Public bug reported: Please sync zope2.10 2.10.9-1 (universe) from Debian unstable (main).
Changelog since current karmic version 2.10.8-1: zope2.10 (2.10.9-1) unstable; urgency=high * New upstraem release, fixes two vulnerabilities in the ZEO network protocol: CVE-2009-0668 and CVE-2009-0669. (closes: #540464) * Add support to start a particular instance to initscript. * Bump pre-depends on zope-common to 0.5.49 and build-depends on debhelper to 0.3.14 to use invoke-rc.d in maintainer scripts. (closes: #540159) * Set urgency=high as this upload fixes two serious bugs. -- Jonas Meurer <m...@debian.org> Sun, 09 Aug 2009 15:58:49 +0200 zope2.10 (2.10.8-2) unstable; urgency=low * Reorder targets and dependencies in debian/rules to actually fix parallel building. Still disable parallel building for now, as suggested by Lucas Nussbaum. (closes: #533975) * Bump standards-version to 3.8.2, no changes needed. * Check for /etc/default/zope2.10 before including it in initscript. * lintian cleanup: - zopeZVER-sandbox.copyright.in: link to GPL-2 instead of GPL. - *.{post|pre}{inst|rm}: use set -e instead of /bin/sh -e. * bump debian/compat and build-depends to debconf (>= 5.0.0). -- Jonas Meurer <m...@debian.org> Fri, 03 Jul 2009 14:49:29 +0200 ** Affects: zope2.10 (Ubuntu) Importance: Wishlist Status: Confirmed ** Changed in: zope2.10 (Ubuntu) Importance: Undecided => Wishlist ** Changed in: zope2.10 (Ubuntu) Status: New => Confirmed ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2009-0668 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2009-0669 -- Sync zope2.10 2.10.9-1 (universe) from Debian unstable (main). https://bugs.launchpad.net/bugs/415287 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs