4.1.1. * Change priority of irssi-dev from deprecated extra to optional. * Use pkg-info.mk in debian/rules instead of calling dpkg-parsechangelog directly. Checksums-Sha1: dc64227d7478e374aa7363eb6632cf40045d551a 2177 irssi_1.0.7-1~deb9u1.dsc 0524e5f2d465e3b04a0227dac648a26e5c6d8286 1034188 irssi_1.0.7.orig.tar.xz 0524e5f2d465e3b04a0227dac648a26e5c6d8286 1034188 irssi_1.0.7.orig.tar.xz.asc cb0dee4efa0c93cce87baa35da863ea6895bb8c3 20664 irssi_1.0.7-1~deb9u1.debian.tar.xz b1d6045ff6a2b7ac02aa61ba618c177b243b1868 2937626 irssi-dbgsym_1.0.7-1~deb9u1_amd64.deb 6a061e477a0c28b0e7c1aaca47fbf80fc3605b33 454488 irssi-dev_1.0.7-1~deb9u1_amd64.deb a8f251d110cfc33488027f9776bfc29cf2bf361e 7136 irssi_1.0.7-1~deb9u1_amd64.buildinfo d78da08269ac5d921bd0a84e8134db4673c682f9 1082726 irssi_1.0.7-1~deb9u1_amd64.deb Checksums-Sha256: bc0fe07a9ada3495b6726e4a143c6d854176b9da63e0e991de067c890b0a73bb 2177 irssi_1.0.7-1~deb9u1.dsc 1b386ca026aa1875c380fd00ef1d24b71fb87cdae39ef5349ecca16c4567feac 1034188 irssi_1.0.7.orig.tar.xz 1b386ca026aa1875c380fd00ef1d24b71fb87cdae39ef5349ecca16c4567feac 1034188 irssi_1.0.7.orig.tar.xz.asc 7f6bb02371ed3f2e0e425e42991bf6c6ec78245789f04b1b134b60458f81fe37 20664 irssi_1.0.7-1~deb9u1.debian.tar.xz 1deb1fff2de475cac7ffc1f8588156759b7937b4277d937cf24e1253fdd3a139 293762
Accepted wesnoth-1.12 1:1.12.6-1+deb9u1 (source all amd64) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Tue, 30 Oct 2018 10:53:02 +0100 Source: wesnoth-1.12 Binary: wesnoth-1.12-data wesnoth-1.12-core wesnoth-core wesnoth-1.12-dbg wesnoth-1.12 wesnoth wesnoth-1.12-music wesnoth-music wesnoth-1.12-server wesnoth-1.12-tools wesnoth-1.12-httt wesnoth-1.12-tsg wesnoth-1.12-trow wesnoth-1.12-ttb wesnoth-1.12-ei wesnoth-1.12-utbs wesnoth-1.12-did wesnoth-1.12-nr wesnoth-1.12-sof wesnoth-1.12-sotbe wesnoth-1.12-l wesnoth-1.12-aoi wesnoth-1.12-thot wesnoth-1.12-low wesnoth-1.12-dm wesnoth-1.12-dw Architecture: source all amd64 Version: 1:1.12.6-1+deb9u1 Distribution: stretch Urgency: low Maintainer: Debian Games Team Changed-By: Rhonda D'Vine Description: wesnoth- fantasy turn-based strategy game - complete suite (metapackage) wesnoth-1.12 - fantasy turn-based strategy game - complete suite (branch 1.12) wesnoth-1.12-aoi - "An Orcish Incursion" official campaign for Wesnoth (branch 1.12) wesnoth-1.12-core - fantasy turn-based strategy game (branch 1.12) wesnoth-1.12-data - data files for Wesnoth (branch 1.12) wesnoth-1.12-dbg - fantasy turn-based strategy game (debugging symbols for branch 1. wesnoth-1.12-did - "Descent Into Darkness" official campaign for Wesnoth (branch 1.1 wesnoth-1.12-dm - "Delfador's Memoirs" official campaign for Wesnoth (branch 1.12) wesnoth-1.12-dw - "Dead Water" official campaign for Wesnoth (branch 1.12) wesnoth-1.12-ei - "The Eastern Invasion" official campaign for Wesnoth (branch 1.12 wesnoth-1.12-httt - "Heir to the Throne" official campaign for Wesnoth (branch 1.12) wesnoth-1.12-l - "Liberty" official campaign for Wesnoth (branch 1.12) wesnoth-1.12-low - "Legend of Wesmere" official campaign for Wesnoth (branch 1.12) wesnoth-1.12-music - music files for Wesnoth (branch 1.12) wesnoth-1.12-nr - "Northern Rebirth" official campaign for Wesnoth (branch 1.12) wesnoth-1.12-server - multiplayer network server for Wesnoth (branch 1.12) wesnoth-1.12-sof - "The Sceptre of Fire" official campaign for Wesnoth (branch 1.12) wesnoth-1.12-sotbe - "Son of the Black-Eye" official campaign for Wesnoth (branch 1.12 wesnoth-1.12-thot - "The Hammer of Thursagan" official campaign for Wesnoth (branch 1 wesnoth-1.12-tools - tools for campaign developers for Wesnoth (branch 1.12) wesnoth-1.12-trow - "The Rise of Wesnoth" official campaign for Wesnoth (branch 1.12) wesnoth-1.12-tsg - "The South Guard" official campaign for Wesnoth (branch 1.12) wesnoth-1.12-ttb - "A Tale of Two Brothers" official campaign for Wesnoth (branch 1. wesnoth-1.12-utbs - "Under the Burning Suns" official campaign for Wesnoth (branch 1. wesnoth-core - fantasy turn-based strategy game (metapackage) wesnoth-music - music files for Wesnoth (metapackage) Closes: 912336 Changes: wesnoth-1.12 (1:1.12.6-1+deb9u1) stretch; urgency=low . * Security fix: disallow loading lua bytecode via load/dofile (CVE-2018-1999023, closes: #912336) Checksums-Sha1: 541b31c7b9fd2a9f8352edaf8aeee3ea113b12de 4036 wesnoth-1.12_1.12.6-1+deb9u1.dsc e89038516bc26c6463f33e9a84acee69d5c8bb4d 67296 wesnoth-1.12_1.12.6-1+deb9u1.debian.tar.xz 4e0d91d4dc000e03bd7cecc8484ebea91ae7a55c 4193260 wesnoth-1.12-aoi_1.12.6-1+deb9u1_all.deb cba59f88cea7d8e49a8cf2cc98b41d3550b16672 4687982 wesnoth-1.12-core_1.12.6-1+deb9u1_amd64.deb 0a6419c796c7200078f500dc75618e8e8ff0c777 110811308 wesnoth-1.12-data_1.12.6-1+deb9u1_all.deb da68746e3b779470ae709ac8c897b943034e70e1 64326414 wesnoth-1.12-dbg_1.12.6-1+deb9u1_amd64.deb e535aeb9003d45e63f8a9fc7a0a86169a822b76a 4854514 wesnoth-1.12-did_1.12.6-1+deb9u1_all.deb 30f492d66effb450db8e673d1564ed80d15ef1e8 5361720 wesnoth-1.12-dm_1.12.6-1+deb9u1_all.deb eb67fc7b6db349a540109d774ac4ff0e9bb1bd0f 4980776 wesnoth-1.12-dw_1.12.6-1+deb9u1_all.deb 28683b26c31104699e95015da3e65de04f9c72fc 5151036 wesnoth-1.12-ei_1.12.6-1+deb9u1_all.deb 4e9af225c921bb23d396fd56575ae9a711f59af2 13061730 wesnoth-1.12-httt_1.12.6-1+deb9u1_all.deb fcc954a90808972cdcdfa33612e27faf3eec6ea1 5190728 wesnoth-1.12-l_1.12.6-1+deb9u1_all.deb 438550f7c0af2eefa3c184b737befdc58f2e41ec 8488006 wesnoth-1.12-low_1.12.6-1+deb9u1_all.deb 244a2dd51f3dfe7f3e1346216458053fbfa8467a 143780686 wesnoth-1.12-music_1.12.6-1+deb9u1_all.deb 5f5257faca2663889ba7c917c3b8fa12987aed13 5691606 wesnoth-1.12-nr_1.12.6-1+deb9u1_all.deb 260b135afe0a43031d4b3e6c600a5aa1c2b2f0b8 881992 wesnoth-1.12-server_1.12.6-1+deb9u1_amd64.deb acbbd3ba73f6a11f3f0ff8ee7cd541003c0b 6733892 wesnoth-1.12-sof_1.12.6-1+deb9u1_all.deb eb8aa242176f493eca00053037348955d692201a 5990100 wesnoth-1.12-sotbe_1.12.6-1+deb9u1_all.deb 716b175daac7b8a76db10af7718858564befde52 6272556 wesnoth-1.12-thot_1.12.6-1+deb9u1_all.deb dc3223a64662da010feea1c708bdb0d419e735a2 1598146 wesnoth-1.12-tools_1.12.6-1+de
Accepted wesnoth-1.10 1:1.10.3-3+deb7u1 (source amd64 all) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Wed, 08 Apr 2015 11:05:06 +0200 Source: wesnoth-1.10 Binary: wesnoth-1.10-data wesnoth-1.10-core wesnoth-core wesnoth-1.10-dbg wesnoth-1.10 wesnoth wesnoth-1.10-music wesnoth-music wesnoth-1.10-server wesnoth-1.10-tools wesnoth-1.10-httt wesnoth-1.10-tsg wesnoth-1.10-trow wesnoth-1.10-ttb wesnoth-1.10-ei wesnoth-1.10-utbs wesnoth-1.10-did wesnoth-1.10-nr wesnoth-1.10-sof wesnoth-1.10-sotbe wesnoth-1.10-l wesnoth-1.10-aoi wesnoth-1.10-thot wesnoth-1.10-low wesnoth-1.10-dm wesnoth-1.10-dw Architecture: source amd64 all Version: 1:1.10.3-3+deb7u1 Distribution: wheezy-security Urgency: high Maintainer: Debian Games Team Changed-By: Rhonda D'Vine Description: wesnoth- fantasy turn-based strategy game - complete suite (metapackage) wesnoth-1.10 - fantasy turn-based strategy game - complete suite (branch 1.10) wesnoth-1.10-aoi - "An Orcish Incursion" official campaign for Wesnoth (branch 1.10) wesnoth-1.10-core - fantasy turn-based strategy game (branch 1.10) wesnoth-1.10-data - data files for Wesnoth (branch 1.10) wesnoth-1.10-dbg - fantasy turn-based strategy game (debugging symbols for branch 1. wesnoth-1.10-did - "Descent Into Darkness" official campaign for Wesnoth (branch 1.1 wesnoth-1.10-dm - "Delfador's Memoirs" official campaign for Wesnoth (branch 1.10) wesnoth-1.10-dw - "Dead Water" official campaign for Wesnoth (branch 1.10) wesnoth-1.10-ei - "The Eastern Invasion" official campaign for Wesnoth (branch 1.10 wesnoth-1.10-httt - "Heir to the Throne" official campaign for Wesnoth (branch 1.10) wesnoth-1.10-l - "Liberty" official campaign for Wesnoth (branch 1.10) wesnoth-1.10-low - "Legend of Wesmere" official campaign for Wesnoth (branch 1.10) wesnoth-1.10-music - music files for Wesnoth (branch 1.10) wesnoth-1.10-nr - "Northern Rebirth" official campaign for Wesnoth (branch 1.10) wesnoth-1.10-server - multiplayer network server for Wesnoth (branch 1.10) wesnoth-1.10-sof - "The Sceptre of Fire" official campaign for Wesnoth (branch 1.10) wesnoth-1.10-sotbe - "Son of the Black-Eye" official campaign for Wesnoth (branch 1.10 wesnoth-1.10-thot - "The Hammer of Thursagan" official campaign for Wesnoth (branch 1 wesnoth-1.10-tools - tools for campaign developers for Wesnoth (branch 1.10) wesnoth-1.10-trow - "The Rise of Wesnoth" official campaign for Wesnoth (branch 1.10) wesnoth-1.10-tsg - "The South Guard" official campaign for Wesnoth (branch 1.10) wesnoth-1.10-ttb - "A Tale of Two Brothers" official campaign for Wesnoth (branch 1. wesnoth-1.10-utbs - "Under the Burning Suns" official campaign for Wesnoth (branch 1. wesnoth-core - fantasy turn-based strategy game (metapackage) wesnoth-music - music files for Wesnoth (metapackage) Changes: wesnoth-1.10 (1:1.10.3-3+deb7u1) wheezy-security; urgency=high . * Pull af61f9fd from upstream to fix "Private file disclosure through get_wml_location()" (CVE-2015-0844) Checksums-Sha1: bb83d7d2f036f718ea5173892c857ed5130bc82b 3341 wesnoth-1.10_1.10.3-3+deb7u1.dsc a8992ed64617a8d569ea1557b7f2b6d25bdb805b 342168933 wesnoth-1.10_1.10.3.orig.tar.bz2 304912d2b96bba615af9eb9edbe86e644c763ca8 52008 wesnoth-1.10_1.10.3-3+deb7u1.debian.tar.gz fd5021c9032d0975f7e0e1e5b9a926c441195336 5009906 wesnoth-1.10-core_1.10.3-3+deb7u1_amd64.deb fd14ea7bda126d7a81f2d2106d206aec73ed20c0 887578 wesnoth-1.10-dbg_1.10.3-3+deb7u1_amd64.deb 923092a17017c39bfd53c44c552540728881071f 783064 wesnoth-1.10-server_1.10.3-3+deb7u1_amd64.deb 5ed9fc91224779f7aa10f02735665ec85f53579b 100803644 wesnoth-1.10-data_1.10.3-3+deb7u1_all.deb f3736a27b7667e283d23283f35ad23f57b1fe162 1190 wesnoth-core_1.10.3-3+deb7u1_all.deb 4496f7e6d2db85c529a95e69d25d7d27eb984c06 1374 wesnoth-1.10_1.10.3-3+deb7u1_all.deb c363bb1dd10a807bcff6eaecd1698fb62df8ab12 1284 wesnoth_1.10.3-3+deb7u1_all.deb 671b5fb2a414197c55c217f06b5a0dd1b5a021fb 143858530 wesnoth-1.10-music_1.10.3-3+deb7u1_all.deb 3c27ee7793383f547b949fb9a3972e9797849e48 1160 wesnoth-music_1.10.3-3+deb7u1_all.deb 04ca27e1edf53dbc46f79e023511e574f59f0524 346042 wesnoth-1.10-tools_1.10.3-3+deb7u1_all.deb c5ebac6ed15fcc4d05ab95963a226facfe9ec2ea 7297982 wesnoth-1.10-httt_1.10.3-3+deb7u1_all.deb dd4baa20b0b574f3c80d665daa3a40f72beb6d73 4669846 wesnoth-1.10-tsg_1.10.3-3+deb7u1_all.deb 74b491ad1816536a3ebb3cafc676ce9855e22b83 11120610 wesnoth-1.10-trow_1.10.3-3+deb7u1_all.deb c96c99a4c93e5ceee40f2edf565a1512abffa28c 3053500 wesnoth-1.10-ttb_1.10.3-3+deb7u1_all.deb 70c49d1d4d8456e9327452290e706d8382941dbe 5140326 wesnoth-1.10-ei_1.10.3-3+deb7u1_all.deb e930fe93f3706eb20a2ae2d9a42c3c49a01e70b6 8041052 wesnoth-1.10-utbs_1.10.3-3+deb7u1_all.deb ba9de3b8335793a7f425c86a659109162d0ea14c 5935780 wesnoth-1.10-did_1.10.3-3+deb7u1_all.deb e
Accepted irssi 0.8.17-1+deb8u2 (source amd64) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Sat, 24 Sep 2016 16:10:19 +0200 Source: irssi Binary: irssi irssi-dbg irssi-dev Architecture: source amd64 Version: 0.8.17-1+deb8u2 Distribution: jessie Urgency: high Maintainer: Rhonda D'Vine Changed-By: Rhonda D'Vine Description: irssi - terminal based IRC client irssi-dbg - terminal based IRC client (debugging symbols) irssi-dev - terminal based IRC client - development files Closes: 838762 Changes: irssi (0.8.17-1+deb8u2) jessie; urgency=high . * New patch 23fix-buf.pl to fix an information exposure issue involved with using buf.pl and /upgrade (CVE-2016-7553, closes: #838762) Checksums-Sha1: f29cd1c9e476a66af4d2c0f4c863c58c7d49e918 1982 irssi_0.8.17-1+deb8u2.dsc 076f50fef07443c54f3624c58c51586bfd74bffc 22167 irssi_0.8.17-1+deb8u2.diff.gz d02ec81bede3415762d6c0134ee091fc109d4dca 973184 irssi_0.8.17-1+deb8u2_amd64.deb 3a7b5e0d83c6858c53b793932311d82ad4970358 2690820 irssi-dbg_0.8.17-1+deb8u2_amd64.deb c050c278ca232b2ae392bf4805d59246a31cbe57 388928 irssi-dev_0.8.17-1+deb8u2_amd64.deb Checksums-Sha256: 966093ed6121c24d49a7a819aa0cd8a8a48f6c3d80e29877a127aed2d7f9f6e8 1982 irssi_0.8.17-1+deb8u2.dsc dffa58c8eec5883547de42a0ec2a164ef06e629f67ed7f790275eb1562ccbd3b 22167 irssi_0.8.17-1+deb8u2.diff.gz 88da5b36d86d2b9e06413a5c86b52d0b3ef140eb10aa86ee32dc573db0e0a19f 973184 irssi_0.8.17-1+deb8u2_amd64.deb 315d604b43762b3e445dba25a837fa150f85b1f322b0b2e327637d67d1298154 2690820 irssi-dbg_0.8.17-1+deb8u2_amd64.deb 4a9ad78d27ea3fea9f4d232931d3e01c1c7064d467ff1d6394024fa7d72da9c0 388928 irssi-dev_0.8.17-1+deb8u2_amd64.deb Files: 410ceeaae3f13b83c3bbd755084e5f29 1982 net optional irssi_0.8.17-1+deb8u2.dsc 5fbdba617376dbe54a520ad42836ca7f 22167 net optional irssi_0.8.17-1+deb8u2.diff.gz 049762b16e7f5e68a311578f22dd341a 973184 net optional irssi_0.8.17-1+deb8u2_amd64.deb c33d15322293702510c57d729ded69b3 2690820 debug extra irssi-dbg_0.8.17-1+deb8u2_amd64.deb 4138bfb9e095972050688e6df41e7894 388928 net extra irssi-dev_0.8.17-1+deb8u2_amd64.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJYN1nGAAoJEN7oBD7hfrswRAgP/ic5CSl1H6j/ERn7YCu4fIDq PyS97cJ4hOpLbq3RrjSOlv2madDuIVNSX0cQkLSNNqxrdgqpkpFqrSruh7NOr4Oy HNdsMCSOULSovXu9UekCqFt4pBeUG51/mDUt/spYpqMN+CN0H3IyNMxxc2unG/br z3kKfB8Z7z9qIgSdRpBMIBLmjchMNWk6g6pxZGio187xrZJESzxo6J8ic0hUY9bl BMt1t3ol6nPkjMscDMn1eq9NmP+mU68OC+h2yt40LLjCldZ/7/5f1hw/kFe4A3SJ TPNoBvGKyJ0tUdmCumKu7+CTE2I8Px/HoROTQIGgmxEsULJGFHB+zHuXvxVi+pyP xQOLqjoUsvOqN4EjUkfYJDKPm0FCxbO4DgXBpHmABwbgD7yR7+9XI3fqTKzx/+2j rvTvpTbpiuzeQ+zYUe71SDcTEDUYrXbDUv9CpCr1QYRPjzbh0wY01eyTnRS2G9ev U4RsbLZhR1z8mIE4IHg4ZfjrII1+a3MHou2+VxJXPbguc0y4SEu5IRV5Tv0+jFQW f+ivLvnqTE8Uc6HEZCLn+pd9n1m8KFuIHo0b/t1Vf7XUUG0So5nXAzEcogHyhUY6 zFhdOM44vqK/oMPlkGssJ7Me3c3AVg+DYIzK02X3120DICYNQlLsU5/J06b/lxJi kvCc/1x+CT2KDvdmq4w5 =ldLp -END PGP SIGNATURE-
Accepted irssi 0.8.17-1+deb8u3 (source amd64) into proposed-updates->stable-new, proposed-updates
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Sat, 07 Jan 2017 15:54:02 +0100 Source: irssi Binary: irssi irssi-dbg irssi-dev Architecture: source amd64 Version: 0.8.17-1+deb8u3 Distribution: jessie Urgency: low Maintainer: Rhonda D'Vine Changed-By: Rhonda D'Vine Description: irssi - terminal based IRC client irssi-dbg - terminal based IRC client (debugging symbols) irssi-dev - terminal based IRC client - development files Closes: 850403 Changes: irssi (0.8.17-1+deb8u3) jessie; urgency=low . * New patch 24security-fixes pulled from upstream commit 6c6c42e3d1b4 (besides the one issue in src/fe-text/term-terminfo.c which is 0.8.18 onward only), closes: #850403: - CVE-2017-5193: NULL pointer dereference in the nickcmp function - CVE-2017-5194: Use-after-freee when receiving invalid nick message - CVE-2017-5195: Out-of-bounds read in certain incomplete control codes * Set PACKAGE_VERSION for configure as suggested by upstream. Checksums-Sha1: 6d5ba905164c414eb90a0a6ae370e82a274e3e7b 1996 irssi_0.8.17-1+deb8u3.dsc feddda0d45d6706a2da92bd2612c9a20c237b0bd 1460897 irssi_0.8.17.orig.tar.gz e898511f2dacd05c167ffa7796eb6969b46a4076 23238 irssi_0.8.17-1+deb8u3.diff.gz df59c59236b0ae281ad098ff85a4a3686ce43c46 973906 irssi_0.8.17-1+deb8u3_amd64.deb 0b49c1c0161cbec8dcd01be2edf01070d4c0ccbe 2691248 irssi-dbg_0.8.17-1+deb8u3_amd64.deb 84d2e473b7149ef3ef2a7e7691e95cc974064787 389202 irssi-dev_0.8.17-1+deb8u3_amd64.deb Checksums-Sha256: 40bc3962856ed092bc538ff8b1091b4f96e6e36f5ea2be0aea66438d1af26f9d 1996 irssi_0.8.17-1+deb8u3.dsc 0ae01f76797fb6d6b8e0f2268b39c7afb90ac62658ec754c82acfc344b8203e9 1460897 irssi_0.8.17.orig.tar.gz 6f86f36f69239fe909820ea8445732a20df1180dba16b8e3da1d21e31a5d209e 23238 irssi_0.8.17-1+deb8u3.diff.gz 4b1aad834c8cfe8421562875d035b4ee7d0f6c927f442b0d00e218e846997198 973906 irssi_0.8.17-1+deb8u3_amd64.deb bb6122b59c98264d107ab46f9cff68f9ec0722cbdadf02c1c89c41a2a9c9ee5f 2691248 irssi-dbg_0.8.17-1+deb8u3_amd64.deb f6b96955ef3a614ad2dc702c997375a6ba76ac9d314af25d47f4c72ecc40 389202 irssi-dev_0.8.17-1+deb8u3_amd64.deb Files: cd9e6b589cf6488cd466b21eec9a7e2c 1996 net optional irssi_0.8.17-1+deb8u3.dsc 00cde2ba7ba37af9e3df451f430ecdea 1460897 net optional irssi_0.8.17.orig.tar.gz 6261ce42cd1333d7e5574405b061a268 23238 net optional irssi_0.8.17-1+deb8u3.diff.gz 1469573d9df8a6f696fa272abb5cc2fa 973906 net optional irssi_0.8.17-1+deb8u3_amd64.deb ccede8585f5b17f58468c3098412faac 2691248 debug extra irssi-dbg_0.8.17-1+deb8u3_amd64.deb 6c07cf3da8ddafaecc991a9aec991636 389202 net extra irssi-dev_0.8.17-1+deb8u3_amd64.deb -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEELHLzKO0XByBPs0mU3ugEPuF+uzAFAlhxB74ACgkQ3ugEPuF+ uzA0dA/8DwChOD8Oe+zmjmPyt0VbtS2LlTE86cbsI/lud9Uvy8amAf9cYAuY/juT XA1MyFy5I3VIvXW/XOCsxCB7SQx06Bf4TEM5fBLcmTUiXNbZ0ZpS+oZY7m6ELmcq PqfzhcSowSfib30KRnG6el75kEjjO4A/TMWJ+ugritCs18tW9bdILEyY9bnKBblq jKtK7y8Qjmnrwnia7uMnLvhopBponViZS/mSGdkzDLhjexvfWQoe/ZEjksJgh5I1 rgf/6rCk8NkUMZ71CWPFkg83W8BCsGeS7B5LOf2fSIyjf3i7UV97kjBxO2h06KZ1 R6DWHZQdM5xqYvWN9Oh6xepRImMU9WtltfVm1XcluQunvW+eqv7jbX3uVs7khjsp GGZPrH2S7W5MBMaBqkcNFIM0nXvDDrApx/ethPM+6s1aukG5cECocmjKTSlu1ZMB vTw1jo37fa3zkGB3IH0s5Y/2JKzVbGWoqzQuQbznTcdb7Jt4WUJ9DwOB46XwFmtZ XU9/Ni8/FmmzcyVdCsWYCeNKCPbwQIMkjLq0Opan3TGQIMQzFTZTE9DwFwEDDrwI iY5knwta9t0esGy8/PvqG5UxdU477nIRIr+dky3MFSYDZAhe2J2foZaxMz9qXB68 f3vypAXeHpdqryv+Uhq92Z5tY21ubObGUkOijNABnA+vWnL3z/g= =p8Lc -END PGP SIGNATURE-
