Accepted otrs2 3.3.18-1+deb8u8 (source all) into oldstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Tue, 19 Mar 2019 10:34:25 +0530 Source: otrs2 Binary: otrs2 otrs Architecture: source all Version: 3.3.18-1+deb8u8 Distribution: jessie-security Urgency: medium Maintainer: Patrick Matthäi Changed-By: Abhijith PA Description: otrs - Open Ticket Request System (OTRS 3) otrs2 - Open Ticket Request System Changes: otrs2 (3.3.18-1+deb8u8) jessie-security; urgency=medium . * Non-maintainer upload by the Debian LTS Team. * Fix CVE-2019-9752: Content-type mishandling. Checksums-Sha1: 813d7bcb185259e0817dc00675ccc384b3c4705a 1849 otrs2_3.3.18-1+deb8u8.dsc 7f45cf5336e9ce5d507a935241f042bdfdf85845 21067692 otrs2_3.3.18.orig.tar.bz2 73b8f58e292814c072531caed125b0a17f7bf19b 48080 otrs2_3.3.18-1+deb8u8.debian.tar.xz be3205841b8c64f5b162184331cdd89e332448d8 5634130 otrs2_3.3.18-1+deb8u8_all.deb a05866b9aa0239bbe07c11227a145cd9dd506b4b 189666 otrs_3.3.18-1+deb8u8_all.deb Checksums-Sha256: fc11ec742f6acabe20e675ed96863ea8e177f3d8f41a0900e8908ef59e3fe3c9 1849 otrs2_3.3.18-1+deb8u8.dsc 9d6e4e44316c6812f35618be50d8951a0c2e0d917752610fada936c466bea453 21067692 otrs2_3.3.18.orig.tar.bz2 7d574e9af520914aa06e77a2e3c2f65391c4e1e2d2bcd320b853cc01f9906613 48080 otrs2_3.3.18-1+deb8u8.debian.tar.xz 301939c1054b333abf3af12e52fb59129377fe6a2caac0c7f1faa6090816 5634130 otrs2_3.3.18-1+deb8u8_all.deb 91424c787103580795bcee929eb0d6ef84a27a2ada4d1c225a563507c7b60de2 189666 otrs_3.3.18-1+deb8u8_all.deb Files: f4620bace31bfa6f113ea3dc1e2d2157 1849 web optional otrs2_3.3.18-1+deb8u8.dsc b3375dfa09a2ec3c4cebc7ad74d55e0b 21067692 web optional otrs2_3.3.18.orig.tar.bz2 0ea62fcd2ca653747fd9e41772ad310d 48080 web optional otrs2_3.3.18-1+deb8u8.debian.tar.xz 59124017a7f74c1bf64d5b4d80c14ba4 5634130 web optional otrs2_3.3.18-1+deb8u8_all.deb 3646323f43d2d6d2de091ed6f385a449 189666 web optional otrs_3.3.18-1+deb8u8_all.deb -BEGIN PGP SIGNATURE- iQJIBAEBCgAyFiEE7xPqJqaY/zX9fJAuhj1N8u2cKO8FAlyQiZIUHGFiaGlqaXRo QGRlYmlhbi5vcmcACgkQhj1N8u2cKO/gBQ/9HDzU9eV95SC+934W3yayzC/0ICfR Kv7QjS7Hr7Wll4i4Nl/6QcXySFnPonNmoWus7kRKlIJVNZYXjey1hERPDdVip5Vz Sx5ms0sj/2H+n0rt/3+CbAR50SpUVbsGtO3k4qX0GmyS78S2HJ4J112bcpudAEP8 IOBXBqdC8W/Egs8iuFZS6Tmc8lYDf6PGEMWED9UWG/RRVr0458yT8tYOmui7CS5K jUmYn0OGGikbouyIzNOs5KhnvfnmMWI0JFPoHvT6k30MJkStQVsM2Ok2ixRsnvnG aCNoC0O64EDPTlTu85Oeuhr9+AhKdwingg7igLSfvDZJDD+O8o8EmnHuvk3H0yqh Xb7gtmjFooVaggwv4IZNQkX4WeQJvVHpJobL7sshGxQ2uti9IV3huUa3SNKbN9ab FHiwW0p/LxFSMXmKx+/SlTO3qRbx9PpiDvhkuD0tcveOvwlx0/C+0zWef4Stu9nZ y85MssPAIhcZ2UyFUohzbR8mGNLSVTq7F4Zbpwp3eX2Dx41crToTIGVty6gj7Cyx qJAOa65u3bPHT/TyNVe50/y1kVwW34USsJmWymIz+4DiUvuAY03HGDAz40nPnJtN pqC3IKvKuBKUSgOSbF1466/2haj6EsXYZSmYFqBxCMCoucECGRt1TfU7YfxpE7+Y 5JrfM/Ck5fOQrAc= =1L8z -END PGP SIGNATURE-
Accepted libjpeg-turbo 1:1.3.1-12+deb8u2 (source all amd64) into oldstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Mon, 18 Mar 2019 14:45:00 -0400 Source: libjpeg-turbo Binary: libjpeg-dev libjpeg62-turbo-dev libjpeg62-turbo libjpeg62-turbo-dbg libturbojpeg1 libturbojpeg1-dbg libturbojpeg1-dev libjpeg-turbo-progs libjpeg-turbo-progs-dbg Architecture: source all amd64 Version: 1:1.3.1-12+deb8u2 Distribution: jessie-security Urgency: high Maintainer: Ondřej Surý Changed-By: Chris Lamb Description: libjpeg-dev - Development files for the JPEG library [dummy package] libjpeg-turbo-progs - Programs for manipulating JPEG files libjpeg-turbo-progs-dbg - Programs for manipulating JPEG files (debugging symbols) libjpeg62-turbo - libjpeg-turbo JPEG runtime library libjpeg62-turbo-dbg - Debugging symbols for the libjpeg-turbo JPEG library libjpeg62-turbo-dev - Development files for the libjpeg-turbo JPEG library libturbojpeg1 - TurboJPEG runtime library - SIMD optimized libturbojpeg1-dbg - TurboJPEG runtime library - SIMD optimized (debugging symbols) libturbojpeg1-dev - Development files for the TurboJPEG library Closes: 924678 Changes: libjpeg-turbo (1:1.3.1-12+deb8u2) jessie-security; urgency=high . * CVE-2018-14498: Fix a denial of service vulnerability via a heap-based buffer overread that could be triggered by a specially-crafted bitmap file. (Closes: #924678) Checksums-Sha1: 320291d9eaef11805c34e22e870f8ea4066d2d31 2562 libjpeg-turbo_1.3.1-12+deb8u2.dsc 5fa19252e5ca992cfa40446a0210ceff55fbe468 1390282 libjpeg-turbo_1.3.1.orig.tar.gz f3562f301ba3a167a3ca4d2b9aec5e1a508ebc63 81956 libjpeg-turbo_1.3.1-12+deb8u2.debian.tar.xz 54619f36526bc8df73dab1037108502e973906a1 49706 libjpeg-dev_1.3.1-12+deb8u2_all.deb d349dfbdb9e709f2c0ac72ebb68f9bbcda5a1242 455828 libjpeg62-turbo-dev_1.3.1-12+deb8u2_amd64.deb 7600fb787bed3144af59411fc7bd2ccbae68d566 116762 libjpeg62-turbo_1.3.1-12+deb8u2_amd64.deb 8cf5d0215f7fccead397dd556b37572d08bb3bf7 318764 libjpeg62-turbo-dbg_1.3.1-12+deb8u2_amd64.deb 0af9e0cb94e9eff38cb16a07f41d7f1bb8117596 126990 libturbojpeg1_1.3.1-12+deb8u2_amd64.deb e8ac17278f1e9320a19e7324dff0814e2514ea0a 355070 libturbojpeg1-dbg_1.3.1-12+deb8u2_amd64.deb 1482ce2114442229ed655bb5b380155ffd2124d0 496508 libturbojpeg1-dev_1.3.1-12+deb8u2_amd64.deb 19bcf7a052427280a42a3c2ee25e3b3b0dd10e73 83386 libjpeg-turbo-progs_1.3.1-12+deb8u2_amd64.deb a43e8a80f5c17ef8e8c8d1c359339052d41aed37 188074 libjpeg-turbo-progs-dbg_1.3.1-12+deb8u2_amd64.deb Checksums-Sha256: fcf692f2e671abb057b6364af915e05ba2b1638c019305938f0e21e1bb94ad0e 2562 libjpeg-turbo_1.3.1-12+deb8u2.dsc c132907417ddc40ed552fe53d6b91d5fecbb14a356a60ddc7ea50d6be9666fb9 1390282 libjpeg-turbo_1.3.1.orig.tar.gz 7878e86dcfdc6239bc35bfecf5409fdd968f4f9b2e1979e60261854d788ddbda 81956 libjpeg-turbo_1.3.1-12+deb8u2.debian.tar.xz ec1287db036d61cb5d72a8a82295423e8ce459192e62a408b3c52b6f088f844f 49706 libjpeg-dev_1.3.1-12+deb8u2_all.deb 0e189cfacd978d8069a084a7d6a6e40b9e8cb7189239d7f540e48c535a2011a6 455828 libjpeg62-turbo-dev_1.3.1-12+deb8u2_amd64.deb 0853e63d525ed8ca9b30d8aad9018c6daefb65066ca532b0d4a96e9069bd0862 116762 libjpeg62-turbo_1.3.1-12+deb8u2_amd64.deb 7616b01b3cee0eaedcdd966ee60c6e50981f7eb575d9889cff0cacea829abd34 318764 libjpeg62-turbo-dbg_1.3.1-12+deb8u2_amd64.deb ecba128aa28c0e8685d8c85e1fa9dad70120a3f6c6d70c4cd3a27e3cc9889968 126990 libturbojpeg1_1.3.1-12+deb8u2_amd64.deb b945003d8772af3c26caef1a3193e7fb3a14ea6f8afa8bc5d4114cee795511ba 355070 libturbojpeg1-dbg_1.3.1-12+deb8u2_amd64.deb 45659084c505de23be6d469d80de098ea4da45a1a1f09c12d4d7fb20d95a9a34 496508 libturbojpeg1-dev_1.3.1-12+deb8u2_amd64.deb b01cea6f473e06bcbce0c03a5b9ca2b9a13810ef72eee933d890371a402eff50 83386 libjpeg-turbo-progs_1.3.1-12+deb8u2_amd64.deb fd75f20f15d13ec5fef5c29a16427e8f9130f1db9c30ee79f8554ef94db26dad 188074 libjpeg-turbo-progs-dbg_1.3.1-12+deb8u2_amd64.deb Files: 4014c4c5f9378fabc3ec4351098decf6 2562 graphics optional libjpeg-turbo_1.3.1-12+deb8u2.dsc 2c3a68129dac443a72815ff5bb374b05 1390282 graphics optional libjpeg-turbo_1.3.1.orig.tar.gz 9719a162f1be87822a3b414b79cfb4f6 81956 graphics optional libjpeg-turbo_1.3.1-12+deb8u2.debian.tar.xz c6efab2ab3f0e91812161862447e2e7a 49706 libdevel optional libjpeg-dev_1.3.1-12+deb8u2_all.deb ca64965c3056145c45e662fcf9d60d05 455828 libdevel optional libjpeg62-turbo-dev_1.3.1-12+deb8u2_amd64.deb 677323c15c73811f99f6e792f85c7a36 116762 libs optional libjpeg62-turbo_1.3.1-12+deb8u2_amd64.deb bd1c0a658a239606d8b8789c5df1f8a3 318764 debug extra libjpeg62-turbo-dbg_1.3.1-12+deb8u2_amd64.deb 7ff453f0bbe1ba8065e532d08d81318a 126990 libs optional libturbojpeg1_1.3.1-12+deb8u2_amd64.deb b7c3154c82ae6449ba1dc2bf947bdeb1 355070 debug extra libturbojpeg1-dbg_1.3.1-12+deb8u2_amd64.deb 564db6e7759ced832c7d629632196650 496508 libdevel optional libturbojpeg1-dev_1.3.1-12+deb8u2_amd64.deb 51830d6f2d5632713f8e49e5a94f28a8 83386 graphics optional libjpeg-turbo-progs_1.3.1-12+deb8u2_amd64.deb f0fa668f2e2d7db13445
Accepted liblivemedia 2014.01.13-1+deb8u3 (source amd64) into oldstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Mon, 18 Mar 2019 09:18:27 +0100 Source: liblivemedia Binary: liblivemedia-dev libbasicusageenvironment0 libgroupsock1 liblivemedia23 libusageenvironment1 livemedia-utils Architecture: source amd64 Version: 2014.01.13-1+deb8u3 Distribution: jessie-security Urgency: high Maintainer: Debian Multimedia Maintainers Changed-By: Hugo Lefeuvre Description: libbasicusageenvironment0 - multimedia RTSP streaming library (BasicUsageEnvironment class) libgroupsock1 - multimedia RTSP streaming library (network interfaces and sockets liblivemedia-dev - multimedia RTSP streaming library (development files) liblivemedia23 - multimedia RTSP streaming library libusageenvironment1 - multimedia RTSP streaming library (UsageEnvironment classes) livemedia-utils - multimedia RTSP streaming tools Changes: liblivemedia (2014.01.13-1+deb8u3) jessie-security; urgency=high . * Non-maintainer upload by the LTS Team. * CVE-2019-9215: malformed headers lead to invalid memory access in the parseAuthorizationHeader function. Checksums-Sha1: 2ca7ad84a98d067723eb1d2706d014bd9dd3eb6e 2139 liblivemedia_2014.01.13-1+deb8u3.dsc e617930d23ef55381613121c2ea921ce59b9ee0e 595705 liblivemedia_2014.01.13.orig.tar.gz c0240e89fb3dbf8536d745fab4cdcc23bc2e0650 12344 liblivemedia_2014.01.13-1+deb8u3.debian.tar.xz b17ec8db7a412ba220b571e745319e9f29e176ba 677864 liblivemedia-dev_2014.01.13-1+deb8u3_amd64.deb 085a225c78f14021b7e639f7ca23526901055bc9 21246 libbasicusageenvironment0_2014.01.13-1+deb8u3_amd64.deb 953a71bca7f72a9eb60a9b1f5ded0f5a26edbcae 27206 libgroupsock1_2014.01.13-1+deb8u3_amd64.deb d1e8d5db16b39089b4923a882e5332e23fbf7b5c 288054 liblivemedia23_2014.01.13-1+deb8u3_amd64.deb a4bf304051be08d582bd7ef89b44079cf1aad92f 11990 libusageenvironment1_2014.01.13-1+deb8u3_amd64.deb a6b1ce71125b267703ddc6f6f0dbf8545fedd56c 60488 livemedia-utils_2014.01.13-1+deb8u3_amd64.deb Checksums-Sha256: 6cf997b96b9b0c83aabcafa7d702cebbad54ec868726b47795d999ac34d9f357 2139 liblivemedia_2014.01.13-1+deb8u3.dsc d751a3a608e17b552c63d144c2856af5c23fbe31d340e71e589153e8204bb44e 595705 liblivemedia_2014.01.13.orig.tar.gz 802d9bf0d19d0575a6b22b767ff6c6b48fcb703ae23a3d0d5d548b3c9657e28e 12344 liblivemedia_2014.01.13-1+deb8u3.debian.tar.xz 01cb7008ccc699300b8afd21e1db6f0fda253fb38e79186ab638dc2746367b15 677864 liblivemedia-dev_2014.01.13-1+deb8u3_amd64.deb 7f9ecae302a9debfb701e756b448b236f0c0adc4e78809251e303542425f1083 21246 libbasicusageenvironment0_2014.01.13-1+deb8u3_amd64.deb 65884133bb936e00d15b4494d01bff8cb9146758fffcd26b163282877bb4728c 27206 libgroupsock1_2014.01.13-1+deb8u3_amd64.deb f4a83281e46e8751c7415a8229c1edbd1750bb51c0126797643716409bddd4ed 288054 liblivemedia23_2014.01.13-1+deb8u3_amd64.deb b2e0a34ef2f4304172f8308c1107789f13b8fcdf0c6053c782ea11eff002c129 11990 libusageenvironment1_2014.01.13-1+deb8u3_amd64.deb 630ec26c3fd2c9992be9020f2771b9e70b2f0ad05ba44f2263061ede25290cf3 60488 livemedia-utils_2014.01.13-1+deb8u3_amd64.deb Files: 8496712fcde64cb43ee06160ba16b73e 2139 libs optional liblivemedia_2014.01.13-1+deb8u3.dsc 6eb9942cc8df01d5cd2d7c23ea36bd40 595705 libs optional liblivemedia_2014.01.13.orig.tar.gz 643c941e521605be84733b1dd135c4cc 12344 libs optional liblivemedia_2014.01.13-1+deb8u3.debian.tar.xz ca2868798dce72b0d4239280e8f57d40 677864 libdevel optional liblivemedia-dev_2014.01.13-1+deb8u3_amd64.deb 52a38ac46dd7672b877f44e16985cbd9 21246 libs optional libbasicusageenvironment0_2014.01.13-1+deb8u3_amd64.deb 98e7fe3959452339cd2116cce2e18f7c 27206 libs optional libgroupsock1_2014.01.13-1+deb8u3_amd64.deb 9a149829b897d57acc4dd918a8f3ce00 288054 libs optional liblivemedia23_2014.01.13-1+deb8u3_amd64.deb 79fbac5f23840288fb40fa25d05bf0f8 11990 libs optional libusageenvironment1_2014.01.13-1+deb8u3_amd64.deb 7b4a94b84111e1c41f85de998690f5f0 60488 net optional livemedia-utils_2014.01.13-1+deb8u3_amd64.deb -BEGIN PGP SIGNATURE- iQEzBAEBCgAdFiEEUFZhdgIWqBhwqCvuZYVUZx9w0DQFAlyPyN0ACgkQZYVUZx9w 0DTmcQf+IaXFo5tpQ9+U0iwwvnjomVqkJ9O/xwyXbhUMtQ418zOV6zdz+ocsVv72 6CNhGc/vBTYZyIkosbc6BUQx7XIX2QH0DWO+UDHObPzcvRsXA72srLAU5BhRweXt itlo1mbiT60G4Rvz7mV6Kl6/kFHdXa6yZTUa95c9SEJCkb6704lFGsj65Y1E5D3v eMb5IBIqLBHiZRuyUQ8/C6do1yWNOZYY8xzGBZIW3lVfovr1I6+4QLT/VA7KLUp2 QShokPggN1j8NIPs6r/O+YF1DeM9aRAfKRWYi6fX4WpsVUQ7iBInF8LMj7xUTM2I 9/mDb2bTpjblavKeMJRxthQy6b7ENw== =R+pU -END PGP SIGNATURE-
Accepted sqlalchemy 0.9.8+dfsg-0.1+deb8u1 (source all amd64) into oldstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Mon, 18 Mar 2019 13:37:16 +0100 Source: sqlalchemy Binary: python-sqlalchemy python-sqlalchemy-ext python-sqlalchemy-doc python3-sqlalchemy python3-sqlalchemy-ext Architecture: source all amd64 Version: 0.9.8+dfsg-0.1+deb8u1 Distribution: jessie-security Urgency: high Maintainer: Piotr Ożarowski Changed-By: Sylvain Beucler Description: python-sqlalchemy - SQL toolkit and Object Relational Mapper for Python python-sqlalchemy-doc - documentation for the SQLAlchemy Python library python-sqlalchemy-ext - SQL toolkit and Object Relational Mapper for Python - C extension python3-sqlalchemy - SQL toolkit and Object Relational Mapper for Python 3 python3-sqlalchemy-ext - SQL toolkit and Object Relational Mapper for Python3 - C extensio Changes: sqlalchemy (0.9.8+dfsg-0.1+deb8u1) jessie-security; urgency=high . * Non-maintainer upload by the Debian LTS Team. * Fix CVE-2019-7164 and CVE-2019-7548: SQL injection in order_by() and group_by(). Upstream warns that this breaks the seldom-used text coercion feature. Checksums-Sha1: 7af7b09c601484e2de64bdf2d3b200b7a026a685 2259 sqlalchemy_0.9.8+dfsg-0.1+deb8u1.dsc 06daf537f9de34a2fdaf60c9752568086962b8c8 4046697 sqlalchemy_0.9.8+dfsg.orig.tar.gz dd4cc74d02361304f3751c3aa74dad6313d6803e 14880 sqlalchemy_0.9.8+dfsg-0.1+deb8u1.debian.tar.xz 406f20eec097a5895d95db03fd3830fa171eeeb8 605028 python-sqlalchemy_0.9.8+dfsg-0.1+deb8u1_all.deb 1ae3e2642d4b01006717c367bcdd631fe0bb78f4 1252150 python-sqlalchemy-doc_0.9.8+dfsg-0.1+deb8u1_all.deb 325028e61a068b6cc6cdde56b7dd6a8cacc3224c 600836 python3-sqlalchemy_0.9.8+dfsg-0.1+deb8u1_all.deb b3d69d90f6f9d7eb4a2ea6bcd121f73d1aa15255 18878 python-sqlalchemy-ext_0.9.8+dfsg-0.1+deb8u1_amd64.deb 9e0e8dbb24e34210ea9bf7fb207e76c15e43 19024 python3-sqlalchemy-ext_0.9.8+dfsg-0.1+deb8u1_amd64.deb Checksums-Sha256: e5da06049e47e8ca61e845f8de3bef2e9584059881283f22f7442c026814f8ce 2259 sqlalchemy_0.9.8+dfsg-0.1+deb8u1.dsc 0371ca90d1abadb109c73f1ac096c17f0bbff9fb43d66f3346806f6d6b9c110d 4046697 sqlalchemy_0.9.8+dfsg.orig.tar.gz f59040e2f5bf79b5c370cae3f4c2f236513ba706731f67e32834cd620d90bdc5 14880 sqlalchemy_0.9.8+dfsg-0.1+deb8u1.debian.tar.xz 2fecf43ffe517fd9be4b66c745e4dfa98cea4dc7b62cfcd9c7385d58461dd6ed 605028 python-sqlalchemy_0.9.8+dfsg-0.1+deb8u1_all.deb 2287e0f736e1bdbf266e7d0419fc3e690e06ec171471831b48d05264e479bc6f 1252150 python-sqlalchemy-doc_0.9.8+dfsg-0.1+deb8u1_all.deb 5b30d4f84f0b9ef952c5a0121e33d355e32c3b524987ff2894749f77c3b05ea5 600836 python3-sqlalchemy_0.9.8+dfsg-0.1+deb8u1_all.deb b58bb8085db43332b4f6d8a3f413264117d48bb0110a6b7b46aeb030e0ad6b99 18878 python-sqlalchemy-ext_0.9.8+dfsg-0.1+deb8u1_amd64.deb 70c5ed7d383f40727516a4fe879c6ece027516380b1b2e635e8038e30898e03a 19024 python3-sqlalchemy-ext_0.9.8+dfsg-0.1+deb8u1_amd64.deb Files: f7a4ca0046cb16b67d9d11ecaf76e0ac 2259 python optional sqlalchemy_0.9.8+dfsg-0.1+deb8u1.dsc 9064e03b4ec453ef7f181b8bf7ddaa9c 4046697 python optional sqlalchemy_0.9.8+dfsg.orig.tar.gz 03422aff739ffc9312d12672b325401b 14880 python optional sqlalchemy_0.9.8+dfsg-0.1+deb8u1.debian.tar.xz fe63296bd572d5a4aded8e760b26b866 605028 python optional python-sqlalchemy_0.9.8+dfsg-0.1+deb8u1_all.deb c287764d65d83b9e52736d5a593cfbe2 1252150 doc extra python-sqlalchemy-doc_0.9.8+dfsg-0.1+deb8u1_all.deb 6eb8662bcdadb0d6594d3c0bed49f596 600836 python optional python3-sqlalchemy_0.9.8+dfsg-0.1+deb8u1_all.deb d245257b24621d703f31d00c117b0057 18878 python optional python-sqlalchemy-ext_0.9.8+dfsg-0.1+deb8u1_amd64.deb 6516f1d09bb2a957af334575315e5765 19024 python optional python3-sqlalchemy-ext_0.9.8+dfsg-0.1+deb8u1_amd64.deb -BEGIN PGP SIGNATURE- iQEzBAEBCgAdFiEEQic8GuN/xDR88HkSj/HLbo2JBZ8FAlyPl/cACgkQj/HLbo2J BZ8RwQf9EzfO8c39QD4VtZnSykgh6fzgQ3T2tiq5SFL4RW3J8N3wl4RGzQbNOyLL o38MLN9uogvaZVvmTBxgDf+lB7uf48o+xYwuNAspSn8gxcmCY2TfKBtmKf99Y0YP oHrCMpy3eai+fCQEy/N2Rvhm92aQqXZhVBkW/kuJVgyiPOZAp9OGxNqUUmN8iUd0 iLjF6qZiO7QFwxgMgAE7glWiOsaomsXtRtVQwuqRlTcPPToPS8jekL7k/kUl315P OT1nu7uqc8P1GVlCpucEV3lfM77lc9ee4q/te3tQMpsRGbmVnegKwMm7L45jaVNC GrIKxazVKASL9gj/SsTgTIZEwJCxqg== =sBX6 -END PGP SIGNATURE-
Accepted rdflib 4.1.2-3+deb8u1 (source amd64 all) into oldstable
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Fri, 08 Mar 2019 07:38:55 +1100 Source: rdflib Binary: python-rdflib python3-rdflib python-rdflib-doc python-rdflib-tools Architecture: source amd64 all Version: 4.1.2-3+deb8u1 Distribution: jessie-security Urgency: high Maintainer: Christian M. Amsüss Changed-By: Brian May Description: python-rdflib - Python library containing an RDF triple store and RDF parsers/ser python-rdflib-doc - Python library containing an RDF triple store and RDF parsers/ser python-rdflib-tools - Python library containing an RDF triple store and RDF parsers/ser python3-rdflib - Python 3 library containing an RDF triple store and RDF parsers/s Changes: rdflib (4.1.2-3+deb8u1) jessie-security; urgency=high . * Non-maintainer upload by the LTS Team. * CVE-2019-7653: The Debian package had a custom wrapper that can load Python modules from the current working directory, allowing code injection. This is because "python -m" looks in this directory. This version uses the easy_install provided scripts instead of our our custom scripts. * Remove html5lib and SPARQLWrapper from upstream install_requires, because this information was not checked with previous wrapper, these are only included for Python 2.7, and they are not listed in the depends header. Checksums-Sha1: 1b60cab367da48a573a42374b48d2eeb5e3b26cb 2460 rdflib_4.1.2-3+deb8u1.dsc 5699cab47a413a32a984e9691ad57960c184aa6e 894937 rdflib_4.1.2.orig.tar.gz 7312a1ab29e27ac068bce9834d970c2f85a0fc73 27724 rdflib_4.1.2-3+deb8u1.debian.tar.xz a46f8c55a64585f486acc8ef2e562ef28f3eac7e 243828 python-rdflib_4.1.2-3+deb8u1_amd64.deb b684ac40575c5891d42043d47f63fd88d1ff8d29 242736 python3-rdflib_4.1.2-3+deb8u1_amd64.deb 569d59326e3750c5dfdb4aef116db1b9845e0305 604178 python-rdflib-doc_4.1.2-3+deb8u1_all.deb 97f7312629b9a767c8e73a77dd307b1c3fa7910b 24964 python-rdflib-tools_4.1.2-3+deb8u1_amd64.deb Checksums-Sha256: 52e4830336afae88607c933f4a772e3badc1d2a77f27e51b14d72c31079b5bf5 2460 rdflib_4.1.2-3+deb8u1.dsc 58ee60b561076829578e16eb4a47606f56079f44669340f1ed88c0a5f37c5aea 894937 rdflib_4.1.2.orig.tar.gz 201d73c09ff1ed9a591b79453386295d2baf4d75001cc9d0615e5c15dd7ec86c 27724 rdflib_4.1.2-3+deb8u1.debian.tar.xz 6fcd37f95a03b228ec41984a63db781300b70b421deb30047875dda6157039fc 243828 python-rdflib_4.1.2-3+deb8u1_amd64.deb 11773f578370889b11d43e09071fa3a6f031ed6e638cec4d67f9ea7c7b334c0b 242736 python3-rdflib_4.1.2-3+deb8u1_amd64.deb f3c8f69373f1e4d9d799a7215662cf7898f1b3863069cd620153e35218d1a231 604178 python-rdflib-doc_4.1.2-3+deb8u1_all.deb b109af8772f3ec37637959bb9d60b4accdf365d8c93a29e41ed5b137fc787474 24964 python-rdflib-tools_4.1.2-3+deb8u1_amd64.deb Files: 2786d4a9bbe9c99da5178006faa95744 2460 python optional rdflib_4.1.2-3+deb8u1.dsc 5c284061f1f2a086b0782644afbaac59 894937 python optional rdflib_4.1.2.orig.tar.gz 1f0af093698c2e66a38a069c53da27a8 27724 python optional rdflib_4.1.2-3+deb8u1.debian.tar.xz 843ee3ead42541a9a892a75787b2fabd 243828 python optional python-rdflib_4.1.2-3+deb8u1_amd64.deb ff41ec60b58d04a59158a73dd2675035 242736 python optional python3-rdflib_4.1.2-3+deb8u1_amd64.deb ab61c5cc6593b020502f4b8cc840a85c 604178 doc optional python-rdflib-doc_4.1.2-3+deb8u1_all.deb d531afce23f65873014b5365072f6c9d 24964 python optional python-rdflib-tools_4.1.2-3+deb8u1_amd64.deb -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEKpwfR8DOwu5vyB4TKpJZkldkSvoFAlyPOW0ACgkQKpJZkldk SvrXkg/8Dqq2LLEc7JdQkL6Lre2Sr7KAwaLKASsq8z1D5S/FYAIWmTJuufVMWtUJ HcBN50q5jiRGBAMulRRiaSQBtTv++zRYd0cgD77u1gBHCY7WY1fCur0uhpExnQVv ngzXLoCMu8a0QWsRDI2pJIAFOPzTmiMCD4e1dHBK0jtXuASxb8ohHqVZozZ1js/l xw21VoDmwKOQnEZxpoC04eUuy/RkMaB632JwchefeBIryVLcRbkI5FCdleZqaXt7 EsHhlwfwJ6mclW8IGKlswTp2dPcRwYeszf30mTpe1NeJBJV9U1UrYzuiduOY8ojs z88W5+C8d0WHqbEwILAxEFY/z3jNoUOlS/4IFfN3JFl0/7uWxZRAnazJmEmTbxZj /i8EclPg2p+Y3ciM4Gtx7dXE/2n3sb1k+6zK3jMl5rQuJaNk+SQIB+OKxp2hPDir VlouFpRXmYxgUZB2szMub7rheYPsskCAVEGPd/drDDtutx9UJN8LkQgDJEWBCYoT FffHJj5LeMvQjzFB7nJavT0ONiKd4x0bVEz24IsFykpRpnfFW+U1LeNJazH0GCFq xaFMExJRako+frnaXHyg4rHur0QjAeZFiIaIcZwO4pC4qedpjjEtPr7y8fjNnviQ HVSsse1e65TS7gqUi+byKbjR8XnPHOtr0FdGmMNE9iKTy03Jn3c= =fIq/ -END PGP SIGNATURE-
