======================================== Fri, 12 Jul 2002 - Debian 2.2r7 released ======================================== stable/main/binary-alpha/xsane_0.50-5.1_alpha.deb stable/main/binary-sparc/xsane_0.50-5.1_sparc.deb stable/main/binary-powerpc/xsane_0.50-5.1_powerpc.deb stable/main/binary-m68k/xsane_0.50-5.1_m68k.deb stable/main/binary-arm/xsane_0.50-5.1_arm.deb stable/main/source/xsane_0.50-5.1.diff.gz stable/main/binary-i386/xsane_0.50-5.1_i386.deb stable/main/source/xsane_0.50-5.1.dsc xsane (0.50-5.1) stable; urgency=high * Non-maintainer upload by Security Team * Fixed several temporary file vulnerabilities by introducing /tmp/xsane-${LOGNAME:-$UID} as location for all temporary files, created securely upon startup. stable/main/binary-alpha/wmtv_0.6.5-3potato3_alpha.deb stable/main/binary-i386/wmtv_0.6.5-3potato3_i386.deb stable/main/binary-arm/wmtv_0.6.5-3potato3_arm.deb stable/main/source/wmtv_0.6.5-3potato3.dsc stable/main/binary-powerpc/wmtv_0.6.5-3potato3_powerpc.deb stable/main/binary-sparc/wmtv_0.6.5-3potato3_sparc.deb stable/main/source/wmtv_0.6.5-3potato3.diff.gz stable/main/binary-m68k/wmtv_0.6.5-3potato3_m68k.deb wmtv (0.6.5-3potato3) stable; urgency=high * Source rebuild to fix archive fuckup and to let the security update propagate into stable/sparc * From 0.6.5-2potato2: Fixed possible symlinks attacks and buffer overflows * From 0.6.5-2potato1: Fixed local root vulnerability by dropping privileges before executing an external viewer stable/main/binary-sparc/vrweb_1.5-5.1_sparc.deb vrweb (1.5-5.1) stable; urgency=high * Non-maintainer upload by the security team * Upgrade zlib to 1.1.3 and apply patch for double-free bug stable/main/binary-powerpc/vrweb_1.5-5.1_powerpc.deb vrweb (1.5-5.1) stable; urgency=high * Non-maintainer upload by the security team * Upgrade zlib to 1.1.3 and apply patch for double-free bug stable/main/binary-m68k/vrweb_1.5-5.1_m68k.deb vrweb (1.5-5.1) stable; urgency=high * Non-maintainer upload by the security team * Upgrade zlib to 1.1.3 and apply patch for double-free bug stable/main/binary-arm/vrweb_1.5-5.1_arm.deb vrweb (1.5-5.1) stable; urgency=high * Non-maintainer upload by the security team * Upgrade zlib to 1.1.3 and apply patch for double-free bug stable/main/binary-alpha/vrweb_1.5-5.1_alpha.deb vrweb (1.5-5.1) stable; urgency=high * Non-maintainer upload by the security team * Upgrade zlib to 1.1.3 and apply patch for double-free bug stable/main/source/vrweb_1.5-5.1.dsc stable/main/binary-i386/vrweb_1.5-5.1_i386.deb stable/main/source/vrweb_1.5-5.1.diff.gz vrweb (1.5-5.1) stable; urgency=high * Non-maintainer upload by the security team * Upgrade zlib to 1.1.3 and apply patch for double-free bug stable/main/binary-sparc/uucp_1.06.1-11potato3_sparc.deb uucp (1.06.1-11potato3) stable; urgency=high * Fix potential buffer overflow in uucpd. Thanks to Matthew Grant for pointing it out and providing a patch. * Fix uucp crontab problem: The old crontab was mangled upon upgrade. Make a new one in /etc/cron.d/uucp and ignore the old one. Inform user to fix manually via debconf (closes in potato: #134545). * Depend on debconf (see point above). Requires some changes to {post,pre}{rm,inst} and rules file. * Make everything below /etc/uucp/ (including) owned by root in new installs. stable/main/binary-powerpc/uucp_1.06.1-11potato3_powerpc.deb uucp (1.06.1-11potato3) stable; urgency=high * Fix potential buffer overflow in uucpd. Thanks to Matthew Grant for pointing it out and providing a patch. * Fix uucp crontab problem: The old crontab was mangled upon upgrade. Make a new one in /etc/cron.d/uucp and ignore the old one. Inform user to fix manually via debconf (closes in potato: #134545). * Depend on debconf (see point above). Requires some changes to {post,pre}{rm,inst} and rules file. * Make everything below /etc/uucp/ (including) owned by root in new installs. stable/main/binary-m68k/uucp_1.06.1-11potato3_m68k.deb uucp (1.06.1-11potato3) stable; urgency=high * Fix potential buffer overflow in uucpd. Thanks to Matthew Grant for pointing it out and providing a patch. * Fix uucp crontab problem: The old crontab was mangled upon upgrade. Make a new one in /etc/cron.d/uucp and ignore the old one. Inform user to fix manually via debconf (closes in potato: #134545). * Depend on debconf (see point above). Requires some changes to {post,pre}{rm,inst} and rules file. * Make everything below /etc/uucp/ (including) owned by root in new installs. stable/main/binary-arm/uucp_1.06.1-11potato3_arm.deb uucp (1.06.1-11potato3) stable; urgency=high * Fix potential buffer overflow in uucpd. Thanks to Matthew Grant for pointing it out and providing a patch. * Fix uucp crontab problem: The old crontab was mangled upon upgrade. Make a new one in /etc/cron.d/uucp and ignore the old one. Inform user to fix manually via debconf (closes in potato: #134545). * Depend on debconf (see point above). Requires some changes to {post,pre}{rm,inst} and rules file. * Make everything below /etc/uucp/ (including) owned by root in new installs. stable/main/binary-alpha/uucp_1.06.1-11potato3_alpha.deb uucp (1.06.1-11potato3) stable; urgency=high * Fix potential buffer overflow in uucpd. Thanks to Matthew Grant for pointing it out and providing a patch. * Fix uucp crontab problem: The old crontab was mangled upon upgrade. Make a new one in /etc/cron.d/uucp and ignore the old one. Inform user to fix manually via debconf (closes in potato: #134545). * Depend on debconf (see point above). Requires some changes to {post,pre}{rm,inst} and rules file. * Make everything below /etc/uucp/ (including) owned by root in new installs. stable/main/source/uucp_1.06.1-11potato3.diff.gz stable/main/binary-i386/uucp_1.06.1-11potato3_i386.deb stable/main/source/uucp_1.06.1-11potato3.dsc uucp (1.06.1-11potato3) stable; urgency=high * Fix potential buffer overflow in uucpd. Thanks to Matthew Grant for pointing it out and providing a patch. * Fix uucp crontab problem: The old crontab was mangled upon upgrade. Make a new one in /etc/cron.d/uucp and ignore the old one. Inform user to fix manually via debconf (closes in potato: #134545). * Depend on debconf (see point above). Requires some changes to {post,pre}{rm,inst} and rules file. * Make everything below /etc/uucp/ (including) owned by root in new installs. stable/main/binary-i386/sudo_1.6.2p2-2.2_i386.deb stable/main/binary-powerpc/sudo_1.6.2p2-2.2_powerpc.deb stable/main/source/sudo_1.6.2p2-2.2.diff.gz stable/main/binary-alpha/sudo_1.6.2p2-2.2_alpha.deb stable/main/binary-sparc/sudo_1.6.2p2-2.2_sparc.deb stable/main/source/sudo_1.6.2p2-2.2.dsc stable/main/binary-arm/sudo_1.6.2p2-2.2_arm.deb stable/main/binary-m68k/sudo_1.6.2p2-2.2_m68k.deb sudo (1.6.2p2-2.2) stable; urgency=high * Non-maintainer upload by Security Team * Fix buffer overflow in prompt expansion stable/main/binary-sparc/qpopper_2.53-7_sparc.deb qpopper (2.53-7) stable; urgency=high * The previous upload leaked build-depends on libgdbmg1-dev and mail-transport-agent, that causes m68k build failure. * Moved from priority optional to extra. stable/main/binary-powerpc/qpopper_2.53-7_powerpc.deb qpopper (2.53-7) stable; urgency=high * The previous upload leaked build-depends on libgdbmg1-dev and mail-transport-agent, that causes m68k build failure. * Moved from priority optional to extra. stable/main/binary-m68k/qpopper_2.53-7_m68k.deb qpopper (2.53-7) stable; urgency=high * The previous upload leaked build-depends on libgdbmg1-dev and mail-transport-agent, that causes m68k build failure. * Moved from priority optional to extra. stable/main/binary-arm/qpopper_2.53-7_arm.deb qpopper (2.53-7) stable; urgency=high * The previous upload leaked build-depends on libgdbmg1-dev and mail-transport-agent, that causes m68k build failure. * Moved from priority optional to extra. stable/main/binary-alpha/qpopper_2.53-7_alpha.deb qpopper (2.53-7) stable; urgency=high * The previous upload leaked build-depends on libgdbmg1-dev and mail-transport-agent, that causes m68k build failure. * Moved from priority optional to extra. stable/main/source/qpopper_2.53-7.diff.gz stable/main/binary-i386/qpopper_2.53-7_i386.deb stable/main/source/qpopper_2.53-7.dsc qpopper (2.53-7) stable; urgency=high * The previous upload leaked build-depends on libgdbmg1-dev and mail-transport-agent, that causes m68k build failure. * Moved from priority optional to extra. stable/main/binary-sparc/listar_0.129a-2.potato2_sparc.deb stable/main/binary-sparc/listar-cgi_0.129a-2.potato2_sparc.deb listar (0.129a-2.potato2) stable; urgency=high * SECURITY: Applied argv security fixes from the Ecartis tree. stable/main/binary-powerpc/listar-cgi_0.129a-2.potato2_powerpc.deb stable/main/binary-powerpc/listar_0.129a-2.potato2_powerpc.deb listar (0.129a-2.potato2) stable; urgency=high * SECURITY: Applied argv security fixes from the Ecartis tree. stable/main/binary-m68k/listar_0.129a-2.potato2_m68k.deb stable/main/binary-m68k/listar-cgi_0.129a-2.potato2_m68k.deb listar (0.129a-2.potato2) stable; urgency=high * SECURITY: Applied argv security fixes from the Ecartis tree. stable/main/binary-arm/listar-cgi_0.129a-2.potato2_arm.deb stable/main/binary-arm/listar_0.129a-2.potato2_arm.deb listar (0.129a-2.potato2) stable; urgency=high * SECURITY: Applied argv security fixes from the Ecartis tree. stable/main/binary-alpha/listar-cgi_0.129a-2.potato2_alpha.deb stable/main/binary-alpha/listar_0.129a-2.potato2_alpha.deb listar (0.129a-2.potato2) stable; urgency=high * SECURITY: Applied argv security fixes from the Ecartis tree. stable/main/binary-i386/listar-cgi_0.129a-2.potato2_i386.deb stable/main/source/listar_0.129a-2.potato2.diff.gz stable/main/binary-i386/listar_0.129a-2.potato2_i386.deb stable/main/source/listar_0.129a-2.potato2.dsc listar (0.129a-2.potato2) stable; urgency=high * SECURITY: Applied argv security fixes from the Ecartis tree. stable/main/source/imp_2.2.6-0.potato.5.tar.gz stable/main/source/imp_2.2.6-0.potato.5.dsc stable/main/binary-all/imp_2.2.6-0.potato.5_all.deb imp (2:2.2.6-0.potato.5) stable; urgency=high * Fixed postgres bug introduced by php4 security update, closes: #128110. * Fixed cross site scripting security bug, closes: #141941. stable/main/binary-all/horde_1.2.6-0.potato.5_all.deb stable/main/source/horde_1.2.6-0.potato.5.tar.gz stable/main/source/horde_1.2.6-0.potato.5.dsc horde (2:1.2.6-0.potato.5) stable; urgency=high * Cross site scripting vulneraility fixed, closes: #142209. stable/main/binary-sparc/ethereal_0.8.0-3potato_sparc.deb ethereal (0.8.0-3potato) stable; urgency=low * Security upload: - asn1.c: fixes zero-length g_malloc that could have caused problems. - asn1.c: fixes possible buffer overflow. (those are backports of 0.9.3) stable/main/binary-powerpc/ethereal_0.8.0-3potato_powerpc.deb ethereal (0.8.0-3potato) stable; urgency=low * Security upload: - asn1.c: fixes zero-length g_malloc that could have caused problems. - asn1.c: fixes possible buffer overflow. (those are backports of 0.9.3) stable/main/binary-m68k/ethereal_0.8.0-3potato_m68k.deb ethereal (0.8.0-3potato) stable; urgency=low * Security upload: - asn1.c: fixes zero-length g_malloc that could have caused problems. - asn1.c: fixes possible buffer overflow. (those are backports of 0.9.3) stable/main/binary-arm/ethereal_0.8.0-3potato_arm.deb ethereal (0.8.0-3potato) stable; urgency=low * Security upload: - asn1.c: fixes zero-length g_malloc that could have caused problems. - asn1.c: fixes possible buffer overflow. (those are backports of 0.9.3) stable/main/binary-alpha/ethereal_0.8.0-3potato_alpha.deb ethereal (0.8.0-3potato) stable; urgency=low * Security upload: - asn1.c: fixes zero-length g_malloc that could have caused problems. - asn1.c: fixes possible buffer overflow. (those are backports of 0.9.3) stable/main/binary-i386/ethereal_0.8.0-3potato_i386.deb stable/main/source/ethereal_0.8.0-3potato.dsc stable/main/source/ethereal_0.8.0-3potato.diff.gz ethereal (0.8.0-3potato) stable; urgency=low * Security upload: - asn1.c: fixes zero-length g_malloc that could have caused problems. - asn1.c: fixes possible buffer overflow. (those are backports of 0.9.3) stable/main/binary-sparc/erlang_49.1-10.1_sparc.deb erlang (49.1-10.1) stable; urgency=high * Non-maintainer upload by the Security Team * Apply patch for double-free bug to included copy of zlib stable/main/binary-powerpc/erlang_49.1-10.1_powerpc.deb erlang (49.1-10.1) stable; urgency=high * Non-maintainer upload by the Security Team * Apply patch for double-free bug to included copy of zlib stable/main/binary-i386/erlang_49.1-10.1_i386.deb stable/main/binary-all/erlang-java_49.1-10.1_all.deb stable/main/source/erlang_49.1-10.1.dsc stable/main/binary-all/erlang-erl_49.1-10.1_all.deb stable/main/source/erlang_49.1-10.1.diff.gz stable/main/binary-all/erlang-base_49.1-10.1_all.deb erlang (49.1-10.1) stable; urgency=high * Non-maintainer upload by the Security Team * Apply patch for double-free bug to included copy of zlib stable/main/source/custom_1.9962-3.dsc stable/main/binary-all/custom_1.9962-3_all.deb stable/main/source/custom_1.9962-3.diff.gz custom (1.9962-3) stable; urgency=medium * New upload to fix a maintainer-side time warp (Fixes Bug#103300) stable/main/binary-sparc/cupsys_1.0.4-12_sparc.deb stable/main/binary-sparc/libcupsys1_1.0.4-12_sparc.deb stable/main/binary-sparc/libcupsys1-dev_1.0.4-12_sparc.deb stable/main/binary-sparc/cupsys-bsd_1.0.4-12_sparc.deb cupsys (1.0.4-12) stable; urgency=high * Remove lpd backend for security reasons. stable/main/binary-powerpc/libcupsys1-dev_1.0.4-12_powerpc.deb stable/main/binary-powerpc/cupsys-bsd_1.0.4-12_powerpc.deb stable/main/binary-powerpc/libcupsys1_1.0.4-12_powerpc.deb stable/main/binary-powerpc/cupsys_1.0.4-12_powerpc.deb cupsys (1.0.4-12) stable; urgency=high * Remove lpd backend for security reasons. stable/main/binary-m68k/libcupsys1-dev_1.0.4-12_m68k.deb stable/main/binary-m68k/cupsys-bsd_1.0.4-12_m68k.deb stable/main/binary-m68k/cupsys_1.0.4-12_m68k.deb stable/main/binary-m68k/libcupsys1_1.0.4-12_m68k.deb cupsys (1.0.4-12) stable; urgency=high * Remove lpd backend for security reasons. stable/main/binary-arm/libcupsys1-dev_1.0.4-12_arm.deb stable/main/binary-arm/cupsys-bsd_1.0.4-12_arm.deb stable/main/binary-arm/libcupsys1_1.0.4-12_arm.deb stable/main/binary-arm/cupsys_1.0.4-12_arm.deb cupsys (1.0.4-12) stable; urgency=high * Remove lpd backend for security reasons. stable/main/binary-alpha/cupsys-bsd_1.0.4-12_alpha.deb stable/main/binary-alpha/libcupsys1-dev_1.0.4-12_alpha.deb stable/main/binary-alpha/cupsys_1.0.4-12_alpha.deb stable/main/binary-alpha/libcupsys1_1.0.4-12_alpha.deb cupsys (1.0.4-12) stable; urgency=high * Remove lpd backend for security reasons. stable/main/binary-i386/libcupsys1_1.0.4-12_i386.deb stable/main/source/cupsys_1.0.4-12.diff.gz stable/main/binary-i386/cupsys_1.0.4-12_i386.deb stable/main/binary-i386/cupsys-bsd_1.0.4-12_i386.deb stable/main/binary-i386/libcupsys1-dev_1.0.4-12_i386.deb stable/main/source/cupsys_1.0.4-12.dsc cupsys (1.0.4-12) stable; urgency=high * Remove lpd backend for security reasons. stable/main/binary-alpha/snake4_1.0.10-1.0.1_alpha.deb snake4 (1.0.10-1.0.1) stable; urgency=low * Binary-only non-maintainer upload for alpha; no source changes. * recompile to fix timestamps stable/main/binary-sparc/apache-perl_1.3.9-14.1-1.21.20000309-1_sparc.deb apache-perl (1.3.9-14.1-1.21.20000309-1) stable-security; urgency=high * Update to Apache package version 1.3.9-14.1. Fixes security problems including CERT VU#944335 (chunked encoding). stable/main/binary-m68k/apache-perl_1.3.9-14.1-1.21.20000309-1_m68k.deb apache-perl (1.3.9-14.1-1.21.20000309-1) stable-security; urgency=high * Update to Apache package version 1.3.9-14.1. Fixes security problems including CERT VU#944335 (chunked encoding). stable/main/binary-i386/apache-perl_1.3.9-14.1-1.21.20000309-1_i386.deb apache-perl (1.3.9-14.1-1.21.20000309-1) stable-security; urgency=high * Update to Apache package version 1.3.9-14.1. Fixes security problems including CERT VU#944335 (chunked encoding). stable/main/binary-arm/apache-perl_1.3.9-14.1-1.21.20000309-1_arm.deb apache-perl (1.3.9-14.1-1.21.20000309-1) stable-security; urgency=high * Update to Apache package version 1.3.9-14.1. Fixes security problems including CERT VU#944335 (chunked encoding). stable/main/binary-alpha/apache-perl_1.3.9-14.1-1.21.20000309-1_alpha.deb apache-perl (1.3.9-14.1-1.21.20000309-1) stable-security; urgency=high * Update to Apache package version 1.3.9-14.1. Fixes security problems including CERT VU#944335 (chunked encoding). stable/main/source/apache-perl_1.3.9-14.1-1.21.20000309-1.tar.gz stable/main/binary-powerpc/apache-perl_1.3.9-14.1-1.21.20000309-1_powerpc.deb stable/main/source/apache-perl_1.3.9-14.1-1.21.20000309-1.dsc apache-perl (1.3.9-14.1-1.21.20000309-1) stable-security; urgency=high * Update to Apache package version 1.3.9-14.1. Fixes security problems including CERT VU#944335 (chunked encoding). stable/main/binary-m68k/apache-common_1.3.9-14.1_m68k.deb stable/main/binary-m68k/apache_1.3.9-14.1_m68k.deb stable/main/binary-m68k/apache-dev_1.3.9-14.1_m68k.deb apache (1.3.9-14.1) stable; urgency=high * Non-maintainer upload by security team * Add patch to fix CERT VU#944335 stable/main/binary-alpha/apache-dev_1.3.9-14.1_alpha.deb stable/main/binary-powerpc/apache-dev_1.3.9-14.1_powerpc.deb stable/main/binary-sparc/apache_1.3.9-14.1_sparc.deb stable/main/binary-powerpc/apache-common_1.3.9-14.1_powerpc.deb stable/main/source/apache_1.3.9-14.1.diff.gz stable/main/binary-alpha/apache_1.3.9-14.1_alpha.deb stable/main/binary-alpha/apache-common_1.3.9-14.1_alpha.deb stable/main/binary-arm/apache-dev_1.3.9-14.1_arm.deb stable/main/binary-i386/apache-dev_1.3.9-14.1_i386.deb stable/main/binary-all/apache-doc_1.3.9-14.1_all.deb stable/main/binary-arm/apache-common_1.3.9-14.1_arm.deb stable/main/binary-i386/apache-common_1.3.9-14.1_i386.deb stable/main/binary-i386/apache_1.3.9-14.1_i386.deb stable/main/source/apache_1.3.9-14.1.dsc stable/main/binary-sparc/apache-dev_1.3.9-14.1_sparc.deb stable/main/binary-powerpc/apache_1.3.9-14.1_powerpc.deb stable/main/binary-arm/apache_1.3.9-14.1_arm.deb stable/main/binary-sparc/apache-common_1.3.9-14.1_sparc.deb apache (1.3.9-14.1) stable; urgency=high * Non-maintainer upload by security team * Add patch to fix CERT VU#944335 stable/main/binary-sparc/analog_5.22-0potato4_sparc.deb analog (2:5.22-0potato4) stable; urgency=medium * Added PROGRESSFREQ to the list of forbidden commands in the fom interface, which avoids a DOS attack that could fill up the log partition. http://www.analog.cx/security5.html for details stable/main/binary-powerpc/analog_5.22-0potato4_powerpc.deb analog (2:5.22-0potato4) stable; urgency=medium * Added PROGRESSFREQ to the list of forbidden commands in the fom interface, which avoids a DOS attack that could fill up the log partition. http://www.analog.cx/security5.html for details stable/main/binary-m68k/analog_5.22-0potato4_m68k.deb analog (2:5.22-0potato4) stable; urgency=medium * Added PROGRESSFREQ to the list of forbidden commands in the fom interface, which avoids a DOS attack that could fill up the log partition. http://www.analog.cx/security5.html for details stable/main/binary-arm/analog_5.22-0potato4_arm.deb analog (2:5.22-0potato4) stable; urgency=medium * Added PROGRESSFREQ to the list of forbidden commands in the fom interface, which avoids a DOS attack that could fill up the log partition. http://www.analog.cx/security5.html for details stable/main/binary-alpha/analog_5.22-0potato4_alpha.deb analog (2:5.22-0potato4) stable; urgency=medium * Added PROGRESSFREQ to the list of forbidden commands in the fom interface, which avoids a DOS attack that could fill up the log partition. http://www.analog.cx/security5.html for details stable/main/binary-sparc/analog_5.22-0potato4_i386.deb stable/main/source/analog_5.22-0potato4_i386.dsc stable/main/source/analog_5.22-0potato4_i386.diff.gz analog (2:5.22-0potato4) stable; urgency=medium * Added PROGRESSFREQ to the list of forbidden commands in the fom interface, which avoids a DOS attack that could fill up the log partition. http://www.analog.cx/security5.html for details ======================================= Wed, 3 Apr 2002 - Debian 2.2r6 released ======================================= Removed the following packages from stable: amiga-fdisk-bf | 0.04-4 | source (Closed bugs: 137753) xaw95 | 1.1-4.6 | i386, m68k (Closed bugs: 133275) (Reason: not built from source) libnspr3 | M14-2 | alpha, i386, m68k, powerpc, sparc libnspr3-dev | M14-2 | alpha, i386, m68k, powerpc, sparc (Closed bugs: 133274) (Reason: not built from source; superseded by libnspr4{,-dev}) everybuddy | 0.0.7-3 | source, alpha, arm, i386, m68k, powerpc, sparc (Reason: requested by Stable Release Manager) "The current maintainer, Michael D. Ivey, told me that the potato version is so out-dated that it doesn't work with any current protocol, thus is completely useless. There may even be security implications, that are dubious. The current maintainer has agreed to remove the package from stable." pine | 3.96M-5.0 | source pine396-diffs | 5 | source, all pine396-src | 3 | source, all pine4 | 4.21-1 | source pine4-diffs | 2 | source, all pine4-src | 1 | source, all (Reason: requested by Stable Release Manager) "These PINE packages contain security problems and the maintainer agrees that it would be best to remove them from the stable directory entirely. People who still want to use PINE should check the pine-tracker package." communicator | 1:4.72-29 | powerpc navigator | 1:4.70-27 | powerpc netscape | 1:4.72-29 | powerpc netscape-base-4 | 1:4.72-29 | powerpc netscape-base-46 | 4.6-9 | powerpc netscape-smotif-46 | 4.6-9 | powerpc (Closed bugs: 66350) (Reason: Requested by maintainer. Obsolete, buggy & security problems) Sync: libncurses4 4.2-9 powerpc libncurses4-dev 4.2-9 powerpc stable/main/binary-sparc/xtell_1.91.2_sparc.deb xtell (1.91.2) stable; urgency=high * fixed unterminated string bug in reverse DNS lookup and another one in checking for given tty filename - this fixes security issue with possible writing into files owned by nobody stable/main/binary-powerpc/xtell_1.91.2_powerpc.deb xtell (1.91.2) stable; urgency=high * fixed unterminated string bug in reverse DNS lookup and another one in checking for given tty filename - this fixes security issue with possible writing into files owned by nobody stable/main/binary-m68k/xtell_1.91.2_m68k.deb xtell (1.91.2) stable; urgency=high * fixed unterminated string bug in reverse DNS lookup and another one in checking for given tty filename - this fixes security issue with possible writing into files owned by nobody stable/main/binary-arm/xtell_1.91.2_arm.deb xtell (1.91.2) stable; urgency=high * fixed unterminated string bug in reverse DNS lookup and another one in checking for given tty filename - this fixes security issue with possible writing into files owned by nobody stable/main/binary-alpha/xtell_1.91.2_alpha.deb xtell (1.91.2) stable; urgency=high * fixed unterminated string bug in reverse DNS lookup and another one in checking for given tty filename - this fixes security issue with possible writing into files owned by nobody stable/main/binary-i386/xtell_1.91.2_i386.deb stable/main/source/xtell_1.91.2.dsc stable/main/source/xtell_1.91.2.tar.gz xtell (1.91.2) stable; urgency=high * fixed unterminated string bug in reverse DNS lookup and another one in checking for given tty filename - this fixes security issue with possible writing into files owned by nobody stable/contrib/binary-m68k/xmysqladmin_1.0-7_m68k.deb xmysqladmin (1.0-7) unstable frozen; urgency=low * Compilerbug causes xmysqladmin to segfault, removing -O2 optimisation. Closes: #56495, #59356 stable/main/binary-powerpc/xcin_2.5.2-1_powerpc.deb xcin (2.5.2-1) stable unstable; urgency=low * New upstream release. stable/main/binary-arm/xcin_2.5.2-1_arm.deb xcin (2.5.2-1) stable; urgency=low * New upstream release. stable/main/binary-alpha/xcin_2.5.2-1_alpha.deb xcin (2.5.2-1) stable unstable; urgency=low * New upstream release. stable/main/binary-sparc/xchat-text_1.4.3-1_sparc.deb stable/main/binary-sparc/xchat_1.4.3-1_sparc.deb stable/main/binary-sparc/xchat-gnome_1.4.3-1_sparc.deb xchat (1.4.3-1) stable; urgency=high * Fixed "Xchat 1.4.2 and 1.4.3 IRC session hijacking vulnerability", (http://www.securityfocus.com/archive/1/249113); patch provided by upstream author, Peter Zelezny . stable/main/binary-powerpc/xchat-text_1.4.3-1_powerpc.deb stable/main/binary-powerpc/xchat_1.4.3-1_powerpc.deb stable/main/binary-powerpc/xchat-gnome_1.4.3-1_powerpc.deb xchat (1.4.3-1) stable; urgency=high * Fixed "Xchat 1.4.2 and 1.4.3 IRC session hijacking vulnerability", (http://www.securityfocus.com/archive/1/249113); patch provided by upstream author, Peter Zelezny . stable/main/binary-m68k/xchat-gnome_1.4.3-1_m68k.deb stable/main/binary-m68k/xchat_1.4.3-1_m68k.deb stable/main/binary-m68k/xchat-text_1.4.3-1_m68k.deb xchat (1.4.3-1) stable; urgency=high * Fixed "Xchat 1.4.2 and 1.4.3 IRC session hijacking vulnerability", (http://www.securityfocus.com/archive/1/249113); patch provided by upstream author, Peter Zelezny . stable/main/binary-arm/xchat-gnome_1.4.3-1_arm.deb stable/main/binary-arm/xchat_1.4.3-1_arm.deb stable/main/binary-arm/xchat-text_1.4.3-1_arm.deb xchat (1.4.3-1) stable; urgency=high * Fixed "Xchat 1.4.2 and 1.4.3 IRC session hijacking vulnerability", (http://www.securityfocus.com/archive/1/249113); patch provided by upstream author, Peter Zelezny . stable/main/binary-alpha/xchat_1.4.3-1_alpha.deb stable/main/binary-alpha/xchat-gnome_1.4.3-1_alpha.deb stable/main/binary-alpha/xchat-text_1.4.3-1_alpha.deb xchat (1.4.3-1) stable; urgency=high * Fixed "Xchat 1.4.2 and 1.4.3 IRC session hijacking vulnerability", (http://www.securityfocus.com/archive/1/249113); patch provided by upstream author, Peter Zelezny . stable/main/source/xchat_1.4.3-1.dsc stable/main/binary-i386/xchat-gnome_1.4.3-1_i386.deb stable/main/binary-i386/xchat_1.4.3-1_i386.deb stable/main/source/xchat_1.4.3-1.diff.gz stable/main/binary-all/xchat-common_1.4.3-1_all.deb stable/main/binary-i386/xchat-text_1.4.3-1_i386.deb xchat (1.4.3-1) stable; urgency=high * Fixed "Xchat 1.4.2 and 1.4.3 IRC session hijacking vulnerability", (http://www.securityfocus.com/archive/1/249113); patch provided by upstream author, Peter Zelezny . stable/main/binary-powerpc/snmpd_4.1.1-2.2_powerpc.deb stable/main/binary-powerpc/libsnmp4.1-dev_4.1.1-2.2_powerpc.deb stable/main/binary-powerpc/libsnmp4.1_4.1.1-2.2_powerpc.deb stable/main/binary-powerpc/snmp_4.1.1-2.2_powerpc.deb ucd-snmp (4.1.1-2.2) stable; urgency=high * Non-maintainer upload by security team * Undo the sbuf changes to restore binary compatibility * Update config.sub so this builds on alpha machines stable/main/binary-powerpc/wmtv_0.6.5-2potato2_powerpc.deb stable/main/binary-sparc/wmtv_0.6.5-2potato2_sparc.deb stable/main/binary-m68k/wmtv_0.6.5-2potato2_m68k.deb stable/main/source/wmtv_0.6.5-2potato2.dsc stable/main/binary-arm/wmtv_0.6.5-2potato2_arm.deb stable/main/binary-alpha/wmtv_0.6.5-2potato2_alpha.deb stable/main/source/wmtv_0.6.5-2potato2.diff.gz stable/main/binary-i386/wmtv_0.6.5-2potato2_i386.deb wmtv (0.6.5-2potato2) stable; urgency=high * Fixed possible symlinks attacks and buffer overflows. stable/main/source/uucp_1.06.1-11potato2.dsc stable/main/binary-i386/uucp_1.06.1-11potato2_i386.deb stable/main/binary-powerpc/uucp_1.06.1-11potato2_powerpc.deb stable/main/binary-alpha/uucp_1.06.1-11potato2_alpha.deb stable/main/source/uucp_1.06.1-11potato2.diff.gz stable/main/binary-sparc/uucp_1.06.1-11potato2_sparc.deb stable/main/binary-arm/uucp_1.06.1-11potato2_arm.deb stable/main/binary-m68k/uucp_1.06.1-11potato2_m68k.deb uucp (1.06.1-11potato2) stable; urgency=high * Fixed exploit that allowed to gain uid.guid uucp.uucp again: The patch used in 1.06.1-11potato1 did fix the original exploit but not variations of it. Reversed old patch and using the one by Ian Taylor. Hopefully this fixes the issue correctly. stable/main/source/ucd-snmp_4.1.1-2.2.diff.gz stable/main/binary-i386/libsnmp4.1-dev_4.1.1-2.2_i386.deb stable/main/binary-arm/snmpd_4.1.1-2.2_arm.deb stable/main/binary-arm/libsnmp4.1-dev_4.1.1-2.2_arm.deb stable/main/binary-alpha/snmpd_4.1.1-2.2_alpha.deb stable/main/binary-sparc/snmpd_4.1.1-2.2_sparc.deb stable/main/binary-alpha/libsnmp4.1-dev_4.1.1-2.2_alpha.deb stable/main/binary-arm/libsnmp4.1_4.1.1-2.2_arm.deb stable/main/binary-m68k/snmp_4.1.1-2.2_m68k.deb stable/main/binary-arm/snmp_4.1.1-2.2_arm.deb stable/main/binary-m68k/libsnmp4.1_4.1.1-2.2_m68k.deb stable/main/binary-i386/libsnmp4.1_4.1.1-2.2_i386.deb stable/main/binary-sparc/libsnmp4.1_4.1.1-2.2_sparc.deb stable/main/binary-i386/snmp_4.1.1-2.2_i386.deb stable/main/binary-m68k/snmpd_4.1.1-2.2_m68k.deb stable/main/binary-sparc/snmp_4.1.1-2.2_sparc.deb stable/main/source/ucd-snmp_4.1.1-2.2.dsc stable/main/binary-i386/snmpd_4.1.1-2.2_i386.deb stable/main/binary-alpha/libsnmp4.1_4.1.1-2.2_alpha.deb stable/main/binary-alpha/snmp_4.1.1-2.2_alpha.deb stable/main/binary-m68k/libsnmp4.1-dev_4.1.1-2.2_m68k.deb stable/main/binary-sparc/libsnmp4.1-dev_4.1.1-2.2_sparc.deb ucd-snmp (4.1.1-2.2) stable; urgency=high * Non-maintainer upload by security team * Undo the sbuf changes to restore binary compatibility * Update config.sub so this builds on alpha machines stable/contrib/binary-m68k/tkseti_2.12-2_m68k.deb tkseti (2.12-2) frozen unstable; urgency=low * Make tkseti depend on wish instead of tcl/tk, Closes: #62667 stable/main/source/sudo_1.6.2p2-2.1.dsc stable/main/binary-m68k/sudo_1.6.2p2-2.1_m68k.deb stable/main/binary-powerpc/sudo_1.6.2p2-2.1_powerpc.deb stable/main/source/sudo_1.6.2p2-2.1.diff.gz stable/main/binary-sparc/sudo_1.6.2p2-2.1_sparc.deb stable/main/binary-alpha/sudo_1.6.2p2-2.1_alpha.deb stable/main/binary-arm/sudo_1.6.2p2-2.1_arm.deb stable/main/binary-i386/sudo_1.6.2p2-2.1_i386.deb sudo (1.6.2p2-2.1) stable; urgency=high * Non-maintainer upload by Security Team * sudo will not longer send mail as root if it detects abuse. This is due to a bugfix which fixes root hole. The user can potentially kill the sendmail process, though. This is based on work by Sebastian Krahmer from SuSE. stable/main/binary-sparc/squid-cgi_2.2.5-4_sparc.deb stable/main/binary-sparc/squidclient_2.2.5-4_sparc.deb stable/main/binary-sparc/squid_2.2.5-4_sparc.deb squid (2.2.5-4) stable; urgency=medium * Upload to address the problems as identified in the 2.4 series. o ftp://user@pass overflow: not vulnerable o HTCP cannot be turned off if compiled in: not vulnerable, the debian package has had the "turn off HTCP" patch for ages o SNMP memory leak potential DOS: applied patch for squid 2.4.STABLE3 stable/main/binary-powerpc/squid_2.2.5-4_powerpc.deb stable/main/binary-powerpc/squidclient_2.2.5-4_powerpc.deb stable/main/binary-powerpc/squid-cgi_2.2.5-4_powerpc.deb squid (2.2.5-4) stable; urgency=medium * Upload to address the problems as identified in the 2.4 series. o ftp://user@pass overflow: not vulnerable o HTCP cannot be turned off if compiled in: not vulnerable, the debian package has had the "turn off HTCP" patch for ages o SNMP memory leak potential DOS: applied patch for squid 2.4.STABLE3 stable/main/binary-m68k/squid_2.2.5-4_m68k.deb stable/main/binary-m68k/squid-cgi_2.2.5-4_m68k.deb stable/main/binary-m68k/squidclient_2.2.5-4_m68k.deb squid (2.2.5-4) stable; urgency=medium * Upload to address the problems as identified in the 2.4 series. o ftp://user@pass overflow: not vulnerable o HTCP cannot be turned off if compiled in: not vulnerable, the debian package has had the "turn off HTCP" patch for ages o SNMP memory leak potential DOS: applied patch for squid 2.4.STABLE3 stable/main/binary-arm/squid-cgi_2.2.5-4_arm.deb stable/main/binary-arm/squidclient_2.2.5-4_arm.deb stable/main/binary-arm/squid_2.2.5-4_arm.deb squid (2.2.5-4) stable; urgency=medium * Upload to address the problems as identified in the 2.4 series. o ftp://user@pass overflow: not vulnerable o HTCP cannot be turned off if compiled in: not vulnerable, the debian package has had the "turn off HTCP" patch for ages o SNMP memory leak potential DOS: applied patch for squid 2.4.STABLE3 stable/main/binary-alpha/squidclient_2.2.5-4_alpha.deb stable/main/binary-alpha/squid_2.2.5-4_alpha.deb stable/main/binary-alpha/squid-cgi_2.2.5-4_alpha.deb squid (2.2.5-4) stable; urgency=medium * Upload to address the problems as identified in the 2.4 series. o ftp://user@pass overflow: not vulnerable o HTCP cannot be turned off if compiled in: not vulnerable, the debian package has had the "turn off HTCP" patch for ages o SNMP memory leak potential DOS: applied patch for squid 2.4.STABLE3 stable/main/binary-i386/squid-cgi_2.2.5-4_i386.deb stable/main/binary-i386/squidclient_2.2.5-4_i386.deb stable/main/source/squid_2.2.5-4.dsc stable/main/binary-i386/squid_2.2.5-4_i386.deb stable/main/source/squid_2.2.5-4.diff.gz squid (2.2.5-4) stable; urgency=medium * Upload to address the problems as identified in the 2.4 series. o ftp://user@pass overflow: not vulnerable o HTCP cannot be turned off if compiled in: not vulnerable, the debian package has had the "turn off HTCP" patch for ages o SNMP memory leak potential DOS: applied patch for squid 2.4.STABLE3 stable/main/binary-alpha/sendmail-wide_8.9.3+3.2W-23_alpha.deb sendmail-wide (8.9.3+3.2W-23) stable; urgency=high * follow sendmail 8.9.3-23 * fix segfault problem stable/main/binary-sparc/smbclient_2.0.7-5_sparc.deb stable/main/binary-sparc/samba_2.0.7-5_sparc.deb stable/main/binary-sparc/samba-common_2.0.7-5_sparc.deb stable/main/binary-sparc/swat_2.0.7-5_sparc.deb stable/main/binary-sparc/smbfs_2.0.7-5_sparc.deb samba (2.0.7-5) stable; urgency=high * Add Build-Depends line; the previous upload was missing potentially important library linkage on some architectures. * Fix debian/rules to use xxx-linux instead of xxx-linux-gnu; config.sub doesn't grok the latter, causing printing to break (closes: #127444) stable/main/binary-powerpc/smbclient_2.0.7-5_powerpc.deb stable/main/binary-powerpc/samba_2.0.7-5_powerpc.deb stable/main/binary-powerpc/smbfs_2.0.7-5_powerpc.deb stable/main/binary-powerpc/swat_2.0.7-5_powerpc.deb stable/main/binary-powerpc/samba-common_2.0.7-5_powerpc.deb samba (2.0.7-5) stable; urgency=high * Add Build-Depends line; the previous upload was missing potentially important library linkage on some architectures. * Fix debian/rules to use xxx-linux instead of xxx-linux-gnu; config.sub doesn't grok the latter, causing printing to break (closes: #127444) stable/main/binary-m68k/samba-common_2.0.7-5_m68k.deb stable/main/binary-m68k/smbfs_2.0.7-5_m68k.deb stable/main/binary-m68k/smbclient_2.0.7-5_m68k.deb stable/main/binary-m68k/swat_2.0.7-5_m68k.deb stable/main/binary-m68k/samba_2.0.7-5_m68k.deb samba (2.0.7-5) stable; urgency=high * Add Build-Depends line; the previous upload was missing potentially important library linkage on some architectures. * Fix debian/rules to use xxx-linux instead of xxx-linux-gnu; config.sub doesn't grok the latter, causing printing to break (closes: #127444) stable/main/binary-arm/swat_2.0.7-5_arm.deb stable/main/binary-arm/samba-common_2.0.7-5_arm.deb stable/main/binary-arm/samba_2.0.7-5_arm.deb stable/main/binary-arm/smbclient_2.0.7-5_arm.deb stable/main/binary-arm/smbfs_2.0.7-5_arm.deb samba (2.0.7-5) stable; urgency=high * Add Build-Depends line; the previous upload was missing potentially important library linkage on some architectures. * Fix debian/rules to use xxx-linux instead of xxx-linux-gnu; config.sub doesn't grok the latter, causing printing to break (closes: #127444) stable/main/binary-i386/smbclient_2.0.7-5_i386.deb stable/main/source/samba_2.0.7-5.dsc stable/main/source/samba_2.0.7-5.diff.gz stable/main/binary-i386/swat_2.0.7-5_i386.deb stable/main/binary-i386/samba_2.0.7-5_i386.deb stable/main/binary-all/samba-doc_2.0.7-5_all.deb stable/main/binary-alpha/smbfs_2.0.7-5_alpha.deb stable/main/binary-alpha/samba-common_2.0.7-5_alpha.deb stable/main/binary-alpha/samba_2.0.7-5_alpha.deb stable/main/binary-i386/smbfs_2.0.7-5_i386.deb stable/main/binary-alpha/swat_2.0.7-5_alpha.deb stable/main/binary-i386/samba-common_2.0.7-5_i386.deb stable/main/binary-alpha/smbclient_2.0.7-5_alpha.deb samba (2.0.7-5) stable; urgency=high * Add Build-Depends line; the previous upload was missing potentially important library linkage on some architectures. * Fix debian/rules to use xxx-linux instead of xxx-linux-gnu; config.sub doesn't grok the latter, causing printing to break (closes: #127444) stable/main/binary-m68k/php4-cgi-snmp_4.0.3pl1-0potato3_m68k.deb stable/main/binary-powerpc/php4-cgi-mysql_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-m68k/php4-ldap_4.0.3pl1-0potato3_m68k.deb stable/main/binary-i386/php4-imap_4.0.3pl1-0potato3_i386.deb stable/main/binary-sparc/php4-snmp_4.0.3pl1-0potato3_sparc.deb stable/main/binary-alpha/php4-cgi_4.0.3pl1-0potato3_alpha.deb stable/main/binary-sparc/php4-mysql_4.0.3pl1-0potato3_sparc.deb stable/main/binary-alpha/php4-gd_4.0.3pl1-0potato3_alpha.deb stable/main/binary-all/php4-dev_4.0.3pl1-0potato3_all.deb stable/main/binary-i386/php4-snmp_4.0.3pl1-0potato3_i386.deb stable/main/binary-i386/php4-cgi-ldap_4.0.3pl1-0potato3_i386.deb stable/main/binary-sparc/php4-cgi-imap_4.0.3pl1-0potato3_sparc.deb stable/main/binary-alpha/php4-xml_4.0.3pl1-0potato3_alpha.deb stable/main/binary-sparc/php4-cgi-pgsql_4.0.3pl1-0potato3_sparc.deb stable/main/binary-m68k/php4-cgi-gd_4.0.3pl1-0potato3_m68k.deb stable/main/binary-m68k/php4-cgi-pgsql_4.0.3pl1-0potato3_m68k.deb stable/main/binary-m68k/php4-cgi_4.0.3pl1-0potato3_m68k.deb stable/main/binary-powerpc/php4-cgi-snmp_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-i386/php4-pgsql_4.0.3pl1-0potato3_i386.deb stable/main/binary-i386/php4-mysql_4.0.3pl1-0potato3_i386.deb stable/main/binary-i386/php4-cgi-imap_4.0.3pl1-0potato3_i386.deb stable/main/binary-m68k/php4-xml_4.0.3pl1-0potato3_m68k.deb stable/main/binary-sparc/php4-cgi-xml_4.0.3pl1-0potato3_sparc.deb stable/main/binary-powerpc/php4-mysql_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-i386/php4-cgi-pgsql_4.0.3pl1-0potato3_i386.deb stable/main/binary-powerpc/php4-cgi_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-alpha/php4-cgi-mysql_4.0.3pl1-0potato3_alpha.deb stable/main/binary-powerpc/php4-xml_4.0.3pl1-0potato3_powerpc.deb stable/main/source/php4_4.0.3pl1-0potato3.diff.gz stable/main/binary-powerpc/php4-cgi-imap_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-powerpc/php4-cgi-pgsql_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-sparc/php4-cgi-gd_4.0.3pl1-0potato3_sparc.deb stable/main/binary-sparc/php4_4.0.3pl1-0potato3_sparc.deb stable/main/binary-sparc/php4-cgi-ldap_4.0.3pl1-0potato3_sparc.deb stable/main/binary-powerpc/php4-cgi-mhash_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-i386/php4-cgi-xml_4.0.3pl1-0potato3_i386.deb stable/main/binary-powerpc/php4-cgi-gd_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-m68k/php4-pgsql_4.0.3pl1-0potato3_m68k.deb stable/main/binary-i386/php4-cgi_4.0.3pl1-0potato3_i386.deb stable/main/binary-alpha/php4-cgi-imap_4.0.3pl1-0potato3_alpha.deb stable/main/binary-alpha/php4-cgi-mhash_4.0.3pl1-0potato3_alpha.deb stable/main/binary-i386/php4-mhash_4.0.3pl1-0potato3_i386.deb stable/main/binary-sparc/php4-imap_4.0.3pl1-0potato3_sparc.deb stable/main/binary-m68k/php4-mysql_4.0.3pl1-0potato3_m68k.deb stable/main/binary-i386/php4-cgi-mhash_4.0.3pl1-0potato3_i386.deb stable/main/binary-powerpc/php4-cgi-xml_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-alpha/php4-cgi-snmp_4.0.3pl1-0potato3_alpha.deb stable/main/binary-i386/php4-xml_4.0.3pl1-0potato3_i386.deb stable/main/binary-sparc/php4-cgi-mhash_4.0.3pl1-0potato3_sparc.deb stable/main/binary-sparc/php4-cgi-snmp_4.0.3pl1-0potato3_sparc.deb stable/main/binary-alpha/php4-cgi-xml_4.0.3pl1-0potato3_alpha.deb stable/main/binary-sparc/php4-cgi-mysql_4.0.3pl1-0potato3_sparc.deb stable/main/binary-i386/php4-cgi-gd_4.0.3pl1-0potato3_i386.deb stable/main/binary-alpha/php4-cgi-pgsql_4.0.3pl1-0potato3_alpha.deb stable/main/binary-powerpc/php4-pgsql_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-m68k/php4-cgi-xml_4.0.3pl1-0potato3_m68k.deb stable/main/binary-m68k/php4_4.0.3pl1-0potato3_m68k.deb stable/main/binary-alpha/php4-ldap_4.0.3pl1-0potato3_alpha.deb stable/main/binary-sparc/php4-gd_4.0.3pl1-0potato3_sparc.deb stable/main/binary-i386/php4-cgi-snmp_4.0.3pl1-0potato3_i386.deb stable/main/binary-alpha/php4-imap_4.0.3pl1-0potato3_alpha.deb stable/main/binary-sparc/php4-ldap_4.0.3pl1-0potato3_sparc.deb stable/main/binary-m68k/php4-cgi-mysql_4.0.3pl1-0potato3_m68k.deb stable/main/binary-m68k/php4-cgi-imap_4.0.3pl1-0potato3_m68k.deb stable/main/binary-powerpc/php4_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-m68k/php4-snmp_4.0.3pl1-0potato3_m68k.deb stable/main/binary-alpha/php4-pgsql_4.0.3pl1-0potato3_alpha.deb stable/main/binary-powerpc/php4-mhash_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-m68k/php4-imap_4.0.3pl1-0potato3_m68k.deb stable/main/binary-alpha/php4-cgi-ldap_4.0.3pl1-0potato3_alpha.deb stable/main/binary-powerpc/php4-ldap_4.0.3pl1-0potato3_powerpc.deb stable/main/source/php4_4.0.3pl1-0potato3.dsc stable/main/binary-sparc/php4-pgsql_4.0.3pl1-0potato3_sparc.deb stable/main/binary-i386/php4-gd_4.0.3pl1-0potato3_i386.deb stable/main/binary-powerpc/php4-snmp_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-alpha/php4-cgi-gd_4.0.3pl1-0potato3_alpha.deb stable/main/binary-sparc/php4-cgi_4.0.3pl1-0potato3_sparc.deb stable/main/binary-alpha/php4_4.0.3pl1-0potato3_alpha.deb stable/main/binary-alpha/php4-snmp_4.0.3pl1-0potato3_alpha.deb stable/main/binary-powerpc/php4-imap_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-powerpc/php4-gd_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-alpha/php4-mysql_4.0.3pl1-0potato3_alpha.deb stable/main/binary-alpha/php4-mhash_4.0.3pl1-0potato3_alpha.deb stable/main/binary-i386/php4-cgi-mysql_4.0.3pl1-0potato3_i386.deb stable/main/binary-powerpc/php4-cgi-ldap_4.0.3pl1-0potato3_powerpc.deb stable/main/binary-sparc/php4-xml_4.0.3pl1-0potato3_sparc.deb stable/main/binary-m68k/php4-gd_4.0.3pl1-0potato3_m68k.deb stable/main/binary-m68k/php4-mhash_4.0.3pl1-0potato3_m68k.deb stable/main/binary-sparc/php4-mhash_4.0.3pl1-0potato3_sparc.deb stable/main/binary-i386/php4-ldap_4.0.3pl1-0potato3_i386.deb stable/main/binary-m68k/php4-cgi-mhash_4.0.3pl1-0potato3_m68k.deb stable/main/binary-i386/php4_4.0.3pl1-0potato3_i386.deb stable/main/binary-m68k/php4-cgi-ldap_4.0.3pl1-0potato3_m68k.deb php4 (4.0.3pl1-0potato3) stable; urgency=high * Non-maintainer upload by Security Team with help of its new maintainer * Added --enable-ucd-snmp-hack to configure options, as libsnmp4.1 was not compiled with NO_ZEROLENGTH_COMMUNITY defined * File Upload security fix from php.net, backported from their 4.0.6 patch, thanks to Adam Conrad for that. * Correcting the patch stable/main/binary-sparc/php3-cgi-gd_3.0.18-0potato1.1_sparc.deb stable/main/binary-alpha/php3-cgi-snmp_3.0.18-0potato1.1_alpha.deb stable/main/binary-arm/php3-cgi_3.0.18-0potato1.1_arm.deb stable/main/binary-i386/php3-cgi-mysql_3.0.18-0potato1.1_i386.deb stable/main/binary-alpha/php3_3.0.18-0potato1.1_alpha.deb stable/main/binary-i386/php3-cgi-mhash_3.0.18-0potato1.1_i386.deb stable/main/binary-powerpc/php3-xml_3.0.18-0potato1.1_powerpc.deb stable/main/binary-i386/php3-snmp_3.0.18-0potato1.1_i386.deb stable/main/binary-arm/php3-magick_3.0.18-0potato1.1_arm.deb stable/main/binary-i386/php3-magick_3.0.18-0potato1.1_i386.deb stable/main/binary-arm/php3-snmp_3.0.18-0potato1.1_arm.deb stable/main/binary-arm/php3-pgsql_3.0.18-0potato1.1_arm.deb stable/main/binary-arm/php3-cgi-imap_3.0.18-0potato1.1_arm.deb stable/main/binary-m68k/php3-snmp_3.0.18-0potato1.1_m68k.deb stable/main/binary-m68k/php3-magick_3.0.18-0potato1.1_m68k.deb stable/main/binary-arm/php3-cgi-ldap_3.0.18-0potato1.1_arm.deb stable/main/binary-alpha/php3-cgi-pgsql_3.0.18-0potato1.1_alpha.deb stable/main/binary-arm/php3-mysql_3.0.18-0potato1.1_arm.deb stable/main/binary-powerpc/php3-cgi-ldap_3.0.18-0potato1.1_powerpc.deb stable/main/binary-sparc/php3-cgi-ldap_3.0.18-0potato1.1_sparc.deb stable/main/binary-m68k/php3-cgi-mysql_3.0.18-0potato1.1_m68k.deb stable/main/binary-m68k/php3-cgi-pgsql_3.0.18-0potato1.1_m68k.deb stable/main/binary-powerpc/php3-cgi-xml_3.0.18-0potato1.1_powerpc.deb stable/main/binary-arm/php3-cgi-magick_3.0.18-0potato1.1_arm.deb stable/main/binary-sparc/php3-cgi-magick_3.0.18-0potato1.1_sparc.deb stable/main/binary-i386/php3_3.0.18-0potato1.1_i386.deb stable/main/binary-i386/php3-cgi_3.0.18-0potato1.1_i386.deb stable/main/binary-alpha/php3-dev_3.0.18-0potato1.1_alpha.deb stable/main/binary-m68k/php3-cgi-imap_3.0.18-0potato1.1_m68k.deb stable/main/binary-powerpc/php3-cgi-magick_3.0.18-0potato1.1_powerpc.deb stable/main/binary-m68k/php3-mhash_3.0.18-0potato1.1_m68k.deb stable/main/binary-powerpc/php3-imap_3.0.18-0potato1.1_powerpc.deb stable/main/binary-powerpc/php3-gd_3.0.18-0potato1.1_powerpc.deb stable/main/binary-sparc/php3-imap_3.0.18-0potato1.1_sparc.deb stable/main/binary-alpha/php3-pgsql_3.0.18-0potato1.1_alpha.deb stable/main/binary-powerpc/php3-cgi-imap_3.0.18-0potato1.1_powerpc.deb stable/main/binary-powerpc/php3-ldap_3.0.18-0potato1.1_powerpc.deb stable/main/binary-powerpc/php3-pgsql_3.0.18-0potato1.1_powerpc.deb stable/main/binary-sparc/php3-snmp_3.0.18-0potato1.1_sparc.deb stable/main/binary-arm/php3-cgi-pgsql_3.0.18-0potato1.1_arm.deb stable/main/binary-sparc/php3-magick_3.0.18-0potato1.1_sparc.deb stable/main/binary-m68k/php3-cgi-ldap_3.0.18-0potato1.1_m68k.deb stable/main/binary-powerpc/php3-mysql_3.0.18-0potato1.1_powerpc.deb stable/main/binary-alpha/php3-cgi_3.0.18-0potato1.1_alpha.deb stable/main/binary-m68k/php3-cgi_3.0.18-0potato1.1_m68k.deb stable/main/binary-alpha/php3-gd_3.0.18-0potato1.1_alpha.deb stable/main/binary-powerpc/php3-cgi-snmp_3.0.18-0potato1.1_powerpc.deb stable/main/binary-alpha/php3-cgi-magick_3.0.18-0potato1.1_alpha.deb stable/main/binary-alpha/php3-imap_3.0.18-0potato1.1_alpha.deb stable/main/binary-all/php3-doc_3.0.18-0potato1.1_all.deb stable/main/binary-sparc/php3-ldap_3.0.18-0potato1.1_sparc.deb stable/main/binary-m68k/php3-ldap_3.0.18-0potato1.1_m68k.deb stable/main/binary-sparc/php3-cgi-mhash_3.0.18-0potato1.1_sparc.deb stable/main/binary-powerpc/php3-dev_3.0.18-0potato1.1_powerpc.deb stable/main/binary-sparc/php3-mysql_3.0.18-0potato1.1_sparc.deb stable/main/binary-m68k/php3-cgi-mhash_3.0.18-0potato1.1_m68k.deb stable/main/binary-sparc/php3-gd_3.0.18-0potato1.1_sparc.deb stable/main/binary-alpha/php3-magick_3.0.18-0potato1.1_alpha.deb stable/main/binary-m68k/php3-xml_3.0.18-0potato1.1_m68k.deb stable/main/binary-alpha/php3-snmp_3.0.18-0potato1.1_alpha.deb stable/main/binary-arm/php3_3.0.18-0potato1.1_arm.deb stable/main/binary-powerpc/php3-cgi-gd_3.0.18-0potato1.1_powerpc.deb stable/main/binary-i386/php3-cgi-magick_3.0.18-0potato1.1_i386.deb stable/main/binary-i386/php3-mysql_3.0.18-0potato1.1_i386.deb stable/main/binary-sparc/php3-cgi-xml_3.0.18-0potato1.1_sparc.deb stable/main/source/php3_3.0.18-0potato1.1.dsc stable/main/binary-i386/php3-cgi-imap_3.0.18-0potato1.1_i386.deb stable/main/binary-i386/php3-dev_3.0.18-0potato1.1_i386.deb stable/main/binary-arm/php3-cgi-xml_3.0.18-0potato1.1_arm.deb stable/main/binary-sparc/php3-cgi-imap_3.0.18-0potato1.1_sparc.deb stable/main/binary-sparc/php3-xml_3.0.18-0potato1.1_sparc.deb stable/main/binary-powerpc/php3-cgi-mhash_3.0.18-0potato1.1_powerpc.deb stable/main/binary-arm/php3-ldap_3.0.18-0potato1.1_arm.deb stable/main/binary-sparc/php3-cgi-mysql_3.0.18-0potato1.1_sparc.deb stable/main/binary-sparc/php3-pgsql_3.0.18-0potato1.1_sparc.deb stable/main/binary-alpha/php3-cgi-ldap_3.0.18-0potato1.1_alpha.deb stable/main/binary-m68k/php3_3.0.18-0potato1.1_m68k.deb stable/main/binary-i386/php3-cgi-snmp_3.0.18-0potato1.1_i386.deb stable/main/binary-m68k/php3-cgi-gd_3.0.18-0potato1.1_m68k.deb stable/main/binary-i386/php3-cgi-xml_3.0.18-0potato1.1_i386.deb stable/main/binary-powerpc/php3-cgi-mysql_3.0.18-0potato1.1_powerpc.deb stable/main/binary-powerpc/php3-magick_3.0.18-0potato1.1_powerpc.deb stable/main/binary-powerpc/php3-snmp_3.0.18-0potato1.1_powerpc.deb stable/main/binary-i386/php3-xml_3.0.18-0potato1.1_i386.deb stable/main/binary-m68k/php3-dev_3.0.18-0potato1.1_m68k.deb stable/main/binary-m68k/php3-cgi-magick_3.0.18-0potato1.1_m68k.deb stable/main/binary-arm/php3-cgi-gd_3.0.18-0potato1.1_arm.deb stable/main/binary-i386/php3-ldap_3.0.18-0potato1.1_i386.deb stable/main/binary-i386/php3-mhash_3.0.18-0potato1.1_i386.deb stable/main/binary-powerpc/php3_3.0.18-0potato1.1_powerpc.deb stable/main/binary-alpha/php3-cgi-gd_3.0.18-0potato1.1_alpha.deb stable/main/binary-sparc/php3_3.0.18-0potato1.1_sparc.deb stable/main/binary-i386/php3-cgi-pgsql_3.0.18-0potato1.1_i386.deb stable/main/binary-i386/php3-cgi-gd_3.0.18-0potato1.1_i386.deb stable/main/binary-arm/php3-mhash_3.0.18-0potato1.1_arm.deb stable/main/binary-sparc/php3-cgi_3.0.18-0potato1.1_sparc.deb stable/main/binary-sparc/php3-dev_3.0.18-0potato1.1_sparc.deb stable/main/binary-m68k/php3-gd_3.0.18-0potato1.1_m68k.deb stable/main/binary-m68k/php3-cgi-snmp_3.0.18-0potato1.1_m68k.deb stable/main/binary-alpha/php3-cgi-xml_3.0.18-0potato1.1_alpha.deb stable/main/binary-arm/php3-dev_3.0.18-0potato1.1_arm.deb stable/main/binary-arm/php3-cgi-mysql_3.0.18-0potato1.1_arm.deb stable/main/binary-alpha/php3-cgi-imap_3.0.18-0potato1.1_alpha.deb stable/main/binary-alpha/php3-xml_3.0.18-0potato1.1_alpha.deb stable/main/binary-arm/php3-cgi-snmp_3.0.18-0potato1.1_arm.deb stable/main/binary-sparc/php3-cgi-snmp_3.0.18-0potato1.1_sparc.deb stable/main/binary-alpha/php3-cgi-mhash_3.0.18-0potato1.1_alpha.deb stable/main/binary-m68k/php3-mysql_3.0.18-0potato1.1_m68k.deb stable/main/binary-i386/php3-cgi-ldap_3.0.18-0potato1.1_i386.deb stable/main/binary-m68k/php3-cgi-xml_3.0.18-0potato1.1_m68k.deb stable/main/binary-alpha/php3-mhash_3.0.18-0potato1.1_alpha.deb stable/main/binary-powerpc/php3-cgi_3.0.18-0potato1.1_powerpc.deb stable/main/binary-m68k/php3-imap_3.0.18-0potato1.1_m68k.deb stable/main/binary-alpha/php3-cgi-mysql_3.0.18-0potato1.1_alpha.deb stable/main/binary-arm/php3-xml_3.0.18-0potato1.1_arm.deb stable/main/source/php3_3.0.18-0potato1.1.diff.gz stable/main/binary-sparc/php3-mhash_3.0.18-0potato1.1_sparc.deb stable/main/binary-alpha/php3-ldap_3.0.18-0potato1.1_alpha.deb stable/main/binary-powerpc/php3-mhash_3.0.18-0potato1.1_powerpc.deb stable/main/binary-powerpc/php3-cgi-pgsql_3.0.18-0potato1.1_powerpc.deb stable/main/binary-sparc/php3-cgi-pgsql_3.0.18-0potato1.1_sparc.deb stable/main/binary-i386/php3-imap_3.0.18-0potato1.1_i386.deb stable/main/binary-i386/php3-gd_3.0.18-0potato1.1_i386.deb stable/main/binary-alpha/php3-mysql_3.0.18-0potato1.1_alpha.deb stable/main/binary-arm/php3-gd_3.0.18-0potato1.1_arm.deb stable/main/binary-arm/php3-imap_3.0.18-0potato1.1_arm.deb stable/main/binary-i386/php3-pgsql_3.0.18-0potato1.1_i386.deb stable/main/binary-arm/php3-cgi-mhash_3.0.18-0potato1.1_arm.deb stable/main/binary-m68k/php3-pgsql_3.0.18-0potato1.1_m68k.deb php3 (3:3.0.18-0potato1.1) stable; urgency=high * Non-maintainer upload by Security Team * Applied patch from Stefan Esser to fix a broken boundary check and an arbitrary heap overflow stable/main/binary-i386/pcmcia-modules-2.2.19_3.1.22-0.2potatok4potato.7_i386.deb pcmcia-cs (3.1.22-0.2potato) stable; urgency=low * update for kernel-source-2.2.19pre17 stable/main/binary-powerpc/pcmcia-modules-2.2.19-pmac_3.1.22-0.2potatok2.0potato2_powerpc.deb pcmcia-cs (3.1.22-0.2potato) stable; urgency=low * update for kernel-source-2.2.19pre17 stable/main/binary-i386/pcmcia-modules-2.2.19-idepci_3.1.22-0.2potatok4potato.7_i386.deb pcmcia-cs (3.1.22-0.2potato) stable; urgency=low * update for kernel-source-2.2.19pre17 stable/main/binary-i386/pcmcia-modules-2.2.19-ide_3.1.22-0.2potatok4potato.7_i386.deb pcmcia-cs (3.1.22-0.2potato) stable; urgency=low * update for kernel-source-2.2.19pre17 stable/main/binary-i386/pcmcia-modules-2.2.19-compact_3.1.22-0.2potatok4potato.7_i386.deb pcmcia-cs (3.1.22-0.2potato) stable; urgency=low * update for kernel-source-2.2.19pre17 stable/main/binary-powerpc/nhfsstone_0.1.9.1-1.potato1_powerpc.deb stable/main/binary-powerpc/nfs-common_0.1.9.1-1.potato1_powerpc.deb stable/main/binary-powerpc/nfs-kernel-server_0.1.9.1-1.potato1_powerpc.deb nfs-utils (1:0.1.9.1-1.potato1) stable; urgency=medium * Support statd callbacks from later 2.2 kernels. (closes: #111990) stable/main/binary-m68k/nfs-common_0.1.9.1-1.potato1_m68k.deb stable/main/binary-m68k/nhfsstone_0.1.9.1-1.potato1_m68k.deb stable/main/binary-m68k/nfs-kernel-server_0.1.9.1-1.potato1_m68k.deb nfs-utils (1:0.1.9.1-1.potato1) stable; urgency=medium * Support statd callbacks from later 2.2 kernels. (closes: #111990) stable/main/binary-i386/nfs-kernel-server_0.1.9.1-1.potato1_i386.deb stable/main/binary-i386/nfs-common_0.1.9.1-1.potato1_i386.deb stable/main/binary-i386/nhfsstone_0.1.9.1-1.potato1_i386.deb nfs-utils (1:0.1.9.1-1.potato1) stable; urgency=medium * Support statd callbacks from later 2.2 kernels. (closes: #111990) stable/main/binary-arm/nfs-common_0.1.9.1-1.potato1_arm.deb stable/main/binary-arm/nfs-kernel-server_0.1.9.1-1.potato1_arm.deb stable/main/binary-arm/nhfsstone_0.1.9.1-1.potato1_arm.deb nfs-utils (1:0.1.9.1-1.potato1) stable; urgency=medium * Support statd callbacks from later 2.2 kernels. (closes: #111990) stable/main/binary-alpha/nfs-common_0.1.9.1-1.potato1_alpha.deb stable/main/binary-alpha/nhfsstone_0.1.9.1-1.potato1_alpha.deb stable/main/binary-alpha/nfs-kernel-server_0.1.9.1-1.potato1_alpha.deb nfs-utils (1:0.1.9.1-1.potato1) stable; urgency=medium * Support statd callbacks from later 2.2 kernels. (closes: #111990) stable/main/binary-sparc/nhfsstone_0.1.9.1-1.potato1_sparc.deb stable/main/binary-sparc/nfs-kernel-server_0.1.9.1-1.potato1_sparc.deb stable/main/source/nfs-utils_0.1.9.1-1.potato1.dsc stable/main/source/nfs-utils_0.1.9.1-1.potato1.tar.gz stable/main/binary-sparc/nfs-common_0.1.9.1-1.potato1_sparc.deb nfs-utils (1:0.1.9.1-1.potato1) stable; urgency=medium * Support statd callbacks from later 2.2 kernels. (closes: #111990) stable/main/binary-alpha/talkd_0.10-8_alpha.deb stable/main/binary-alpha/talk_0.10-8_alpha.deb netkit-ntalk (0.10-8) stable; urgency=high * Fixed format string bug. stable/main/binary-m68k/libncurses5-dev_5.0-6.0potato2_m68k.deb stable/main/binary-m68k/libncurses5_5.0-6.0potato2_m68k.deb stable/main/binary-i386/ncurses-bin_5.0-6.0potato2_i386.deb stable/main/binary-powerpc/libncurses5-dev_5.0-6.0potato2_powerpc.deb stable/main/source/ncurses_5.0-6.0potato2.dsc stable/main/binary-all/ncurses-term_5.0-6.0potato2_all.deb stable/main/binary-powerpc/libncurses5-dbg_5.0-6.0potato2_powerpc.deb stable/main/binary-arm/libncurses5_5.0-6.0potato2_arm.deb stable/main/binary-alpha/libncurses5-dev_5.0-6.0potato2_alpha.deb stable/main/binary-m68k/libncurses5-dbg_5.0-6.0potato2_m68k.deb stable/main/binary-powerpc/ncurses-bin_5.0-6.0potato2_powerpc.deb stable/main/binary-i386/libncurses5-dbg_5.0-6.0potato2_i386.deb stable/main/source/ncurses_5.0-6.0potato2.diff.gz stable/main/binary-sparc/libncurses5_5.0-6.0potato2_sparc.deb stable/main/binary-arm/libncurses5-dbg_5.0-6.0potato2_arm.deb stable/main/binary-m68k/ncurses-bin_5.0-6.0potato2_m68k.deb stable/main/binary-sparc/libncurses5-dbg_5.0-6.0potato2_sparc.deb stable/main/binary-arm/libncurses5-dev_5.0-6.0potato2_arm.deb stable/main/binary-i386/libncurses5-dev_5.0-6.0potato2_i386.deb stable/main/binary-all/ncurses-base_5.0-6.0potato2_all.deb stable/main/binary-i386/libncurses5_5.0-6.0potato2_i386.deb stable/main/binary-alpha/ncurses-bin_5.0-6.0potato2_alpha.deb stable/main/binary-arm/ncurses-bin_5.0-6.0potato2_arm.deb stable/main/binary-alpha/libncurses5_5.0-6.0potato2_alpha.deb stable/main/binary-sparc/ncurses-bin_5.0-6.0potato2_sparc.deb stable/main/binary-powerpc/libncurses5_5.0-6.0potato2_powerpc.deb stable/main/binary-sparc/libncurses5-dev_5.0-6.0potato2_sparc.deb stable/main/binary-alpha/libncurses5-dbg_5.0-6.0potato2_alpha.deb ncurses (5.0-6.0potato2) stable; urgency=high * Security upload, fixing a buffer overflow I missed in the original pass through the code (Closes: #118002). stable/main/binary-sparc/mtr_0.41-6_sparc.deb mtr (0.41-6) stable; urgency=high * Security fix for format overflow with MTR_OPTIONS, closes: #137102 * Added build-depends line from unstable package stable/main/binary-powerpc/mtr_0.41-6_powerpc.deb mtr (0.41-6) stable; urgency=high * Security fix for format overflow with MTR_OPTIONS, closes: #137102 * Added build-depends line from unstable package stable/main/binary-m68k/mtr_0.41-6_m68k.deb mtr (0.41-6) stable; urgency=high * Security fix for format overflow with MTR_OPTIONS, closes: #137102 * Added build-depends line from unstable package stable/main/binary-arm/mtr_0.41-6_arm.deb mtr (0.41-6) stable; urgency=high * Security fix for format overflow with MTR_OPTIONS, closes: #137102 * Added build-depends line from unstable package stable/main/binary-alpha/mtr_0.41-6_alpha.deb mtr (0.41-6) stable; urgency=high * Security fix for format overflow with MTR_OPTIONS, closes: #137102 * Added build-depends line from unstable package stable/main/source/mtr_0.41-6.diff.gz stable/main/binary-i386/mtr_0.41-6_i386.deb stable/main/source/mtr_0.41-6.dsc mtr (0.41-6) stable; urgency=high * Security fix for format overflow with MTR_OPTIONS, closes: #137102 * Added build-depends line from unstable package stable/main/binary-arm/libmhash1_0.6.1-1_arm.deb mhash (0.6.1-1) unstable; urgency=low * New upstream version stable/main/binary-alpha/masqmail_0.0.12-3_alpha.deb masqmail (0.0.12-3) stable; urgency=high * Security bugfix: An unprivileged user could use `masqmail -C' (use alternative configuration file) and/or `-d' (enable debug output) for exploits. We disable these options for non-privileged users (closes: #74422). stable/main/binary-sparc/man2html_1.5-23.1_sparc.deb man2html (1.5-23.1) stable; urgency=low * Recompiled with correct CGIBASE to avoid bad links; closes: #104474. Grave bug, warrants inclusion into stable. stable/main/binary-powerpc/man2html_1.5-23.1_powerpc.deb man2html (1.5-23.1) stable; urgency=low * Recompiled with correct CGIBASE to avoid bad links; closes: #104474. Grave bug, warrants inclusion into stable. stable/main/binary-m68k/man2html_1.5-23.1_m68k.deb man2html (1.5-23.1) stable; urgency=low * Recompiled with correct CGIBASE to avoid bad links; closes: #104474. Grave bug, warrants inclusion into stable. stable/main/binary-arm/man2html_1.5-23.1_arm.deb man2html (1.5-23.1) stable; urgency=low * Recompiled with correct CGIBASE to avoid bad links; closes: #104474. Grave bug, warrants inclusion into stable. stable/main/binary-alpha/man2html_1.5-23.1_alpha.deb man2html (1.5-23.1) stable; urgency=low * Recompiled with correct CGIBASE to avoid bad links; closes: #104474. Grave bug, warrants inclusion into stable. stable/main/source/man2html_1.5-23.1.diff.gz stable/main/binary-i386/man2html_1.5-23.1_i386.deb stable/main/source/man2html_1.5-23.1.dsc man2html (1.5-23.1) stable; urgency=low * Recompiled with correct CGIBASE to avoid bad links; closes: #104474. Grave bug, warrants inclusion into stable. stable/main/binary-alpha/maildrop_0.75-2.1_alpha.deb maildrop (0.75-2.1) frozen unstable; urgency=high * Non-maintainer release * Added 'char *' operator to Buffer since 'const char *' didn't match 'char *' anymore. * Applied patch suggested by Josip Rodin: chgrp mail/chmod g+s maildrop to make the program work again stable/main/binary-sparc/listar-cgi_0.129a-2.potato1_sparc.deb stable/main/binary-sparc/listar_0.129a-2.potato1_sparc.deb listar (0.129a-2.potato1) stable; urgency=high * SECURITY: Applied fix from ecartis tree. Closes: #136168. stable/main/binary-powerpc/listar-cgi_0.129a-2.potato1_powerpc.deb stable/main/binary-powerpc/listar_0.129a-2.potato1_powerpc.deb listar (0.129a-2.potato1) stable; urgency=high * SECURITY: Applied fix from ecartis tree. Closes: #136168. stable/main/binary-m68k/listar-cgi_0.129a-2.potato1_m68k.deb stable/main/binary-m68k/listar_0.129a-2.potato1_m68k.deb listar (0.129a-2.potato1) stable; urgency=high * SECURITY: Applied fix from ecartis tree. Closes: #136168. stable/main/binary-arm/listar_0.129a-2.potato1_arm.deb stable/main/binary-arm/listar-cgi_0.129a-2.potato1_arm.deb listar (0.129a-2.potato1) stable; urgency=high * SECURITY: Applied fix from ecartis tree. Closes: #136168. stable/main/binary-alpha/listar_0.129a-2.potato1_alpha.deb stable/main/binary-alpha/listar-cgi_0.129a-2.potato1_alpha.deb listar (0.129a-2.potato1) stable; urgency=high * SECURITY: Applied fix from ecartis tree. Closes: #136168. stable/main/binary-i386/listar-cgi_0.129a-2.potato1_i386.deb stable/main/binary-i386/listar_0.129a-2.potato1_i386.deb stable/main/source/listar_0.129a-2.potato1.dsc stable/main/source/listar_0.129a-2.potato1.diff.gz listar (0.129a-2.potato1) stable; urgency=high * SECURITY: Applied fix from ecartis tree. Closes: #136168. stable/main/binary-powerpc/libnss-ldap_122-1_powerpc.deb libnss-ldap (122-1) stable; urgency=HIGH * New upstream version that fixes an important security related bug. For more info check http://bugzilla.padl.com/show_bug.cgi?id=49. (now we really close this; closes: #76018). stable/main/binary-alpha/libnss-ldap_122-1_alpha.deb libnss-ldap (122-1) stable; urgency=HIGH * New upstream version that fixes an important security related bug. For more info check http://bugzilla.padl.com/show_bug.cgi?id=49. (now we really close this; closes: #76018). stable/main/binary-all/kernel-source-2.2.19_2.2.19.1-4_all.deb stable/main/binary-all/kernel-doc-2.2.19_2.2.19.1-4_all.deb stable/main/source/kernel-source-2.2.19_2.2.19.1-4.diff.gz stable/main/source/kernel-source-2.2.19_2.2.19.1-4.dsc kernel-source-2.2.19 (2.2.19.1-4) stable; urgency=high * Fixed remaining double free in drivers/net/zlib.c. stable/main/binary-all/kernel-patch-2.2.19-powerpc_2.2.19-2.0potato2_all.deb stable/main/binary-powerpc/kernel-image-2.2.19-pmac_2.2.19-2.0potato2_powerpc.deb stable/main/binary-powerpc/kernel-image-2.2.19-chrp_2.2.19-2.0potato2_powerpc.deb stable/main/binary-powerpc/kernel-image-2.2.19-prep_2.2.19-2.0potato2_powerpc.deb stable/main/source/kernel-patch-2.2.19-powerpc_2.2.19-2.0potato2.dsc stable/main/source/kernel-patch-2.2.19-powerpc_2.2.19-2.0potato2.tar.gz stable/main/binary-powerpc/kernel-headers-2.2.19_2.2.19-2.0potato2_powerpc.deb kernel-patch-2.2.19-powerpc (2.2.19-2.0potato2) stable; urgency=high * Rebuild against kernel-source version 2.2.19.1-4 to fix zlib double-free bug. * Turn on CONFIG_PPC_RTC for PReP and CHRP. Required patch (macintosh/rtc.c was not used on non-PowerMac until 2.4). * Remove non-free Keyspan firmware from CHRP config. stable/main/binary-i386/kernel-image-2.2.19-compact_2.2.19-4potato.7_i386.deb stable/main/binary-i386/kernel-image-2.2.19_2.2.19-4potato.7_i386.deb stable/main/source/kernel-image-2.2.19-i386_2.2.19-4potato.7.dsc stable/main/binary-i386/kernel-image-2.2.19-idepci_2.2.19-4potato.7_i386.deb stable/main/binary-i386/kernel-headers-2.2.19_2.2.19-4potato.7_i386.deb stable/main/binary-i386/kernel-headers-2.2.19-ide_2.2.19-4potato.7_i386.deb stable/main/binary-i386/kernel-image-2.2.19-ide_2.2.19-4potato.7_i386.deb stable/main/binary-i386/kernel-headers-2.2.19-compact_2.2.19-4potato.7_i386.deb stable/main/source/kernel-image-2.2.19-i386_2.2.19-4potato.7.tar.gz stable/main/binary-i386/kernel-headers-2.2.19-idepci_2.2.19-4potato.7_i386.deb kernel-image-2.2.19-i386 (2.2.19-4potato.7) stable; urgency=high * Built against kernel-source 2.2.19.1-4. stable/main/source/kernel-image-2.2.19-alpha_2.2.19-1potato.5.tar.gz stable/main/binary-alpha/kernel-headers-2.2.19_2.2.19-1potato.5_alpha.deb stable/main/binary-alpha/kernel-image-2.2.19-jensen_2.2.19-1potato.5_alpha.deb stable/main/binary-alpha/kernel-image-2.2.19-smp_2.2.19-1potato.5_alpha.deb stable/main/source/kernel-image-2.2.19-alpha_2.2.19-1potato.5.dsc stable/main/binary-alpha/kernel-image-2.2.19-generic_2.2.19-1potato.5_alpha.deb stable/main/binary-alpha/kernel-image-2.2.19-nautilus_2.2.19-1potato.5_alpha.deb kernel-image-2.2.19-alpha (2.2.19-1potato.5) stable; urgency=high * Built against kernel-source 2.2.19.1-4. stable/main/binary-sparc/jgroff_1.15+ja-3.4_sparc.deb jgroff (1.15+ja-3.4) stable; urgency=high * NMU security updates - oops, previous build was not synced with groff_1.15.2-3 add PSPRINT=lpr to ./configure, now sync with groff_1.15.2-3 (thanks Martin Schulze) + Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/binary-powerpc/jgroff_1.15+ja-3.4_powerpc.deb jgroff (1.15+ja-3.4) stable; urgency=high * NMU security updates - oops, previous build was not synced with groff_1.15.2-3 add PSPRINT=lpr to ./configure, now sync with groff_1.15.2-3 (thanks Martin Schulze) + Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/binary-m68k/jgroff_1.15+ja-3.4_m68k.deb jgroff (1.15+ja-3.4) stable; urgency=high * NMU security updates - oops, previous build was not synced with groff_1.15.2-3 add PSPRINT=lpr to ./configure, now sync with groff_1.15.2-3 (thanks Martin Schulze) + Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/binary-arm/jgroff_1.15+ja-3.4_arm.deb jgroff (1.15+ja-3.4) stable; urgency=high * NMU security updates - oops, previous build was not synced with groff_1.15.2-3 add PSPRINT=lpr to ./configure, now sync with groff_1.15.2-3 (thanks Martin Schulze) + Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/binary-alpha/jgroff_1.15+ja-3.4_alpha.deb jgroff (1.15+ja-3.4) stable; urgency=high * NMU security updates - oops, previous build was not synced with groff_1.15.2-3 add PSPRINT=lpr to ./configure, now sync with groff_1.15.2-3 (thanks Martin Schulze) + Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/source/jgroff_1.15+ja-3.4.diff.gz stable/main/binary-i386/jgroff_1.15+ja-3.4_i386.deb stable/main/source/jgroff_1.15+ja-3.4.dsc jgroff (1.15+ja-3.4) stable; urgency=high * NMU security updates - oops, previous build was not synced with groff_1.15.2-3 add PSPRINT=lpr to ./configure, now sync with groff_1.15.2-3 (thanks Martin Schulze) + Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/binary-i386/icecast-server_1.3.10-1.1_i386.deb icecast-server (1.3.10-1.1) stable; urgency=urgent * Several security exploits found to icecast. No simple way to patch * old version, so upgrade to latest stable version from icecast.org * If questions or assistance needed join #icecast on openprojects.net IRC * Security Upload -- DSA 089-1 stable/main/binary-alpha/icecast-server_1.3.10-1_alpha.deb stable/main/binary-sparc/icecast-server_1.3.10-1_sparc.deb stable/main/source/icecast-server_1.3.10-1.dsc stable/main/binary-m68k/icecast-server_1.3.10-1_m68k.deb stable/main/source/icecast-server_1.3.10-1.tar.gz stable/main/binary-powerpc/icecast-server_1.3.10-1_powerpc.deb stable/main/binary-arm/icecast-server_1.3.10-1_arm.deb icecast-server (1.3.10-1) stable; urgency=urgent * Several security exploits found to icecast. No simple way to patch * old version, so upgrade to latest stable version from icecast.org * If questions or assistance needed join #icecast on openprojects.net IRC * Security Upload -- DSA 089-1 stable/main/binary-arm/hanterm_3.3.1p17-5.2_arm.deb stable/main/binary-i386/hanterm_3.3.1p17-5.2_i386.deb stable/main/binary-alpha/hanterm_3.3.1p17-5.2_alpha.deb stable/main/binary-powerpc/hanterm_3.3.1p17-5.2_powerpc.deb stable/main/source/hanterm_3.3.1p17-5.2.diff.gz stable/main/binary-sparc/hanterm_3.3.1p17-5.2_sparc.deb stable/main/source/hanterm_3.3.1p17-5.2.dsc stable/main/binary-m68k/hanterm_3.3.1p17-5.2_m68k.deb hanterm (1:3.3.1p17-5.2) stable; urgency=high * Non-maintainer upload by Security Team * Make hanterm drop and release privileges properly, i.e. regain them if and only if they are needed and do drop them afterwards. * Fixed segfault with too long font names by properly limiting them to 80 characters. (fixes: Bug#133138) * Added Build-Depends to make it easier to recompile on all six architectures stable/main/binary-arm/gzip_1.2.4-33.1_arm.deb stable/main/binary-powerpc/gzip_1.2.4-33.1_powerpc.deb stable/main/binary-sparc/gzip_1.2.4-33.1_sparc.deb stable/main/binary-m68k/gzip_1.2.4-33.1_m68k.deb stable/main/source/gzip_1.2.4-33.1.diff.gz stable/main/binary-i386/gzip_1.2.4-33.1_i386.deb stable/main/source/gzip_1.2.4-33.1.dsc stable/main/binary-alpha/gzip_1.2.4-33.1_alpha.deb gzip (1.2.4-33.1) stable; urgency=medium * Non-maintainer upload by Security Team * Applied patch http://www.gzip.org/gzip-1.2.4b.patch to fix potential buffer overflow when compressing files with really long names stable/contrib/source/gnujsp_1.0.0-5.dsc stable/contrib/binary-all/gnujsp_1.0.0-5_all.deb stable/contrib/source/gnujsp_1.0.0-5.diff.gz gnujsp (1.0.0-5) stable; urgency=HIGH * Security fix for disclosure of directory contents and script sources stable/main/binary-powerpc/nscd_2.1.3-20_powerpc.deb stable/main/binary-powerpc/locales_2.1.3-20_powerpc.deb stable/main/binary-powerpc/libc6-dbg_2.1.3-20_powerpc.deb stable/main/binary-powerpc/libc6-pic_2.1.3-20_powerpc.deb stable/main/binary-powerpc/libc6-prof_2.1.3-20_powerpc.deb stable/main/binary-powerpc/libc6_2.1.3-20_powerpc.deb stable/main/binary-powerpc/libc6-dev_2.1.3-20_powerpc.deb glibc (2.1.3-20) stable; urgency=high * Glob security patch. stable/main/binary-m68k/libc6_2.1.3-20_m68k.deb stable/main/binary-m68k/nscd_2.1.3-20_m68k.deb stable/main/binary-m68k/libc6-dev_2.1.3-20_m68k.deb stable/main/binary-m68k/libnss1-compat_2.1.3-20_m68k.deb stable/main/binary-m68k/libc6-pic_2.1.3-20_m68k.deb stable/main/binary-m68k/locales_2.1.3-20_m68k.deb stable/main/binary-m68k/libc6-dbg_2.1.3-20_m68k.deb stable/main/binary-m68k/libc6-prof_2.1.3-20_m68k.deb glibc (2.1.3-20) stable; urgency=high * Glob security patch. stable/main/binary-arm/libc6-dev_2.1.3-20_arm.deb stable/main/binary-arm/nscd_2.1.3-20_arm.deb stable/main/binary-arm/libc6_2.1.3-20_arm.deb stable/main/binary-arm/libc6-pic_2.1.3-20_arm.deb stable/main/binary-arm/locales_2.1.3-20_arm.deb stable/main/binary-arm/libc6-dbg_2.1.3-20_arm.deb stable/main/binary-arm/libc6-prof_2.1.3-20_arm.deb glibc (2.1.3-20) stable; urgency=high * Glob security patch. stable/main/binary-alpha/nscd_2.1.3-20_alpha.deb stable/main/binary-alpha/locales_2.1.3-20_alpha.deb stable/main/binary-alpha/libnss1-compat_2.1.3-20_alpha.deb stable/main/binary-alpha/libc6.1-dbg_2.1.3-20_alpha.deb stable/main/binary-alpha/libc6.1_2.1.3-20_alpha.deb stable/main/binary-alpha/libc6.1-dev_2.1.3-20_alpha.deb stable/main/binary-alpha/libc6.1-pic_2.1.3-20_alpha.deb stable/main/binary-alpha/libc6.1-prof_2.1.3-20_alpha.deb glibc (2.1.3-20) stable; urgency=high * Glob security patch. stable/main/binary-all/glibc-doc_2.1.3-20_all.deb stable/main/binary-i386/nscd_2.1.3-20_i386.deb stable/main/binary-i386/libc6-dbg_2.1.3-20_i386.deb stable/main/binary-sparc/libc6-dev_2.1.3-20_sparc.deb stable/main/binary-i386/libc6-pic_2.1.3-20_i386.deb stable/main/source/glibc_2.1.3-20.diff.gz stable/main/binary-sparc/nscd_2.1.3-20_sparc.deb stable/main/binary-sparc/locales_2.1.3-20_sparc.deb stable/main/binary-sparc/libc6_2.1.3-20_sparc.deb stable/main/binary-sparc/libc6-prof_2.1.3-20_sparc.deb stable/main/binary-sparc/libc6-dbg_2.1.3-20_sparc.deb stable/main/binary-all/i18ndata_2.1.3-20_all.deb stable/main/binary-i386/locales_2.1.3-20_i386.deb stable/main/binary-i386/libnss1-compat_2.1.3-20_i386.deb stable/main/binary-i386/libc6-prof_2.1.3-20_i386.deb stable/main/source/glibc_2.1.3-20.dsc stable/main/binary-sparc/libc6-pic_2.1.3-20_sparc.deb stable/main/binary-i386/libc6-dev_2.1.3-20_i386.deb stable/main/binary-i386/libc6_2.1.3-20_i386.deb glibc (2.1.3-20) stable; urgency=high * Glob security patch. stable/main/binary-powerpc/libg++2.8.1.3_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/gpc_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/g++_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/gcj_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/gobjc_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/g77_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/gcc-nof_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/libg++2.8.1.3-dbg_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/libstdc++2.10-dev_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/gcc_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/libstdc++2.10_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/cpp_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/libg++2.8.1.3-dev_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/protoize_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/libstdc++2.10-dbg_2.95.2-13.1_powerpc.deb stable/main/binary-powerpc/chill_2.95.2-13.1_powerpc.deb gcc (2.95.2-13.1) stable; urgency=low * Non-maintainer upload * Add new patch for ARM (closes #75801) stable/main/binary-i386/libstdc++2.10-dbg_2.95.2-13.1_i386.deb stable/main/binary-i386/gobjc_2.95.2-13.1_i386.deb stable/main/binary-i386/libstdc++2.10-dev_2.95.2-13.1_i386.deb stable/main/binary-i386/gpc_2.95.2-13.1_i386.deb stable/main/binary-i386/gcc_2.95.2-13.1_i386.deb stable/main/binary-i386/gcj_2.95.2-13.1_i386.deb stable/main/binary-i386/libstdc++2.10_2.95.2-13.1_i386.deb stable/main/binary-i386/protoize_2.95.2-13.1_i386.deb stable/main/binary-i386/libg++2.8.1.3_2.95.2-13.1_i386.deb stable/main/binary-i386/libg++2.8.1.3-dbg_2.95.2-13.1_i386.deb stable/main/binary-i386/libg++2.8.1.3-dev_2.95.2-13.1_i386.deb stable/main/binary-i386/cpp_2.95.2-13.1_i386.deb stable/main/binary-i386/chill_2.95.2-13.1_i386.deb stable/main/binary-i386/g77_2.95.2-13.1_i386.deb stable/main/binary-i386/g++_2.95.2-13.1_i386.deb gcc (2.95.2-13.1) stable; urgency=low * Non-maintainer upload * Add new patch for ARM (closes #75801) stable/main/binary-alpha/libg++2.8.1.3-dev_2.95.2-13.1_alpha.deb stable/main/binary-alpha/libstdc++2.10_2.95.2-13.1_alpha.deb stable/main/binary-alpha/libg++2.8.1.3_2.95.2-13.1_alpha.deb stable/main/binary-alpha/gcc_2.95.2-13.1_alpha.deb stable/main/binary-alpha/chill_2.95.2-13.1_alpha.deb stable/main/binary-alpha/protoize_2.95.2-13.1_alpha.deb stable/main/binary-alpha/g77_2.95.2-13.1_alpha.deb stable/main/binary-alpha/gcj_2.95.2-13.1_alpha.deb stable/main/binary-alpha/cpp_2.95.2-13.1_alpha.deb stable/main/binary-alpha/gpc_2.95.2-13.1_alpha.deb stable/main/binary-alpha/gobjc_2.95.2-13.1_alpha.deb stable/main/binary-alpha/libstdc++2.10-dev_2.95.2-13.1_alpha.deb stable/main/binary-alpha/g++_2.95.2-13.1_alpha.deb stable/main/binary-alpha/libg++2.8.1.3-dbg_2.95.2-13.1_alpha.deb stable/main/binary-alpha/libstdc++2.10-dbg_2.95.2-13.1_alpha.deb gcc (2.95.2-13.1) stable; urgency=low * Non-maintainer upload * Add new patch for ARM (closes #75801) stable/main/binary-all/fml_3.0+beta.20000106-5_all.deb stable/main/source/fml_3.0+beta.20000106-5.diff.gz stable/main/source/fml_3.0+beta.20000106-5.dsc fml (3.0+beta.20000106-5) stable; urgency=HIGH * security fix updates again http://www.fml.org/software/fml/advisories/FA2001_001-e/ (English) http://www.fml.org/software/fml/advisories/FA2001_001/ (Japanese) backport from workaround-fix libsynchtml.pl and libhtmlsubr.pl from ftp://ftp.fml.org/pub/fml/workaround-fix2/ - libsynchtml.pl: (sub SyncHtml) y2k fixes (@Import) HTML_PERMIT_HTML_ATTACHMENT (sub Write) use &ConvSpecialChars for $htmlsubject and $From_address $id is written only if numeric strings. (sub ParseMultipart) multipart handling (sub Conv2HRef) special chars quoting (sub ReConfigureIndex) append to $dir/$index.new, y2k fix - libhtmlsubr.pl: (sub _get_suffix) use in &MPBProbe (sub MPBProbe) fix handling attach files (sub WriteHtmlFile) $metacharconv, $print_pre (sub DecodeAndWriteFile) use -o instead of > stable/main/source/faqomatic_2.603-1.2.dsc stable/main/source/faqomatic_2.603-1.2.diff.gz stable/main/binary-all/faqomatic_2.603-1.2_all.deb faqomatic (2.603-1.2) stable; urgency=high * New maintainer. NMU-style version number to avoid clashing with an old version in unstable. * Apply patch from upstream CVS closing cross-site scripting vulnerability (closes: #133130). * Apply another upstream patch to make sure passwords don't end up in server logs by mistake. stable/main/binary-m68k/eruby_0.0.9-1potato1_m68k.deb eruby (0.0.9-1potato1) stable; urgency=high * rebuilt package with correct Debian version. Because on account of Debian version wasn't appropriate in a package before one and therefore, I might not wear it with upgrade from R2.2 to next release of Debian it probably based on the Woody. stable/main/binary-alpha/eruby_0.0.9-1potato1_alpha.deb eruby (0.0.9-1potato1) stable; urgency=high * rebuilt package with correct Debian version. Because on account of Debian version wasn't appropriate in a package before one and therefore, I might not wear it with upgrade from R2.2 to next release of Debian it probably based on the Woody. stable/main/binary-sparc/dump_0.4b25-0.potato.1_sparc.deb dump (0.4b25-0.potato.1) stable; urgency=medium * back-port dump current version to potato at the request of Martin Schulze. The 0.4b22 upstream version included important fixes for data corruption that can occur with the version that was released with potato. stable/main/binary-powerpc/dump_0.4b25-0.potato.1_powerpc.deb dump (0.4b25-0.potato.1) stable; urgency=medium * back-port dump current version to potato at the request of Martin Schulze. The 0.4b22 upstream version included important fixes for data corruption that can occur with the version that was released with potato. stable/main/binary-m68k/dump_0.4b25-0.potato.1_m68k.deb dump (0.4b25-0.potato.1) stable; urgency=medium * back-port dump current version to potato at the request of Martin Schulze. The 0.4b22 upstream version included important fixes for data corruption that can occur with the version that was released with potato. stable/main/binary-arm/dump_0.4b25-0.potato.1_arm.deb dump (0.4b25-0.potato.1) stable; urgency=medium * back-port dump current version to potato at the request of Martin Schulze. The 0.4b22 upstream version included important fixes for data corruption that can occur with the version that was released with potato. stable/main/binary-alpha/dump_0.4b25-0.potato.1_alpha.deb dump (0.4b25-0.potato.1) stable; urgency=medium * back-port dump current version to potato at the request of Martin Schulze. The 0.4b22 upstream version included important fixes for data corruption that can occur with the version that was released with potato. stable/main/source/dump_0.4b25-0.potato.1.diff.gz stable/main/binary-i386/dump_0.4b25-0.potato.1_i386.deb stable/main/source/dump_0.4b25-0.potato.1.dsc dump (0.4b25-0.potato.1) stable; urgency=medium * back-port dump current version to potato at the request of Martin Schulze. The 0.4b22 upstream version included important fixes for data corruption that can occur with the version that was released with potato. stable/main/binary-sparc/cvs_1.10.7-9_sparc.deb stable/main/source/cvs_1.10.7-9.diff.gz stable/main/binary-m68k/cvs_1.10.7-9_m68k.deb stable/main/binary-arm/cvs_1.10.7-9_arm.deb stable/main/binary-i386/cvs_1.10.7-9_i386.deb stable/main/binary-alpha/cvs_1.10.7-9_alpha.deb stable/main/binary-all/cvs-doc_1.10.7-9_all.deb stable/main/source/cvs_1.10.7-9.dsc stable/main/binary-powerpc/cvs_1.10.7-9_powerpc.deb cvs (1.10.7-9) stable; urgency=medium * Only call cvsconfig in the postinst if /etc/cvs.conf doesn't exist already. stable/main/binary-arm/at_3.1.8-10.2_arm.deb stable/main/binary-m68k/at_3.1.8-10.2_m68k.deb stable/main/source/at_3.1.8-10.2.dsc stable/main/binary-i386/at_3.1.8-10.2_i386.deb stable/main/binary-powerpc/at_3.1.8-10.2_powerpc.deb stable/main/source/at_3.1.8-10.2.diff.gz stable/main/binary-alpha/at_3.1.8-10.2_alpha.deb stable/main/binary-sparc/at_3.1.8-10.2_sparc.deb at (3.1.8-10.2) stable; urgency=high * Another NMU by the Security Team * This time the bugfix will propagate properly since y.tab.c y.tab.h lex.yy.c are auto-removed in the build target this time. These files should not be contained in the original tarball in the first place, btw. stable/main/binary-sparc/analog_5.22-0potato3_sparc.deb analog (2:5.22-0potato3) stable; urgency=low * Instead of linking with potato's gd, just link with the internal gd and png libraries. gdFontSmall is not really compatable with gdFontFixed. stable/main/binary-powerpc/analog_5.22-0potato3_powerpc.deb analog (2:5.22-0potato3) stable; urgency=low * Instead of linking with potato's gd, just link with the internal gd and png libraries. gdFontSmall is not really compatable with gdFontFixed. stable/main/binary-m68k/analog_5.22-0potato3_m68k.deb analog (2:5.22-0potato3) stable; urgency=low * Instead of linking with potato's gd, just link with the internal gd and png libraries. gdFontSmall is not really compatable with gdFontFixed. stable/main/binary-arm/analog_5.22-0potato3_arm.deb analog (2:5.22-0potato3) stable; urgency=low * Instead of linking with potato's gd, just link with the internal gd and png libraries. gdFontSmall is not really compatable with gdFontFixed. stable/main/binary-alpha/analog_5.22-0potato3_alpha.deb analog (2:5.22-0potato3) stable; urgency=low * Instead of linking with potato's gd, just link with the internal gd and png libraries. gdFontSmall is not really compatable with gdFontFixed. stable/main/source/analog_5.22-0potato3.diff.gz stable/main/binary-i386/analog_5.22-0potato3_i386.deb stable/main/source/analog_5.22-0potato3.dsc analog (2:5.22-0potato3) stable; urgency=low * Instead of linking with potato's gd, just link with the internal gd and png libraries. gdFontSmall is not really compatable with gdFontFixed. stable/main/binary-sparc/adjtimex_1.10-1_sparc.deb adjtimex (1.10-1) stable; urgency=high * New upstream release - security fix: use popen() to recover output from ntpdate, instead of an unsafe temporary file (thanks to Colin Phipps ) (closes:bug#56752) stable/main/binary-powerpc/adjtimex_1.10-1_powerpc.deb adjtimex (1.10-1) frozen unstable; urgency=high * New upstream release - security fix: use popen() to recover output from ntpdate, instead of an unsafe temporary file (thanks to Colin Phipps ) (closes:bug#56752) stable/main/binary-m68k/adjtimex_1.10-1_m68k.deb adjtimex (1.10-1) frozen unstable; urgency=high * New upstream release - security fix: use popen() to recover output from ntpdate, instead of an unsafe temporary file (thanks to Colin Phipps ) (closes:bug#56752) stable/main/binary-arm/adjtimex_1.10-1_arm.deb adjtimex (1.10-1) stable; urgency=high * New upstream release - security fix: use popen() to recover output from ntpdate, instead of an unsafe temporary file (thanks to Colin Phipps ) (closes:bug#56752) stable/main/binary-alpha/libace5.0-dev_5.0.7-4_alpha.deb stable/main/binary-alpha/libace5.0_5.0.7-4_alpha.deb ace (5.0.7-4) frozen unstable; urgency=low * Rebuilt the packages so that they get installed in the unstable distribution archive, in addition to the frozen one. (#58366) ======================================== Thu, 10 Jan 2002 - Debian 2.2r5 released ======================================== stable/main/binary-arm/kernel-image-2.2.19-riscpc_20011109_arm.deb kernel-image-2.2.19-riscpc (20011109) stable unstable; urgency=high * Build against kernel-source 2.2.19.1-2 and latest ARM patch. stable/main/source/kernel-patch-2.2.19-arm_20011109.dsc stable/main/source/kernel-patch-2.2.19-arm_20011109.tar.gz stable/main/binary-all/kernel-patch-2.2.19-arm_20011109_all.deb kernel-patch-2.2.19-arm (20011109) stable unstable; urgency=high * Include fix for RiscPC crash on expansion card initialisation. stable/main/binary-sparc/kernel-image-2.2.20-sun4cdm_9_sparc.deb stable/main/binary-sparc/kernel-image-2.2.20-sun4dm-smp_9_sparc.deb stable/main/binary-all/kernel-headers-2.2.20-sparc_9_all.deb stable/main/binary-sparc/kernel-image-2.2.20-sun4u_9_sparc.deb stable/main/source/kernel-image-sparc-2.2_9.tar.gz stable/main/binary-sparc/kernel-image-2.2.20-sun4u-smp_9_sparc.deb stable/main/source/kernel-image-sparc-2.2_9.dsc kernel-image-sparc-2.2 (9) stable unstable; urgency=high * Working on 2.2.20 now. Closes: #98755 stable/main/source/kernel-image-2.2.19-riscpc_20011109.dsc stable/main/source/kernel-image-2.2.19-riscpc_20011109.tar.gz kernel-image-2.2.19-riscpc (20011109) stable unstable; urgency=high * Build against kernel-source 2.2.19.1-2 and latest ARM patch. stable/main/binary-arm/kernel-image-2.2.19-netwinder_20011103_arm.deb stable/main/source/kernel-image-2.2.19-netwinder_20011103.dsc stable/main/source/kernel-image-2.2.19-netwinder_20011103.tar.gz kernel-image-2.2.19-netwinder (20011103) stable unstable; urgency=high * Incorporate latest ARM patch and security updates; build against kernel-source 2.2.19.1-1. stable/main/source/catsboot_0.2.2.tar.gz stable/main/binary-arm/catsboot_0.2.2_arm.deb stable/main/source/catsboot_0.2.2.dsc catsboot (0.2.2) stable unstable; urgency=high * Still no code change. Bump the version number again for inclusion in 2.2r5. stable/main/binary-alpha/zsh_3.1.9.dev6-7_alpha.deb zsh (3.1.9.dev6-7) stable; urgency=medium * Recompile to fix bad i386 build. stable/main/binary-powerpc/yabasic_2.53-2_powerpc.deb yabasic (2.53-2) stable; urgency=high * New maintainer. * yabasic.c: Fixed a /tmp race condition. * Completed the FHS transition to allow building with a recent debhelper. Closes: #98875. stable/main/binary-m68k/yabasic_2.53-2_m68k.deb yabasic (2.53-2) stable; urgency=high * New maintainer. * yabasic.c: Fixed a /tmp race condition. * Completed the FHS transition to allow building with a recent debhelper. Closes: #98875. stable/main/binary-i386/yabasic_2.53-2_i386.deb yabasic (2.53-2) stable; urgency=high * New maintainer. * yabasic.c: Fixed a /tmp race condition. * Completed the FHS transition to allow building with a recent debhelper. Closes: #98875. stable/main/binary-arm/yabasic_2.53-2_arm.deb yabasic (2.53-2) stable; urgency=high * New maintainer. * yabasic.c: Fixed a /tmp race condition. * Completed the FHS transition to allow building with a recent debhelper. Closes: #98875. stable/main/binary-alpha/yabasic_2.53-2_alpha.deb yabasic (2.53-2) stable; urgency=high * New maintainer. * yabasic.c: Fixed a /tmp race condition. * Completed the FHS transition to allow building with a recent debhelper. Closes: #98875. stable/main/binary-sparc/xxgdb_1.12-9.4potato_sparc.deb xxgdb (1.12-9.4potato) stable; urgency=low * Changed the private dh_installxaw program that comes with this package to include the perl modules from the right directory (/usr/share/debhelper instead of /usr/lib/debhelper). This caused xxgdb not to build on potato. (closes: #94893) * Applied a patch from Massimo Dal Zotto . This is a workaround for a serious bug (#94892) in libXaw. stable/main/binary-powerpc/xxgdb_1.12-9.4potato_powerpc.deb xxgdb (1.12-9.4potato) stable; urgency=low * Changed the private dh_installxaw program that comes with this package to include the perl modules from the right directory (/usr/share/debhelper instead of /usr/lib/debhelper). This caused xxgdb not to build on potato. (closes: #94893) * Applied a patch from Massimo Dal Zotto . This is a workaround for a serious bug (#94892) in libXaw. stable/main/binary-m68k/xxgdb_1.12-9.4potato_m68k.deb xxgdb (1.12-9.4potato) stable; urgency=low * Changed the private dh_installxaw program that comes with this package to include the perl modules from the right directory (/usr/share/debhelper instead of /usr/lib/debhelper). This caused xxgdb not to build on potato. (closes: #94893) * Applied a patch from Massimo Dal Zotto . This is a workaround for a serious bug (#94892) in libXaw. stable/main/binary-arm/xxgdb_1.12-9.4potato_arm.deb xxgdb (1.12-9.4potato) stable; urgency=low * Changed the private dh_installxaw program that comes with this package to include the perl modules from the right directory (/usr/share/debhelper instead of /usr/lib/debhelper). This caused xxgdb not to build on potato. (closes: #94893) * Applied a patch from Massimo Dal Zotto . This is a workaround for a serious bug (#94892) in libXaw. stable/main/binary-alpha/xxgdb_1.12-9.4potato_alpha.deb xxgdb (1.12-9.4potato) stable; urgency=low * Changed the private dh_installxaw program that comes with this package to include the perl modules from the right directory (/usr/share/debhelper instead of /usr/lib/debhelper). This caused xxgdb not to build on potato. (closes: #94893) * Applied a patch from Massimo Dal Zotto . This is a workaround for a serious bug (#94892) in libXaw. stable/main/binary-sparc/xtel_3.2.1-4.potato.1_sparc.deb xtel (3.2.1-4.potato.1) stable; urgency=low * New maintainer * Security fixes: - symlink vulnerability in xteld (see #87787). - symlink vulnerability in xtel while printing harcopy of screen. - run xteld under control of tcpd to be able to restrict access to the service from network. * Backport of annoying and easy to fix bugs from woody version of xtel: - Fixed segfaults (see #43566). - Fixed a little typo in the /etc/xtel/lignes file. - Fixed creation of the symlink to french doc directory (see #55131). * Other annoying fixes: - bad X resource in Xtel[m].ad (missing '-o -' in a2ps printing command). stable/main/binary-powerpc/xtel_3.2.1-4.potato.1_powerpc.deb xtel (3.2.1-4.potato.1) stable; urgency=low * New maintainer * Security fixes: - symlink vulnerability in xteld (see #87787). - symlink vulnerability in xtel while printing harcopy of screen. - run xteld under control of tcpd to be able to restrict access to the service from network. * Backport of annoying and easy to fix bugs from woody version of xtel: - Fixed segfaults (see #43566). - Fixed a little typo in the /etc/xtel/lignes file. - Fixed creation of the symlink to french doc directory (see #55131). * Other annoying fixes: - bad X resource in Xtel[m].ad (missing '-o -' in a2ps printing command). stable/main/binary-m68k/xtel_3.2.1-4.potato.1_m68k.deb xtel (3.2.1-4.potato.1) stable; urgency=low * New maintainer * Security fixes: - symlink vulnerability in xteld (see #87787). - symlink vulnerability in xtel while printing harcopy of screen. - run xteld under control of tcpd to be able to restrict access to the service from network. * Backport of annoying and easy to fix bugs from woody version of xtel: - Fixed segfaults (see #43566). - Fixed a little typo in the /etc/xtel/lignes file. - Fixed creation of the symlink to french doc directory (see #55131). * Other annoying fixes: - bad X resource in Xtel[m].ad (missing '-o -' in a2ps printing command). stable/main/binary-arm/xtel_3.2.1-4.potato.1_arm.deb xtel (3.2.1-4.potato.1) stable; urgency=low * New maintainer * Security fixes: - symlink vulnerability in xteld (see #87787). - symlink vulnerability in xtel while printing harcopy of screen. - run xteld under control of tcpd to be able to restrict access to the service from network. * Backport of annoying and easy to fix bugs from woody version of xtel: - Fixed segfaults (see #43566). - Fixed a little typo in the /etc/xtel/lignes file. - Fixed creation of the symlink to french doc directory (see #55131). * Other annoying fixes: - bad X resource in Xtel[m].ad (missing '-o -' in a2ps printing command). stable/main/binary-alpha/xtel_3.2.1-4.potato.1_alpha.deb xtel (3.2.1-4.potato.1) stable; urgency=low * New maintainer * Security fixes: - symlink vulnerability in xteld (see #87787). - symlink vulnerability in xtel while printing harcopy of screen. - run xteld under control of tcpd to be able to restrict access to the service from network. * Backport of annoying and easy to fix bugs from woody version of xtel: - Fixed segfaults (see #43566). - Fixed a little typo in the /etc/xtel/lignes file. - Fixed creation of the symlink to french doc directory (see #55131). * Other annoying fixes: - bad X resource in Xtel[m].ad (missing '-o -' in a2ps printing command). stable/main/binary-m68k/wu-ftpd_2.6.0-6_m68k.deb wu-ftpd (2.6.0-6) stable; urgency=high * [SECURITY] fix remote buffer overflow in src/glob.c stable/main/binary-arm/wu-ftpd_2.6.0-6_arm.deb wu-ftpd (2.6.0-6) stable; urgency=high * [SECURITY] fix remote buffer overflow in src/glob.c stable/contrib/binary-powerpc/tkseti_2.12-2_powerpc.deb tkseti (2.12-2) stable; urgency=low * Make tkseti depend on wish instead of tcl/tk, Closes: #62667 stable/contrib/binary-arm/tkseti_2.12-2_arm.deb tkseti (2.12-2) stable; urgency=low * Make tkseti depend on wish instead of tcl/tk, Closes: #62667 stable/main/binary-alpha/skkinput_2.03-3.potato.1_alpha.deb skkinput (1:2.03-3.potato.1) stable; urgency=medium * fix segfault problem with all XIM applications - closes: Bug#32408 - skkinput sigsegvs applications stable/main/binary-sparc/libpgtcl_6.5.3-27_sparc.deb stable/main/binary-sparc/postgresql_6.5.3-27_sparc.deb stable/main/binary-sparc/pgaccess_6.5.3-27_sparc.deb stable/main/binary-sparc/postgresql-client_6.5.3-27_sparc.deb stable/main/binary-sparc/postgresql-pl_6.5.3-27_sparc.deb stable/main/binary-sparc/python-pygresql_6.5.3-27_sparc.deb stable/main/binary-sparc/odbc-postgresql_6.5.3-27_sparc.deb stable/main/binary-sparc/postgresql-dev_6.5.3-27_sparc.deb stable/main/binary-sparc/libpgperl_6.5.3-27_sparc.deb stable/main/binary-sparc/postgresql-contrib_6.5.3-27_sparc.deb stable/main/binary-sparc/libpgsql2_6.5.3-27_sparc.deb stable/main/binary-sparc/postgresql-test_6.5.3-27_sparc.deb stable/main/binary-sparc/ecpg_6.5.3-27_sparc.deb postgresql (6.5.3-27) stable; urgency=high * postgresql: applied patch from Ben Pfaff to cure problem with segfault in pg_dump. High urgency because pg_dump is essential for transferring data when upgrading postgresql. Closes: #101940 stable/main/binary-powerpc/postgresql_6.5.3-27_powerpc.deb stable/main/binary-powerpc/libpgsql2_6.5.3-27_powerpc.deb stable/main/binary-powerpc/postgresql-contrib_6.5.3-27_powerpc.deb stable/main/binary-powerpc/postgresql-pl_6.5.3-27_powerpc.deb stable/main/binary-powerpc/ecpg_6.5.3-27_powerpc.deb stable/main/binary-powerpc/python-pygresql_6.5.3-27_powerpc.deb stable/main/binary-powerpc/libpgperl_6.5.3-27_powerpc.deb stable/main/binary-powerpc/odbc-postgresql_6.5.3-27_powerpc.deb stable/main/binary-powerpc/pgaccess_6.5.3-27_powerpc.deb stable/main/binary-powerpc/postgresql-dev_6.5.3-27_powerpc.deb stable/main/binary-powerpc/postgresql-client_6.5.3-27_powerpc.deb stable/main/binary-powerpc/postgresql-test_6.5.3-27_powerpc.deb stable/main/binary-powerpc/libpgtcl_6.5.3-27_powerpc.deb postgresql (6.5.3-27) stable; urgency=high * postgresql: applied patch from Ben Pfaff to cure problem with segfault in pg_dump. High urgency because pg_dump is essential for transferring data when upgrading postgresql. Closes: #101940 stable/main/binary-m68k/libpgsql2_6.5.3-27_m68k.deb stable/main/binary-m68k/postgresql_6.5.3-27_m68k.deb stable/main/binary-m68k/python-pygresql_6.5.3-27_m68k.deb stable/main/binary-m68k/libpgtcl_6.5.3-27_m68k.deb stable/main/binary-m68k/postgresql-contrib_6.5.3-27_m68k.deb stable/main/binary-m68k/pgaccess_6.5.3-27_m68k.deb stable/main/binary-m68k/postgresql-dev_6.5.3-27_m68k.deb stable/main/binary-m68k/odbc-postgresql_6.5.3-27_m68k.deb stable/main/binary-m68k/postgresql-pl_6.5.3-27_m68k.deb stable/main/binary-m68k/ecpg_6.5.3-27_m68k.deb stable/main/binary-m68k/libpgperl_6.5.3-27_m68k.deb stable/main/binary-m68k/postgresql-client_6.5.3-27_m68k.deb stable/main/binary-m68k/postgresql-test_6.5.3-27_m68k.deb postgresql (6.5.3-27) stable; urgency=high * postgresql: applied patch from Ben Pfaff to cure problem with segfault in pg_dump. High urgency because pg_dump is essential for transferring data when upgrading postgresql. Closes: #101940 stable/main/binary-arm/libpgperl_6.5.3-27_arm.deb stable/main/binary-arm/postgresql-dev_6.5.3-27_arm.deb stable/main/binary-arm/python-pygresql_6.5.3-27_arm.deb stable/main/binary-arm/postgresql-pl_6.5.3-27_arm.deb stable/main/binary-arm/libpgtcl_6.5.3-27_arm.deb stable/main/binary-arm/postgresql_6.5.3-27_arm.deb stable/main/binary-arm/pgaccess_6.5.3-27_arm.deb stable/main/binary-arm/postgresql-client_6.5.3-27_arm.deb stable/main/binary-arm/postgresql-contrib_6.5.3-27_arm.deb stable/main/binary-arm/ecpg_6.5.3-27_arm.deb stable/main/binary-arm/odbc-postgresql_6.5.3-27_arm.deb stable/main/binary-arm/libpgsql2_6.5.3-27_arm.deb stable/main/binary-arm/postgresql-test_6.5.3-27_arm.deb postgresql (6.5.3-27) stable; urgency=high * postgresql: applied patch from Ben Pfaff to cure problem with segfault in pg_dump. High urgency because pg_dump is essential for transferring data when upgrading postgresql. Closes: #101940 stable/main/binary-alpha/postgresql-contrib_6.5.3-27_alpha.deb stable/main/binary-alpha/libpgsql2_6.5.3-27_alpha.deb stable/main/binary-alpha/postgresql-pl_6.5.3-27_alpha.deb stable/main/binary-alpha/postgresql-test_6.5.3-27_alpha.deb stable/main/binary-alpha/odbc-postgresql_6.5.3-27_alpha.deb stable/main/binary-alpha/postgresql_6.5.3-27_alpha.deb stable/main/binary-alpha/pgaccess_6.5.3-27_alpha.deb stable/main/binary-alpha/postgresql-dev_6.5.3-27_alpha.deb stable/main/binary-alpha/ecpg_6.5.3-27_alpha.deb stable/main/binary-alpha/libpgtcl_6.5.3-27_alpha.deb stable/main/binary-alpha/postgresql-client_6.5.3-27_alpha.deb stable/main/binary-alpha/libpgperl_6.5.3-27_alpha.deb stable/main/binary-alpha/python-pygresql_6.5.3-27_alpha.deb postgresql (6.5.3-27) stable; urgency=high * postgresql: applied patch from Ben Pfaff to cure problem with segfault in pg_dump. High urgency because pg_dump is essential for transferring data when upgrading postgresql. Closes: #101940 stable/main/binary-sparc/postfix_0.0.19991231pl11-2_sparc.deb postfix (0.0.19991231pl11-2) stable; urgency=high * Fix 'smtpd command log memory exhaustion' problem. * Fix dhelp dangling symlink problem. Closes: #91877, #97332. * Rebuild on current potato. Closes: #102388, #99220. stable/main/binary-powerpc/postfix_0.0.19991231pl11-2_powerpc.deb postfix (0.0.19991231pl11-2) stable; urgency=high * Fix 'smtpd command log memory exhaustion' problem. * Fix dhelp dangling symlink problem. Closes: #91877, #97332. * Rebuild on current potato. Closes: #102388, #99220. stable/main/binary-m68k/postfix_0.0.19991231pl11-2_m68k.deb postfix (0.0.19991231pl11-2) stable; urgency=high * Fix 'smtpd command log memory exhaustion' problem. * Fix dhelp dangling symlink problem. Closes: #91877, #97332. * Rebuild on current potato. Closes: #102388, #99220. stable/main/binary-arm/postfix_0.0.19991231pl11-2_arm.deb postfix (0.0.19991231pl11-2) stable; urgency=high * Fix 'smtpd command log memory exhaustion' problem. * Fix dhelp dangling symlink problem. Closes: #91877, #97332. * Rebuild on current potato. Closes: #102388, #99220. stable/main/binary-alpha/postfix_0.0.19991231pl11-2_alpha.deb postfix (0.0.19991231pl11-2) stable; urgency=high * Fix 'smtpd command log memory exhaustion' problem. * Fix dhelp dangling symlink problem. Closes: #91877, #97332. * Rebuild on current potato. Closes: #102388, #99220. stable/main/binary-sparc/php4-cgi-mysql_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-pgsql_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-cgi-mhash_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-imap_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-mysql_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-cgi-ldap_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-mhash_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-cgi-gd_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-snmp_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-gd_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-cgi-snmp_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-cgi-imap_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-cgi-xml_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-cgi-pgsql_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-xml_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-cgi_4.0.3pl1-0potato2_sparc.deb stable/main/binary-sparc/php4-ldap_4.0.3pl1-0potato2_sparc.deb php4 (4.0.3pl1-0potato2) stable; urgency=high * Fix php4-cgi * s/with-yp/enable-yp/ to fix this little oversight stable/main/binary-powerpc/php4-cgi-pgsql_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-ldap_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-cgi-mhash_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-cgi-mysql_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-cgi_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-cgi-imap_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-gd_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-snmp_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-cgi-ldap_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-pgsql_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-cgi-snmp_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-mysql_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-mhash_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-cgi-gd_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-cgi-xml_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-xml_4.0.3pl1-0potato2_powerpc.deb stable/main/binary-powerpc/php4-imap_4.0.3pl1-0potato2_powerpc.deb php4 (4.0.3pl1-0potato2) stable; urgency=high * Fix php4-cgi * s/with-yp/enable-yp/ to fix this little oversight stable/main/binary-m68k/php4-cgi-mhash_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-cgi-snmp_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-cgi-mysql_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-gd_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-pgsql_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-cgi-imap_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-ldap_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-snmp_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-mhash_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-cgi-pgsql_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-imap_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-xml_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-cgi-gd_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-cgi_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-mysql_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-cgi-xml_4.0.3pl1-0potato2_m68k.deb stable/main/binary-m68k/php4-cgi-ldap_4.0.3pl1-0potato2_m68k.deb php4 (4.0.3pl1-0potato2) stable; urgency=high * Fix php4-cgi * s/with-yp/enable-yp/ to fix this little oversight stable/main/binary-alpha/php4-mysql_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-cgi_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-pgsql_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-imap_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-snmp_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-cgi-imap_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-cgi-pgsql_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-cgi-mhash_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-cgi-snmp_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-ldap_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-cgi-xml_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-cgi-ldap_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-cgi-gd_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-xml_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-cgi-mysql_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-mhash_4.0.3pl1-0potato2_alpha.deb stable/main/binary-alpha/php4-gd_4.0.3pl1-0potato2_alpha.deb php4 (4.0.3pl1-0potato2) stable; urgency=high * Fix php4-cgi * s/with-yp/enable-yp/ to fix this little oversight stable/main/binary-sparc/telnetd_0.16-4potato.3_sparc.deb stable/main/binary-sparc/telnet_0.16-4potato.3_sparc.deb netkit-telnet (0.16-4potato.3) stable; urgency=high * Fixed same overflow with minimal change. stable/main/binary-powerpc/telnetd_0.16-4potato.3_powerpc.deb stable/main/binary-powerpc/telnet_0.16-4potato.3_powerpc.deb netkit-telnet (0.16-4potato.3) stable; urgency=high * Fixed same overflow with minimal change. stable/main/binary-m68k/telnet_0.16-4potato.3_m68k.deb stable/main/binary-m68k/telnetd_0.16-4potato.3_m68k.deb netkit-telnet (0.16-4potato.3) stable; urgency=high * Fixed same overflow with minimal change. stable/main/binary-arm/telnet_0.16-4potato.3_arm.deb stable/main/binary-arm/telnetd_0.16-4potato.3_arm.deb netkit-telnet (0.16-4potato.3) stable; urgency=high * Fixed same overflow with minimal change. stable/main/binary-alpha/telnet_0.16-4potato.3_alpha.deb stable/main/binary-alpha/telnetd_0.16-4potato.3_alpha.deb netkit-telnet (0.16-4potato.3) stable; urgency=high * Fixed same overflow with minimal change. stable/main/binary-sparc/nedit_5.1.1-3_sparc.deb nedit (1:5.1.1-3) stable unstable; urgency=low * Upload for potato/stable so nedit can finally get out of non-free for potato. It is about time. stable/main/binary-powerpc/nedit_5.1.1-3_powerpc.deb nedit (1:5.1.1-3) stable unstable; urgency=low * Upload for potato/stable so nedit can finally get out of non-free for potato. It is about time. stable/main/binary-m68k/nedit_5.1.1-3_m68k.deb nedit (1:5.1.1-3) stable unstable; urgency=low * Upload for potato/stable so nedit can finally get out of non-free for potato. It is about time. stable/main/binary-arm/nedit_5.1.1-3_arm.deb nedit (1:5.1.1-3) stable unstable; urgency=low * Upload for potato/stable so nedit can finally get out of non-free for potato. It is about time. stable/main/binary-alpha/nedit_5.1.1-3_alpha.deb nedit (1:5.1.1-3) stable unstable; urgency=low * Upload for potato/stable so nedit can finally get out of non-free for potato. It is about time. stable/main/binary-sparc/mutt_1.2.5-5_sparc.deb mutt (1.2.5-5) stable; urgency=high * Applied patch-1.2.5.tlr.terminate.1 to fix a remotely exploitable buffer overflow. stable/main/binary-powerpc/mutt_1.2.5-5_powerpc.deb mutt (1.2.5-5) stable; urgency=high * Applied patch-1.2.5.tlr.terminate.1 to fix a remotely exploitable buffer overflow. stable/main/binary-m68k/mutt_1.2.5-5_m68k.deb mutt (1.2.5-5) stable; urgency=high * Applied patch-1.2.5.tlr.terminate.1 to fix a remotely exploitable buffer overflow. stable/main/binary-arm/mutt_1.2.5-5_arm.deb mutt (1.2.5-5) stable; urgency=high * Applied patch-1.2.5.tlr.terminate.1 to fix a remotely exploitable buffer overflow. stable/main/binary-alpha/mutt_1.2.5-5_alpha.deb mutt (1.2.5-5) stable; urgency=high * Applied patch-1.2.5.tlr.terminate.1 to fix a remotely exploitable buffer overflow. stable/main/source/yabasic_2.53-2.diff.gz stable/main/binary-sparc/yabasic_2.53-2_sparc.deb stable/main/source/yabasic_2.53-2.dsc yabasic (2.53-2) stable; urgency=high * New maintainer. * yabasic.c: Fixed a /tmp race condition. * Completed the FHS transition to allow building with a recent debhelper. Closes: #98875. stable/main/source/xxgdb_1.12-9.4potato.diff.gz stable/main/source/xxgdb_1.12-9.4potato.dsc stable/main/binary-i386/xxgdb_1.12-9.4potato_i386.deb xxgdb (1.12-9.4potato) stable; urgency=low * Changed the private dh_installxaw program that comes with this package to include the perl modules from the right directory (/usr/share/debhelper instead of /usr/lib/debhelper). This caused xxgdb not to build on potato. (closes: #94893) * Applied a patch from Massimo Dal Zotto . This is a workaround for a serious bug (#94892) in libXaw. stable/main/source/xtel_3.2.1-4.potato.1.dsc stable/main/source/xtel_3.2.1-4.potato.1.diff.gz stable/main/binary-i386/xtel_3.2.1-4.potato.1_i386.deb xtel (3.2.1-4.potato.1) stable; urgency=low * New maintainer * Security fixes: - symlink vulnerability in xteld (see #87787). - symlink vulnerability in xtel while printing harcopy of screen. - run xteld under control of tcpd to be able to restrict access to the service from network. * Backport of annoying and easy to fix bugs from woody version of xtel: - Fixed segfaults (see #43566). - Fixed a little typo in the /etc/xtel/lignes file. - Fixed creation of the symlink to french doc directory (see #55131). * Other annoying fixes: - bad X resource in Xtel[m].ad (missing '-o -' in a2ps printing command). stable/main/binary-sparc/wu-ftpd_2.6.0-6_sparc.deb wu-ftpd (2.6.0-6) stable; urgency=high * [SECURITY] fix remote buffer overflow in src/glob.c stable/main/binary-powerpc/wu-ftpd_2.6.0-6_powerpc.deb wu-ftpd (2.6.0-6) stable; urgency=high * [SECURITY] fix remote buffer overflow in src/glob.c stable/main/binary-all/wu-ftpd-academ_2.6.0-6_all.deb stable/main/source/wu-ftpd_2.6.0-6.diff.gz stable/main/binary-i386/wu-ftpd_2.6.0-6_i386.deb stable/main/source/wu-ftpd_2.6.0-6.dsc wu-ftpd (2.6.0-6) stable; urgency=high * [SECURITY] fix remote buffer overflow in src/glob.c stable/main/binary-alpha/wu-ftpd_2.6.0-6_alpha.deb wu-ftpd (2.6.0-6) stable; urgency=high * [SECURITY] fix remote buffer overflow in src/glob.c stable/main/source/postgresql_6.5.3-27.dsc stable/main/binary-i386/postgresql-test_6.5.3-27_i386.deb stable/main/binary-i386/libpgsql2_6.5.3-27_i386.deb stable/main/binary-i386/python-pygresql_6.5.3-27_i386.deb stable/main/binary-i386/postgresql-pl_6.5.3-27_i386.deb stable/main/binary-i386/ecpg_6.5.3-27_i386.deb stable/main/binary-i386/libpgperl_6.5.3-27_i386.deb stable/main/binary-i386/postgresql-client_6.5.3-27_i386.deb stable/main/source/postgresql_6.5.3-27.diff.gz stable/main/binary-i386/pgaccess_6.5.3-27_i386.deb stable/main/binary-all/postgresql-doc_6.5.3-27_all.deb stable/main/binary-i386/postgresql_6.5.3-27_i386.deb stable/main/binary-i386/libpgtcl_6.5.3-27_i386.deb stable/main/binary-i386/odbc-postgresql_6.5.3-27_i386.deb stable/main/binary-i386/postgresql-dev_6.5.3-27_i386.deb stable/main/binary-i386/postgresql-contrib_6.5.3-27_i386.deb postgresql (6.5.3-27) stable; urgency=high * postgresql: applied patch from Ben Pfaff to cure problem with segfault in pg_dump. High urgency because pg_dump is essential for transferring data when upgrading postgresql. Closes: #101940 stable/main/source/postfix_0.0.19991231pl11-2.diff.gz stable/main/source/postfix_0.0.19991231pl11-2.dsc stable/main/binary-i386/postfix_0.0.19991231pl11-2_i386.deb postfix (0.0.19991231pl11-2) stable; urgency=high * Fix 'smtpd command log memory exhaustion' problem. * Fix dhelp dangling symlink problem. Closes: #91877, #97332. * Rebuild on current potato. Closes: #102388, #99220. stable/main/binary-i386/php4-gd_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-mhash_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-ldap_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-cgi-pgsql_4.0.3pl1-0potato2_i386.deb stable/main/source/php4_4.0.3pl1-0potato2.dsc stable/main/binary-i386/php4-pgsql_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-cgi-mhash_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-mysql_4.0.3pl1-0potato2_i386.deb stable/main/binary-all/php4-dev_4.0.3pl1-0potato2_all.deb stable/main/binary-i386/php4-cgi-ldap_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-xml_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-cgi-imap_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-cgi-gd_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-snmp_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-imap_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-cgi-xml_4.0.3pl1-0potato2_i386.deb stable/main/source/php4_4.0.3pl1-0potato2.diff.gz stable/main/binary-i386/php4-cgi-snmp_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-cgi-mysql_4.0.3pl1-0potato2_i386.deb stable/main/binary-i386/php4-cgi_4.0.3pl1-0potato2_i386.deb php4 (4.0.3pl1-0potato2) stable; urgency=high * Fix php4-cgi * s/with-yp/enable-yp/ to fix this little oversight stable/main/source/netkit-telnet_0.16-4potato.3.diff.gz stable/main/binary-i386/telnet_0.16-4potato.3_i386.deb stable/main/source/netkit-telnet_0.16-4potato.3.dsc stable/main/binary-i386/telnetd_0.16-4potato.3_i386.deb netkit-telnet (0.16-4potato.3) stable; urgency=high * Fixed same overflow with minimal change. stable/main/source/nedit_5.1.1-3.dsc stable/main/binary-i386/nedit_5.1.1-3_i386.deb stable/main/source/nedit_5.1.1-3.diff.gz nedit (1:5.1.1-3) stable unstable; urgency=low * Upload for potato/stable so nedit can finally get out of non-free for potato. It is about time. stable/main/source/mutt_1.2.5-5.dsc stable/main/binary-i386/mutt_1.2.5-5_i386.deb stable/main/source/mutt_1.2.5-5.diff.gz mutt (1.2.5-5) stable; urgency=high * Applied patch-1.2.5.tlr.terminate.1 to fix a remotely exploitable buffer overflow. stable/main/binary-alpha/make_3.79.1-1.potato.1_alpha.deb make (3.79.1-1.potato.1) stable; urgency=low * This is an update for potato. There are no changes made since the update for woody 45 days ago. The old make did not honour the MAKEFILES variable, this closes: Bug#71261 * I have heard rimours that the old make did not correctly build libc either, and one needs this version. I can't say for sure, since no bug was ever filed. stable/main/binary-sparc/mailman_1.1-10_sparc.deb mailman (1.1-10) stable; urgency=high * Add missing paranthesis in Mailman/Cgi/edithtml.py, line 88 (closes: #123802) stable/main/binary-powerpc/mailman_1.1-10_powerpc.deb mailman (1.1-10) stable; urgency=high * Add missing paranthesis in Mailman/Cgi/edithtml.py, line 88 (closes: #123802) stable/main/binary-m68k/mailman_1.1-10_m68k.deb mailman (1.1-10) stable; urgency=high * Add missing paranthesis in Mailman/Cgi/edithtml.py, line 88 (closes: #123802) stable/main/binary-arm/mailman_1.1-10_arm.deb mailman (1.1-10) stable; urgency=high * Add missing paranthesis in Mailman/Cgi/edithtml.py, line 88 (closes: #123802) stable/main/binary-alpha/mailman_1.1-10_alpha.deb mailman (1.1-10) stable; urgency=high * Add missing paranthesis in Mailman/Cgi/edithtml.py, line 88 (closes: #123802) stable/main/binary-m68k/mac-fdisk_0.1-6.0potato1_m68k.deb stable/main/binary-m68k/pmac-fdisk-cross_0.1-6.0potato1_m68k.deb mac-fdisk (0.1-6.0potato1) stable; urgency=high * Feature added: menu option to create bootstrap partition needed for powerpc NewWorld machines with the proper type and size (patch supplied by Ethan Benson). This should help newbies that won't read the docs anyway. Closes: #99660. * Bugfix: mac-fdisk used to get the disk size wrong when brute force probing for end-of-disk by seek&read. Turns out gcc did not cope with arithmetics on long long types without explicit cast. Closes: #99700. stable/main/binary-sparc/inn2_2.2.2.2000.01.31-5_sparc.deb stable/main/binary-sparc/inn2-dev_2.2.2.2000.01.31-5_sparc.deb stable/main/binary-sparc/inn2-inews_2.2.2.2000.01.31-5_sparc.deb inn2 (2.2.2.2000.01.31-5) stable; urgency=medium * apply patch from Taketoshi Sano that fixes posting problem introduced in the -4.1 security fix, closes: #83888, #85482 stable/main/binary-powerpc/inn2_2.2.2.2000.01.31-5_powerpc.deb stable/main/binary-powerpc/inn2-inews_2.2.2.2000.01.31-5_powerpc.deb stable/main/binary-powerpc/inn2-dev_2.2.2.2000.01.31-5_powerpc.deb inn2 (2.2.2.2000.01.31-5) stable; urgency=medium * apply patch from Taketoshi Sano that fixes posting problem introduced in the -4.1 security fix, closes: #83888, #85482 stable/main/binary-m68k/inn2_2.2.2.2000.01.31-5_m68k.deb stable/main/binary-m68k/inn2-inews_2.2.2.2000.01.31-5_m68k.deb stable/main/binary-m68k/inn2-dev_2.2.2.2000.01.31-5_m68k.deb inn2 (2.2.2.2000.01.31-5) stable; urgency=medium * apply patch from Taketoshi Sano that fixes posting problem introduced in the -4.1 security fix, closes: #83888, #85482 stable/main/binary-all/task-news-server_2.2.2.2000.01.31-5_all.deb stable/main/binary-i386/inn2_2.2.2.2000.01.31-5_i386.deb stable/main/binary-i386/inn2-inews_2.2.2.2000.01.31-5_i386.deb stable/main/binary-i386/inn2-dev_2.2.2.2000.01.31-5_i386.deb inn2 (2.2.2.2000.01.31-5) stable; urgency=medium * apply patch from Taketoshi Sano that fixes posting problem introduced in the -4.1 security fix, closes: #83888, #85482 stable/main/binary-arm/inn2-inews_2.2.2.2000.01.31-5_arm.deb stable/main/binary-arm/inn2-dev_2.2.2.2000.01.31-5_arm.deb stable/main/binary-arm/inn2_2.2.2.2000.01.31-5_arm.deb inn2 (2.2.2.2000.01.31-5) stable; urgency=medium * apply patch from Taketoshi Sano that fixes posting problem introduced in the -4.1 security fix, closes: #83888, #85482 stable/main/binary-alpha/inn2-inews_2.2.2.2000.01.31-5_alpha.deb stable/main/binary-alpha/inn2-dev_2.2.2.2000.01.31-5_alpha.deb stable/main/binary-alpha/inn2_2.2.2.2000.01.31-5_alpha.deb inn2 (2.2.2.2000.01.31-5) stable; urgency=medium * apply patch from Taketoshi Sano that fixes posting problem introduced in the -4.1 security fix, closes: #83888, #85482 stable/main/binary-sparc/groff_1.15.2-3_sparc.deb groff (1.15.2-3) stable; urgency=high * Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/binary-powerpc/groff_1.15.2-3_powerpc.deb groff (1.15.2-3) stable; urgency=high * Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/binary-m68k/groff_1.15.2-3_m68k.deb groff (1.15.2-3) stable; urgency=high * Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/binary-arm/groff_1.15.2-3_arm.deb groff (1.15.2-3) stable; urgency=high * Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/binary-alpha/groff_1.15.2-3_alpha.deb groff (1.15.2-3) stable; urgency=high * Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/binary-sparc/gpm_1.17.8-18.1_sparc.deb stable/main/binary-sparc/libgpmg1_1.17.8-18.1_sparc.deb stable/main/binary-sparc/libgpmg1-dev_1.17.8-18.1_sparc.deb gpm (1.17.8-18.1) stable; urgency=high * Security release. * Removed gpm-root from the package, due to several security problems. stable/main/binary-powerpc/libgpmg1_1.17.8-18.1_powerpc.deb stable/main/binary-powerpc/gpm_1.17.8-18.1_powerpc.deb stable/main/binary-powerpc/libgpmg1-dev_1.17.8-18.1_powerpc.deb gpm (1.17.8-18.1) stable; urgency=high * Security release. * Removed gpm-root from the package, due to several security problems. stable/main/binary-m68k/libgpm1-altdev_1.17.8-18.1_m68k.deb stable/main/binary-m68k/libgpmg1-dev_1.17.8-18.1_m68k.deb stable/main/binary-m68k/libgpmg1_1.17.8-18.1_m68k.deb stable/main/binary-m68k/gpm_1.17.8-18.1_m68k.deb stable/main/binary-m68k/libgpm1_1.17.8-18.1_m68k.deb gpm (1.17.8-18.1) stable; urgency=high * Security release. * Removed gpm-root from the package, due to several security problems. stable/main/binary-arm/libgpmg1_1.17.8-18.1_arm.deb stable/main/binary-arm/libgpmg1-dev_1.17.8-18.1_arm.deb stable/main/binary-arm/gpm_1.17.8-18.1_arm.deb gpm (1.17.8-18.1) stable; urgency=high * Security release. * Removed gpm-root from the package, due to several security problems. stable/main/binary-alpha/libgpmg1_1.17.8-18.1_alpha.deb stable/main/binary-alpha/libgpmg1-dev_1.17.8-18.1_alpha.deb stable/main/binary-alpha/gpm_1.17.8-18.1_alpha.deb gpm (1.17.8-18.1) stable; urgency=high * Security release. * Removed gpm-root from the package, due to several security problems. stable/main/binary-sparc/freewnn-jserver-dev_1.1.0+1.1.1-a016-1.potato.3_sparc.deb stable/main/binary-sparc/freewnn-kserver-dev_1.1.0+1.1.1-a016-1.potato.3_sparc.deb stable/main/binary-sparc/freewnn-kserver_1.1.0+1.1.1-a016-1.potato.3_sparc.deb stable/main/binary-sparc/freewnn-cserver_1.1.0+1.1.1-a016-1.potato.3_sparc.deb stable/main/binary-sparc/freewnn-jserver_1.1.0+1.1.1-a016-1.potato.3_sparc.deb stable/main/binary-sparc/freewnn-cserver-dev_1.1.0+1.1.1-a016-1.potato.3_sparc.deb freewnn (1.1.0+1.1.1-a016-1.potato.3) stable; urgency=high * Non Maintainer Upload * fix maintainer script bugs for potato closes: Bug#109314 stable/main/binary-powerpc/freewnn-kserver-dev_1.1.0+1.1.1-a016-1.potato.3_powerpc.deb stable/main/binary-powerpc/freewnn-jserver-dev_1.1.0+1.1.1-a016-1.potato.3_powerpc.deb stable/main/binary-powerpc/freewnn-kserver_1.1.0+1.1.1-a016-1.potato.3_powerpc.deb stable/main/binary-powerpc/freewnn-cserver-dev_1.1.0+1.1.1-a016-1.potato.3_powerpc.deb stable/main/binary-powerpc/freewnn-jserver_1.1.0+1.1.1-a016-1.potato.3_powerpc.deb stable/main/binary-powerpc/freewnn-cserver_1.1.0+1.1.1-a016-1.potato.3_powerpc.deb freewnn (1.1.0+1.1.1-a016-1.potato.3) stable; urgency=high * Non Maintainer Upload * fix maintainer script bugs for potato closes: Bug#109314 stable/main/binary-m68k/freewnn-kserver-dev_1.1.0+1.1.1-a016-1.potato.3_m68k.deb stable/main/binary-m68k/freewnn-jserver_1.1.0+1.1.1-a016-1.potato.3_m68k.deb stable/main/binary-m68k/freewnn-jserver-dev_1.1.0+1.1.1-a016-1.potato.3_m68k.deb stable/main/binary-m68k/freewnn-cserver_1.1.0+1.1.1-a016-1.potato.3_m68k.deb stable/main/binary-m68k/freewnn-kserver_1.1.0+1.1.1-a016-1.potato.3_m68k.deb stable/main/binary-m68k/freewnn-cserver-dev_1.1.0+1.1.1-a016-1.potato.3_m68k.deb freewnn (1.1.0+1.1.1-a016-1.potato.3) stable; urgency=high * Non Maintainer Upload * fix maintainer script bugs for potato closes: Bug#109314 stable/main/binary-arm/freewnn-kserver-dev_1.1.0+1.1.1-a016-1.potato.3_arm.deb stable/main/binary-arm/freewnn-jserver_1.1.0+1.1.1-a016-1.potato.3_arm.deb stable/main/binary-arm/freewnn-cserver-dev_1.1.0+1.1.1-a016-1.potato.3_arm.deb stable/main/binary-arm/freewnn-cserver_1.1.0+1.1.1-a016-1.potato.3_arm.deb stable/main/binary-arm/freewnn-kserver_1.1.0+1.1.1-a016-1.potato.3_arm.deb stable/main/binary-arm/freewnn-jserver-dev_1.1.0+1.1.1-a016-1.potato.3_arm.deb freewnn (1.1.0+1.1.1-a016-1.potato.3) stable; urgency=high * Non Maintainer Upload * fix maintainer script bugs for potato closes: Bug#109314 stable/main/binary-alpha/freewnn-cserver_1.1.0+1.1.1-a016-1.potato.3_alpha.deb stable/main/binary-alpha/freewnn-jserver_1.1.0+1.1.1-a016-1.potato.3_alpha.deb stable/main/binary-alpha/freewnn-kserver_1.1.0+1.1.1-a016-1.potato.3_alpha.deb stable/main/binary-alpha/freewnn-kserver-dev_1.1.0+1.1.1-a016-1.potato.3_alpha.deb stable/main/binary-alpha/freewnn-cserver-dev_1.1.0+1.1.1-a016-1.potato.3_alpha.deb stable/main/binary-alpha/freewnn-jserver-dev_1.1.0+1.1.1-a016-1.potato.3_alpha.deb freewnn (1.1.0+1.1.1-a016-1.potato.3) stable; urgency=high * Non Maintainer Upload * fix maintainer script bugs for potato closes: Bug#109314 stable/main/source/modconf_0.2.26.14.1.tar.gz stable/main/binary-all/modconf_0.2.26.14.1_all.deb stable/main/source/modconf_0.2.26.14.1.dsc modconf (0.2.26.14.1) stable; urgency=low * included patch for secure tempfile handling, see #117283 for details stable/main/binary-i386/mailman_1.1-10_i386.deb stable/main/source/mailman_1.1-10.diff.gz stable/main/source/mailman_1.1-10.dsc mailman (1.1-10) stable; urgency=high * Add missing paranthesis in Mailman/Cgi/edithtml.py, line 88 (closes: #123802) stable/main/binary-sparc/libgtop-dev_1.0.6-1.1_sparc.deb stable/main/binary-alpha/libgtop-daemon_1.0.6-1.1_alpha.deb stable/main/binary-powerpc/libgtop-daemon_1.0.6-1.1_powerpc.deb stable/main/source/libgtop_1.0.6-1.1.dsc stable/main/binary-powerpc/libgtop-dev_1.0.6-1.1_powerpc.deb stable/main/binary-m68k/libgtop-dev_1.0.6-1.1_m68k.deb stable/main/binary-arm/libgtop1_1.0.6-1.1_arm.deb stable/main/binary-i386/libgtop1_1.0.6-1.1_i386.deb stable/main/binary-arm/libgtop-dev_1.0.6-1.1_arm.deb stable/main/binary-sparc/libgtop-daemon_1.0.6-1.1_sparc.deb stable/main/binary-alpha/libgtop1_1.0.6-1.1_alpha.deb stable/main/binary-sparc/libgtop1_1.0.6-1.1_sparc.deb stable/main/binary-i386/libgtop-dev_1.0.6-1.1_i386.deb stable/main/source/libgtop_1.0.6-1.1.diff.gz stable/main/binary-m68k/libgtop1_1.0.6-1.1_m68k.deb stable/main/binary-powerpc/libgtop1_1.0.6-1.1_powerpc.deb stable/main/binary-m68k/libgtop-daemon_1.0.6-1.1_m68k.deb stable/main/binary-alpha/libgtop-dev_1.0.6-1.1_alpha.deb stable/main/binary-arm/libgtop-daemon_1.0.6-1.1_arm.deb stable/main/binary-i386/libgtop-daemon_1.0.6-1.1_i386.deb libgtop (1.0.6-1.1) stable; urgency=high * Non-maintainer upload by security team * Fix buffer overflow in src/daemon/gnuserv.c:permitted() Patch from Flavio Veloso * Fix printf format attacks in src/daemon/gnuserv.c logging functions stable/main/source/inn2_2.2.2.2000.01.31-5.diff.gz stable/main/source/inn2_2.2.2.2000.01.31-5.dsc inn2 (2.2.2.2000.01.31-5) stable; urgency=medium * apply patch from Taketoshi Sano that fixes posting problem introduced in the -4.1 security fix, closes: #83888, #85482 stable/main/source/imp_2.2.6-0.potato.4.dsc stable/main/binary-all/imp_2.2.6-0.potato.4_all.deb stable/main/source/imp_2.2.6-0.potato.4.diff.gz imp (2:2.2.6-0.potato.4) stable; urgency=low * SECURITY FIX, backport from 2.2.7, closes: #118986. stable/main/source/groff_1.15.2-3.diff.gz stable/main/binary-i386/groff_1.15.2-3_i386.deb stable/main/source/groff_1.15.2-3.dsc groff (1.15.2-3) stable; urgency=high * Use lpr as the print spooler, even if it happens not to be installed on the build system. Version 1.15.2-2 broke 'groff -l', which worked with previous versions of groff in stable (thanks, Mike Fontenot). stable/main/binary-i386/gpm_1.17.8-18.1_i386.deb stable/main/binary-i386/libgpm1-altdev_1.17.8-18.1_i386.deb stable/main/binary-i386/libgpmg1_1.17.8-18.1_i386.deb stable/main/binary-i386/libgpmg1-dev_1.17.8-18.1_i386.deb stable/main/source/gpm_1.17.8-18.1.diff.gz stable/main/binary-i386/libgpm1_1.17.8-18.1_i386.deb stable/main/source/gpm_1.17.8-18.1.dsc gpm (1.17.8-18.1) stable; urgency=high * Security release. * Removed gpm-root from the package, due to several security problems. stable/main/binary-i386/freewnn-cserver_1.1.0+1.1.1-a016-1.potato.3_i386.deb stable/main/binary-i386/freewnn-cserver-dev_1.1.0+1.1.1-a016-1.potato.3_i386.deb stable/main/binary-i386/freewnn-jserver-dev_1.1.0+1.1.1-a016-1.potato.3_i386.deb stable/main/source/freewnn_1.1.0+1.1.1-a016-1.potato.3.dsc stable/main/binary-i386/freewnn-kserver-dev_1.1.0+1.1.1-a016-1.potato.3_i386.deb stable/main/binary-all/freewnn-common_1.1.0+1.1.1-a016-1.potato.3_all.deb stable/main/source/freewnn_1.1.0+1.1.1-a016-1.potato.3.diff.gz stable/main/binary-i386/freewnn-kserver_1.1.0+1.1.1-a016-1.potato.3_i386.deb stable/main/binary-i386/freewnn-jserver_1.1.0+1.1.1-a016-1.potato.3_i386.deb freewnn (1.1.0+1.1.1-a016-1.potato.3) stable; urgency=high * Non Maintainer Upload * fix maintainer script bugs for potato closes: Bug#109314 stable/main/binary-sparc/exim_3.12-10.2_sparc.deb stable/main/binary-sparc/eximon_3.12-10.2_sparc.deb exim (3.12-10.2) stable; urgency=high * Non-maintainer upload. * Backport patch from Exim 3.34, fixing a potential arbitrary command execution vulnerability. stable/main/binary-powerpc/eximon_3.12-10.2_powerpc.deb stable/main/binary-powerpc/exim_3.12-10.2_powerpc.deb exim (3.12-10.2) stable; urgency=high * Non-maintainer upload. * Backport patch from Exim 3.34, fixing a potential arbitrary command execution vulnerability. stable/main/binary-m68k/eximon_3.12-10.2_m68k.deb stable/main/binary-m68k/exim_3.12-10.2_m68k.deb exim (3.12-10.2) stable; urgency=high * Non-maintainer upload. * Backport patch from Exim 3.34, fixing a potential arbitrary command execution vulnerability. stable/main/binary-arm/eximon_3.12-10.2_arm.deb stable/main/binary-arm/exim_3.12-10.2_arm.deb exim (3.12-10.2) stable; urgency=high * Non-maintainer upload. * Backport patch from Exim 3.34, fixing a potential arbitrary command execution vulnerability. stable/main/binary-alpha/eximon_3.12-10.2_alpha.deb stable/main/binary-alpha/exim_3.12-10.2_alpha.deb exim (3.12-10.2) stable; urgency=high * Non-maintainer upload. * Backport patch from Exim 3.34, fixing a potential arbitrary command execution vulnerability. stable/main/binary-sparc/dtaus_0.6-0potato1_sparc.deb dtaus (0.6-0potato1) stable; urgency=low * Repackaged for potato because the version of dtaus in potato isn't able to create DTAUS files using the Euro currency which is the one and only official currency in Germany since yesterday. Hence, the version in potato is entirely useless since yesterday and has to be updated if people are using it for their money management. stable/main/binary-powerpc/dtaus_0.6-0potato1_powerpc.deb dtaus (0.6-0potato1) stable; urgency=low * Repackaged for potato because the version of dtaus in potato isn't able to create DTAUS files using the Euro currency which is the one and only official currency in Germany since yesterday. Hence, the version in potato is entirely useless since yesterday and has to be updated if people are using it for their money management. stable/main/binary-m68k/dtaus_0.6-0potato1_m68k.deb dtaus (0.6-0potato1) stable; urgency=low * Repackaged for potato because the version of dtaus in potato isn't able to create DTAUS files using the Euro currency which is the one and only official currency in Germany since yesterday. Hence, the version in potato is entirely useless since yesterday and has to be updated if people are using it for their money management. stable/main/binary-arm/dtaus_0.6-0potato1_arm.deb dtaus (0.6-0potato1) stable; urgency=low * Repackaged for potato because the version of dtaus in potato isn't able to create DTAUS files using the Euro currency which is the one and only official currency in Germany since yesterday. Hence, the version in potato is entirely useless since yesterday and has to be updated if people are using it for their money management. stable/main/binary-alpha/dtaus_0.6-0potato1_alpha.deb dtaus (0.6-0potato1) stable; urgency=low * Repackaged for potato because the version of dtaus in potato isn't able to create DTAUS files using the Euro currency which is the one and only official currency in Germany since yesterday. Hence, the version in potato is entirely useless since yesterday and has to be updated if people are using it for their money management. stable/main/binary-powerpc/bwbasic_2.20pl2-3.2_powerpc.deb bwbasic (2.20pl2-3.2) stable; urgency=medium * New maintainer. * Recompile. Due to strange interactions with libc6, functions weren't interpreted, and the package was practically unusable. Closes: #108924. stable/main/binary-m68k/bwbasic_2.20pl2-3.2_m68k.deb bwbasic (2.20pl2-3.2) stable; urgency=medium * New maintainer. * Recompile. Due to strange interactions with libc6, functions weren't interpreted, and the package was practically unusable. Closes: #108924. stable/main/binary-i386/bwbasic_2.20pl2-3.2_i386.deb bwbasic (2.20pl2-3.2) stable; urgency=medium * New maintainer. * Recompile. Due to strange interactions with libc6, functions weren't interpreted, and the package was practically unusable. Closes: #108924. stable/main/binary-arm/bwbasic_2.20pl2-3.2_arm.deb bwbasic (2.20pl2-3.2) stable; urgency=medium * New maintainer. * Recompile. Due to strange interactions with libc6, functions weren't interpreted, and the package was practically unusable. Closes: #108924. stable/main/binary-alpha/bwbasic_2.20pl2-3.2_alpha.deb bwbasic (2.20pl2-3.2) stable; urgency=medium * New maintainer. * Recompile. Due to strange interactions with libc6, functions weren't interpreted, and the package was practically unusable. Closes: #108924. stable/main/binary-sparc/bb_1.2-9_sparc.deb bb (1.2-9) stable; urgency=low * rebuild with new libs Close: #47344 (sorry, me mirror war not updated) stable/main/binary-alpha/base-config_0.33.2_alpha.deb base-config (0.33.2) stable; urgency=low * Corrected stupid typo in templates file, Closes: #74785, #74815, #74828 * This problem makes it impossible to install the package, so it is important and must go in. stable/main/binary-i386/eximon_3.12-10.2_i386.deb stable/main/source/exim_3.12-10.2.dsc stable/main/binary-i386/exim_3.12-10.2_i386.deb stable/main/source/exim_3.12-10.2.diff.gz exim (3.12-10.2) stable; urgency=high * Non-maintainer upload. * Backport patch from Exim 3.34, fixing a potential arbitrary command execution vulnerability. stable/main/source/dtaus_0.6-0potato1.diff.gz stable/main/source/dtaus_0.6-0potato1.dsc stable/main/binary-i386/dtaus_0.6-0potato1_i386.deb dtaus (0.6-0potato1) stable; urgency=low * Repackaged for potato because the version of dtaus in potato isn't able to create DTAUS files using the Euro currency which is the one and only official currency in Germany since yesterday. Hence, the version in potato is entirely useless since yesterday and has to be updated if people are using it for their money management. stable/main/source/bwbasic_2.20pl2-3.2.dsc stable/main/binary-sparc/bwbasic_2.20pl2-3.2_sparc.deb stable/main/source/bwbasic_2.20pl2-3.2.diff.gz bwbasic (2.20pl2-3.2) stable; urgency=medium * New maintainer. * Recompile. Due to strange interactions with libc6, functions weren't interpreted, and the package was practically unusable. Closes: #108924. stable/main/binary-sparc/apache_1.3.9-14_sparc.deb stable/main/binary-sparc/apache-common_1.3.9-14_sparc.deb stable/main/binary-sparc/apache-dev_1.3.9-14_sparc.deb apache (1.3.9-14) stable; urgency=high * Non-maintainer upload on behalf of Simon Huggins * Applied patch from Martin Kraemer to fix mod_negotiation bug to prevent revealing of directory contents. stable/main/binary-powerpc/apache_1.3.9-14_powerpc.deb stable/main/binary-powerpc/apache-dev_1.3.9-14_powerpc.deb stable/main/binary-powerpc/apache-common_1.3.9-14_powerpc.deb apache (1.3.9-14) stable; urgency=high * Non-maintainer upload on behalf of Simon Huggins * Applied patch from Martin Kraemer to fix mod_negotiation bug to prevent revealing of directory contents. stable/main/binary-m68k/apache-dev_1.3.9-14_m68k.deb stable/main/binary-m68k/apache-common_1.3.9-14_m68k.deb stable/main/binary-m68k/apache_1.3.9-14_m68k.deb apache (1.3.9-14) stable; urgency=high * Non-maintainer upload on behalf of Simon Huggins * Applied patch from Martin Kraemer to fix mod_negotiation bug to prevent revealing of directory contents. stable/main/binary-arm/apache-dev_1.3.9-14_arm.deb stable/main/binary-arm/apache-common_1.3.9-14_arm.deb stable/main/binary-arm/apache_1.3.9-14_arm.deb apache (1.3.9-14) stable; urgency=high * Non-maintainer upload on behalf of Simon Huggins * Applied patch from Martin Kraemer to fix mod_negotiation bug to prevent revealing of directory contents. stable/main/binary-alpha/apache-dev_1.3.9-14_alpha.deb stable/main/binary-alpha/apache-common_1.3.9-14_alpha.deb stable/main/binary-alpha/apache_1.3.9-14_alpha.deb apache (1.3.9-14) stable; urgency=high * Non-maintainer upload on behalf of Simon Huggins * Applied patch from Martin Kraemer to fix mod_negotiation bug to prevent revealing of directory contents. stable/main/binary-all/apache-doc_1.3.9-14_all.deb stable/main/source/apache_1.3.9-14.diff.gz stable/main/binary-i386/apache_1.3.9-14_i386.deb stable/main/binary-i386/apache-common_1.3.9-14_i386.deb stable/main/binary-i386/apache-dev_1.3.9-14_i386.deb stable/main/source/apache_1.3.9-14.dsc apache (1.3.9-14) stable; urgency=high * Non-maintainer upload on behalf of Simon Huggins * Applied patch from Martin Kraemer to fix mod_negotiation bug to prevent revealing of directory contents. ======================================= Mon, 5 Nov 2001 - Debian 2.2r4 released ======================================= stable/main/binary-sparc/w3m_0.1.10+0.1.11pre+kokb23-4_sparc.deb stable/main/binary-arm/w3m_0.1.10+0.1.11pre+kokb23-4_arm.deb stable/main/binary-alpha/w3m_0.1.10+0.1.11pre+kokb23-4_alpha.deb w3m (0.1.10+0.1.11pre+kokb23-4) stable; urgency=high * [SECURITY FIX] backport fix of mime header buffer overflow SNS Advisory No.32 w3m malformed MIME header Buffer Overflow Vulnerability http://www.lac.co.jp/security/snsadv/32.html (Japanese) * dont install w3m.el in emacs dir because it wont work well. closes: Bug#96385 stable/main/binary-i386/w3m_0.1.10+0.1.11pre+kokb23-4_i386.deb stable/main/source/w3m_0.1.10+0.1.11pre+kokb23-4.diff.gz stable/main/source/w3m_0.1.10+0.1.11pre+kokb23-4.dsc w3m (0.1.10+0.1.11pre+kokb23-4) stable; urgency=high * [SECURITY FIX] backport fix of mime header buffer overflow SNS Advisory No.32 w3m malformed MIME header Buffer Overflow Vulnerability http://www.lac.co.jp/security/snsadv/32.html (Japanese) * dont install w3m.el in emacs dir because it wont work well. closes: Bug#96385 stable/main/binary-m68k/nvi-m17n-canna_1.79+19991117-2.3.1_m68k.deb stable/main/binary-m68k/nvi-m17n_1.79+19991117-2.3.1_m68k.deb nvi-m17n (2:1.79+19991117-2.3.1) stable; urgency=medium * m68k binary-only-NMU by the Debian Security Team * Rebuilt for stable since somebody converted my stable m68k build host to unstable without me noticing that. *sigh* stable/main/binary-m68k/nvi_1.79-16a.1.1_m68k.deb nvi (1.79-16a.1.1) stable; urgency=medium * m68k binary-only-NMU by the Debian Security Team * Rebuilt for stable since somebody converted my stable m68k build host to unstable without me noticing that. *sigh* stable/main/binary-arm/nvi-m17n_1.79+19991117-2.3_arm.deb stable/main/binary-i386/nvi-m17n_1.79+19991117-2.3_i386.deb stable/main/binary-powerpc/nvi-m17n_1.79+19991117-2.3_powerpc.deb stable/main/source/nvi-m17n_1.79+19991117-2.3.dsc stable/main/binary-m68k/nvi-m17n-canna_1.79+19991117-2.3_m68k.deb stable/main/binary-alpha/nvi-m17n_1.79+19991117-2.3_alpha.deb stable/main/binary-all/nvi-m17n-common_1.79+19991117-2.3_all.deb stable/main/binary-i386/nvi-m17n-canna_1.79+19991117-2.3_i386.deb stable/main/binary-sparc/nvi-m17n-canna_1.79+19991117-2.3_sparc.deb stable/main/binary-alpha/nvi-m17n-canna_1.79+19991117-2.3_alpha.deb stable/main/source/nvi-m17n_1.79+19991117-2.3.diff.gz stable/main/binary-powerpc/nvi-m17n-canna_1.79+19991117-2.3_powerpc.deb stable/main/binary-arm/nvi-m17n-canna_1.79+19991117-2.3_arm.deb stable/main/binary-m68k/nvi-m17n_1.79+19991117-2.3_m68k.deb stable/main/binary-sparc/nvi-m17n_1.79+19991117-2.3_sparc.deb nvi-m17n (2:1.79+19991117-2.3) stable; urgency=medium * NMU by Debian Security Team * Fix a format string vulnerability, only exploitable if a user will open a very strangely named file. (Fixes: Bug#115919) stable/main/binary-powerpc/nvi_1.79-16a.1_powerpc.deb stable/main/binary-m68k/nvi_1.79-16a.1_m68k.deb stable/main/binary-alpha/nvi_1.79-16a.1_alpha.deb stable/main/binary-sparc/nvi_1.79-16a.1_sparc.deb stable/main/source/nvi_1.79-16a.1.dsc stable/main/binary-arm/nvi_1.79-16a.1_arm.deb stable/main/source/nvi_1.79-16a.1.diff.gz stable/main/binary-i386/nvi_1.79-16a.1_i386.deb nvi (1.79-16a.1) stable; urgency=medium * NMU by Debian Security Team * Fix a format string vulnerability, only exploitable if a user will open a very strangely named file. (Fixes: Bug#116269) stable/main/binary-sparc/xcal_4.1-9_sparc.deb xcal (4.1-9) stable unstable; urgency=low * closes Bug#80504 (pscal gets January 2001 wrong!) * cleaned up debian/ directory and updated standards stable/main/binary-powerpc/xcal_4.1-9_powerpc.deb xcal (4.1-9) stable unstable; urgency=low * closes Bug#80504 (pscal gets January 2001 wrong!) * cleaned up debian/ directory and updated standards stable/main/binary-m68k/xcal_4.1-9_m68k.deb xcal (4.1-9) stable unstable; urgency=low * closes Bug#80504 (pscal gets January 2001 wrong!) * cleaned up debian/ directory and updated standards stable/main/binary-arm/xcal_4.1-9_arm.deb xcal (4.1-9) stable; urgency=low * closes Bug#80504 (pscal gets January 2001 wrong!) * cleaned up debian/ directory and updated standards stable/main/source/xcal_4.1-9.dsc stable/main/source/xcal_4.1-9.diff.gz stable/main/binary-i386/xcal_4.1-9_i386.deb xcal (4.1-9) stable unstable; urgency=low * closes Bug#80504 (pscal gets January 2001 wrong!) * cleaned up debian/ directory and updated standards stable/main/binary-m68k/xvt_2.1-13.0potato.1.1_m68k.deb xvt (2.1-13.0potato.1.1) stable; urgency=high * m68k binary-only-NMU by the Debian Security Team * Rebuilt for stable since somebody converted my stable m68k build host to unstable without me noticing that. *sigh* stable/main/source/xvt_2.1-13.0potato.1.dsc stable/main/source/xvt_2.1-13.0potato.1.diff.gz stable/main/binary-m68k/xvt_2.1-13.0potato.1_m68k.deb stable/main/binary-powerpc/xvt_2.1-13.0potato.1_powerpc.deb stable/main/binary-alpha/xvt_2.1-13.0potato.1_alpha.deb stable/main/binary-arm/xvt_2.1-13.0potato.1_arm.deb stable/main/binary-i386/xvt_2.1-13.0potato.1_i386.deb stable/main/binary-sparc/xvt_2.1-13.0potato.1_sparc.deb xvt (2.1-13.0potato.1) stable; urgency=high * NMU by the Debian Security Team * Dummy update in order to get a higher version number than -13 which wasn't uploaded for stable/!i386 and in order to get a security update for stable stable/main/binary-arm/zsh_3.1.9.dev6-7.0.1_arm.deb zsh (3.1.9.dev6-7.0.1) stable; urgency=medium * Binary-only non-maintainer upload for arm; no source changes. * rebuild against current libc, which doesn't have LFS support. stable/main/binary-sparc/zope_2.1.6-10_sparc.deb zope (2.1.6-10) stable; urgency=high * Include Hotfix_2001-05-01 ("ZClass permission mappings"), which addresses an important issue with ZClasses in that any user can visit a ZClass declaration and change the ZClass permission mappings for methods and other objects defined within the ZClass, possibly allowing for unauthorized access within the Zope instance. stable/main/binary-powerpc/zope_2.1.6-10_powerpc.deb zope (2.1.6-10) stable; urgency=high * Include Hotfix_2001-05-01 ("ZClass permission mappings"), which addresses an important issue with ZClasses in that any user can visit a ZClass declaration and change the ZClass permission mappings for methods and other objects defined within the ZClass, possibly allowing for unauthorized access within the Zope instance. stable/main/binary-m68k/zope_2.1.6-10_m68k.deb zope (2.1.6-10) stable; urgency=high * Include Hotfix_2001-05-01 ("ZClass permission mappings"), which addresses an important issue with ZClasses in that any user can visit a ZClass declaration and change the ZClass permission mappings for methods and other objects defined within the ZClass, possibly allowing for unauthorized access within the Zope instance. stable/main/binary-arm/zope_2.1.6-10_arm.deb zope (2.1.6-10) stable; urgency=high * Include Hotfix_2001-05-01 ("ZClass permission mappings"), which addresses an important issue with ZClasses in that any user can visit a ZClass declaration and change the ZClass permission mappings for methods and other objects defined within the ZClass, possibly allowing for unauthorized access within the Zope instance. stable/main/binary-alpha/zope_2.1.6-10_alpha.deb zope (2.1.6-10) stable; urgency=high * Include Hotfix_2001-05-01 ("ZClass permission mappings"), which addresses an important issue with ZClasses in that any user can visit a ZClass declaration and change the ZClass permission mappings for methods and other objects defined within the ZClass, possibly allowing for unauthorized access within the Zope instance. stable/main/binary-powerpc/xqf_0.9.3-1_powerpc.deb xqf (0.9.3-1) stable; urgency=low * In combination with the qstat-2.3f, this version apparently corrects upstream problems with connecting to certain types of servers (Unreal Tournament, specifically) * Fix the bug that got it removed from frozen (my failed upload) (closes: bug#55183) * Get over my stupid fit of pique (closes: bug#56937) stable/main/binary-arm/xpvm_1.2.5-6_arm.deb xpvm (1.2.5-6) stable; urgency=low * Release Manage this closes RC bugs (again). * Actually do the fix this time. The last upload didn't have any changes applied it seeem. Closes Bug#59816, Bug#61476. * I have no confirmation this fixes these bugs. Cross Fingers. stable/main/binary-sparc/xloadimage_4.1-5potato1_sparc.deb xloadimage (4.1-5potato1) stable; urgency=low * config.c, faces.c, imagetypes.c, options.c, packtar.c: fix unsafe str{cpy,cat} usage. Seen in http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=46186 stable/main/binary-powerpc/xloadimage_4.1-5potato1_powerpc.deb xloadimage (4.1-5potato1) stable; urgency=low * config.c, faces.c, imagetypes.c, options.c, packtar.c: fix unsafe str{cpy,cat} usage. Seen in http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=46186 stable/main/binary-m68k/xloadimage_4.1-5potato1_m68k.deb xloadimage (4.1-5potato1) stable; urgency=low * config.c, faces.c, imagetypes.c, options.c, packtar.c: fix unsafe str{cpy,cat} usage. Seen in http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=46186 stable/main/binary-arm/xloadimage_4.1-5potato1_arm.deb xloadimage (4.1-5potato1) stable; urgency=low * config.c, faces.c, imagetypes.c, options.c, packtar.c: fix unsafe str{cpy,cat} usage. Seen in http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=46186 stable/main/binary-alpha/xloadimage_4.1-5potato1_alpha.deb xloadimage (4.1-5potato1) stable; urgency=low * config.c, faces.c, imagetypes.c, options.c, packtar.c: fix unsafe str{cpy,cat} usage. Seen in http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=46186 stable/contrib/binary-powerpc/webrt_1.0.1-4_powerpc.deb webrt (1.0.1-4) stable; urgency=low * Security fix: /etc/rt/config.pm was world readable (closes: #62383) stable/contrib/binary-arm/webrt_1.0.1-4_arm.deb webrt (1.0.1-4) frozen unstable; urgency=low * Security fix: /etc/rt/config.pm was world readable (closes: #62383) stable/main/source/zope_2.1.6-10.dsc stable/main/binary-i386/zope_2.1.6-10_i386.deb stable/main/source/zope_2.1.6-10.diff.gz zope (2.1.6-10) stable; urgency=high * Include Hotfix_2001-05-01 ("ZClass permission mappings"), which addresses an important issue with ZClasses in that any user can visit a ZClass declaration and change the ZClass permission mappings for methods and other objects defined within the ZClass, possibly allowing for unauthorized access within the Zope instance. stable/main/binary-i386/xloadimage_4.1-5potato1_i386.deb stable/main/source/xloadimage_4.1-5potato1.diff.gz stable/main/source/xloadimage_4.1-5potato1.dsc xloadimage (4.1-5potato1) stable; urgency=low * config.c, faces.c, imagetypes.c, options.c, packtar.c: fix unsafe str{cpy,cat} usage. Seen in http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=46186 stable/main/source/xinetd_2.1.8.8.p3-1.1.diff.gz stable/main/binary-m68k/xinetd_2.1.8.8.p3-1.1_m68k.deb stable/main/binary-sparc/xinetd_2.1.8.8.p3-1.1_sparc.deb stable/main/source/xinetd_2.1.8.8.p3-1.1.dsc stable/main/binary-alpha/xinetd_2.1.8.8.p3-1.1_alpha.deb stable/main/binary-arm/xinetd_2.1.8.8.p3-1.1_arm.deb stable/main/binary-i386/xinetd_2.1.8.8.p3-1.1_i386.deb stable/main/binary-powerpc/xinetd_2.1.8.8.p3-1.1_powerpc.deb xinetd (1:2.1.8.8.p3-1.1) stable; urgency=high * Non-maintainer upload by security team * Fix buffer overflow in svc_logprint() * Set default umask to 022 in init_common() stable/main/binary-arm/libwings-dev_0.61.1-4.1_arm.deb stable/main/binary-sparc/libwraster1_0.61.1-4.1_sparc.deb stable/main/binary-arm/libwraster1_0.61.1-4.1_arm.deb stable/main/binary-powerpc/wmaker_0.61.1-4.1_powerpc.deb stable/main/binary-alpha/wmaker_0.61.1-4.1_alpha.deb stable/main/binary-powerpc/libdockapp-dev_0.61.1-4.1_powerpc.deb stable/main/binary-sparc/libdockapp-dev_0.61.1-4.1_sparc.deb stable/main/binary-alpha/libdockapp-dev_0.61.1-4.1_alpha.deb stable/main/binary-arm/libwmaker0-dev_0.61.1-4.1_arm.deb stable/main/binary-i386/libwmaker0-dev_0.61.1-4.1_i386.deb stable/main/binary-m68k/libwraster1-dev_0.61.1-4.1_m68k.deb stable/main/binary-m68k/libwmaker0-dev_0.61.1-4.1_m68k.deb stable/main/binary-i386/libwraster1-dev_0.61.1-4.1_i386.deb stable/main/binary-powerpc/libwraster1-dev_0.61.1-4.1_powerpc.deb stable/main/binary-i386/wmaker_0.61.1-4.1_i386.deb stable/main/binary-sparc/libwmaker0-dev_0.61.1-4.1_sparc.deb stable/main/binary-m68k/libwings-dev_0.61.1-4.1_m68k.deb stable/main/binary-m68k/wmaker_0.61.1-4.1_m68k.deb stable/main/binary-arm/libwraster1-dev_0.61.1-4.1_arm.deb stable/main/binary-i386/libwings-dev_0.61.1-4.1_i386.deb stable/main/binary-sparc/libwraster1-dev_0.61.1-4.1_sparc.deb stable/main/binary-arm/wmaker_0.61.1-4.1_arm.deb stable/main/source/wmaker_0.61.1-4.1.diff.gz stable/main/binary-m68k/libwraster1_0.61.1-4.1_m68k.deb stable/main/binary-powerpc/libwmaker0-dev_0.61.1-4.1_powerpc.deb stable/main/binary-i386/libdockapp-dev_0.61.1-4.1_i386.deb stable/main/binary-alpha/libwraster1_0.61.1-4.1_alpha.deb stable/main/binary-i386/libwraster1_0.61.1-4.1_i386.deb stable/main/source/wmaker_0.61.1-4.1.dsc stable/main/binary-alpha/libwmaker0-dev_0.61.1-4.1_alpha.deb stable/main/binary-arm/libdockapp-dev_0.61.1-4.1_arm.deb stable/main/binary-sparc/wmaker_0.61.1-4.1_sparc.deb stable/main/binary-alpha/libwings-dev_0.61.1-4.1_alpha.deb stable/main/binary-m68k/libdockapp-dev_0.61.1-4.1_m68k.deb stable/main/binary-powerpc/libwraster1_0.61.1-4.1_powerpc.deb stable/main/binary-alpha/libwraster1-dev_0.61.1-4.1_alpha.deb stable/main/binary-powerpc/libwings-dev_0.61.1-4.1_powerpc.deb stable/main/binary-sparc/libwings-dev_0.61.1-4.1_sparc.deb wmaker (0.61.1-4.1) stable; urgency=medium * Non-maintainer upload by security team * Fix buffer overflow in titlebar handling stable/main/binary-arm/rxvt-ml_2.6.2-2.1_arm.deb stable/main/binary-powerpc/rxvt_2.6.2-2.1_powerpc.deb stable/main/source/rxvt_2.6.2-2.1.dsc stable/main/binary-i386/rxvt_2.6.2-2.1_i386.deb stable/main/binary-m68k/rxvt-ml_2.6.2-2.1_m68k.deb stable/main/binary-sparc/rxvt-ml_2.6.2-2.1_sparc.deb stable/main/binary-i386/rxvt-ml_2.6.2-2.1_i386.deb stable/main/binary-arm/rxvt_2.6.2-2.1_arm.deb stable/main/binary-m68k/rxvt_2.6.2-2.1_m68k.deb stable/main/binary-powerpc/rxvt-ml_2.6.2-2.1_powerpc.deb stable/main/source/rxvt_2.6.2-2.1.diff.gz stable/main/binary-alpha/rxvt_2.6.2-2.1_alpha.deb stable/main/binary-sparc/rxvt_2.6.2-2.1_sparc.deb stable/main/binary-alpha/rxvt-ml_2.6.2-2.1_alpha.deb rxvt (1:2.6.2-2.1) stable; urgency=high * Non-maintainer upload by security team * Fix buffer overflow in tt_printf stable/main/binary-sparc/webalizer_1.30.4-3.1_sparc.deb webalizer (1.30.4-3.1) stable; urgency=medium * Patched with upstream v1.30-epoch patch. Webalizer stopped working on Oct 5th, 2001, which is fixed with this patch. Closes: #114828, #114832 stable/main/binary-powerpc/webalizer_1.30.4-3.1_powerpc.deb webalizer (1.30.4-3.1) stable; urgency=medium * Patched with upstream v1.30-epoch patch. Webalizer stopped working on Oct 5th, 2001, which is fixed with this patch. Closes: #114828, #114832 stable/main/binary-m68k/webalizer_1.30.4-3.1_m68k.deb webalizer (1.30.4-3.1) stable; urgency=medium * Patched with upstream v1.30-epoch patch. Webalizer stopped working on Oct 5th, 2001, which is fixed with this patch. Closes: #114828, #114832 stable/main/binary-arm/webalizer_1.30.4-3.1_arm.deb webalizer (1.30.4-3.1) stable; urgency=medium * Patched with upstream v1.30-epoch patch. Webalizer stopped working on Oct 5th, 2001, which is fixed with this patch. Closes: #114828, #114832 stable/main/binary-alpha/webalizer_1.30.4-3.1_alpha.deb webalizer (1.30.4-3.1) stable; urgency=medium * Patched with upstream v1.30-epoch patch. Webalizer stopped working on Oct 5th, 2001, which is fixed with this patch. Closes: #114828, #114832 stable/main/binary-alpha/slrn_0.9.6.2-9potato2_alpha.deb stable/main/binary-powerpc/slrnpull_0.9.6.2-9potato2_powerpc.deb stable/main/binary-alpha/slrnpull_0.9.6.2-9potato2_alpha.deb stable/main/binary-powerpc/slrn_0.9.6.2-9potato2_powerpc.deb stable/main/binary-arm/slrn_0.9.6.2-9potato2_arm.deb stable/main/binary-m68k/slrnpull_0.9.6.2-9potato2_m68k.deb stable/main/binary-m68k/slrn_0.9.6.2-9potato2_m68k.deb stable/main/binary-sparc/slrn_0.9.6.2-9potato2_sparc.deb stable/main/binary-sparc/slrnpull_0.9.6.2-9potato2_sparc.deb stable/main/binary-arm/slrnpull_0.9.6.2-9potato2_arm.deb slrn (0.9.6.2-9potato2) stable; urgency=HIGH * Upstream security fix: slrn's internal uudecoder auto-executes any shell script in the archive (thinking it's a shar, presumably!). That just doesn't fly in today's internet. stable/main/binary-sparc/libreadlineg2_2.1-21_sparc.deb readline2 (2.1-21) stable; urgency=low * Fix dependency on ncurses3.0-ALTdev (fixes #77722). stable/main/binary-powerpc/libreadlineg2_2.1-21_powerpc.deb readline2 (2.1-21) stable; urgency=low * Fix dependency on ncurses3.0-ALTdev (fixes #77722). stable/main/binary-m68k/libreadline2_2.1-21_m68k.deb stable/main/binary-m68k/libreadline2-altdev_2.1-21_m68k.deb stable/main/binary-m68k/libreadlineg2_2.1-21_m68k.deb readline2 (2.1-21) stable; urgency=low * Fix dependency on ncurses3.0-ALTdev (fixes #77722). stable/main/binary-arm/libreadlineg2_2.1-21_arm.deb readline2 (2.1-21) stable; urgency=low * Fix dependency on ncurses3.0-ALTdev (fixes #77722). stable/main/binary-alpha/libreadlineg2_2.1-21_alpha.deb readline2 (2.1-21) stable; urgency=low * Fix dependency on ncurses3.0-ALTdev (fixes #77722). stable/main/binary-sparc/procmail_3.15.2-1_sparc.deb procmail (3.15.2-1) stable; urgency=high * New upstream release, with improved security and robustness involving signal handlers. Author recommends upgrading to this version on any system where it is installed setuid or setgid. * This release fixes also Bug #108417: procmail -p -m resets PATH. stable/main/binary-powerpc/procmail_3.15.2-1_powerpc.deb procmail (3.15.2-1) stable; urgency=high * New upstream release, with improved security and robustness involving signal handlers. Author recommends upgrading to this version on any system where it is installed setuid or setgid. * This release fixes also Bug #108417: procmail -p -m resets PATH. stable/main/binary-m68k/procmail_3.15.2-1_m68k.deb procmail (3.15.2-1) stable; urgency=high * New upstream release, with improved security and robustness involving signal handlers. Author recommends upgrading to this version on any system where it is installed setuid or setgid. * This release fixes also Bug #108417: procmail -p -m resets PATH. stable/main/binary-arm/procmail_3.15.2-1_arm.deb procmail (3.15.2-1) stable; urgency=high * New upstream release, with improved security and robustness involving signal handlers. Author recommends upgrading to this version on any system where it is installed setuid or setgid. * This release fixes also Bug #108417: procmail -p -m resets PATH. stable/main/binary-alpha/procmail_3.15.2-1_alpha.deb procmail (3.15.2-1) stable; urgency=high * New upstream release, with improved security and robustness involving signal handlers. Author recommends upgrading to this version on any system where it is installed setuid or setgid. * This release fixes also Bug #108417: procmail -p -m resets PATH. stable/main/binary-i386/pcmcia-modules-2.2.19_3.1.22-0.2potatok4potato.5_i386.deb pcmcia-cs (3.1.22-0.2potato) stable; urgency=low * update for kernel-source-2.2.19pre17 stable/main/binary-powerpc/pcmcia-modules-2.2.19-pmac_3.1.22-0.2potatok2.0potato1_powerpc.deb pcmcia-cs (3.1.22-0.2potato) stable; urgency=low * update for kernel-source-2.2.19pre17 stable/main/binary-i386/pcmcia-modules-2.2.19-idepci_3.1.22-0.2potatok4potato.5_i386.deb pcmcia-cs (3.1.22-0.2potato) stable; urgency=low * update for kernel-source-2.2.19pre17 stable/main/binary-i386/pcmcia-modules-2.2.19-ide_3.1.22-0.2potatok4potato.5_i386.deb pcmcia-cs (3.1.22-0.2potato) stable; urgency=low * update for kernel-source-2.2.19pre17 stable/main/binary-i386/pcmcia-modules-2.2.19-compact_3.1.22-0.2potatok4potato.5_i386.deb pcmcia-cs (3.1.22-0.2potato) stable; urgency=low * update for kernel-source-2.2.19pre17 stable/main/binary-i386/webalizer_1.30.4-3.1_i386.deb stable/main/source/webalizer_1.30.4-3.1.dsc stable/main/source/webalizer_1.30.4-3.1.diff.gz webalizer (1.30.4-3.1) stable; urgency=medium * Patched with upstream v1.30-epoch patch. Webalizer stopped working on Oct 5th, 2001, which is fixed with this patch. Closes: #114828, #114832 stable/main/source/uucp_1.06.1-11potato1.dsc stable/main/binary-powerpc/uucp_1.06.1-11potato1_powerpc.deb stable/main/binary-alpha/uucp_1.06.1-11potato1_alpha.deb stable/main/binary-i386/uucp_1.06.1-11potato1_i386.deb stable/main/source/uucp_1.06.1-11potato1.diff.gz stable/main/binary-arm/uucp_1.06.1-11potato1_arm.deb stable/main/binary-m68k/uucp_1.06.1-11potato1_m68k.deb stable/main/binary-sparc/uucp_1.06.1-11potato1_sparc.deb uucp (1.06.1-11potato1) stable; urgency=high * Fixed exploit that allowed to gain uid.guid uucp.uucp: Applied patch that blocks the long arg variants of -I -u -g in uuxqt (taken from Calderas security update; From: Jeff Johnson ) * Changed maintainer to weasel@debian.org stable/main/binary-m68k/squid-cgi_2.2.5-3.2_m68k.deb stable/main/binary-alpha/squid-cgi_2.2.5-3.2_alpha.deb stable/main/binary-alpha/squid_2.2.5-3.2_alpha.deb stable/main/binary-powerpc/squid-cgi_2.2.5-3.2_powerpc.deb stable/main/binary-arm/squidclient_2.2.5-3.2_arm.deb stable/main/binary-sparc/squid-cgi_2.2.5-3.2_sparc.deb stable/main/binary-i386/squid_2.2.5-3.2_i386.deb stable/main/binary-powerpc/squid_2.2.5-3.2_powerpc.deb stable/main/binary-m68k/squidclient_2.2.5-3.2_m68k.deb stable/main/binary-i386/squidclient_2.2.5-3.2_i386.deb stable/main/binary-sparc/squid_2.2.5-3.2_sparc.deb stable/main/binary-arm/squid-cgi_2.2.5-3.2_arm.deb stable/main/binary-m68k/squid_2.2.5-3.2_m68k.deb stable/main/binary-arm/squid_2.2.5-3.2_arm.deb stable/main/binary-alpha/squidclient_2.2.5-3.2_alpha.deb stable/main/source/squid_2.2.5-3.2.dsc stable/main/binary-i386/squid-cgi_2.2.5-3.2_i386.deb stable/main/binary-powerpc/squidclient_2.2.5-3.2_powerpc.deb stable/main/source/squid_2.2.5-3.2.diff.gz stable/main/binary-sparc/squidclient_2.2.5-3.2_sparc.deb squid (2.2.5-3.2) stable; urgency=medium * Non-maintainer upload by security team * Fix DoS problem with invalid handling of mkdir-only PUT requests, squid bugzilla #233 stable/main/source/slrn_0.9.6.2-9potato2.diff.gz stable/main/source/slrn_0.9.6.2-9potato2.dsc stable/main/binary-i386/slrn_0.9.6.2-9potato2_i386.deb stable/main/binary-i386/slrnpull_0.9.6.2-9potato2_i386.deb slrn (0.9.6.2-9potato2) stable; urgency=HIGH * Upstream security fix: slrn's internal uudecoder auto-executes any shell script in the archive (thinking it's a shar, presumably!). That just doesn't fly in today's internet. stable/main/binary-arm/sendfile_2.1-20.3_arm.deb stable/main/binary-m68k/sendfile_2.1-20.3_m68k.deb stable/main/source/sendfile_2.1-20.3.dsc stable/main/binary-powerpc/sendfile_2.1-20.3_powerpc.deb stable/main/source/sendfile_2.1-20.3.diff.gz stable/main/binary-alpha/sendfile_2.1-20.3_alpha.deb stable/main/binary-sparc/sendfile_2.1-20.3_sparc.deb stable/main/binary-i386/sendfile_2.1-20.3_i386.deb sendfile (2.1-20.3) stable; urgency=high * Another security update * Backported security fix from framstag and Daniel Kobras which fixes a problem with dropping privileges for sending mail (see Bug#78603) stable/main/binary-arm/samba_2.0.7-3.4_arm.deb stable/main/binary-i386/samba_2.0.7-3.4_i386.deb stable/main/binary-powerpc/smbfs_2.0.7-3.4_powerpc.deb stable/main/binary-powerpc/samba-common_2.0.7-3.4_powerpc.deb stable/main/binary-arm/swat_2.0.7-3.4_arm.deb stable/main/binary-i386/swat_2.0.7-3.4_i386.deb stable/main/binary-m68k/smbclient_2.0.7-3.4_m68k.deb stable/main/binary-sparc/swat_2.0.7-3.4_sparc.deb stable/main/binary-m68k/samba_2.0.7-3.4_m68k.deb stable/main/binary-powerpc/smbclient_2.0.7-3.4_powerpc.deb stable/main/binary-m68k/swat_2.0.7-3.4_m68k.deb stable/main/binary-alpha/swat_2.0.7-3.4_alpha.deb stable/main/binary-alpha/smbclient_2.0.7-3.4_alpha.deb stable/main/source/samba_2.0.7-3.4.diff.gz stable/main/binary-arm/samba-common_2.0.7-3.4_arm.deb stable/main/binary-alpha/samba_2.0.7-3.4_alpha.deb stable/main/binary-m68k/samba-common_2.0.7-3.4_m68k.deb stable/main/binary-sparc/smbclient_2.0.7-3.4_sparc.deb stable/main/binary-i386/smbclient_2.0.7-3.4_i386.deb stable/main/binary-arm/smbclient_2.0.7-3.4_arm.deb stable/main/binary-powerpc/samba_2.0.7-3.4_powerpc.deb stable/main/source/samba_2.0.7-3.4.dsc stable/main/binary-all/samba-doc_2.0.7-3.4_all.deb stable/main/binary-m68k/smbfs_2.0.7-3.4_m68k.deb stable/main/binary-sparc/samba_2.0.7-3.4_sparc.deb stable/main/binary-alpha/samba-common_2.0.7-3.4_alpha.deb stable/main/binary-powerpc/swat_2.0.7-3.4_powerpc.deb stable/main/binary-i386/samba-common_2.0.7-3.4_i386.deb stable/main/binary-sparc/smbfs_2.0.7-3.4_sparc.deb stable/main/binary-i386/smbfs_2.0.7-3.4_i386.deb stable/main/binary-sparc/samba-common_2.0.7-3.4_sparc.deb stable/main/binary-arm/smbfs_2.0.7-3.4_arm.deb stable/main/binary-alpha/smbfs_2.0.7-3.4_alpha.deb samba (2.0.7-3.4) stable; urgency=high * Non-maintainer upload by security team * Filter characters from netbios names stable/main/source/quik_2.0e-0.5.0potato.1.dsc stable/main/source/quik_2.0e-0.5.0potato.1.diff.gz stable/main/binary-powerpc/quik_2.0e-0.5.0potato.1_powerpc.deb quik (2.0e-0.5.0potato.1) stable; urgency=medium * NMU by Stable Release Manager * This upload is required in order to get a new version out for the next stable release. It is merely only a recompile. stable/main/source/procmail_3.15.2-1.diff.gz stable/main/binary-i386/procmail_3.15.2-1_i386.deb stable/main/source/procmail_3.15.2-1.dsc stable/main/source/procmail_3.15.2.orig.tar.gz procmail (3.15.2-1) stable; urgency=high * New upstream release, with improved security and robustness involving signal handlers. Author recommends upgrading to this version on any system where it is installed setuid or setgid. * This release fixes also Bug #108417: procmail -p -m resets PATH. stable/main/binary-i386/openldap-gateways_1.2.12-1_i386.deb stable/main/binary-all/ldap-rfc_1.2.12-1_all.deb stable/main/binary-all/libopenldap-runtime_1.2.12-1_all.deb stable/main/binary-powerpc/libopenldap-dev_1.2.12-1_powerpc.deb stable/main/binary-i386/libopenldap1_1.2.12-1_i386.deb stable/main/binary-m68k/openldapd_1.2.12-1_m68k.deb stable/main/binary-powerpc/openldap-utils_1.2.12-1_powerpc.deb stable/main/binary-arm/openldapd_1.2.12-1_arm.deb stable/main/binary-m68k/libopenldap-dev_1.2.12-1_m68k.deb stable/main/binary-alpha/openldap-utils_1.2.12-1_alpha.deb stable/main/binary-alpha/openldap-gateways_1.2.12-1_alpha.deb stable/main/binary-i386/openldapd_1.2.12-1_i386.deb stable/main/binary-sparc/openldap-utils_1.2.12-1_sparc.deb stable/main/binary-sparc/libopenldap1_1.2.12-1_sparc.deb stable/main/binary-powerpc/libopenldap1_1.2.12-1_powerpc.deb stable/main/binary-powerpc/openldap-gateways_1.2.12-1_powerpc.deb stable/main/source/openldap_1.2.12-1.dsc stable/main/binary-m68k/libopenldap1_1.2.12-1_m68k.deb stable/main/binary-alpha/openldapd_1.2.12-1_alpha.deb stable/main/binary-arm/openldap-gateways_1.2.12-1_arm.deb stable/main/binary-sparc/openldap-gateways_1.2.12-1_sparc.deb stable/main/binary-arm/libopenldap-dev_1.2.12-1_arm.deb stable/main/source/openldap_1.2.12-1.tar.gz stable/main/binary-sparc/openldapd_1.2.12-1_sparc.deb stable/main/binary-alpha/libopenldap-dev_1.2.12-1_alpha.deb stable/main/binary-i386/openldap-utils_1.2.12-1_i386.deb stable/main/binary-arm/openldap-utils_1.2.12-1_arm.deb stable/main/binary-sparc/libopenldap-dev_1.2.12-1_sparc.deb stable/main/binary-m68k/openldap-utils_1.2.12-1_m68k.deb stable/main/binary-alpha/libopenldap1_1.2.12-1_alpha.deb stable/main/binary-i386/libopenldap-dev_1.2.12-1_i386.deb stable/main/binary-m68k/openldap-gateways_1.2.12-1_m68k.deb stable/main/binary-powerpc/openldapd_1.2.12-1_powerpc.deb stable/main/binary-arm/libopenldap1_1.2.12-1_arm.deb openldap (1:1.2.12-1) stable; urgency=high * Upstream bug-fix release for security problems stable/main/binary-arm/most_4.9.0-2.1_arm.deb stable/main/binary-alpha/most_4.9.0-2.1_alpha.deb stable/main/binary-powerpc/most_4.9.0-2.1_powerpc.deb stable/main/binary-sparc/most_4.9.0-2.1_sparc.deb stable/main/binary-m68k/most_4.9.0-2.1_m68k.deb most (4.9.0-2.1) stable; urgency=high * Fixed buffer overflow with tabs and long lines (Bug#108218) stable/main/binary-m68k/man-db_2.3.16-4_m68k.deb man-db (2.3.16-4) stable; urgency=high * Backport another security fix from unstable. * Count how many times privileges have been dropped, and don't regain them until regain_effective_privs() is called the same number of times. The lack of nesting meant it was still possible to create files owned by uid man (thanks, Luki R.; closes: #99624). stable/main/binary-arm/mailman_1.1-8_arm.deb stable/main/binary-sparc/mailman_1.1-8_sparc.deb stable/main/binary-alpha/mailman_1.1-8_alpha.deb stable/main/binary-powerpc/mailman_1.1-8_powerpc.deb mailman (1.1-8) stable; urgency=medium * Fix maintainer field * Completely fix previous security flaw * Fix dedent in Mailman/SecurityManager.py (closes: #107768) stable/main/binary-m68k/mailman_1.1-8_m68k.deb mailman (1.1-8) stable; urgency=medium * Fix maintainer field * Completely fix previous security flaw * Fix dedent in Mailman/SecurityManager.py (closes: #107768) stable/main/binary-powerpc/pmac-fdisk_0.1-6.0potato1_powerpc.deb stable/main/binary-powerpc/mac-fdisk_0.1-6.0potato1_powerpc.deb mac-fdisk (0.1-6.0potato1) stable; urgency=high * Feature added: menu option to create bootstrap partition needed for powerpc NewWorld machines with the proper type and size (patch supplied by Ethan Benson). This should help newbies that won't read the docs anyway. Closes: #99660. * Bugfix: mac-fdisk used to get the disk size wrong when brute force probing for end-of-disk by seek&read. Turns out gcc did not cope with arithmetics on long long types without explicit cast. Closes: #99700. stable/contrib/binary-powerpc/lyx_1.1.4-7_powerpc.deb lyx (1.1.4-7) stable; urgency=low * NMU requested by Michael Meskes * Applied patch-1.1.4fix3: This patch fixes the following problems in LyX 1.1.4fix2 (these are in fact bugs of LyX 1.1.4 which were not fixed by the 1.1.4fix[12] patches): * LyX often crashed after repeated use of the backspace key. This problem actually existed since long ago in the program, but did not strike very often before version 1.1.4. This is probably the main reason why you will want to apply this patch. * error insets were not removed correctly, which caused the removal or nearby characters in the documents. This is a serious problem too. * filenames for images in docbook mode were truncated * font tags for SGML output were wrong. * -lintl was not added on the link list when compiling on system which have gettext installed, but not in libc. * one header file contained C++ comments, whereas it is compiled with a C compiler. stable/main/binary-alpha/libpaperg_1.0.3-13.potato1_alpha.deb libpaper (1.0.3-13.potato1) stable; urgency=medium * New maintainer. * Recompiled to get a dependency on libc6 (>= 2.1.2). This prevents the SIGSEGV during upgrade. (closes: #71423) * Updated the location of the GPL in the copyright file. * Upload sponsored by Tony Mancill . stable/main/binary-sparc/libpaper_1.0.3-13.potato1_sparc.deb stable/main/binary-sparc/libpaperg_1.0.3-13.potato1_sparc.deb libpaper (1.0.3-13.potato1) stable; urgency=medium * New maintainer. * Recompiled to get a dependency on libc6 (>= 2.1.2). This prevents the SIGSEGV during upgrade. (closes: #71423) * Updated the location of the GPL in the copyright file. * Upload sponsored by Tony Mancill . stable/contrib/binary-i386/communicator_4.77-1_i386.deb stable/contrib/binary-i386/navigator_4.77-1_i386.deb stable/contrib/binary-i386/netscape_4.77-1_i386.deb stable/contrib/binary-i386/netscape-base-4-libc5_4.77-1_i386.deb stable/contrib/source/netscape4.base_4.77-1.dsc stable/contrib/source/netscape4.base_4.77-1.tar.gz stable/contrib/binary-i386/netscape-base-4_4.77-1_i386.deb netscape4.base (1:4.77-1) stable unstable; urgency=high * Required by security release package netscape4.77 * remove build depends on libc5 stuff for non i386/m68k * Changes to debian/rules to allow building on non-i386 * Add Linux Counter to default bookmarks (closes: #81615) * netscape-base-4 recommends mime-support (closes: #89164) * Update netscape-remote version number (closes: #79615) * Update package descriptions a little (closes: #79053) stable/non-free/source/netscape4.77_4.77-2.dsc stable/non-free/binary-all/netscape-java-477_4.77-2_all.deb stable/non-free/binary-all/navigator-nethelp-477_4.77-2_all.deb stable/non-free/binary-all/netscape-ja-resource-477_4.77-2_all.deb stable/non-free/binary-all/netscape-ko-resource-477_4.77-2_all.deb stable/non-free/binary-i386/navigator-base-477_4.77-2_i386.deb stable/non-free/source/netscape4.77_4.77-2.diff.gz stable/non-free/binary-i386/communicator-base-477_4.77-2_i386.deb stable/non-free/binary-all/netscape-zh-resource-477_4.77-2_all.deb stable/non-free/binary-all/communicator-spellchk-477_4.77-2_all.deb stable/non-free/binary-i386/netscape-base-477_4.77-2_i386.deb stable/non-free/binary-all/communicator-nethelp-477_4.77-2_all.deb stable/non-free/binary-i386/navigator-smotif-477_4.77-2_i386.deb stable/non-free/binary-i386/communicator-smotif-477_4.77-2_i386.deb stable/non-free/binary-i386/netscape-smotif-477_4.77-2_i386.deb netscape4.77 (4.77-2) stable unstable; urgency=high * Change default build from libc5 to libc6, fixing empty packages (closes: #94657) stable/main/source/most_4.9.0-2.1.diff.gz stable/main/source/most_4.9.0-2.1.dsc stable/main/binary-i386/most_4.9.0-2.1_i386.deb most (4.9.0-2.1) stable; urgency=high * Fixed buffer overflow with tabs and long lines (Bug#108218) stable/main/source/man-db_2.3.16-4.tar.gz stable/main/binary-alpha/man-db_2.3.16-4_alpha.deb stable/main/binary-i386/man-db_2.3.16-4_i386.deb stable/main/binary-arm/man-db_2.3.16-4_arm.deb stable/main/binary-sparc/man-db_2.3.16-4_sparc.deb stable/main/binary-powerpc/man-db_2.3.16-4_powerpc.deb stable/main/source/man-db_2.3.16-4.dsc man-db (2.3.16-4) stable; urgency=high * Backport another security fix from unstable. * Count how many times privileges have been dropped, and don't regain them until regain_effective_privs() is called the same number of times. The lack of nesting meant it was still possible to create files owned by uid man (thanks, Luki R.; closes: #99624). stable/main/source/mailman_1.1-8.dsc stable/main/binary-i386/mailman_1.1-8_i386.deb stable/main/source/mailman_1.1-8.diff.gz mailman (1.1-8) stable; urgency=medium * Fix maintainer field * Completely fix previous security flaw * Fix dedent in Mailman/SecurityManager.py (closes: #107768) stable/contrib/source/mailcrypt_3.5.5-6.2.dsc stable/contrib/binary-all/mailcrypt_3.5.5-6.2_all.deb stable/contrib/source/mailcrypt_3.5.5-6.2.diff.gz mailcrypt (3.5.5-6.2) stable; urgency=low * Aknowledge James Troup non-maintainer upload. (Closes: #100930) * One character fix from James Troup to cope with GNU PG >= 1.0.5. stable/main/source/mac-fdisk_0.1-6.0potato1.diff.gz stable/main/source/mac-fdisk_0.1-6.0potato1.dsc mac-fdisk (0.1-6.0potato1) stable; urgency=high * Feature added: menu option to create bootstrap partition needed for powerpc NewWorld machines with the proper type and size (patch supplied by Ethan Benson). This should help newbies that won't read the docs anyway. Closes: #99660. * Bugfix: mac-fdisk used to get the disk size wrong when brute force probing for end-of-disk by seek&read. Turns out gcc did not cope with arithmetics on long long types without explicit cast. Closes: #99700. stable/main/source/kernel-source-2.2.19_2.2.19.1-2.dsc stable/main/binary-all/kernel-doc-2.2.19_2.2.19.1-2_all.deb stable/main/source/kernel-source-2.2.19_2.2.19.1-2.diff.gz stable/main/binary-all/kernel-source-2.2.19_2.2.19.1-2_all.deb kernel-source-2.2.19 (2.2.19.1-2) stable unstable; urgency=high * Took alpha epoch handling from 2.4 (closes: #116414). * Updated GDTH driver. * Make syn cookies per socket (Andi Kleen). stable/main/source/kernel-patch-2.2.19-powerpc_2.2.19-2.0potato1.dsc stable/main/binary-powerpc/kernel-headers-2.2.19_2.2.19-2.0potato1_powerpc.deb stable/main/binary-powerpc/kernel-image-2.2.19-prep_2.2.19-2.0potato1_powerpc.deb stable/main/binary-powerpc/kernel-image-2.2.19-pmac_2.2.19-2.0potato1_powerpc.deb stable/main/binary-all/kernel-patch-2.2.19-powerpc_2.2.19-2.0potato1_all.deb stable/main/source/kernel-patch-2.2.19-powerpc_2.2.19-2.0potato1.tar.gz stable/main/binary-powerpc/kernel-image-2.2.19-chrp_2.2.19-2.0potato1_powerpc.deb kernel-patch-2.2.19-powerpc (2.2.19-2.0potato1) stable; urgency=low * Rebuild against kernel-source version 2.2.19.1 to fix security issues. stable/main/binary-all/kernel-patch-2.2.19-m68k_2.2.19-9_all.deb stable/main/source/kernel-patch-2.2.19-m68k_2.2.19-9.dsc stable/main/source/kernel-patch-2.2.19-m68k_2.2.19-9.tar.gz kernel-patch-2.2.19-m68k (2.2.19-9) stable unstable; urgency=low * Added patch for 82596 driver by me: - Sets bus throttle timers for BVME6000. - Fix BVME6000 82596 error handler. - Waits a while for previous configure or set multicast list to complete. * Added X-Surf Ethernet driver by Shawn D'Alimonte stable/main/source/kernel-patch-2.2.19-ide_20010504-2.tar.gz stable/main/binary-all/kernel-patch-2.2.19-ide_20010504-2_all.deb stable/main/source/kernel-patch-2.2.19-ide_20010504-2.dsc kernel-patch-2.2.19-ide (20010504-2) stable unstable; urgency=low * Updated patch for 2.2.19.1. stable/main/source/kernel-patch-2.2.19-arm_20010414.dsc stable/main/source/kernel-patch-2.2.19-arm_20010414.tar.gz stable/main/binary-all/kernel-patch-2.2.19-arm_20010414_all.deb kernel-patch-2.2.19-arm (20010414) stable unstable; urgency=high * Initial version stable/main/source/kernel-image-sparc-2.2_8.tar.gz stable/main/binary-sparc/kernel-image-2.2.19-sun4dm-smp_8_sparc.deb stable/main/source/kernel-image-sparc-2.2_8.dsc stable/main/binary-sparc/kernel-image-2.2.19-sun4cdm_8_sparc.deb stable/main/binary-sparc/kernel-image-2.2.19-sun4dm-pci_8_sparc.deb stable/main/binary-sparc/kernel-image-2.2.19-sun4u-smp_8_sparc.deb stable/main/binary-sparc/kernel-image-2.2.19-sun4u_8_sparc.deb stable/main/binary-all/kernel-headers-2.2.19-sparc_8_all.deb kernel-image-sparc-2.2 (8) stable unstable; urgency=high * Ok, now the latest 2.2.19 source has the fixes we want. stable/main/source/kernel-image-2.2.19-riscpc_20010414.dsc stable/main/source/kernel-image-2.2.19-riscpc_20010414.tar.gz stable/main/binary-arm/kernel-image-2.2.19-riscpc_20010414_arm.deb kernel-image-2.2.19-riscpc (20010414) stable unstable; urgency=high * Initial release. stable/main/source/kernel-image-2.2.19-netwinder_20010414.tar.gz stable/main/binary-arm/kernel-image-2.2.19-netwinder_20010414_arm.deb stable/main/source/kernel-image-2.2.19-netwinder_20010414.dsc kernel-image-2.2.19-netwinder (20010414) stable unstable; urgency=high * Initial release. stable/main/source/kernel-image-2.2.19-mvme16x_2.2.19-7.tar.gz stable/main/binary-m68k/kernel-image-2.2.19-mvme16x_2.2.19-7_m68k.deb stable/main/source/kernel-image-2.2.19-mvme16x_2.2.19-7.dsc kernel-image-2.2.19-mvme16x (2.2.19-7) stable unstable; urgency=high * Built against kernel-source 2.2.19.1-1. stable/main/source/kernel-image-2.2.19-mvme147_2.2.19-6.dsc stable/main/source/kernel-image-2.2.19-mvme147_2.2.19-6.tar.gz stable/main/binary-m68k/kernel-image-2.2.19-mvme147_2.2.19-6_m68k.deb kernel-image-2.2.19-mvme147 (2.2.19-6) stable unstable; urgency=high * Built against kernel-source 2.2.19.1-1. stable/main/binary-m68k/kernel-image-2.2.19-mac_2.2.19-7_m68k.deb stable/main/source/kernel-image-2.2.19-mac_2.2.19-7.dsc stable/main/source/kernel-image-2.2.19-mac_2.2.19-7.tar.gz kernel-image-2.2.19-mac (2.2.19-7) stable unstable; urgency=high * Built against kernel-source 2.2.19.1-1. stable/main/binary-i386/kernel-image-2.2.19_2.2.19-4potato.5_i386.deb stable/main/binary-i386/kernel-image-2.2.19-ide_2.2.19-4potato.5_i386.deb stable/main/binary-i386/kernel-headers-2.2.19-idepci_2.2.19-4potato.5_i386.deb stable/main/binary-i386/kernel-headers-2.2.19_2.2.19-4potato.5_i386.deb stable/main/binary-i386/kernel-headers-2.2.19-ide_2.2.19-4potato.5_i386.deb stable/main/source/kernel-image-2.2.19-i386_2.2.19-4potato.5.dsc stable/main/binary-i386/kernel-image-2.2.19-compact_2.2.19-4potato.5_i386.deb stable/main/binary-i386/kernel-image-2.2.19-idepci_2.2.19-4potato.5_i386.deb stable/main/source/kernel-image-2.2.19-i386_2.2.19-4potato.5.tar.gz stable/main/binary-i386/kernel-headers-2.2.19-compact_2.2.19-4potato.5_i386.deb kernel-image-2.2.19-i386 (2.2.19-4potato.5) stable; urgency=high * Built against kernel-source 2.2.19.1-2. stable/main/binary-m68k/kernel-image-2.2.19-bvme6000_2.2.19-7_m68k.deb stable/main/source/kernel-image-2.2.19-bvme6000_2.2.19-7.dsc stable/main/source/kernel-image-2.2.19-bvme6000_2.2.19-7.tar.gz kernel-image-2.2.19-bvme6000 (2.2.19-7) stable unstable; urgency=high * Built against kernel-source 2.2.19.1-1. stable/main/source/kernel-image-2.2.19-atari_2.2.19-6.tar.gz stable/main/binary-m68k/kernel-image-2.2.19-atari_2.2.19-6_m68k.deb stable/main/source/kernel-image-2.2.19-atari_2.2.19-6.dsc kernel-image-2.2.19-atari (2.2.19-6) stable unstable; urgency=high * Built against kernel-source 2.2.19.1-1. stable/main/source/kernel-image-2.2.19-amiga_2.2.19-9.dsc stable/main/source/kernel-image-2.2.19-amiga_2.2.19-9.tar.gz stable/main/binary-m68k/kernel-image-2.2.19-amiga_2.2.19-9_m68k.deb kernel-image-2.2.19-amiga (2.2.19-9) stable unstable; urgency=high * Built against kernel-source 2.2.19.1-1. stable/main/source/kernel-image-2.2.19-alpha_2.2.19-1potato.3.dsc stable/main/binary-alpha/kernel-image-2.2.19-jensen_2.2.19-1potato.3_alpha.deb stable/main/binary-alpha/kernel-headers-2.2.19_2.2.19-1potato.3_alpha.deb stable/main/source/kernel-image-2.2.19-alpha_2.2.19-1potato.3.tar.gz stable/main/binary-alpha/kernel-image-2.2.19-smp_2.2.19-1potato.3_alpha.deb stable/main/binary-alpha/kernel-image-2.2.19-nautilus_2.2.19-1potato.3_alpha.deb stable/main/binary-alpha/kernel-image-2.2.19-generic_2.2.19-1potato.3_alpha.deb kernel-image-2.2.19-alpha (2.2.19-1potato.3) stable; urgency=high * Built against kernel-source 2.2.19.1-2. stable/main/source/kernel-headers-2.2.19-m68k_2.2.19-2.dsc stable/main/source/kernel-headers-2.2.19-m68k_2.2.19-2.tar.gz stable/main/binary-m68k/kernel-headers-2.2.19_2.2.19-2_m68k.deb kernel-headers-2.2.19-m68k (2.2.19-2) stable unstable; urgency=low * Rebuilt with patches from m68k kernel-patches 2.2.19-2. stable/main/source/groff_1.15.2-2.diff.gz stable/main/source/groff_1.15.2-2.dsc stable/main/binary-i386/groff_1.15.2-2_i386.deb groff (1.15.2-2) stable; urgency=high * Security upload by new maintainer, backported from unstable. * src/preproc/pic/pic.y: Fix format string vulnerability that could allow the -S flag to be disabled (closes: #107459). Patch adapted from one by Zenith Parsec . * Add build dependencies, as I don't have the bandwidth to build groff myself on all architectures at the moment. Let's hope they're right. stable/main/binary-powerpc/groff_1.15.2-2_powerpc.deb stable/main/binary-sparc/groff_1.15.2-2_sparc.deb stable/main/binary-alpha/groff_1.15.2-2_alpha.deb groff (1.15.2-2) stable; urgency=high * Security upload by new maintainer, backported from unstable. * src/preproc/pic/pic.y: Fix format string vulnerability that could allow the -S flag to be disabled (closes: #107459). Patch adapted from one by Zenith Parsec . * Add build dependencies, as I don't have the bandwidth to build groff myself on all architectures at the moment. Let's hope they're right. stable/main/binary-m68k/groff_1.15.2-2_m68k.deb groff (1.15.2-2) stable; urgency=high * Security upload by new maintainer, backported from unstable. * src/preproc/pic/pic.y: Fix format string vulnerability that could allow the -S flag to be disabled (closes: #107459). Patch adapted from one by Zenith Parsec . * Add build dependencies, as I don't have the bandwidth to build groff myself on all architectures at the moment. Let's hope they're right. stable/main/binary-arm/groff_1.15.2-2_arm.deb groff (1.15.2-2) stable; urgency=high * Security upload by new maintainer, backported from unstable. * src/preproc/pic/pic.y: Fix format string vulnerability that could allow the -S flag to be disabled (closes: #107459). Patch adapted from one by Zenith Parsec . * Add build dependencies, as I don't have the bandwidth to build groff myself on all architectures at the moment. Let's hope they're right. stable/main/binary-powerpc/nscd_2.1.3-19_powerpc.deb stable/main/binary-powerpc/libc6_2.1.3-19_powerpc.deb stable/main/binary-powerpc/libc6-prof_2.1.3-19_powerpc.deb stable/main/binary-powerpc/libc6-dbg_2.1.3-19_powerpc.deb stable/main/binary-powerpc/locales_2.1.3-19_powerpc.deb stable/main/binary-powerpc/libc6-pic_2.1.3-19_powerpc.deb stable/main/binary-powerpc/libc6-dev_2.1.3-19_powerpc.deb glibc (2.1.3-19) stable; urgency=high * fts/chdir vulnerability fix. stable/main/binary-m68k/libnss1-compat_2.1.3-19_m68k.deb stable/main/binary-m68k/libc6-prof_2.1.3-19_m68k.deb stable/main/binary-m68k/libc6-dev_2.1.3-19_m68k.deb stable/main/binary-m68k/libc6-pic_2.1.3-19_m68k.deb stable/main/binary-m68k/locales_2.1.3-19_m68k.deb stable/main/binary-m68k/libc6_2.1.3-19_m68k.deb stable/main/binary-m68k/libc6-dbg_2.1.3-19_m68k.deb stable/main/binary-m68k/nscd_2.1.3-19_m68k.deb glibc (2.1.3-19) stable; urgency=high * fts/chdir vulnerability fix. stable/main/binary-i386/libc6_2.1.3-19_i386.deb stable/main/binary-i386/libnss1-compat_2.1.3-19_i386.deb stable/main/binary-i386/libc6-dbg_2.1.3-19_i386.deb stable/main/binary-i386/nscd_2.1.3-19_i386.deb stable/main/binary-i386/locales_2.1.3-19_i386.deb stable/main/binary-i386/libc6-pic_2.1.3-19_i386.deb stable/main/binary-i386/libc6-dev_2.1.3-19_i386.deb stable/main/binary-i386/libc6-prof_2.1.3-19_i386.deb glibc (2.1.3-19) stable; urgency=high * fts/chdir vulnerability fix. stable/main/binary-arm/libc6-dev_2.1.3-19_arm.deb stable/main/binary-arm/libc6-prof_2.1.3-19_arm.deb stable/main/binary-arm/locales_2.1.3-19_arm.deb stable/main/binary-arm/nscd_2.1.3-19_arm.deb stable/main/binary-arm/libc6-dbg_2.1.3-19_arm.deb stable/main/binary-arm/libc6-pic_2.1.3-19_arm.deb stable/main/binary-arm/libc6_2.1.3-19_arm.deb glibc (2.1.3-19) stable; urgency=high * fts/chdir vulnerability fix. stable/main/binary-alpha/libc6.1_2.1.3-19_alpha.deb stable/main/binary-alpha/libc6.1-dev_2.1.3-19_alpha.deb stable/main/binary-alpha/libc6.1-dbg_2.1.3-19_alpha.deb stable/main/binary-alpha/libc6.1-pic_2.1.3-19_alpha.deb stable/main/binary-alpha/nscd_2.1.3-19_alpha.deb stable/main/binary-alpha/locales_2.1.3-19_alpha.deb stable/main/binary-alpha/libnss1-compat_2.1.3-19_alpha.deb stable/main/binary-alpha/libc6.1-prof_2.1.3-19_alpha.deb glibc (2.1.3-19) stable; urgency=high * fts/chdir vulnerability fix. stable/main/binary-powerpc/fetchmail_5.3.3-3_powerpc.deb stable/main/binary-alpha/fetchmail_5.3.3-3_alpha.deb stable/main/binary-sparc/fetchmail_5.3.3-3_sparc.deb stable/main/binary-arm/fetchmail_5.3.3-3_arm.deb fetchmail (5.3.3-3) stable; urgency=high * SECURITY FIX: fix remote exploit on pop3 and imap protocols; Thanks to Salvatore Sanfilippo for reporting the bug and suggesting a patch to fix it. stable/main/binary-m68k/fetchmail_5.3.3-3_m68k.deb fetchmail (5.3.3-3) stable; urgency=high * SECURITY FIX: fix remote exploit on pop3 and imap protocols; Thanks to Salvatore Sanfilippo for reporting the bug and suggesting a patch to fix it. stable/main/binary-sparc/exuberant-ctags_3.2.4-0.1.1_sparc.deb exuberant-ctags (1:3.2.4-0.1.1) stable; urgency=high * Rebuild for stable. Oops. stable/main/binary-sparc/e2fsprogs_1.18-3.0potato1_sparc.deb stable/main/binary-sparc/comerr-dev_2.0-1.18-3.0potato1_sparc.deb stable/main/binary-sparc/e2fslibs-dev_1.18-3.0potato1_sparc.deb stable/main/binary-sparc/ss-dev_2.0-1.18-3.0potato1_sparc.deb stable/main/binary-sparc/uuid-dev_1.2-1.18-3.0potato1_sparc.deb e2fsprogs (1.18-3.0potato1) stable; urgency=low * Updated e2fsck/unix.c::e2fsck_update_progress() from 1.19 to fix slowness of the progress bar which makes installations on serial console deadly slow (Closes: #66079). * Justification for request to install in stable: ** Makes serial-console installation difficult (already reported twice on potato, not counting report closed by installation of 1.19). ** Fix is local to this otherwise non-critical part of code. ** This code is part of 1.19, in unstable since last july with no reported problem. stable/main/binary-powerpc/e2fsprogs_1.18-3.0potato1_powerpc.deb stable/main/binary-powerpc/uuid-dev_1.2-1.18-3.0potato1_powerpc.deb stable/main/binary-powerpc/e2fslibs-dev_1.18-3.0potato1_powerpc.deb stable/main/binary-powerpc/comerr-dev_2.0-1.18-3.0potato1_powerpc.deb stable/main/binary-powerpc/ss-dev_2.0-1.18-3.0potato1_powerpc.deb e2fsprogs (1.18-3.0potato1) stable; urgency=low * Updated e2fsck/unix.c::e2fsck_update_progress() from 1.19 to fix slowness of the progress bar which makes installations on serial console deadly slow (Closes: #66079). * Justification for request to install in stable: ** Makes serial-console installation difficult (already reported twice on potato, not counting report closed by installation of 1.19). ** Fix is local to this otherwise non-critical part of code. ** This code is part of 1.19, in unstable since last july with no reported problem. stable/main/binary-m68k/comerr-dev_2.0-1.18-3.0potato1_m68k.deb stable/main/binary-m68k/uuid-dev_1.2-1.18-3.0potato1_m68k.deb stable/main/binary-m68k/e2fsprogs_1.18-3.0potato1_m68k.deb stable/main/binary-m68k/e2fslibs-dev_1.18-3.0potato1_m68k.deb stable/main/binary-m68k/ss-dev_2.0-1.18-3.0potato1_m68k.deb e2fsprogs (1.18-3.0potato1) stable; urgency=low * Updated e2fsck/unix.c::e2fsck_update_progress() from 1.19 to fix slowness of the progress bar which makes installations on serial console deadly slow (Closes: #66079). * Justification for request to install in stable: ** Makes serial-console installation difficult (already reported twice on potato, not counting report closed by installation of 1.19). ** Fix is local to this otherwise non-critical part of code. ** This code is part of 1.19, in unstable since last july with no reported problem. stable/main/binary-arm/ss-dev_2.0-1.18-3.0potato1_arm.deb stable/main/binary-arm/e2fsprogs_1.18-3.0potato1_arm.deb stable/main/binary-arm/comerr-dev_2.0-1.18-3.0potato1_arm.deb stable/main/binary-arm/uuid-dev_1.2-1.18-3.0potato1_arm.deb stable/main/binary-arm/e2fslibs-dev_1.18-3.0potato1_arm.deb e2fsprogs (1.18-3.0potato1) stable; urgency=low * Updated e2fsck/unix.c::e2fsck_update_progress() from 1.19 to fix slowness of the progress bar which makes installations on serial console deadly slow (Closes: #66079). * Justification for request to install in stable: ** Makes serial-console installation difficult (already reported twice on potato, not counting report closed by installation of 1.19). ** Fix is local to this otherwise non-critical part of code. ** This code is part of 1.19, in unstable since last july with no reported problem. stable/main/binary-alpha/e2fslibs-dev_1.18-3.0potato1_alpha.deb stable/main/binary-alpha/uuid-dev_1.2-1.18-3.0potato1_alpha.deb stable/main/binary-alpha/ss-dev_2.0-1.18-3.0potato1_alpha.deb stable/main/binary-alpha/e2fsprogs_1.18-3.0potato1_alpha.deb stable/main/binary-alpha/comerr-dev_2.0-1.18-3.0potato1_alpha.deb e2fsprogs (1.18-3.0potato1) stable; urgency=low * Updated e2fsck/unix.c::e2fsck_update_progress() from 1.19 to fix slowness of the progress bar which makes installations on serial console deadly slow (Closes: #66079). * Justification for request to install in stable: ** Makes serial-console installation difficult (already reported twice on potato, not counting report closed by installation of 1.19). ** Fix is local to this otherwise non-critical part of code. ** This code is part of 1.19, in unstable since last july with no reported problem. stable/main/binary-sparc/htdig_3.1.5-2.0potato.1_sparc.deb stable/main/source/htdig_3.1.5-2.0potato.1.dsc stable/main/binary-m68k/htdig_3.1.5-2.0potato.1_m68k.deb stable/main/binary-arm/htdig_3.1.5-2.0potato.1_arm.deb stable/main/source/htdig_3.1.5-2.0potato.1.diff.gz stable/main/binary-i386/htdig_3.1.5-2.0potato.1_i386.deb stable/main/binary-powerpc/htdig_3.1.5-2.0potato.1_powerpc.deb stable/main/binary-all/htdig-doc_3.1.5-2.0potato.1_all.deb stable/main/binary-alpha/htdig_3.1.5-2.0potato.1_alpha.deb htdig (3.1.5-2.0potato.1) stable; urgency=high * NMU by Security Team * Fixes security bug; disable -c config option for cgi usage (Fixes: Bug#113682) * Updated Maintainer field stable/main/binary-all/horde_1.2.6-0.potato.4_all.deb stable/main/source/horde_1.2.6-0.potato.4.diff.gz stable/main/source/horde_1.2.6-0.potato.4.dsc horde (2:1.2.6-0.potato.4) stable; urgency=low * No this is not unstable, it is stable. Thanks Wichert for pointing this out. stable/main/binary-sparc/nscd_2.1.3-19_sparc.deb stable/main/source/glibc_2.1.3-19.diff.gz stable/main/binary-sparc/libc6-dev_2.1.3-19_sparc.deb stable/main/binary-all/i18ndata_2.1.3-19_all.deb stable/main/source/glibc_2.1.3-19.dsc stable/main/binary-sparc/libc6_2.1.3-19_sparc.deb stable/main/binary-sparc/libc6-pic_2.1.3-19_sparc.deb stable/main/binary-all/glibc-doc_2.1.3-19_all.deb stable/main/binary-sparc/libc6-prof_2.1.3-19_sparc.deb stable/main/binary-sparc/libc6-dbg_2.1.3-19_sparc.deb stable/main/binary-sparc/locales_2.1.3-19_sparc.deb glibc (2.1.3-19) stable; urgency=high * fts/chdir vulnerability fix. stable/main/binary-i386/gftp_2.0.6a-3.2_i386.deb stable/main/binary-powerpc/gftp_2.0.6a-3.2_powerpc.deb stable/main/binary-alpha/gftp_2.0.6a-3.2_alpha.deb stable/main/source/gftp_2.0.6a-3.2.diff.gz stable/main/binary-sparc/gftp_2.0.6a-3.2_sparc.deb stable/main/source/gftp_2.0.6a-3.2.dsc stable/main/binary-m68k/gftp_2.0.6a-3.2_m68k.deb stable/main/binary-arm/gftp_2.0.6a-3.2_arm.deb gftp (2.0.6a-3.2) stable; urgency=medium * Non-Maintainer Upload by Debian Security Team * Patched rfc959.c to stop logging the password in plain text (Closes: Bug#97184) stable/main/binary-i386/fetchmail_5.3.3-3_i386.deb stable/main/source/fetchmail_5.3.3-3.dsc stable/main/binary-all/fetchmailconf_5.3.3-3_all.deb stable/main/source/fetchmail_5.3.3-3.diff.gz fetchmail (5.3.3-3) stable; urgency=high * SECURITY FIX: fix remote exploit on pop3 and imap protocols; Thanks to Salvatore Sanfilippo for reporting the bug and suggesting a patch to fix it. stable/main/binary-i386/eximon_3.12-10.1_i386.deb stable/main/binary-powerpc/eximon_3.12-10.1_powerpc.deb stable/main/binary-m68k/exim_3.12-10.1_m68k.deb stable/main/binary-arm/exim_3.12-10.1_arm.deb stable/main/binary-i386/exim_3.12-10.1_i386.deb stable/main/binary-powerpc/exim_3.12-10.1_powerpc.deb stable/main/binary-sparc/exim_3.12-10.1_sparc.deb stable/main/source/exim_3.12-10.1.diff.gz stable/main/binary-arm/eximon_3.12-10.1_arm.deb stable/main/binary-alpha/exim_3.12-10.1_alpha.deb stable/main/binary-sparc/eximon_3.12-10.1_sparc.deb stable/main/binary-alpha/eximon_3.12-10.1_alpha.deb stable/main/binary-m68k/eximon_3.12-10.1_m68k.deb stable/main/source/exim_3.12-10.1.dsc exim (3.12-10.1) stable; urgency=low * Fixed format string vulnerability in accept.c. stable/main/binary-i386/uuid-dev_1.2-1.18-3.0potato1_i386.deb stable/main/binary-i386/comerr-dev_2.0-1.18-3.0potato1_i386.deb stable/main/source/e2fsprogs_1.18-3.0potato1.dsc stable/main/binary-i386/e2fslibs-dev_1.18-3.0potato1_i386.deb stable/main/binary-i386/ss-dev_2.0-1.18-3.0potato1_i386.deb stable/main/binary-i386/e2fsprogs_1.18-3.0potato1_i386.deb stable/main/source/e2fsprogs_1.18-3.0potato1.diff.gz e2fsprogs (1.18-3.0potato1) stable; urgency=low * Updated e2fsck/unix.c::e2fsck_update_progress() from 1.19 to fix slowness of the progress bar which makes installations on serial console deadly slow (Closes: #66079). * Justification for request to install in stable: ** Makes serial-console installation difficult (already reported twice on potato, not counting report closed by installation of 1.19). ** Fix is local to this otherwise non-critical part of code. ** This code is part of 1.19, in unstable since last july with no reported problem. stable/main/source/devscripts_2.5.8.2.dsc stable/main/source/devscripts_2.5.8.2.tar.gz stable/main/binary-all/devscripts_2.5.8.2_all.deb devscripts (2.5.8.2) stable; urgency=medium * Fix insecure regex's in debian.procmail example filter reported by Shane Wegner stable/main/source/cslatex_1.2.3.dsc stable/main/source/cslatex_1.2.3.tar.gz stable/main/binary-all/cslatex_1.2.3_all.deb cslatex (1.2.3) stable; urgency=medium * Grr, really fix the installation stop now (closes: #94346) stable/main/binary-arm/cron_3.0pl1-57.3_arm.deb stable/main/binary-sparc/cron_3.0pl1-57.3_sparc.deb stable/main/source/cron_3.0pl1-57.3.dsc stable/main/binary-m68k/cron_3.0pl1-57.3_m68k.deb stable/main/source/cron_3.0pl1-57.3.diff.gz stable/main/binary-i386/cron_3.0pl1-57.3_i386.deb stable/main/binary-alpha/cron_3.0pl1-57.3_alpha.deb stable/main/binary-powerpc/cron_3.0pl1-57.3_powerpc.deb cron (3.0pl1-57.3) stable; urgency=high * With crontab -e, don't give uid root on re-edit. stable/main/binary-alpha/cfingerd_1.4.1-1.2_alpha.deb stable/main/binary-arm/cfingerd_1.4.1-1.2_arm.deb stable/main/binary-i386/cfingerd_1.4.1-1.2_i386.deb stable/main/binary-powerpc/cfingerd_1.4.1-1.2_powerpc.deb stable/main/binary-sparc/cfingerd_1.4.1-1.2_sparc.deb stable/main/source/cfingerd_1.4.1-1.2.dsc stable/main/binary-m68k/cfingerd_1.4.1-1.2_m68k.deb stable/main/source/cfingerd_1.4.1-1.2.diff.gz cfingerd (1.4.1-1.2) stable; urgency=high * Non-maintainer release by security team * Fix buffer overflow and print format attack found by Steve van Acker * Fix type for ch in read_configuration stable/main/source/boot-floppies_2.2.26.dsc stable/main/source/boot-floppies_2.2.26.tar.gz stable/main/binary-all/boot-floppies_2.2.26_all.deb boot-floppies (2.2.26) stable; urgency=low * Ethan Benson: - Fix powerpc bootloader installation to simply display a rtfm dialog if its run on a NewWorld, it can't install yaboot in potato. - Fix powerpc bootloader installation to setup /target/etc/quik.conf correctly. - Add dialog to the end of quik installation informing the user they have to fix OpenFirmware themselves and thier machine still won't actually boot yet. * Tommi Vainikainen: Finnish documentation updates * rebuild for new Potato post r3 updates ======================================== Mon, 16 Apr 2001 - Debian 2.2r3 released ======================================== stable/main/binary-powerpc/pcmcia-modules-2.2.19-pmac_3.1.22-0.2potatok1_powerpc.deb pcmcia-cs (3.1.22-0.2potato) stable; urgency=low * update for kernel-source-2.2.19pre17 stable/main/binary-powerpc/pcmcia-cs_3.1.22-0.2potato_powerpc.deb pcmcia-cs (3.1.22-0.2potato) stable; urgency=low * update for kernel-source-2.2.19pre17 stable/main/source/pcmcia-cs_3.1.22-0.2potato.diff.gz stable/main/source/pcmcia-cs_3.1.22-0.2potato.dsc stable/main/binary-i386/pcmcia-modules-2.2.19pre17-compact_3.1.22-0.2potatok1_i386.deb stable/main/binary-i386/pcmcia-modules-2.2.19pre17_3.1.22-0.2potatok1_i386.deb stable/main/binary-i386/pcmcia-modules-2.2.19pre17-ide_3.1.22-0.2potatok1_i386.deb stable/main/binary-i386/pcmcia-cs_3.1.22-0.2potato_i386.deb stable/main/binary-i386/pcmcia-modules-2.2.19pre17-idepci_3.1.22-0.2potatok1_i386.deb stable/main/binary-all/pcmcia-source_3.1.22-0.2potato_all.deb pcmcia-cs (3.1.22-0.2potato) stable; urgency=low * update for kernel-source-2.2.19pre17 stable/main/binary-all/kernel-doc-2.2.19pre17_2.2.19pre17-1_all.deb stable/main/source/kernel-source-2.2.19pre17_2.2.19pre17-1.dsc stable/main/source/kernel-source-2.2.19pre17_2.2.19pre17.orig.tar.gz stable/main/binary-all/kernel-source-2.2.19pre17_2.2.19pre17-1_all.deb stable/main/source/kernel-source-2.2.19pre17_2.2.19pre17-1.diff.gz kernel-source-2.2.19pre17 (2.2.19pre17-1) stable unstable; urgency=high * New upstream release with security fixes. * Allow IP autoconfiguration to be always turned on (closes: #81374). stable/main/source/kernel-source-2.2.19_2.2.19-2.dsc stable/main/binary-all/kernel-doc-2.2.19_2.2.19-2_all.deb stable/main/binary-all/kernel-source-2.2.19_2.2.19-2_all.deb stable/main/source/kernel-source-2.2.19_2.2.19-2.diff.gz kernel-source-2.2.19 (2.2.19-2) stable unstable; urgency=low * Removed bogus ifdef from drivers/scsi/ibmmca.c. stable/main/source/kernel-source-2.2.18_2.2.18-1.diff.gz stable/main/binary-all/kernel-source-2.2.18_2.2.18-1_all.deb stable/main/binary-all/kernel-doc-2.2.18_2.2.18-1_all.deb stable/main/source/kernel-source-2.2.18_2.2.18-1.dsc stable/main/source/kernel-source-2.2.18_2.2.18.orig.tar.gz kernel-source-2.2.18 (2.2.18-1) stable unstable; urgency=low * New upstream release. stable/main/binary-all/kernel-patch-2.2.19pre17-powerpc_20010304-2.2.19pre17-1_all.deb stable/main/source/kernel-patch-2.2.19pre17-powerpc_20010304-2.2.19pre17-1.tar.gz stable/main/binary-powerpc/kernel-image-2.2.19pre17-chrp_2.2.19pre17-1_powerpc.deb stable/main/binary-powerpc/kernel-image-2.2.19pre17-pmac_2.2.19pre17-1_powerpc.deb stable/main/source/kernel-patch-2.2.19pre17-powerpc_20010304-2.2.19pre17-1.dsc stable/main/binary-powerpc/kernel-headers-2.2.19pre17_2.2.19pre17-1_powerpc.deb stable/main/binary-powerpc/kernel-image-2.2.19pre17-prep_2.2.19pre17-1_powerpc.deb kernel-patch-2.2.19pre17-powerpc (20010304-2.2.19pre17-1) stable unstable; urgency=medium * New upstream version. * The patch is down to 299 lines! * Use --bzip2 to tar. * Update copyright and changelog files. stable/main/source/kernel-patch-2.2.19pre17-ide_20001221-1.dsc stable/main/source/kernel-patch-2.2.19pre17-ide_20001221-1.tar.gz stable/main/binary-all/kernel-patch-2.2.19pre17-ide_20001221-1_all.deb kernel-patch-2.2.19pre17-ide (20001221-1) stable unstable; urgency=low * Updated patch for 2.2.19pre17. stable/main/source/kernel-patch-2.2.19-powerpc_2.2.19-2.dsc stable/main/binary-powerpc/kernel-headers-2.2.19_2.2.19-2_powerpc.deb stable/main/binary-powerpc/kernel-image-2.2.19-prep_2.2.19-2_powerpc.deb stable/main/binary-powerpc/kernel-image-2.2.19-chrp_2.2.19-2_powerpc.deb stable/main/binary-all/kernel-patch-2.2.19-powerpc_2.2.19-2_all.deb stable/main/source/kernel-patch-2.2.19-powerpc_2.2.19-2.tar.gz stable/main/binary-powerpc/kernel-image-2.2.19-pmac_2.2.19-2_powerpc.deb kernel-patch-2.2.19-powerpc (2.2.19-2) stable unstable; urgency=medium * Turn off CONFIG_MAGIC_SYSRQ for now - it breaks the arrow keys on some iMac keyboards still (Closes: #93247). * Add a patch to make enter work at boot time, finally! * Enable a bunch of 3COM NIC's. * Remove configs we don't support - they haven't built in ages... stable/main/source/kernel-patch-2.2.19-ide_20010325-1.dsc stable/main/source/kernel-patch-2.2.19-ide_20010325-1.tar.gz stable/main/binary-all/kernel-patch-2.2.19-ide_20010325-1_all.deb kernel-patch-2.2.19-ide (20010325-1) stable unstable; urgency=low * New upstream release. stable/main/source/kernel-image-sparc-2.2_6.dsc stable/main/binary-all/kernel-headers-2.2.19-sparc_6_all.deb stable/main/binary-sparc/kernel-image-2.2.19-sun4dm-smp_6_sparc.deb stable/main/binary-sparc/kernel-image-2.2.19-sun4u_6_sparc.deb stable/main/source/kernel-image-sparc-2.2_6.tar.gz stable/main/binary-sparc/kernel-image-2.2.19-sun4dm-pci_6_sparc.deb stable/main/binary-sparc/kernel-image-2.2.19-sun4u-smp_6_sparc.deb stable/main/binary-sparc/kernel-image-2.2.19-sun4cdm_6_sparc.deb kernel-image-sparc-2.2 (6) stable unstable; urgency=low * Using 2.2.19 final now * remove support directories for all by 2.2.19 now stable/main/binary-i386/kernel-image-2.2.19_2.2.19-2_i386.deb stable/main/binary-i386/kernel-headers-2.2.19_2.2.19-2_i386.deb stable/main/binary-i386/kernel-image-2.2.19-compact_2.2.19-2_i386.deb stable/main/binary-i386/kernel-headers-2.2.19-compact_2.2.19-2_i386.deb stable/main/binary-i386/kernel-headers-2.2.19-ide_2.2.19-2_i386.deb stable/main/source/kernel-image-2.2.19-i386_2.2.19-2.dsc stable/main/binary-i386/kernel-image-2.2.19-idepci_2.2.19-2_i386.deb stable/main/binary-i386/kernel-headers-2.2.19-idepci_2.2.19-2_i386.deb stable/main/source/kernel-image-2.2.19-i386_2.2.19-2.tar.gz stable/main/binary-i386/kernel-image-2.2.19-ide_2.2.19-2_i386.deb kernel-image-2.2.19-i386 (2.2.19-2) stable unstable; urgency=low * Compiled against kernel-source 2.2.19-2 (closes: #92951). * Turn SCSI_MULTI_LUN off since it may cause hangs and can be turned on at runtime (closes: #64306). * Build kernel-headers package for ide. * Added compact and idepci flavours. stable/main/source/kernel-image-2.2.19-alpha_2.2.19-1.dsc stable/main/binary-alpha/kernel-image-2.2.19-generic_2.2.19-1_alpha.deb stable/main/binary-alpha/kernel-headers-2.2.19_2.2.19-1_alpha.deb stable/main/source/kernel-image-2.2.19-alpha_2.2.19-1.tar.gz stable/main/binary-alpha/kernel-image-2.2.19-jensen_2.2.19-1_alpha.deb stable/main/binary-alpha/kernel-image-2.2.19-nautilus_2.2.19-1_alpha.deb stable/main/binary-alpha/kernel-image-2.2.19-smp_2.2.19-1_alpha.deb kernel-image-2.2.19-alpha (2.2.19-1) stable unstable; urgency=low * New upstream release. stable/main/source/kernel-image-2.2.19pre17-idepci_2.2.19pre17-3.tar.gz stable/main/source/kernel-image-2.2.19pre17-idepci_2.2.19pre17-3.dsc stable/main/binary-i386/kernel-image-2.2.19pre17-idepci_2.2.19pre17-3_i386.deb stable/main/binary-i386/kernel-headers-2.2.19pre17-idepci_2.2.19pre17-3_i386.deb kernel-image-2.2.19pre17-idepci (2.2.19pre17-3) stable unstable; urgency=low * don't manipulate KERNELRELEASE, kernel-source-2.2.19pre17 already did stable/main/source/kernel-image-2.2.19pre17-compact_2.2.19pre17-3.dsc stable/main/binary-i386/kernel-image-2.2.19pre17-compact_2.2.19pre17-3_i386.deb stable/main/binary-i386/kernel-headers-2.2.19pre17-compact_2.2.19pre17-3_i386.deb stable/main/source/kernel-image-2.2.19pre17-compact_2.2.19pre17-3.tar.gz kernel-image-2.2.19pre17-compact (2.2.19pre17-3) stable unstable; urgency=low * don't manipulate KERNELRELEASE, kernel-source-2.2.19pre17 already did stable/main/source/yaboot_0.9-0.30-3.dsc stable/main/binary-powerpc/yaboot_0.9-0.30-3_powerpc.deb stable/main/source/yaboot_0.9-0.30-3.diff.gz yaboot (0.9-0.30-3) stable unstable; urgency=medium * Use "MacRISC" instead of the entire list of machine types in . One line change, should fix booting on all recent machines. (Well, one line change in four places). stable/main/source/xviddetect_0.3-4.dsc stable/main/source/xviddetect_0.3-4.tar.gz stable/main/binary-all/xviddetect_0.3-4_all.deb xviddetect (0.3-4) stable; urgency=low * This is now a stable-only package; xviddetect has been superceded by dexter in woody * added /proc check. Closes: #64298 * added modeline for 1280x960. Closes: #71814 * Added entries to video.ids db. Closes: #86034, #61910, #67667, #68370, #69541, #71885, #72273, #74287, #75606, #77411, #78164, #78804, #79884, #80452, #85312, #87121, #87160 stable/main/binary-sparc/xtide_2.2a-1_sparc.deb xtide (2.2a-1) stable; urgency=high * The Debian source archive xtide_2.2.orig.tar.gz was not pristine and included tidal harmonics data downloaded from the XTide web site. It was recently discovered that some of the data included in the above archive may be in violation of copyright. Therefore, XTide's author removed the data in question from his web site and produced new harmonics files which were included in this 2.2a Debian version. stable/main/binary-powerpc/xtide_2.2a-1_powerpc.deb xtide (2.2a-1) stable; urgency=high * The Debian source archive xtide_2.2.orig.tar.gz was not pristine and included tidal harmonics data downloaded from the XTide web site. It was recently discovered that some of the data included in the above archive may be in violation of copyright. Therefore, XTide's author removed the data in question from his web site and produced new harmonics files which were included in this 2.2a Debian version. stable/main/binary-m68k/xtide_2.2a-1_m68k.deb xtide (2.2a-1) stable; urgency=high * The Debian source archive xtide_2.2.orig.tar.gz was not pristine and included tidal harmonics data downloaded from the XTide web site. It was recently discovered that some of the data included in the above archive may be in violation of copyright. Therefore, XTide's author removed the data in question from his web site and produced new harmonics files which were included in this 2.2a Debian version. stable/main/source/xtide_2.2a-1.dsc stable/main/binary-i386/xtide_2.2a-1_i386.deb stable/main/source/xtide_2.2a-1.diff.gz stable/main/source/xtide_2.2a.orig.tar.gz xtide (2.2a-1) stable; urgency=high * The Debian source archive xtide_2.2.orig.tar.gz was not pristine and included tidal harmonics data downloaded from the XTide web site. It was recently discovered that some of the data included in the above archive may be in violation of copyright. Therefore, XTide's author removed the data in question from his web site and produced new harmonics files which were included in this 2.2a Debian version. stable/main/binary-alpha/xtide_2.2a-1_alpha.deb stable/main/binary-arm/xtide_2.2a-1_arm.deb xtide (2.2a-1) stable; urgency=high * The Debian source archive xtide_2.2.orig.tar.gz was not pristine and included tidal harmonics data downloaded from the XTide web site. It was recently discovered that some of the data included in the above archive may be in violation of copyright. Therefore, XTide's author removed the data in question from his web site and produced new harmonics files which were included in this 2.2a Debian version. stable/main/binary-sparc/xpdf_0.90-8_sparc.deb xpdf (0.90-8) stable; urgency=low * Applied patch to fix bugs in the security patch (closes: #77231) * The bug occurs when viewing compressed pdfs only. stable/main/binary-powerpc/xpdf_0.90-8_powerpc.deb xpdf (0.90-8) stable; urgency=low * Applied patch to fix bugs in the security patch (closes: #77231) * The bug occurs when viewing compressed pdfs only. stable/main/binary-m68k/xpdf_0.90-8_m68k.deb xpdf (0.90-8) stable; urgency=low * Applied patch to fix bugs in the security patch (closes: #77231) * The bug occurs when viewing compressed pdfs only. stable/main/source/xpdf_0.90-8.diff.gz stable/main/binary-i386/xpdf_0.90-8_i386.deb stable/main/source/xpdf_0.90-8.dsc xpdf (0.90-8) stable; urgency=low * Applied patch to fix bugs in the security patch (closes: #77231) * The bug occurs when viewing compressed pdfs only. stable/main/binary-arm/xpdf_0.90-8_arm.deb xpdf (0.90-8) stable; urgency=low * Applied patch to fix bugs in the security patch (closes: #77231) * The bug occurs when viewing compressed pdfs only. stable/main/binary-alpha/xpdf_0.90-8_alpha.deb xpdf (0.90-8) stable; urgency=low * Applied patch to fix bugs in the security patch (closes: #77231) * The bug occurs when viewing compressed pdfs only. stable/main/binary-sparc/xlockmore_4.15-10_sparc.deb stable/main/binary-sparc/xlockmore-gl_4.15-10_sparc.deb xlockmore (4.15-10) stable unstable; urgency=high * correct suidunregister handling (Closes: #69357) stable/main/binary-sparc/xserver-xsun-mono_3.3.6-11potato32_sparc.deb stable/main/binary-sparc/xnest_3.3.6-11potato32_sparc.deb stable/main/binary-sparc/rstartd_3.3.6-11potato32_sparc.deb stable/main/binary-sparc/xext_3.3.6-11potato32_sparc.deb stable/main/binary-sparc/xprt_3.3.6-11potato32_sparc.deb stable/main/binary-sparc/twm_3.3.6-11potato32_sparc.deb stable/main/binary-sparc/xmh_3.3.6-11potato32_sparc.deb stable/main/binary-sparc/xserver-fbdev_3.3.6-11potato32_sparc.deb stable/main/binary-sparc/xvfb_3.3.6-11potato32_sparc.deb stable/main/binary-sparc/xproxy_3.3.6-11potato32_sparc.deb stable/main/binary-sparc/xlib6g-dev_3.3.6-11potato32_sparc.deb stable/main/binary-sparc/xbase-clients_3.3.6-11potato32_sparc.deb stable/main/binary-sparc/xlib6g-static_3.3.6-11potato32_sparc.deb stable/main/binary-sparc/xsm_3.3.6-11potato32_sparc.deb stable/main/binary-sparc/xserver-mach64_3.3.6-11potato32_sparc.deb stable/main/binary-sparc/xdm_3.3.6-11potato32_sparc.deb stable/main/binary-sparc/xserver-common_3.3.6-11potato32_sparc.deb stable/main/binary-sparc/xserver-xsun_3.3.6-11potato32_sparc.deb stable/main/binary-sparc/xlib6g_3.3.6-11potato32_sparc.deb stable/main/binary-sparc/xserver-3dlabs_3.3.6-11potato32_sparc.deb stable/main/binary-sparc/xserver-xsun24_3.3.6-11potato32_sparc.deb stable/main/binary-sparc/xterm_3.3.6-11potato32_sparc.deb stable/main/binary-sparc/xfs_3.3.6-11potato32_sparc.deb xfree86-1 (3.3.6-11potato32) stable; urgency=HIGH * SECURITY release - fix for XC-SECURITY denial-of-service attack - fix for potential stack smash in Xlib's _XAsyncReply() - fix for insecure tempfile handling in Xaw's AsciiSrc and MultiSrc widgets - fix for insecure tempfile handling in imake's glibc detection - fix for insecure tempfile handling in imake's manpage install rules - fix possible buffer overflow (NOT on stack) in xdm xdmcp code - fix a 1-byte overflow in Xtrans.c - fix possible buffer overflow in Xtrannsock.c - fix a buffer overflow with the -xkbmap X server flag - fix insecure tempfile handling in makedepend * patches #027, #028, #040, #049, #050, #052, #065, and #067 now obsolete and removed * all security fixes moved to patch #070 * patch #068: revert Cyrix driver to version from XFree86 3.3.3.1 (Closes: #79972) * patch #069: backport font path handling functions from 4.x's dixfonts.c (X server) so that the X server doesn't discard your entire group of font paths just because one can't be used (e.g., a local font server) stable/main/binary-powerpc/xdm_3.3.6-11potato32_powerpc.deb stable/main/binary-powerpc/xmh_3.3.6-11potato32_powerpc.deb stable/main/binary-powerpc/xserver-fbdev_3.3.6-11potato32_powerpc.deb stable/main/binary-powerpc/xprt_3.3.6-11potato32_powerpc.deb stable/main/binary-powerpc/xlib6g_3.3.6-11potato32_powerpc.deb stable/main/binary-powerpc/xext_3.3.6-11potato32_powerpc.deb stable/main/binary-powerpc/xproxy_3.3.6-11potato32_powerpc.deb stable/main/source/xfree86-1_3.3.6-11potato32.dsc stable/main/binary-powerpc/xlib6g-dev_3.3.6-11potato32_powerpc.deb stable/main/binary-powerpc/twm_3.3.6-11potato32_powerpc.deb stable/main/binary-powerpc/xsm_3.3.6-11potato32_powerpc.deb stable/main/source/xfree86-1_3.3.6-11potato32.diff.gz stable/main/binary-powerpc/xnest_3.3.6-11potato32_powerpc.deb stable/main/binary-powerpc/xvfb_3.3.6-11potato32_powerpc.deb stable/main/binary-powerpc/rstartd_3.3.6-11potato32_powerpc.deb stable/main/binary-powerpc/xfs_3.3.6-11potato32_powerpc.deb stable/main/binary-powerpc/xbase-clients_3.3.6-11potato32_powerpc.deb stable/main/binary-powerpc/xterm_3.3.6-11potato32_powerpc.deb stable/main/binary-powerpc/xserver-common_3.3.6-11potato32_powerpc.deb stable/main/binary-powerpc/xlib6g-static_3.3.6-11potato32_powerpc.deb xfree86-1 (3.3.6-11potato32) stable; urgency=HIGH * SECURITY release - fix for XC-SECURITY denial-of-service attack - fix for potential stack smash in Xlib's _XAsyncReply() - fix for insecure tempfile handling in Xaw's AsciiSrc and MultiSrc widgets - fix for insecure tempfile handling in imake's glibc detection - fix for insecure tempfile handling in imake's manpage install rules - fix possible buffer overflow (NOT on stack) in xdm xdmcp code - fix a 1-byte overflow in Xtrans.c - fix possible buffer overflow in Xtrannsock.c - fix a buffer overflow with the -xkbmap X server flag - fix insecure tempfile handling in makedepend * patches #027, #028, #040, #049, #050, #052, #065, and #067 now obsolete and removed * all security fixes moved to patch #070 * patch #068: revert Cyrix driver to version from XFree86 3.3.3.1 (Closes: #79972) * patch #069: backport font path handling functions from 4.x's dixfonts.c (X server) so that the X server doesn't discard your entire group of font paths just because one can't be used (e.g., a local font server) stable/main/binary-m68k/xsm_3.3.6-11potato32_m68k.deb stable/main/binary-m68k/rstartd_3.3.6-11potato32_m68k.deb stable/main/binary-m68k/xlib6g-dev_3.3.6-11potato32_m68k.deb stable/main/binary-m68k/xserver-common_3.3.6-11potato32_m68k.deb stable/main/binary-m68k/xfs_3.3.6-11potato32_m68k.deb stable/main/binary-m68k/xbase-clients_3.3.6-11potato32_m68k.deb stable/main/binary-m68k/xvfb_3.3.6-11potato32_m68k.deb stable/main/binary-m68k/xterm_3.3.6-11potato32_m68k.deb stable/main/binary-m68k/xdm_3.3.6-11potato32_m68k.deb stable/main/binary-m68k/twm_3.3.6-11potato32_m68k.deb stable/main/binary-m68k/xlib6_3.3.6-11potato32_m68k.deb stable/main/binary-m68k/xlib6g_3.3.6-11potato32_m68k.deb stable/main/binary-m68k/xlib6-altdev_3.3.6-11potato32_m68k.deb stable/main/binary-m68k/xnest_3.3.6-11potato32_m68k.deb stable/main/binary-m68k/xlib6g-static_3.3.6-11potato32_m68k.deb stable/main/binary-m68k/xext_3.3.6-11potato32_m68k.deb stable/main/binary-m68k/xserver-fbdev_3.3.6-11potato32_m68k.deb stable/main/binary-m68k/xprt_3.3.6-11potato32_m68k.deb stable/main/binary-m68k/xproxy_3.3.6-11potato32_m68k.deb stable/main/binary-m68k/xmh_3.3.6-11potato32_m68k.deb xfree86-1 (3.3.6-11potato32) stable; urgency=HIGH * SECURITY release - fix for XC-SECURITY denial-of-service attack - fix for potential stack smash in Xlib's _XAsyncReply() - fix for insecure tempfile handling in Xaw's AsciiSrc and MultiSrc widgets - fix for insecure tempfile handling in imake's glibc detection - fix for insecure tempfile handling in imake's manpage install rules - fix possible buffer overflow (NOT on stack) in xdm xdmcp code - fix a 1-byte overflow in Xtrans.c - fix possible buffer overflow in Xtrannsock.c - fix a buffer overflow with the -xkbmap X server flag - fix insecure tempfile handling in makedepend * patches #027, #028, #040, #049, #050, #052, #065, and #067 now obsolete and removed * all security fixes moved to patch #070 * patch #068: revert Cyrix driver to version from XFree86 3.3.3.1 (Closes: #79972) * patch #069: backport font path handling functions from 4.x's dixfonts.c (X server) so that the X server doesn't discard your entire group of font paths just because one can't be used (e.g., a local font server) stable/main/binary-i386/xserver-agx_3.3.6-11potato32_i386.deb stable/main/binary-i386/xnest_3.3.6-11potato32_i386.deb stable/main/binary-i386/xfs_3.3.6-11potato32_i386.deb stable/main/binary-i386/xserver-mach64_3.3.6-11potato32_i386.deb stable/main/binary-i386/xserver-8514_3.3.6-11potato32_i386.deb stable/main/binary-i386/xserver-mono_3.3.6-11potato32_i386.deb stable/main/binary-i386/xlib6g_3.3.6-11potato32_i386.deb stable/main/binary-i386/xserver-vga16_3.3.6-11potato32_i386.deb stable/main/binary-i386/xlib6-altdev_3.3.6-11potato32_i386.deb stable/main/binary-i386/twm_3.3.6-11potato32_i386.deb stable/main/binary-i386/xserver-mach8_3.3.6-11potato32_i386.deb stable/main/binary-i386/xserver-p9000_3.3.6-11potato32_i386.deb stable/main/binary-i386/xlib6g-static_3.3.6-11potato32_i386.deb stable/main/binary-i386/xserver-s3v_3.3.6-11potato32_i386.deb stable/main/binary-i386/xterm_3.3.6-11potato32_i386.deb stable/main/binary-i386/xserver-i128_3.3.6-11potato32_i386.deb stable/main/binary-i386/xext_3.3.6-11potato32_i386.deb stable/main/binary-i386/xlib6g-dev_3.3.6-11potato32_i386.deb stable/main/binary-i386/xserver-s3_3.3.6-11potato32_i386.deb stable/main/binary-i386/xproxy_3.3.6-11potato32_i386.deb stable/main/binary-i386/xvfb_3.3.6-11potato32_i386.deb stable/main/binary-i386/xbase-clients_3.3.6-11potato32_i386.deb stable/main/binary-i386/xserver-common_3.3.6-11potato32_i386.deb stable/main/binary-i386/xprt_3.3.6-11potato32_i386.deb stable/main/binary-i386/xmh_3.3.6-11potato32_i386.deb stable/main/binary-i386/xdm_3.3.6-11potato32_i386.deb stable/main/binary-i386/xserver-fbdev_3.3.6-11potato32_i386.deb stable/main/binary-i386/xserver-w32_3.3.6-11potato32_i386.deb stable/main/binary-i386/xserver-mach32_3.3.6-11potato32_i386.deb stable/main/binary-i386/xserver-svga_3.3.6-11potato32_i386.deb stable/main/binary-i386/xserver-3dlabs_3.3.6-11potato32_i386.deb stable/main/binary-i386/xsm_3.3.6-11potato32_i386.deb stable/main/binary-i386/xf86setup_3.3.6-11potato32_i386.deb stable/main/binary-i386/rstartd_3.3.6-11potato32_i386.deb stable/main/binary-i386/xlib6_3.3.6-11potato32_i386.deb xfree86-1 (3.3.6-11potato32) stable; urgency=HIGH * SECURITY release - fix for XC-SECURITY denial-of-service attack - fix for potential stack smash in Xlib's _XAsyncReply() - fix for insecure tempfile handling in Xaw's AsciiSrc and MultiSrc widgets - fix for insecure tempfile handling in imake's glibc detection - fix for insecure tempfile handling in imake's manpage install rules - fix possible buffer overflow (NOT on stack) in xdm xdmcp code - fix a 1-byte overflow in Xtrans.c - fix possible buffer overflow in Xtrannsock.c - fix a buffer overflow with the -xkbmap X server flag - fix insecure tempfile handling in makedepend * patches #027, #028, #040, #049, #050, #052, #065, and #067 now obsolete and removed * all security fixes moved to patch #070 * patch #068: revert Cyrix driver to version from XFree86 3.3.3.1 (Closes: #79972) * patch #069: backport font path handling functions from 4.x's dixfonts.c (X server) so that the X server doesn't discard your entire group of font paths just because one can't be used (e.g., a local font server) stable/main/binary-arm/rstartd_3.3.6-11potato32_arm.deb stable/main/binary-arm/xterm_3.3.6-11potato32_arm.deb stable/main/binary-arm/xprt_3.3.6-11potato32_arm.deb stable/main/binary-arm/xserver-fbdev_3.3.6-11potato32_arm.deb stable/main/binary-arm/twm_3.3.6-11potato32_arm.deb stable/main/binary-arm/xvfb_3.3.6-11potato32_arm.deb stable/main/binary-arm/xmh_3.3.6-11potato32_arm.deb stable/main/binary-arm/xnest_3.3.6-11potato32_arm.deb stable/main/binary-arm/xlib6g_3.3.6-11potato32_arm.deb stable/main/binary-arm/xext_3.3.6-11potato32_arm.deb stable/main/binary-arm/xdm_3.3.6-11potato32_arm.deb stable/main/binary-arm/xserver-common_3.3.6-11potato32_arm.deb stable/main/binary-all/xfree86-common_3.3.6-11potato32_all.deb stable/main/binary-arm/xlib6g-static_3.3.6-11potato32_arm.deb stable/main/binary-arm/xlib6g-dev_3.3.6-11potato32_arm.deb stable/main/binary-arm/xsm_3.3.6-11potato32_arm.deb stable/main/binary-arm/xproxy_3.3.6-11potato32_arm.deb stable/main/binary-all/rstart_3.3.6-11potato32_all.deb stable/main/binary-all/xbase_3.3.6-11potato32_all.deb stable/main/binary-arm/xfs_3.3.6-11potato32_arm.deb stable/main/binary-arm/xbase-clients_3.3.6-11potato32_arm.deb xfree86-1 (3.3.6-11potato32) stable; urgency=HIGH * SECURITY release - fix for XC-SECURITY denial-of-service attack - fix for potential stack smash in Xlib's _XAsyncReply() - fix for insecure tempfile handling in Xaw's AsciiSrc and MultiSrc widgets - fix for insecure tempfile handling in imake's glibc detection - fix for insecure tempfile handling in imake's manpage install rules - fix possible buffer overflow (NOT on stack) in xdm xdmcp code - fix a 1-byte overflow in Xtrans.c - fix possible buffer overflow in Xtrannsock.c - fix a buffer overflow with the -xkbmap X server flag - fix insecure tempfile handling in makedepend * patches #027, #028, #040, #049, #050, #052, #065, and #067 now obsolete and removed * all security fixes moved to patch #070 * patch #068: revert Cyrix driver to version from XFree86 3.3.3.1 (Closes: #79972) * patch #069: backport font path handling functions from 4.x's dixfonts.c (X server) so that the X server doesn't discard your entire group of font paths just because one can't be used (e.g., a local font server) stable/main/binary-alpha/xfs_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xserver-s3v_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xprt_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/twm_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xext_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xproxy_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xmh_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xserver-mono_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xserver-i128_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xserver-mach64_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xlib6g-dev_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xserver-svga_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xserver-common_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xvfb_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xbase-clients_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xlib6g-static_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xsm_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xserver-3dlabs_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xdm_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xserver-vga16_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xf86setup_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xserver-tga_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xnest_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/rstartd_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xserver-p9000_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xterm_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xserver-fbdev_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xlib6g_3.3.6-11potato32_alpha.deb stable/main/binary-alpha/xserver-s3_3.3.6-11potato32_alpha.deb xfree86-1 (3.3.6-11potato32) stable; urgency=HIGH * SECURITY release - fix for XC-SECURITY denial-of-service attack - fix for potential stack smash in Xlib's _XAsyncReply() - fix for insecure tempfile handling in Xaw's AsciiSrc and MultiSrc widgets - fix for insecure tempfile handling in imake's glibc detection - fix for insecure tempfile handling in imake's manpage install rules - fix possible buffer overflow (NOT on stack) in xdm xdmcp code - fix a 1-byte overflow in Xtrans.c - fix possible buffer overflow in Xtrannsock.c - fix a buffer overflow with the -xkbmap X server flag - fix insecure tempfile handling in makedepend * patches #027, #028, #040, #049, #050, #052, #065, and #067 now obsolete and removed * all security fixes moved to patch #070 * patch #068: revert Cyrix driver to version from XFree86 3.3.3.1 (Closes: #79972) * patch #069: backport font path handling functions from 4.x's dixfonts.c (X server) so that the X server doesn't discard your entire group of font paths just because one can't be used (e.g., a local font server) stable/main/source/xfonts-cmex-big5p_0.1-4potato5.diff.gz stable/main/source/xfonts-cmex-big5p_0.1-4potato5.dsc stable/main/binary-all/xfonts-cmex-big5p_0.1-4potato5_all.deb xfonts-cmex-big5p (0.1-4potato5) stable; urgency=low * Added code in postinst to rmdir /usr/X11R6/lib/X11/fonts/chinese if it is empty or just contains font.dir and fonts.alias (Closes: Bug#54994). * [debian/control]: Removed an extraneous colon at the end of the Build-Depends line (Closes: #76505). stable/main/binary-sparc/xemacs21-mule_21.1.10-5_sparc.deb stable/main/binary-sparc/xemacs21-nomule_21.1.10-5_sparc.deb stable/main/binary-sparc/xemacs21-mule-canna-wnn_21.1.10-5_sparc.deb stable/main/binary-sparc/xemacs21-bin_21.1.10-5_sparc.deb xemacs21 (21.1.10-5) stable; urgency=low * Copy gnuserv source from 21.1.14. This is security fix for gnuserv overflow problem. Not closing here. Will Close in unstable upload. stable/main/binary-powerpc/xemacs21-mule_21.1.10-5_powerpc.deb stable/main/binary-powerpc/xemacs21-bin_21.1.10-5_powerpc.deb stable/main/binary-powerpc/xemacs21-mule-canna-wnn_21.1.10-5_powerpc.deb stable/main/binary-powerpc/xemacs21-nomule_21.1.10-5_powerpc.deb xemacs21 (21.1.10-5) stable; urgency=low * Copy gnuserv source from 21.1.14. This is security fix for gnuserv overflow problem. Not closing here. Will Close in unstable upload. stable/main/binary-all/xemacs21-support_21.1.10-5_all.deb stable/main/binary-all/xemacs21_21.1.10-5_all.deb stable/main/source/xemacs21_21.1.10-5.diff.gz stable/main/binary-i386/xemacs21-mule_21.1.10-5_i386.deb stable/main/binary-all/xemacs21-supportel_21.1.10-5_all.deb stable/main/binary-i386/xemacs21-nomule_21.1.10-5_i386.deb stable/main/binary-i386/xemacs21-mule-canna-wnn_21.1.10-5_i386.deb stable/main/source/xemacs21_21.1.10-5.dsc stable/main/binary-i386/xemacs21-bin_21.1.10-5_i386.deb xemacs21 (21.1.10-5) stable; urgency=low * Copy gnuserv source from 21.1.14. This is security fix for gnuserv overflow problem. Not closing here. Will Close in unstable upload. stable/main/binary-arm/xemacs21-nomule_21.1.10-5_arm.deb stable/main/binary-arm/xemacs21-mule-canna-wnn_21.1.10-5_arm.deb stable/main/binary-arm/xemacs21-bin_21.1.10-5_arm.deb stable/main/binary-arm/xemacs21-mule_21.1.10-5_arm.deb xemacs21 (21.1.10-5) stable; urgency=low * Copy gnuserv source from 21.1.14. This is security fix for gnuserv overflow problem. Not closing here. Will Close in unstable upload. stable/main/binary-alpha/xemacs21-bin_21.1.10-5_alpha.deb stable/main/binary-alpha/xemacs21-mule-canna-wnn_21.1.10-5_alpha.deb stable/main/binary-alpha/xemacs21-nomule_21.1.10-5_alpha.deb stable/main/binary-alpha/xemacs21-mule_21.1.10-5_alpha.deb xemacs21 (21.1.10-5) stable; urgency=low * Copy gnuserv source from 21.1.14. This is security fix for gnuserv overflow problem. Not closing here. Will Close in unstable upload. stable/main/binary-powerpc/gnuserv_2.1alpha-5.1_powerpc.deb stable/main/binary-m68k/gnuserv_2.1alpha-5.1_m68k.deb stable/main/binary-sparc/gnuserv_2.1alpha-5.1_sparc.deb stable/main/source/gnuserv_2.1alpha-5.1.diff.gz stable/main/binary-i386/gnuserv_2.1alpha-5.1_i386.deb stable/main/binary-alpha/gnuserv_2.1alpha-5.1_alpha.deb stable/main/source/gnuserv_2.1alpha-5.1.dsc stable/main/binary-arm/gnuserv_2.1alpha-5.1_arm.deb gnuserv (2.1alpha-5.1) stable; urgency=high * Non-Maintainer Upload by Security Team * Applied patch from Klaus Frank that fixes weak access control which could lead random remote users execute commands under the local user id bypassing access control. stable/main/source/wu-ftpd_2.6.0-5.3.dsc stable/main/binary-alpha/wu-ftpd_2.6.0-5.3_alpha.deb stable/main/binary-arm/wu-ftpd_2.6.0-5.3_arm.deb stable/main/binary-m68k/wu-ftpd_2.6.0-5.3_m68k.deb stable/main/binary-powerpc/wu-ftpd_2.6.0-5.3_powerpc.deb stable/main/binary-i386/wu-ftpd_2.6.0-5.3_i386.deb stable/main/binary-sparc/wu-ftpd_2.6.0-5.3_sparc.deb stable/main/source/wu-ftpd_2.6.0-5.3.diff.gz stable/main/binary-all/wu-ftpd-academ_2.6.0-5.3_all.deb wu-ftpd (2.6.0-5.3) stable; urgency=low * Non-maintainer upload by Security Team * Added /etc/pam.d/wu-ftpd to conffiles stable/main/binary-sparc/watchdog_5.1-2_sparc.deb watchdog (5.1-2) stable unstable; urgency=low * Uploaded to stable, adds --noscripts to debhelper invocation, closes: #53298, #61939 (grave). stable/main/binary-powerpc/watchdog_5.1-2_powerpc.deb watchdog (5.1-2) stable unstable; urgency=low * Uploaded to stable, adds --noscripts to debhelper invocation, closes: #53298, #61939 (grave). stable/main/binary-m68k/watchdog_5.1-2_m68k.deb watchdog (5.1-2) stable unstable; urgency=low * Uploaded to stable, adds --noscripts to debhelper invocation, closes: #53298, #61939 (grave). stable/main/source/watchdog_5.1-2.diff.gz stable/main/source/watchdog_5.1-2.dsc stable/main/binary-i386/watchdog_5.1-2_i386.deb watchdog (5.1-2) stable unstable; urgency=low * Uploaded to stable, adds --noscripts to debhelper invocation, closes: #53298, #61939 (grave). stable/main/binary-arm/watchdog_5.1-2_arm.deb watchdog (5.1-2) stable unstable; urgency=low * Uploaded to stable, adds --noscripts to debhelper invocation, closes: #53298, #61939 (grave). stable/main/binary-alpha/watchdog_5.1-2_alpha.deb watchdog (5.1-2) stable; urgency=low * Uploaded to stable, adds --noscripts to debhelper invocation, closes: #53298, #61939 (grave). stable/main/source/w3m_0.1.10+0.1.11pre+kokb23-1.dsc stable/main/binary-i386/w3m_0.1.10+0.1.11pre+kokb23-1_i386.deb stable/main/source/w3m_0.1.10+0.1.11pre+kokb23.orig.tar.gz stable/main/source/w3m_0.1.10+0.1.11pre+kokb23-1.diff.gz w3m (0.1.10+0.1.11pre+kokb23-1) stable unstable; urgency=high * new upstream pre release more security fixes - fix table stack overflow - more internal tag and attribute check - fix some buffer overflow bug null character handling * w3m-dev-01500 fix risky code in url.c stable/main/binary-alpha/w3m_0.1.10+0.1.11pre+kokb23-1_alpha.deb w3m (0.1.10+0.1.11pre+kokb23-1) stable unstable; urgency=high * new upstream pre release more security fixes - fix table stack overflow - more internal tag and attribute check - fix some buffer overflow bug null character handling * w3m-dev-01500 fix risky code in url.c stable/main/binary-sparc/w3m_0.1.10+0.1.11pre+kokb23-1_sparc.deb stable/main/binary-arm/w3m_0.1.10+0.1.11pre+kokb23-1_arm.deb w3m (0.1.10+0.1.11pre+kokb23-1) stable; urgency=high * new upstream pre release more security fixes - fix table stack overflow - more internal tag and attribute check - fix some buffer overflow bug null character handling * w3m-dev-01500 fix risky code in url.c stable/main/binary-sparc/uisp_0.1.6-4_sparc.deb uisp (0.1.6-4) frozen unstable; urgency=low * Removed PSPI functionality entirely. stable/main/binary-arm/uisp_0.1.6-4_arm.deb uisp (0.1.6-4) stable; urgency=low * Removed PSPI functionality entirely. stable/main/binary-sparc/traceroute-nanog_6.0-2_sparc.deb traceroute-nanog (6.0-2) stable unstable; urgency=high * Fixed possible multiple local root exploits (Closes: #74793). * Removed changelog.gz: it's not a changelog (Closes: #64640). * Added a man page (Closes: #64637). * Added FAQ document. stable/main/binary-sparc/tmpreaper_1.4.12_sparc.deb tmpreaper (1.4.12) stable unstable; urgency=high * Limit fork recursion to foil deep directory nesting attack. closes:#71249 stable/main/binary-powerpc/tinyproxy_1.3.1-2_powerpc.deb tinyproxy (1.3.1-2) stable unstable; urgency=high * Fixes remotely exploitable buffer overflow in utils.c (Closes: #83182) * Updated to policy version 3.2.1 * Default port noted in documentation (Closes: #83150) stable/main/binary-i386/tinyproxy_1.3.1-2_i386.deb stable/main/source/tinyproxy_1.3.1-2.diff.gz stable/main/source/tinyproxy_1.3.1-2.dsc tinyproxy (1.3.1-2) stable unstable; urgency=high * Fixes remotely exploitable buffer overflow in utils.c (Closes: #83182) * Updated to policy version 3.2.1 * Default port noted in documentation (Closes: #83150) stable/main/binary-sparc/tinyproxy_1.3.1-2_sparc.deb stable/main/binary-arm/tinyproxy_1.3.1-2_arm.deb stable/main/binary-m68k/tinyproxy_1.3.1-2_m68k.deb stable/main/binary-alpha/tinyproxy_1.3.1-2_alpha.deb tinyproxy (1.3.1-2) stable; urgency=high * Fixes remotely exploitable buffer overflow in utils.c (Closes: #83182) * Updated to policy version 3.2.1 * Default port noted in documentation (Closes: #83150) stable/main/binary-all/tfm-arphic-bsmi00lp_2.11_all.deb stable/main/source/tfm-arphic_2.11.tar.gz stable/main/binary-all/tfm-arphic-gkai00mp_2.11_all.deb stable/main/binary-all/tfm-arphic-gbsn00lp_2.11_all.deb stable/main/source/tfm-arphic_2.11.dsc stable/main/binary-all/tfm-arphic-bkai00mp_2.11_all.deb tfm-arphic (2.11) stable unstable; urgency=medium * Added "Depends: tetex-bin" because mktexlsr and kpsewhich are used in postinst and postrm. Thanks for the bug report, Ryan Murray! Closes: Bug#84099. stable/main/binary-m68k/tcpdump_3.4a6-6_m68k.deb stable/main/binary-sparc/tcpdump_3.4a6-6_sparc.deb stable/main/binary-alpha/tcpdump_3.4a6-6_alpha.deb tcpdump (3.4a6-6) stable; urgency=low * Update both config.guess and config.sub so that arm builds properly * Recompiled against right libpcap (i386 only). (Closes: #77991). Other architecures need not be updated but for i386 this is grave. stable/main/source/task-chinese_0.6potato1.dsc stable/main/binary-all/task-chinese-t_0.6potato1_all.deb stable/main/source/task-chinese_0.6potato1.tar.gz stable/main/binary-all/task-chinese-s_0.6potato1_all.deb task-chinese (0.6potato1) stable; urgency=low * 'locales' now depends on version >= 2.1.3-17 because LC_COLLATE of zh_TW.Big5 was missing in Potato 2.2r2. * Corrected description of task-chinese-t: changed "Simplified" to "Traditional". stable/main/binary-sparc/syslog-ng_1.4.0rc3-3_sparc.deb syslog-ng (1.4.0rc3-3) stable; urgency=high * Fix a DoS. Also Closes: #84353 stable/main/binary-powerpc/syslog-ng_1.4.0rc3-3_powerpc.deb syslog-ng (1.4.0rc3-3) stable; urgency=high * Fix a DoS. Also Closes: #84353 stable/main/binary-m68k/syslog-ng_1.4.0rc3-3_m68k.deb syslog-ng (1.4.0rc3-3) stable; urgency=high * Fix a DoS. Also Closes: #84353 stable/main/source/syslog-ng_1.4.0rc3-3.dsc stable/main/source/syslog-ng_1.4.0rc3-3.diff.gz stable/main/binary-i386/syslog-ng_1.4.0rc3-3_i386.deb syslog-ng (1.4.0rc3-3) stable; urgency=high * Fix a DoS. Also Closes: #84353 stable/main/binary-arm/syslog-ng_1.4.0rc3-3_arm.deb syslog-ng (1.4.0rc3-3) stable; urgency=high * Fix a DoS. Also Closes: #84353 stable/main/binary-alpha/syslog-ng_1.4.0rc3-3_alpha.deb syslog-ng (1.4.0rc3-3) stable; urgency=high * Fix a DoS. Also Closes: #84353 stable/main/binary-sparc/sudo_1.6.2p2-2_sparc.deb sudo (1.6.2p2-2) stable; urgency=high * fix for buffer overrun back-ported from 1.6.3p6 stable/main/binary-powerpc/sudo_1.6.2p2-2_powerpc.deb sudo (1.6.2p2-2) stable; urgency=high * fix for buffer overrun back-ported from 1.6.3p6 stable/main/binary-m68k/sudo_1.6.2p2-2_m68k.deb sudo (1.6.2p2-2) stable; urgency=high * fix for buffer overrun back-ported from 1.6.3p6 stable/main/source/sudo_1.6.2p2-2.diff.gz stable/main/source/sudo_1.6.2p2-2.dsc stable/main/binary-i386/sudo_1.6.2p2-2_i386.deb sudo (1.6.2p2-2) stable; urgency=high * fix for buffer overrun back-ported from 1.6.3p6 stable/main/binary-arm/sudo_1.6.2p2-2_arm.deb sudo (1.6.2p2-2) stable; urgency=high * fix for buffer overrun back-ported from 1.6.3p6 stable/main/binary-alpha/sudo_1.6.2p2-2_alpha.deb sudo (1.6.2p2-2) stable; urgency=high * fix for buffer overrun back-ported from 1.6.3p6 stable/main/binary-powerpc/squidclient_2.2.5-3.1_powerpc.deb stable/main/binary-powerpc/squid-cgi_2.2.5-3.1_powerpc.deb stable/main/binary-powerpc/squid_2.2.5-3.1_powerpc.deb squid (2.2.5-3.1) stable; urgency=medium * Non-maintainer upload by security team * Fixes tempfile security hole (found by Immunix) (see Bug#82758) * Fixes some other unproper HTML quoting stable/main/binary-sparc/squidclient_2.2.5-3.1_sparc.deb stable/main/source/squid_2.2.5-3.1.diff.gz stable/main/binary-i386/squid-cgi_2.2.5-3.1_i386.deb stable/main/binary-arm/squid-cgi_2.2.5-3.1_arm.deb stable/main/binary-m68k/squid-cgi_2.2.5-3.1_m68k.deb stable/main/binary-alpha/squidclient_2.2.5-3.1_alpha.deb stable/main/binary-i386/squidclient_2.2.5-3.1_i386.deb stable/main/binary-i386/squid_2.2.5-3.1_i386.deb stable/main/binary-m68k/squid_2.2.5-3.1_m68k.deb stable/main/binary-alpha/squid_2.2.5-3.1_alpha.deb stable/main/binary-arm/squid_2.2.5-3.1_arm.deb stable/main/binary-m68k/squidclient_2.2.5-3.1_m68k.deb stable/main/binary-sparc/squid-cgi_2.2.5-3.1_sparc.deb stable/main/binary-arm/squidclient_2.2.5-3.1_arm.deb stable/main/source/squid_2.2.5-3.1.dsc stable/main/binary-alpha/squid-cgi_2.2.5-3.1_alpha.deb stable/main/binary-sparc/squid_2.2.5-3.1_sparc.deb squid (2.2.5-3.1) stable; urgency=medium * Non-maintainer upload by security team * Fixes tempfile security hole (found by Immunix) (see Bug#82758) * Fixes some other unproper HTML quoting stable/main/binary-sparc/splitvt_1.6.5-0potato1_sparc.deb splitvt (1.6.5-0potato1) stable; urgency=HIGH * This package is built for potato. Rather than backporting the upstream patch alone, which leaves the possibility of more root exploits in the future, I'm going to use my patch too so its just sgid tty. My patch has had a good 6 months of testing, so I'm confident this is ok. * New upstream version, with a format string hole fixed, and several possible buffer overfllows fixed. - Of those, only (I think) the format string attack and two of the buffer overflows can affect the debian package. - Luckily, my last release of the package back in June 2000 made it only need to be sgid tty. - Total possible impact: attacker could possibly crack the tty group. stable/main/binary-powerpc/splitvt_1.6.5-0potato1_powerpc.deb splitvt (1.6.5-0potato1) stable; urgency=HIGH * This package is built for potato. Rather than backporting the upstream patch alone, which leaves the possibility of more root exploits in the future, I'm going to use my patch too so its just sgid tty. My patch has had a good 6 months of testing, so I'm confident this is ok. * New upstream version, with a format string hole fixed, and several possible buffer overfllows fixed. - Of those, only (I think) the format string attack and two of the buffer overflows can affect the debian package. - Luckily, my last release of the package back in June 2000 made it only need to be sgid tty. - Total possible impact: attacker could possibly crack the tty group. stable/main/binary-m68k/splitvt_1.6.5-0potato1_m68k.deb splitvt (1.6.5-0potato1) stable; urgency=HIGH * This package is built for potato. Rather than backporting the upstream patch alone, which leaves the possibility of more root exploits in the future, I'm going to use my patch too so its just sgid tty. My patch has had a good 6 months of testing, so I'm confident this is ok. * New upstream version, with a format string hole fixed, and several possible buffer overfllows fixed. - Of those, only (I think) the format string attack and two of the buffer overflows can affect the debian package. - Luckily, my last release of the package back in June 2000 made it only need to be sgid tty. - Total possible impact: attacker could possibly crack the tty group. stable/main/source/splitvt_1.6.5-0potato1.diff.gz stable/main/source/splitvt_1.6.5-0potato1.dsc stable/main/binary-i386/splitvt_1.6.5-0potato1_i386.deb splitvt (1.6.5-0potato1) stable; urgency=HIGH * This package is built for potato. Rather than backporting the upstream patch alone, which leaves the possibility of more root exploits in the future, I'm going to use my patch too so its just sgid tty. My patch has had a good 6 months of testing, so I'm confident this is ok. * New upstream version, with a format string hole fixed, and several possible buffer overfllows fixed. - Of those, only (I think) the format string attack and two of the buffer overflows can affect the debian package. - Luckily, my last release of the package back in June 2000 made it only need to be sgid tty. - Total possible impact: attacker could possibly crack the tty group. stable/main/binary-arm/splitvt_1.6.5-0potato1_arm.deb splitvt (1.6.5-0potato1) stable; urgency=HIGH * This package is built for potato. Rather than backporting the upstream patch alone, which leaves the possibility of more root exploits in the future, I'm going to use my patch too so its just sgid tty. My patch has had a good 6 months of testing, so I'm confident this is ok. * New upstream version, with a format string hole fixed, and several possible buffer overfllows fixed. - Of those, only (I think) the format string attack and two of the buffer overflows can affect the debian package. - Luckily, my last release of the package back in June 2000 made it only need to be sgid tty. - Total possible impact: attacker could possibly crack the tty group. stable/main/binary-alpha/splitvt_1.6.5-0potato1_alpha.deb splitvt (1.6.5-0potato1) stable; urgency=HIGH * This package is built for potato. Rather than backporting the upstream patch alone, which leaves the possibility of more root exploits in the future, I'm going to use my patch too so its just sgid tty. My patch has had a good 6 months of testing, so I'm confident this is ok. * New upstream version, with a format string hole fixed, and several possible buffer overfllows fixed. - Of those, only (I think) the format string attack and two of the buffer overflows can affect the debian package. - Luckily, my last release of the package back in June 2000 made it only need to be sgid tty. - Total possible impact: attacker could possibly crack the tty group. stable/main/binary-sparc/slrn_0.9.6.2-9potato1_sparc.deb stable/main/binary-sparc/slrnpull_0.9.6.2-9potato1_sparc.deb slrn (0.9.6.2-9potato1) stable; urgency=HIGH * Backported a fix from slrn 0.9.6.3 to fix a remotely exploitable buffer overflow in the article unwrap code. * This backport also includes a large number of other potential buffer overrun fixes, as seen in 0.9.6.2-9. None are known to be exploitable. stable/main/binary-powerpc/slrn_0.9.6.2-9potato1_powerpc.deb stable/main/binary-powerpc/slrnpull_0.9.6.2-9potato1_powerpc.deb slrn (0.9.6.2-9potato1) stable; urgency=HIGH * Backported a fix from slrn 0.9.6.3 to fix a remotely exploitable buffer overflow in the article unwrap code. * This backport also includes a large number of other potential buffer overrun fixes, as seen in 0.9.6.2-9. None are known to be exploitable. stable/main/binary-m68k/slrn_0.9.6.2-9potato1_m68k.deb stable/main/binary-m68k/slrnpull_0.9.6.2-9potato1_m68k.deb slrn (0.9.6.2-9potato1) stable; urgency=HIGH * Backported a fix from slrn 0.9.6.3 to fix a remotely exploitable buffer overflow in the article unwrap code. * This backport also includes a large number of other potential buffer overrun fixes, as seen in 0.9.6.2-9. None are known to be exploitable. stable/main/binary-i386/slrn_0.9.6.2-9potato1_i386.deb stable/main/binary-i386/slrnpull_0.9.6.2-9potato1_i386.deb stable/main/source/slrn_0.9.6.2-9potato1.dsc stable/main/source/slrn_0.9.6.2-9potato1.diff.gz slrn (0.9.6.2-9potato1) stable; urgency=HIGH * Backported a fix from slrn 0.9.6.3 to fix a remotely exploitable buffer overflow in the article unwrap code. * This backport also includes a large number of other potential buffer overrun fixes, as seen in 0.9.6.2-9. None are known to be exploitable. stable/main/binary-arm/slrnpull_0.9.6.2-9potato1_arm.deb stable/main/binary-arm/slrn_0.9.6.2-9potato1_arm.deb slrn (0.9.6.2-9potato1) stable; urgency=HIGH * Backported a fix from slrn 0.9.6.3 to fix a remotely exploitable buffer overflow in the article unwrap code. * This backport also includes a large number of other potential buffer overrun fixes, as seen in 0.9.6.2-9. None are known to be exploitable. stable/main/binary-alpha/slrnpull_0.9.6.2-9potato1_alpha.deb stable/main/binary-alpha/slrn_0.9.6.2-9potato1_alpha.deb slrn (0.9.6.2-9potato1) stable; urgency=HIGH * Backported a fix from slrn 0.9.6.3 to fix a remotely exploitable buffer overflow in the article unwrap code. * This backport also includes a large number of other potential buffer overrun fixes, as seen in 0.9.6.2-9. None are known to be exploitable. stable/main/binary-sparc/slocate_2.4-2potato1_sparc.deb slocate (2.4-2potato1) stable; urgency=high * recompile for potato Closes: #78551 stable/main/binary-powerpc/slocate_2.4-2potato1_powerpc.deb slocate (2.4-2potato1) stable; urgency=high * recompile for potato Closes: #78551 stable/main/binary-m68k/slocate_2.4-2potato1_m68k.deb slocate (2.4-2potato1) stable; urgency=high * recompile for potato Closes: #78551 stable/main/source/slocate_2.4.orig.tar.gz stable/main/source/slocate_2.4-2potato1.dsc stable/main/source/slocate_2.4-2potato1.diff.gz stable/main/binary-i386/slocate_2.4-2potato1_i386.deb slocate (2.4-2potato1) stable; urgency=high * recompile for potato Closes: #78551 stable/main/binary-arm/slocate_2.4-2potato1_arm.deb slocate (2.4-2potato1) stable; urgency=high * recompile for potato Closes: #78551 stable/main/binary-alpha/slocate_2.4-2potato1_alpha.deb slocate (2.4-2potato1) stable; urgency=high * recompile for potato Closes: #78551 stable/main/source/sgml-tools_1.0.9-15.diff.gz stable/main/source/sgml-tools_1.0.9-15.dsc stable/main/binary-i386/sgml-tools_1.0.9-15_i386.deb sgml-tools (1.0.9-15) stable unstable; urgency=low * Use newly created temporary directory under /tmp for temporary files to avoid the race condition safely. Closes: #78452 stable/main/binary-alpha/sgml-tools_1.0.9-15_alpha.deb sgml-tools (1.0.9-15) stable unstable; urgency=low * Use newly created temporary directory under /tmp for temporary files to avoid the race condition safely. Closes: #78452 stable/main/binary-sparc/sgml-tools_1.0.9-15_sparc.deb stable/main/binary-powerpc/sgml-tools_1.0.9-15_powerpc.deb stable/main/binary-arm/sgml-tools_1.0.9-15_arm.deb stable/main/binary-m68k/sgml-tools_1.0.9-15_m68k.deb sgml-tools (1.0.9-15) stable unstable; urgency=low * Use newly created temporary directory under /tmp for temporary files to avoid the race condition safely. Closes: #78452 stable/contrib/binary-sparc/setiathome_3.03-3_sparc.deb setiathome (3.03-3) stable unstable; urgency=medium * New upstream client version available now for sparc * Added debhelper to Build-Depends stable/contrib/binary-powerpc/setiathome_3.03-3_powerpc.deb setiathome (3.03-3) stable unstable; urgency=medium * New upstream client version available now for sparc * Added debhelper to Build-Depends stable/contrib/source/setiathome_3.03-3.dsc stable/contrib/source/setiathome_3.03-3.tar.gz stable/contrib/binary-i386/setiathome_3.03-3_i386.deb setiathome (3.03-3) stable unstable; urgency=medium * New upstream client version available now for sparc * Added debhelper to Build-Depends stable/contrib/binary-alpha/setiathome_3.03-3_alpha.deb setiathome (3.03-3) stable unstable; urgency=medium * New upstream client version available now for sparc * Added debhelper to Build-Depends stable/main/binary-sparc/screen_3.9.5-9_sparc.deb screen (3.9.5-9) stable unstable; urgency=HIGH * Fixed security bug (group utmp compromise) stable/main/binary-arm/screen_3.9.5-9_arm.deb screen (3.9.5-9) stable; urgency=HIGH * Fixed security bug (group utmp compromise) stable/main/binary-sparc/sash_3.4-6_sparc.deb sash (3.4-6) stable; urgency=medium * incorporated suggestion from Matt Zimmerman such that clone_root_as_sashroot is properly atomic, even for ownership and permissions. stable/main/binary-powerpc/sash_3.4-6_powerpc.deb sash (3.4-6) stable; urgency=medium * incorporated suggestion from Matt Zimmerman such that clone_root_as_sashroot is properly atomic, even for ownership and permissions. stable/main/binary-m68k/sash_3.4-6_m68k.deb sash (3.4-6) stable; urgency=medium * incorporated suggestion from Matt Zimmerman such that clone_root_as_sashroot is properly atomic, even for ownership and permissions. stable/main/source/sash_3.4-6.diff.gz stable/main/source/sash_3.4-6.dsc stable/main/binary-i386/sash_3.4-6_i386.deb sash (3.4-6) stable; urgency=medium * incorporated suggestion from Matt Zimmerman such that clone_root_as_sashroot is properly atomic, even for ownership and permissions. stable/main/binary-arm/sash_3.4-6_arm.deb sash (3.4-6) stable; urgency=medium * incorporated suggestion from Matt Zimmerman such that clone_root_as_sashroot is properly atomic, even for ownership and permissions. stable/main/binary-alpha/sash_3.4-6_alpha.deb sash (3.4-6) stable; urgency=medium * incorporated suggestion from Matt Zimmerman such that clone_root_as_sashroot is properly atomic, even for ownership and permissions. stable/main/binary-all/reportbug_0.54.1_all.deb stable/main/source/reportbug_0.54.1.dsc stable/main/source/reportbug_0.54.1.tar.gz reportbug (0.54.1) stable; urgency=high * Fix LDAP queries to handle new and weird severities. (Closes: #90193) stable/main/binary-sparc/python-base_1.5.2-10potato11_sparc.deb stable/main/binary-sparc/python-tk_1.5.2-10potato11_sparc.deb stable/main/binary-sparc/python-gdbm_1.5.2-10potato11_sparc.deb stable/main/binary-sparc/python-zlib_1.5.2-10potato11_sparc.deb stable/main/binary-sparc/python-mpz_1.5.2-10potato11_sparc.deb stable/main/binary-sparc/python-dev_1.5.2-10potato11_sparc.deb python (1.5.2-10potato11) stable; urgency=high * To the release manager: -11 includes a security fix to the tempfile module, which was vulnerable to a symlink attack. Apart from that, it contains an important fix for a long outstanding obscure bug in the signal handling code, and a few small modifications to fix some other bugs. This revision is a recompile of the unstable package for potato (one minor modification to mpzmodule was necessary to compile). I would think this revision should be included in the next point release of potato. stable/main/binary-powerpc/python-zlib_1.5.2-10potato11_powerpc.deb stable/main/binary-powerpc/python-tk_1.5.2-10potato11_powerpc.deb stable/main/binary-powerpc/python-mpz_1.5.2-10potato11_powerpc.deb stable/main/binary-powerpc/python-base_1.5.2-10potato11_powerpc.deb stable/main/binary-powerpc/python-gdbm_1.5.2-10potato11_powerpc.deb stable/main/binary-powerpc/python-dev_1.5.2-10potato11_powerpc.deb python (1.5.2-10potato11) stable; urgency=high * To the release manager: -11 includes a security fix to the tempfile module, which was vulnerable to a symlink attack. Apart from that, it contains an important fix for a long outstanding obscure bug in the signal handling code, and a few small modifications to fix some other bugs. This revision is a recompile of the unstable package for potato (one minor modification to mpzmodule was necessary to compile). I would think this revision should be included in the next point release of potato. stable/main/binary-m68k/python-zlib_1.5.2-10potato11_m68k.deb stable/main/binary-m68k/python-dev_1.5.2-10potato11_m68k.deb stable/main/binary-m68k/python-tk_1.5.2-10potato11_m68k.deb stable/main/binary-m68k/python-base_1.5.2-10potato11_m68k.deb stable/main/binary-m68k/python-gdbm_1.5.2-10potato11_m68k.deb stable/main/binary-m68k/python-mpz_1.5.2-10potato11_m68k.deb python (1.5.2-10potato11) stable; urgency=high * To the release manager: -11 includes a security fix to the tempfile module, which was vulnerable to a symlink attack. Apart from that, it contains an important fix for a long outstanding obscure bug in the signal handling code, and a few small modifications to fix some other bugs. This revision is a recompile of the unstable package for potato (one minor modification to mpzmodule was necessary to compile). I would think this revision should be included in the next point release of potato. stable/main/binary-i386/python-tk_1.5.2-10potato11_i386.deb stable/main/binary-all/python-elisp_1.5.2-10potato11_all.deb stable/main/binary-i386/python-mpz_1.5.2-10potato11_i386.deb stable/main/binary-all/python-examples_1.5.2-10potato11_all.deb stable/main/binary-all/python-regrtest_1.5.2-10potato11_all.deb stable/main/source/python_1.5.2-10potato11.diff.gz stable/main/binary-i386/python-base_1.5.2-10potato11_i386.deb stable/main/binary-i386/python-gdbm_1.5.2-10potato11_i386.deb stable/main/binary-i386/python-zlib_1.5.2-10potato11_i386.deb stable/main/binary-all/idle_1.5.2-10potato11_all.deb stable/main/binary-i386/python-dev_1.5.2-10potato11_i386.deb stable/main/source/python_1.5.2-10potato11.dsc python (1.5.2-10potato11) stable; urgency=high * To the release manager: -11 includes a security fix to the tempfile module, which was vulnerable to a symlink attack. Apart from that, it contains an important fix for a long outstanding obscure bug in the signal handling code, and a few small modifications to fix some other bugs. This revision is a recompile of the unstable package for potato (one minor modification to mpzmodule was necessary to compile). I would think this revision should be included in the next point release of potato. stable/main/binary-arm/python-gdbm_1.5.2-10potato11_arm.deb stable/main/binary-arm/python-dev_1.5.2-10potato11_arm.deb stable/main/binary-arm/python-mpz_1.5.2-10potato11_arm.deb stable/main/binary-arm/python-base_1.5.2-10potato11_arm.deb stable/main/binary-arm/python-tk_1.5.2-10potato11_arm.deb stable/main/binary-arm/python-zlib_1.5.2-10potato11_arm.deb python (1.5.2-10potato11) stable; urgency=high * To the release manager: -11 includes a security fix to the tempfile module, which was vulnerable to a symlink attack. Apart from that, it contains an important fix for a long outstanding obscure bug in the signal handling code, and a few small modifications to fix some other bugs. This revision is a recompile of the unstable package for potato (one minor modification to mpzmodule was necessary to compile). I would think this revision should be included in the next point release of potato. stable/main/binary-alpha/python-dev_1.5.2-10potato11_alpha.deb stable/main/binary-alpha/python-tk_1.5.2-10potato11_alpha.deb stable/main/binary-alpha/python-base_1.5.2-10potato11_alpha.deb stable/main/binary-alpha/python-gdbm_1.5.2-10potato11_alpha.deb stable/main/binary-alpha/python-mpz_1.5.2-10potato11_alpha.deb stable/main/binary-alpha/python-zlib_1.5.2-10potato11_alpha.deb python (1.5.2-10potato11) stable; urgency=high * To the release manager: -11 includes a security fix to the tempfile module, which was vulnerable to a symlink attack. Apart from that, it contains an important fix for a long outstanding obscure bug in the signal handling code, and a few small modifications to fix some other bugs. This revision is a recompile of the unstable package for potato (one minor modification to mpzmodule was necessary to compile). I would think this revision should be included in the next point release of potato. stable/main/binary-sparc/proftpd_1.2.0pre10-2.0potato1_sparc.deb proftpd (1.2.0pre10-2.0potato1) stable; urgency=high * Non-Maintainer upload. * Applied patch against string format buffer attack. * Removed extra User/Group pair from basic.conf, server now runs as user/group nobody by default. * Added build dependencies on zlib1g-dev, debhelper and libpam-dev. * In contrib/libcap/libcap.h: moved the capability.h include to just below sys/types.h to fix horrible build errors. stable/main/binary-m68k/proftpd_1.2.0pre10-2.0potato1_m68k.deb proftpd (1.2.0pre10-2.0potato1) stable; urgency=high * Non-Maintainer upload. * Applied patch against string format buffer attack. * Removed extra User/Group pair from basic.conf, server now runs as user/group nobody by default. * Added build dependencies on zlib1g-dev, debhelper and libpam-dev. * In contrib/libcap/libcap.h: moved the capability.h include to just below sys/types.h to fix horrible build errors. stable/main/source/proftpd_1.2.0pre10-2.0potato1.dsc stable/main/source/proftpd_1.2.0pre10-2.0potato1.diff.gz stable/main/binary-i386/proftpd_1.2.0pre10-2.0potato1_i386.deb proftpd (1.2.0pre10-2.0potato1) stable; urgency=high * Non-Maintainer upload. * Applied patch against string format buffer attack. * Removed extra User/Group pair from basic.conf, server now runs as user/group nobody by default. * Added build dependencies on zlib1g-dev, debhelper and libpam-dev. * In contrib/libcap/libcap.h: moved the capability.h include to just below sys/types.h to fix horrible build errors. stable/main/binary-arm/proftpd_1.2.0pre10-2.0potato1_arm.deb proftpd (1.2.0pre10-2.0potato1) stable; urgency=high * Non-Maintainer upload. * Applied patch against string format buffer attack. * Removed extra User/Group pair from basic.conf, server now runs as user/group nobody by default. * Added build dependencies on zlib1g-dev, debhelper and libpam-dev. * In contrib/libcap/libcap.h: moved the capability.h include to just below sys/types.h to fix horrible build errors. stable/main/binary-alpha/proftpd_1.2.0pre10-2.0potato1_alpha.deb proftpd (1.2.0pre10-2.0potato1) stable; urgency=high * Non-Maintainer upload. * Applied patch against string format buffer attack. * Removed extra User/Group pair from basic.conf, server now runs as user/group nobody by default. * Added build dependencies on zlib1g-dev, debhelper and libpam-dev. * In contrib/libcap/libcap.h: moved the capability.h include to just below sys/types.h to fix horrible build errors. stable/main/binary-powerpc/proftpd_1.2.0pre10-2.0potato1.1_powerpc.deb proftpd (1.2.0pre10-2.0potato1.1) stable; urgency=high * Recompile in stable. stable/main/binary-sparc/python-pygresql_6.5.3-26_sparc.deb stable/main/binary-sparc/postgresql_6.5.3-26_sparc.deb stable/main/binary-sparc/pgaccess_6.5.3-26_sparc.deb stable/main/binary-sparc/postgresql-client_6.5.3-26_sparc.deb stable/main/binary-sparc/libpgsql2_6.5.3-26_sparc.deb stable/main/binary-sparc/libpgperl_6.5.3-26_sparc.deb stable/main/binary-sparc/postgresql-test_6.5.3-26_sparc.deb stable/main/binary-sparc/postgresql-pl_6.5.3-26_sparc.deb stable/main/binary-sparc/libpgtcl_6.5.3-26_sparc.deb stable/main/binary-sparc/postgresql-contrib_6.5.3-26_sparc.deb stable/main/binary-sparc/odbc-postgresql_6.5.3-26_sparc.deb stable/main/binary-sparc/ecpg_6.5.3-26_sparc.deb stable/main/binary-sparc/postgresql-dev_6.5.3-26_sparc.deb postgresql (6.5.3-26) stable; urgency=low * prerm no longer attempts a database dump; a full dump is only necessary when the database format changes and might take more disk space than is available. The schema dump currently done is useless at 7.1, because pg_upgrade will no longer be supported at that release. * prerm will now exit with an error if it cannot save this version's binaries (for use in upgrading the database by the next version). This is a situation which will require manual intervention to sort out; this change prevents the upgrade's losing the current binaries and the consequent loss of access to the data. stable/main/binary-powerpc/postgresql-dev_6.5.3-26_powerpc.deb stable/main/binary-powerpc/python-pygresql_6.5.3-26_powerpc.deb stable/main/binary-powerpc/libpgperl_6.5.3-26_powerpc.deb stable/main/binary-powerpc/libpgtcl_6.5.3-26_powerpc.deb stable/main/binary-powerpc/pgaccess_6.5.3-26_powerpc.deb stable/main/binary-powerpc/postgresql_6.5.3-26_powerpc.deb stable/main/binary-powerpc/postgresql-test_6.5.3-26_powerpc.deb stable/main/binary-powerpc/libpgsql2_6.5.3-26_powerpc.deb stable/main/binary-powerpc/postgresql-contrib_6.5.3-26_powerpc.deb stable/main/binary-powerpc/odbc-postgresql_6.5.3-26_powerpc.deb stable/main/binary-powerpc/postgresql-pl_6.5.3-26_powerpc.deb stable/main/binary-powerpc/postgresql-client_6.5.3-26_powerpc.deb stable/main/binary-powerpc/ecpg_6.5.3-26_powerpc.deb postgresql (6.5.3-26) stable; urgency=low * prerm no longer attempts a database dump; a full dump is only necessary when the database format changes and might take more disk space than is available. The schema dump currently done is useless at 7.1, because pg_upgrade will no longer be supported at that release. * prerm will now exit with an error if it cannot save this version's binaries (for use in upgrading the database by the next version). This is a situation which will require manual intervention to sort out; this change prevents the upgrade's losing the current binaries and the consequent loss of access to the data. stable/main/binary-m68k/pgaccess_6.5.3-26_m68k.deb stable/main/binary-m68k/odbc-postgresql_6.5.3-26_m68k.deb stable/main/binary-m68k/postgresql-client_6.5.3-26_m68k.deb stable/main/binary-m68k/libpgperl_6.5.3-26_m68k.deb stable/main/binary-m68k/libpgtcl_6.5.3-26_m68k.deb stable/main/binary-m68k/postgresql-contrib_6.5.3-26_m68k.deb stable/main/binary-m68k/libpgsql2_6.5.3-26_m68k.deb stable/main/binary-m68k/python-pygresql_6.5.3-26_m68k.deb stable/main/binary-m68k/postgresql-dev_6.5.3-26_m68k.deb stable/main/binary-m68k/postgresql_6.5.3-26_m68k.deb stable/main/binary-m68k/ecpg_6.5.3-26_m68k.deb stable/main/binary-m68k/postgresql-pl_6.5.3-26_m68k.deb stable/main/binary-m68k/postgresql-test_6.5.3-26_m68k.deb postgresql (6.5.3-26) stable; urgency=low * prerm no longer attempts a database dump; a full dump is only necessary when the database format changes and might take more disk space than is available. The schema dump currently done is useless at 7.1, because pg_upgrade will no longer be supported at that release. * prerm will now exit with an error if it cannot save this version's binaries (for use in upgrading the database by the next version). This is a situation which will require manual intervention to sort out; this change prevents the upgrade's losing the current binaries and the consequent loss of access to the data. stable/main/binary-i386/postgresql-contrib_6.5.3-26_i386.deb stable/main/source/postgresql_6.5.3-26.diff.gz stable/main/binary-i386/odbc-postgresql_6.5.3-26_i386.deb stable/main/binary-i386/libpgtcl_6.5.3-26_i386.deb stable/main/binary-i386/postgresql_6.5.3-26_i386.deb stable/main/binary-i386/python-pygresql_6.5.3-26_i386.deb stable/main/binary-i386/postgresql-dev_6.5.3-26_i386.deb stable/main/binary-i386/libpgsql2_6.5.3-26_i386.deb stable/main/binary-i386/postgresql-test_6.5.3-26_i386.deb stable/main/binary-all/postgresql-doc_6.5.3-26_all.deb stable/main/binary-i386/pgaccess_6.5.3-26_i386.deb stable/main/binary-i386/postgresql-client_6.5.3-26_i386.deb stable/main/binary-i386/postgresql-pl_6.5.3-26_i386.deb stable/main/source/postgresql_6.5.3-26.dsc stable/main/binary-i386/libpgperl_6.5.3-26_i386.deb stable/main/binary-i386/ecpg_6.5.3-26_i386.deb postgresql (6.5.3-26) stable; urgency=low * prerm no longer attempts a database dump; a full dump is only necessary when the database format changes and might take more disk space than is available. The schema dump currently done is useless at 7.1, because pg_upgrade will no longer be supported at that release. * prerm will now exit with an error if it cannot save this version's binaries (for use in upgrading the database by the next version). This is a situation which will require manual intervention to sort out; this change prevents the upgrade's losing the current binaries and the consequent loss of access to the data. stable/main/binary-arm/postgresql-client_6.5.3-26_arm.deb stable/main/binary-arm/libpgsql2_6.5.3-26_arm.deb stable/main/binary-arm/odbc-postgresql_6.5.3-26_arm.deb stable/main/binary-arm/libpgtcl_6.5.3-26_arm.deb stable/main/binary-arm/pgaccess_6.5.3-26_arm.deb stable/main/binary-arm/postgresql-dev_6.5.3-26_arm.deb stable/main/binary-arm/python-pygresql_6.5.3-26_arm.deb stable/main/binary-arm/postgresql-contrib_6.5.3-26_arm.deb stable/main/binary-arm/postgresql-test_6.5.3-26_arm.deb stable/main/binary-arm/ecpg_6.5.3-26_arm.deb stable/main/binary-arm/postgresql-pl_6.5.3-26_arm.deb stable/main/binary-arm/libpgperl_6.5.3-26_arm.deb stable/main/binary-arm/postgresql_6.5.3-26_arm.deb postgresql (6.5.3-26) stable; urgency=low * prerm no longer attempts a database dump; a full dump is only necessary when the database format changes and might take more disk space than is available. The schema dump currently done is useless at 7.1, because pg_upgrade will no longer be supported at that release. * prerm will now exit with an error if it cannot save this version's binaries (for use in upgrading the database by the next version). This is a situation which will require manual intervention to sort out; this change prevents the upgrade's losing the current binaries and the consequent loss of access to the data. stable/main/binary-alpha/postgresql-contrib_6.5.3-26_alpha.deb stable/main/binary-alpha/postgresql-pl_6.5.3-26_alpha.deb stable/main/binary-alpha/libpgperl_6.5.3-26_alpha.deb stable/main/binary-alpha/postgresql-client_6.5.3-26_alpha.deb stable/main/binary-alpha/postgresql_6.5.3-26_alpha.deb stable/main/binary-alpha/postgresql-dev_6.5.3-26_alpha.deb stable/main/binary-alpha/postgresql-test_6.5.3-26_alpha.deb stable/main/binary-alpha/ecpg_6.5.3-26_alpha.deb stable/main/binary-alpha/odbc-postgresql_6.5.3-26_alpha.deb stable/main/binary-alpha/libpgtcl_6.5.3-26_alpha.deb stable/main/binary-alpha/libpgsql2_6.5.3-26_alpha.deb stable/main/binary-alpha/pgaccess_6.5.3-26_alpha.deb stable/main/binary-alpha/python-pygresql_6.5.3-26_alpha.deb postgresql (6.5.3-26) stable; urgency=low * prerm no longer attempts a database dump; a full dump is only necessary when the database format changes and might take more disk space than is available. The schema dump currently done is useless at 7.1, because pg_upgrade will no longer be supported at that release. * prerm will now exit with an error if it cannot save this version's binaries (for use in upgrading the database by the next version). This is a situation which will require manual intervention to sort out; this change prevents the upgrade's losing the current binaries and the consequent loss of access to the data. stable/non-free/source/netpbm-nonfree_19940301.1-8.dsc stable/non-free/binary-i386/netpbm-nonfree_19940301.1-8_i386.deb stable/non-free/source/netpbm-nonfree_19940301.1-8.diff.gz netpbm-nonfree (1:19940301.1-8) stable; urgency=high * Changed Conflicts to Replaces to aid upgrades. * Removed the Build-Depends on xutils so it builds on stable, changed to xlib6g-dev stable/non-free/binary-arm/netpbm-nonfree_19940301.1-8_arm.deb stable/non-free/binary-m68k/netpbm-nonfree_19940301.1-8_m68k.deb stable/non-free/binary-alpha/netpbm-nonfree_19940301.1-8_alpha.deb stable/non-free/binary-powerpc/netpbm-nonfree_19940301.1-8_powerpc.deb stable/non-free/binary-sparc/netpbm-nonfree_19940301.1-8_sparc.deb netpbm-nonfree (1:19940301.1-8) stable; urgency=high * Changed Conflicts to Replaces to aid upgrades. * Removed the Build-Depends on xutils so it builds on stable, changed to xlib6g-dev stable/main/binary-arm/netpbm1_19940301.2-15_arm.deb stable/main/binary-m68k/netpbm_19940301.2-15_m68k.deb stable/main/binary-m68k/netpbm-dev_19940301.2-15_m68k.deb stable/main/binary-arm/netpbm_19940301.2-15_arm.deb stable/main/binary-sparc/netpbm-dev_19940301.2-15_sparc.deb stable/main/binary-alpha/netpbm1_19940301.2-15_alpha.deb stable/main/binary-alpha/netpbm-dev_19940301.2-15_alpha.deb stable/main/binary-sparc/netpbm1_19940301.2-15_sparc.deb stable/main/binary-powerpc/netpbm-dev_19940301.2-15_powerpc.deb stable/main/binary-powerpc/netpbm_19940301.2-15_powerpc.deb stable/main/binary-arm/netpbm-dev_19940301.2-15_arm.deb stable/main/binary-sparc/netpbm_19940301.2-15_sparc.deb stable/main/binary-alpha/netpbm_19940301.2-15_alpha.deb stable/main/binary-m68k/netpbm1_19940301.2-15_m68k.deb stable/main/binary-powerpc/netpbm1_19940301.2-15_powerpc.deb netpbm-free (1:19940301.2-15) stable; urgency=high * Added Build-Depends. stable/main/source/netpbm-free_19940301.2-15.dsc stable/main/binary-i386/netpbm1_19940301.2-15_i386.deb stable/main/binary-i386/netpbm_19940301.2-15_i386.deb stable/main/source/netpbm-free_19940301.2-15.diff.gz stable/main/binary-i386/netpbm-dev_19940301.2-15_i386.deb netpbm-free (1:19940301.2-15) stable; urgency=high * Added Build-Depends. stable/main/binary-sparc/postfix_0.0.19991231pl11-1_sparc.deb postfix (0.0.19991231pl11-1) stable; urgency=high * Upstream fixes (see /usr/share/doc/postfix/RELEASE_NOTES), including: - Postfix must no longer use DB 1.85 compatibility mode, because that mode loses the file lock while building a table, so that table lookups fail and MAIL IS LOST. Closes: #78812. - Confusing site_hog_factor is disabled by default. - As required by RFC822, Postfix now inserts a generic To: header if no destination header is not present. - postfix sendmail command no interprets '.' as end of message, unless the sendmail-compatible -i (or -oi) command line option is specified. stable/main/binary-powerpc/postfix_0.0.19991231pl11-1_powerpc.deb postfix (0.0.19991231pl11-1) stable; urgency=high * Upstream fixes (see /usr/share/doc/postfix/RELEASE_NOTES), including: - Postfix must no longer use DB 1.85 compatibility mode, because that mode loses the file lock while building a table, so that table lookups fail and MAIL IS LOST. Closes: #78812. - Confusing site_hog_factor is disabled by default. - As required by RFC822, Postfix now inserts a generic To: header if no destination header is not present. - postfix sendmail command no interprets '.' as end of message, unless the sendmail-compatible -i (or -oi) command line option is specified. stable/main/binary-m68k/postfix_0.0.19991231pl11-1_m68k.deb postfix (0.0.19991231pl11-1) stable; urgency=high * Upstream fixes (see /usr/share/doc/postfix/RELEASE_NOTES), including: - Postfix must no longer use DB 1.85 compatibility mode, because that mode loses the file lock while building a table, so that table lookups fail and MAIL IS LOST. Closes: #78812. - Confusing site_hog_factor is disabled by default. - As required by RFC822, Postfix now inserts a generic To: header if no destination header is not present. - postfix sendmail command no interprets '.' as end of message, unless the sendmail-compatible -i (or -oi) command line option is specified. stable/main/source/postfix_0.0.19991231pl11-1.dsc stable/main/source/postfix_0.0.19991231pl11.orig.tar.gz stable/main/source/postfix_0.0.19991231pl11-1.diff.gz stable/main/binary-i386/postfix_0.0.19991231pl11-1_i386.deb postfix (0.0.19991231pl11-1) stable; urgency=high * Upstream fixes (see /usr/share/doc/postfix/RELEASE_NOTES), including: - Postfix must no longer use DB 1.85 compatibility mode, because that mode loses the file lock while building a table, so that table lookups fail and MAIL IS LOST. Closes: #78812. - Confusing site_hog_factor is disabled by default. - As required by RFC822, Postfix now inserts a generic To: header if no destination header is not present. - postfix sendmail command no interprets '.' as end of message, unless the sendmail-compatible -i (or -oi) command line option is specified. stable/main/binary-arm/postfix_0.0.19991231pl11-1_arm.deb postfix (0.0.19991231pl11-1) stable; urgency=high * Upstream fixes (see /usr/share/doc/postfix/RELEASE_NOTES), including: - Postfix must no longer use DB 1.85 compatibility mode, because that mode loses the file lock while building a table, so that table lookups fail and MAIL IS LOST. Closes: #78812. - Confusing site_hog_factor is disabled by default. - As required by RFC822, Postfix now inserts a generic To: header if no destination header is not present. - postfix sendmail command no interprets '.' as end of message, unless the sendmail-compatible -i (or -oi) command line option is specified. stable/main/binary-alpha/postfix_0.0.19991231pl11-1_alpha.deb postfix (0.0.19991231pl11-1) stable; urgency=high * Upstream fixes (see /usr/share/doc/postfix/RELEASE_NOTES), including: - Postfix must no longer use DB 1.85 compatibility mode, because that mode loses the file lock while building a table, so that table lookups fail and MAIL IS LOST. Closes: #78812. - Confusing site_hog_factor is disabled by default. - As required by RFC822, Postfix now inserts a generic To: header if no destination header is not present. - postfix sendmail command no interprets '.' as end of message, unless the sendmail-compatible -i (or -oi) command line option is specified. stable/main/binary-sparc/nextawg_0.5.1-34potato1_sparc.deb stable/main/binary-sparc/nextaw_0.5.1-34potato1_sparc.deb nextaw (0.5.1-34potato1) stable; urgency=HIGH * Fixed temp file security holes in AsciiSrc and MultiSrc widgets. Fix taken from X, which had the same problem. Isn't code duplication fun... stable/main/binary-powerpc/nextawg_0.5.1-34potato1_powerpc.deb nextaw (0.5.1-34potato1) stable; urgency=HIGH * Fixed temp file security holes in AsciiSrc and MultiSrc widgets. Fix taken from X, which had the same problem. Isn't code duplication fun... stable/main/binary-m68k/nextawg_0.5.1-34potato1_m68k.deb stable/main/binary-m68k/nextaw_0.5.1-34potato1_m68k.deb nextaw (0.5.1-34potato1) stable; urgency=HIGH * Fixed temp file security holes in AsciiSrc and MultiSrc widgets. Fix taken from X, which had the same problem. Isn't code duplication fun... stable/main/source/nextaw_0.5.1-34potato1.dsc stable/main/binary-i386/nextaw_0.5.1-34potato1_i386.deb stable/main/binary-i386/nextawg_0.5.1-34potato1_i386.deb stable/main/source/nextaw_0.5.1-34potato1.diff.gz nextaw (0.5.1-34potato1) stable; urgency=HIGH * Fixed temp file security holes in AsciiSrc and MultiSrc widgets. Fix taken from X, which had the same problem. Isn't code duplication fun... stable/main/binary-sparc/xaw95g_1.1-4.6potato1_sparc.deb xaw95 (1.1-4.6potato1) stable; urgency=HIGH * NMU. Fixed temp file security holes in AsciiSrc and MultiSrc widgets. Fix taken from X, which had the same problem. * Removed the libc5 stuff from the package, since it is no longer possible to build it on unstable, which lacks a libc5 xpm library. * Conflicts with old insecure libc5 package to ensure no users are left with it installed. stable/main/binary-powerpc/xaw95g_1.1-4.6potato1_powerpc.deb xaw95 (1.1-4.6potato1) stable; urgency=HIGH * NMU. Fixed temp file security holes in AsciiSrc and MultiSrc widgets. Fix taken from X, which had the same problem. * Removed the libc5 stuff from the package, since it is no longer possible to build it on unstable, which lacks a libc5 xpm library. * Conflicts with old insecure libc5 package to ensure no users are left with it installed. stable/main/binary-m68k/xaw95g_1.1-4.6potato1_m68k.deb xaw95 (1.1-4.6potato1) stable; urgency=HIGH * NMU. Fixed temp file security holes in AsciiSrc and MultiSrc widgets. Fix taken from X, which had the same problem. * Removed the libc5 stuff from the package, since it is no longer possible to build it on unstable, which lacks a libc5 xpm library. * Conflicts with old insecure libc5 package to ensure no users are left with it installed. stable/main/binary-i386/xaw95g_1.1-4.6potato1_i386.deb stable/main/source/xaw95_1.1-4.6potato1.diff.gz stable/main/source/xaw95_1.1-4.6potato1.dsc xaw95 (1.1-4.6potato1) stable; urgency=HIGH * NMU. Fixed temp file security holes in AsciiSrc and MultiSrc widgets. Fix taken from X, which had the same problem. * Removed the libc5 stuff from the package, since it is no longer possible to build it on unstable, which lacks a libc5 xpm library. * Conflicts with old insecure libc5 package to ensure no users are left with it installed. stable/main/binary-arm/xaw95g_1.1-4.6potato1_arm.deb xaw95 (1.1-4.6potato1) stable; urgency=HIGH * NMU. Fixed temp file security holes in AsciiSrc and MultiSrc widgets. Fix taken from X, which had the same problem. * Removed the libc5 stuff from the package, since it is no longer possible to build it on unstable, which lacks a libc5 xpm library. * Conflicts with old insecure libc5 package to ensure no users are left with it installed. stable/main/binary-powerpc/xaw3dg-dev_1.3-6.9potato1_powerpc.deb stable/main/binary-powerpc/xaw3dg_1.3-6.9potato1_powerpc.deb xaw3d (1.3-6.9potato1) stable; urgency=HIGH * NMU. Fixed temp file security holes in AsciiSrc and MultiSrc widgets. Fix taken from X, which had the same problem. stable/main/binary-sparc/xaw3dg-dev_1.3-6.9potato1_sparc.deb stable/main/binary-sparc/xaw3dg_1.3-6.9potato1_sparc.deb xaw3d (1.3-6.9potato1) stable; urgency=HIGH * NMU. Fixed temp file security holes in AsciiSrc and MultiSrc widgets. Fix taken from X, which had the same problem. stable/main/binary-m68k/xaw3dg-dev_1.3-6.9potato1_m68k.deb stable/main/binary-m68k/xaw3dg_1.3-6.9potato1_m68k.deb stable/main/binary-m68k/xaw3d_1.3-6.9potato1_m68k.deb xaw3d (1.3-6.9potato1) stable; urgency=HIGH * NMU. Fixed temp file security holes in AsciiSrc and MultiSrc widgets. Fix taken from X, which had the same problem. stable/main/binary-i386/xaw3dg-dev_1.3-6.9potato1_i386.deb stable/main/binary-i386/xaw3dg_1.3-6.9potato1_i386.deb stable/main/source/xaw3d_1.3-6.9potato1.diff.gz stable/main/binary-i386/xaw3d_1.3-6.9potato1_i386.deb stable/main/source/xaw3d_1.3-6.9potato1.dsc xaw3d (1.3-6.9potato1) stable; urgency=HIGH * NMU. Fixed temp file security holes in AsciiSrc and MultiSrc widgets. Fix taken from X, which had the same problem. stable/main/binary-arm/xaw3dg_1.3-6.9potato1_arm.deb stable/main/binary-arm/xaw3dg-dev_1.3-6.9potato1_arm.deb xaw3d (1.3-6.9potato1) stable; urgency=HIGH * NMU. Fixed temp file security holes in AsciiSrc and MultiSrc widgets. Fix taken from X, which had the same problem. stable/main/binary-alpha/xaw3dg_1.3-6.9potato1_alpha.deb stable/main/binary-alpha/xaw3dg-dev_1.3-6.9potato1_alpha.deb xaw3d (1.3-6.9potato1) stable; urgency=HIGH * NMU. Fixed temp file security holes in AsciiSrc and MultiSrc widgets. Fix taken from X, which had the same problem. stable/main/binary-powerpc/nvi_1.79-16a_powerpc.deb nvi (1.79-16a) stable; urgency=medium * Rebuild with potato libs for stable. Doh. stable/main/binary-m68k/nvi_1.79-16a_m68k.deb nvi (1.79-16a) stable; urgency=medium * Rebuild with potato libs for stable. Doh. stable/main/binary-i386/nvi_1.79-16a_i386.deb stable/main/source/nvi_1.79-16a.diff.gz stable/main/source/nvi_1.79-16a.dsc nvi (1.79-16a) stable; urgency=medium * Rebuild with potato libs for stable. Doh. stable/main/binary-arm/nvi_1.79-16a_arm.deb nvi (1.79-16a) stable; urgency=medium * Rebuild with potato libs for stable. Doh. stable/main/binary-sparc/nvi_1.79-16a_sparc.deb stable/main/binary-alpha/nvi_1.79-16a_alpha.deb nvi (1.79-16a) stable; urgency=medium * Rebuild with potato libs for stable. Doh. stable/main/source/nvi_1.79-16.diff.gz stable/main/binary-i386/nvi_1.79-16_i386.deb stable/main/source/nvi_1.79-16.dsc nvi (1.79-16) stable unstable; urgency=medium * Wrangle the program name into standard (nvi, nview, nex) form (closes:64816) * Added Alexandero Viro's patch against possible document corruption. I think this is worth including in the next stable release. This is bug 77978, but I don't want to close it until the fix appears in a stable release. stable/main/binary-alpha/nvi_1.79-16_alpha.deb nvi (1.79-16) stable unstable; urgency=medium * Wrangle the program name into standard (nvi, nview, nex) form (closes:64816) * Added Alexandero Viro's patch against possible document corruption. I think this is worth including in the next stable release. This is bug 77978, but I don't want to close it until the fix appears in a stable release. stable/main/binary-sparc/mysql-gpl-client_3.22.30-4_sparc.deb stable/main/binary-sparc/libmysqlclient6-dev_3.22.30-4_sparc.deb stable/main/binary-sparc/libmysqlclient6_3.22.30-4_sparc.deb mysql-gpl (3.22.30-4) stable; urgency=high * Last version had problems while installing/uploading. * Applied a security patch against a bug that allowes users which are required to login to crash the server or gain the UID of the program that is linked against libmysqlclient which could be a problem for Web-Servers with statically linked PHP/MySQL. Thanks for Guillaume Morin for backporting the patch. stable/main/binary-powerpc/libmysqlclient6-dev_3.22.30-4_powerpc.deb stable/main/binary-powerpc/mysql-gpl-client_3.22.30-4_powerpc.deb stable/main/binary-powerpc/libmysqlclient6_3.22.30-4_powerpc.deb mysql-gpl (3.22.30-4) stable; urgency=high * Last version had problems while installing/uploading. * Applied a security patch against a bug that allowes users which are required to login to crash the server or gain the UID of the program that is linked against libmysqlclient which could be a problem for Web-Servers with statically linked PHP/MySQL. Thanks for Guillaume Morin for backporting the patch. stable/main/binary-m68k/mysql-gpl-client_3.22.30-4_m68k.deb stable/main/binary-m68k/libmysqlclient6_3.22.30-4_m68k.deb stable/main/binary-m68k/libmysqlclient6-dev_3.22.30-4_m68k.deb mysql-gpl (3.22.30-4) stable; urgency=high * Last version had problems while installing/uploading. * Applied a security patch against a bug that allowes users which are required to login to crash the server or gain the UID of the program that is linked against libmysqlclient which could be a problem for Web-Servers with statically linked PHP/MySQL. Thanks for Guillaume Morin for backporting the patch. stable/main/binary-all/mysql-gpl-doc_3.22.30-4_all.deb stable/main/source/mysql-gpl_3.22.30-4.dsc stable/main/binary-i386/libmysqlclient6-dev_3.22.30-4_i386.deb stable/main/binary-i386/mysql-gpl-client_3.22.30-4_i386.deb stable/main/binary-i386/libmysqlclient6_3.22.30-4_i386.deb stable/main/source/mysql-gpl_3.22.30-4.diff.gz mysql-gpl (3.22.30-4) stable; urgency=high * Last version had problems while installing/uploading. * Applied a security patch against a bug that allowes users which are required to login to crash the server or gain the UID of the program that is linked against libmysqlclient which could be a problem for Web-Servers with statically linked PHP/MySQL. Thanks for Guillaume Morin for backporting the patch. stable/main/binary-arm/libmysqlclient6_3.22.30-4_arm.deb stable/main/binary-arm/libmysqlclient6-dev_3.22.30-4_arm.deb stable/main/binary-arm/mysql-gpl-client_3.22.30-4_arm.deb mysql-gpl (3.22.30-4) stable; urgency=high * Last version had problems while installing/uploading. * Applied a security patch against a bug that allowes users which are required to login to crash the server or gain the UID of the program that is linked against libmysqlclient which could be a problem for Web-Servers with statically linked PHP/MySQL. Thanks for Guillaume Morin for backporting the patch. stable/main/binary-alpha/libmysqlclient6_3.22.30-4_alpha.deb stable/main/binary-alpha/libmysqlclient6-dev_3.22.30-4_alpha.deb stable/main/binary-alpha/mysql-gpl-client_3.22.30-4_alpha.deb mysql-gpl (3.22.30-4) stable; urgency=high * Last version had problems while installing/uploading. * Applied a security patch against a bug that allowes users which are required to login to crash the server or gain the UID of the program that is linked against libmysqlclient which could be a problem for Web-Servers with statically linked PHP/MySQL. Thanks for Guillaume Morin for backporting the patch. stable/main/binary-m68k/mysql-server_3.22.32-6_m68k.deb stable/main/binary-m68k/mysql-client_3.22.32-6_m68k.deb mysql (3.22.32-6) stable; urgency=low * After the recent security update this one accidently went to non-free although it is - since shortly after the potato release - licensed under the GPL. Please move to main. * No code change! stable/main/binary-all/mysql-doc_3.22.32-6_all.deb stable/main/source/mysql_3.22.32-6.dsc stable/main/binary-i386/mysql-client_3.22.32-6_i386.deb stable/main/binary-i386/mysql-server_3.22.32-6_i386.deb stable/main/source/mysql_3.22.32-6.diff.gz mysql (3.22.32-6) stable; urgency=low * After the recent security update this one accidently went to non-free although it is - since shortly after the potato release - licensed under the GPL. Please move to main. * No code change! stable/main/binary-arm/mysql-client_3.22.32-6_arm.deb stable/main/binary-arm/mysql-server_3.22.32-6_arm.deb mysql (3.22.32-6) stable; urgency=low * After the recent security update this one accidently went to non-free although it is - since shortly after the potato release - licensed under the GPL. Please move to main. * No code change! stable/main/binary-sparc/mysql-server_3.22.32-6_sparc.deb stable/main/binary-powerpc/mysql-server_3.22.32-6_powerpc.deb stable/main/binary-alpha/mysql-server_3.22.32-6_alpha.deb stable/main/binary-sparc/mysql-client_3.22.32-6_sparc.deb stable/main/binary-powerpc/mysql-client_3.22.32-6_powerpc.deb stable/main/binary-alpha/mysql-client_3.22.32-6_alpha.deb mysql (3.22.32-6) stable; urgency=low * After the recent security update this one accidently went to non-free although it is - since shortly after the potato release - licensed under the GPL. Please move to main. * No code change! stable/main/binary-sparc/nano_0.9.23-1_sparc.deb stable/main/binary-sparc/nano-tiny_0.9.23-1_sparc.deb nano (0.9.23-1) stable unstable; urgency=high * New upstream release. * Release Manager: fixes a symlink attack. * Write temporary files with O_EXCL. Cut open()'s options to fix file permissions. * Suggest "spell" instead of "ispell". stable/main/binary-m68k/nano_0.9.23-1_m68k.deb stable/main/binary-m68k/nano-tiny_0.9.23-1_m68k.deb nano (0.9.23-1) stable unstable; urgency=high * New upstream release. * Release Manager: fixes a symlink attack. * Write temporary files with O_EXCL. Cut open()'s options to fix file permissions. * Suggest "spell" instead of "ispell". stable/main/source/nano_0.9.23.orig.tar.gz stable/main/binary-i386/nano_0.9.23-1_i386.deb stable/main/source/nano_0.9.23-1.diff.gz stable/main/source/nano_0.9.23-1.dsc stable/main/binary-i386/nano-tiny_0.9.23-1_i386.deb nano (0.9.23-1) stable unstable; urgency=high * New upstream release. * Release Manager: fixes a symlink attack. * Write temporary files with O_EXCL. Cut open()'s options to fix file permissions. * Suggest "spell" instead of "ispell". stable/main/binary-arm/nano-tiny_0.9.23-1_arm.deb stable/main/binary-arm/nano_0.9.23-1_arm.deb nano (0.9.23-1) stable unstable; urgency=high * New upstream release. * Release Manager: fixes a symlink attack. * Write temporary files with O_EXCL. Cut open()'s options to fix file permissions. * Suggest "spell" instead of "ispell". stable/main/binary-alpha/nano-tiny_0.9.23-1_alpha.deb stable/main/binary-alpha/nano_0.9.23-1_alpha.deb nano (0.9.23-1) stable unstable; urgency=high * New upstream release. * Release Manager: fixes a symlink attack. * Write temporary files with O_EXCL. Cut open()'s options to fix file permissions. * Suggest "spell" instead of "ispell". stable/main/binary-powerpc/nano_0.9.23-1.1_powerpc.deb stable/main/binary-powerpc/nano-tiny_0.9.23-1.1_powerpc.deb nano (0.9.23-1.1) stable unstable; urgency=high * Binary-only NMU for powerpc * Recompile with correct libc for potato stable/main/binary-sparc/pax_1.5-8_sparc.deb pax (1:1.5-8) stable unstable; urgency=low * oops. rebuild with appropriate libraries for potato, closes: #75012 stable/main/binary-sparc/osh_1.7-6_sparc.deb osh (1.7-6) stable unstable; urgency=low * Made fixes in postinst so that suid on /usr/bin/osh is properly set and registered with suidmanager (closes: Bug#71648) stable/main/binary-arm/osh_1.7-6_arm.deb stable/main/binary-powerpc/osh_1.7-6_powerpc.deb osh (1.7-6) stable; urgency=low * Made fixes in postinst so that suid on /usr/bin/osh is properly set and registered with suidmanager (closes: Bug#71648) stable/main/binary-alpha/mutt_1.2.5-4_alpha.deb stable/main/binary-powerpc/mutt_1.2.5-4_powerpc.deb stable/main/binary-arm/mutt_1.2.5-4_arm.deb mutt (1.2.5-4) stable; urgency=high * Typo in debian-ldap-query prevented it from running (#74575). stable/main/binary-sparc/mutt_1.2.5-4_sparc.deb mutt (1.2.5-4) stable unstable; urgency=high * Typo in debian-ldap-query prevented it from running (#74575). stable/main/binary-sparc/mule2-canna_2.3+19.34-7potato7_sparc.deb stable/main/binary-sparc/mule2-canna-wnn_2.3+19.34-7potato7_sparc.deb stable/main/binary-sparc/mule2-plain_2.3+19.34-7potato7_sparc.deb stable/main/binary-sparc/mule2-bin_2.3+19.34-7potato7_sparc.deb stable/main/binary-sparc/mule2-wnn_2.3+19.34-7potato7_sparc.deb mule2 (2.3+19.34-7potato7) stable; urgency=high * closes: Bug#67157: error in pre-install script Thanks patch by Anthony Towns stable/main/binary-arm/mtools_3.9.6-4_arm.deb stable/main/source/mtools_3.9.6-4.dsc stable/main/source/mtools_3.9.6-4.diff.gz mtools (3.9.6-4) stable; urgency=medium * New maintainer. * The following patches are needed to get mtools running on ARM: - updated config.guess and config.sub - configure.in: recognize *-*-linux-gnu - configure.in: add "-mstructure-size-boundary=8" to the CFLAGS on ARM (closes: #79180) stable/main/binary-sparc/mtools_3.9.6-4_sparc.deb mtools (3.9.6-4) stable; urgency=medium * New maintainer. * The following patches are needed to get mtools running on ARM: - updated config.guess and config.sub - configure.in: recognize *-*-linux-gnu - configure.in: add "-mstructure-size-boundary=8" to the CFLAGS on ARM (closes: #79180) stable/main/binary-powerpc/mtools_3.9.6-4_powerpc.deb mtools (3.9.6-4) stable; urgency=medium * New maintainer. * The following patches are needed to get mtools running on ARM: - updated config.guess and config.sub - configure.in: recognize *-*-linux-gnu - configure.in: add "-mstructure-size-boundary=8" to the CFLAGS on ARM (closes: #79180) stable/main/binary-m68k/mtools_3.9.6-4_m68k.deb mtools (3.9.6-4) stable; urgency=medium * New maintainer. * The following patches are needed to get mtools running on ARM: - updated config.guess and config.sub - configure.in: recognize *-*-linux-gnu - configure.in: add "-mstructure-size-boundary=8" to the CFLAGS on ARM (closes: #79180) stable/main/binary-i386/mtools_3.9.6-4_i386.deb mtools (3.9.6-4) stable; urgency=medium * New maintainer. * The following patches are needed to get mtools running on ARM: - updated config.guess and config.sub - configure.in: recognize *-*-linux-gnu - configure.in: add "-mstructure-size-boundary=8" to the CFLAGS on ARM (closes: #79180) stable/main/binary-alpha/mtools_3.9.6-4_alpha.deb mtools (3.9.6-4) stable; urgency=medium * New maintainer. * The following patches are needed to get mtools running on ARM: - updated config.guess and config.sub - configure.in: recognize *-*-linux-gnu - configure.in: add "-mstructure-size-boundary=8" to the CFLAGS on ARM (closes: #79180) stable/main/binary-alpha/libnspr4_M18-3_alpha.deb stable/main/binary-alpha/libnspr4-dev_M18-3_alpha.deb stable/main/binary-alpha/mozilla_M18-3_alpha.deb stable/main/binary-alpha/mozilla-dev_M18-3_alpha.deb mozilla (M18-3) unstable stable; urgency=low * Uploading to stable (Closes: #75880) * Added note about UserAgent hidden pref to FAQ * Added note about being required to download xpi not open it in mozilla * Added forgotten start-psm script * Hopefully, finally fixed the flaming /usr/share/doc/mozilla-dev link * Linked mozilla-config manpage to undocumented stable/main/binary-sparc/micq_0.4.3-4_sparc.deb micq (0.4.3-4) stable; urgency=HIGH * Applied patch from Guillaume Morin to fix a possible remote exploit reported in BugTraq. Thanks! stable/main/binary-powerpc/micq_0.4.3-4_powerpc.deb micq (0.4.3-4) stable; urgency=HIGH * Applied patch from Guillaume Morin to fix a possible remote exploit reported in BugTraq. Thanks! stable/main/binary-m68k/micq_0.4.3-4_m68k.deb micq (0.4.3-4) stable; urgency=HIGH * Applied patch from Guillaume Morin to fix a possible remote exploit reported in BugTraq. Thanks! stable/main/source/micq_0.4.3-4.dsc stable/main/binary-i386/micq_0.4.3-4_i386.deb stable/main/source/micq_0.4.3-4.diff.gz micq (0.4.3-4) stable; urgency=HIGH * Applied patch from Guillaume Morin to fix a possible remote exploit reported in BugTraq. Thanks! stable/main/binary-arm/micq_0.4.3-4_arm.deb micq (0.4.3-4) stable; urgency=HIGH * Applied patch from Guillaume Morin to fix a possible remote exploit reported in BugTraq. Thanks! stable/main/binary-alpha/micq_0.4.3-4_alpha.deb micq (0.4.3-4) stable; urgency=high * Applied patch from Guillaume Morin to fix a possible remote exploit reported in BugTraq. Thanks! stable/main/binary-powerpc/mgetty-voice_1.1.21-3potato1_powerpc.deb stable/main/binary-i386/mgetty_1.1.21-3potato1_i386.deb stable/main/binary-m68k/mgetty-voice_1.1.21-3potato1_m68k.deb stable/main/binary-arm/mgetty_1.1.21-3potato1_arm.deb stable/main/binary-alpha/mgetty-viewfax_1.1.21-3potato1_alpha.deb stable/main/binary-arm/mgetty-fax_1.1.21-3potato1_arm.deb stable/main/binary-alpha/mgetty_1.1.21-3potato1_alpha.deb stable/main/binary-sparc/mgetty_1.1.21-3potato1_sparc.deb stable/main/binary-alpha/mgetty-fax_1.1.21-3potato1_alpha.deb stable/main/binary-sparc/mgetty-fax_1.1.21-3potato1_sparc.deb stable/main/binary-all/mgetty-docs_1.1.21-3potato1_all.deb stable/main/binary-arm/mgetty-viewfax_1.1.21-3potato1_arm.deb stable/main/binary-sparc/mgetty-viewfax_1.1.21-3potato1_sparc.deb stable/main/binary-alpha/mgetty-voice_1.1.21-3potato1_alpha.deb stable/main/binary-powerpc/mgetty-viewfax_1.1.21-3potato1_powerpc.deb stable/main/binary-powerpc/mgetty-fax_1.1.21-3potato1_powerpc.deb stable/main/binary-m68k/mgetty-viewfax_1.1.21-3potato1_m68k.deb stable/main/binary-i386/mgetty-voice_1.1.21-3potato1_i386.deb stable/main/binary-i386/mgetty-fax_1.1.21-3potato1_i386.deb stable/main/binary-arm/mgetty-voice_1.1.21-3potato1_arm.deb stable/main/binary-i386/mgetty-viewfax_1.1.21-3potato1_i386.deb stable/main/binary-m68k/mgetty_1.1.21-3potato1_m68k.deb stable/main/binary-powerpc/mgetty_1.1.21-3potato1_powerpc.deb stable/main/binary-m68k/mgetty-fax_1.1.21-3potato1_m68k.deb stable/main/binary-sparc/mgetty-voice_1.1.21-3potato1_sparc.deb mgetty (1.1.21-3potato1) stable; urgency=high * SECURITY: fix for insecure tempfile handling * disables fall-back delivery to /tmp stable/main/binary-sparc/mc_4.5.42-11.potato.6_sparc.deb stable/main/binary-sparc/mc-common_4.5.42-11.potato.6_sparc.deb stable/main/binary-sparc/gmc_4.5.42-11.potato.6_sparc.deb mc (4.5.42-11.potato.6) stable; urgency=high * Fix security bug using quick patch by Andrew V. Samoilov see http://www.securityfocus.com/vdb/?id=2016 stable/main/binary-powerpc/mc_4.5.42-11.potato.6_powerpc.deb stable/main/binary-powerpc/gmc_4.5.42-11.potato.6_powerpc.deb stable/main/binary-powerpc/mc-common_4.5.42-11.potato.6_powerpc.deb mc (4.5.42-11.potato.6) stable; urgency=high * Fix security bug using quick patch by Andrew V. Samoilov see http://www.securityfocus.com/vdb/?id=2016 stable/main/binary-m68k/gmc_4.5.42-11.potato.6_m68k.deb stable/main/binary-m68k/mc-common_4.5.42-11.potato.6_m68k.deb stable/main/binary-m68k/mc_4.5.42-11.potato.6_m68k.deb mc (4.5.42-11.potato.6) stable; urgency=high * Fix security bug using quick patch by Andrew V. Samoilov see http://www.securityfocus.com/vdb/?id=2016 stable/main/source/mc_4.5.42-11.potato.6.dsc stable/main/binary-i386/mc-common_4.5.42-11.potato.6_i386.deb stable/main/binary-i386/gmc_4.5.42-11.potato.6_i386.deb stable/main/source/mc_4.5.42-11.potato.6.diff.gz stable/main/binary-i386/mc_4.5.42-11.potato.6_i386.deb mc (4.5.42-11.potato.6) stable; urgency=high * Fix security bug using quick patch by Andrew V. Samoilov see http://www.securityfocus.com/vdb/?id=2016 stable/main/binary-arm/gmc_4.5.42-11.potato.6_arm.deb stable/main/binary-arm/mc-common_4.5.42-11.potato.6_arm.deb stable/main/binary-arm/mc_4.5.42-11.potato.6_arm.deb mc (4.5.42-11.potato.6) stable; urgency=high * Fix security bug using quick patch by Andrew V. Samoilov see http://www.securityfocus.com/vdb/?id=2016 stable/main/binary-alpha/gmc_4.5.42-11.potato.6_alpha.deb stable/main/binary-alpha/mc-common_4.5.42-11.potato.6_alpha.deb stable/main/binary-alpha/mc_4.5.42-11.potato.6_alpha.deb mc (4.5.42-11.potato.6) stable; urgency=high * Fix security bug using quick patch by Andrew V. Samoilov see http://www.securityfocus.com/vdb/?id=2016 stable/main/binary-sparc/man2html_1.5-23_sparc.deb man2html (1.5-23) stable; urgency=low * Fixing the DoS bug #78195 justifies including this in stable. stable/main/binary-powerpc/man2html_1.5-23_powerpc.deb man2html (1.5-23) stable; urgency=low * Fixing the DoS bug #78195 justifies including this in stable. stable/main/binary-m68k/man2html_1.5-23_m68k.deb man2html (1.5-23) stable; urgency=low * Fixing the DoS bug #78195 justifies including this in stable. stable/main/source/man2html_1.5-23.diff.gz stable/main/source/man2html_1.5-23.dsc stable/main/binary-i386/man2html_1.5-23_i386.deb man2html (1.5-23) stable; urgency=low * Fixing the DoS bug #78195 justifies including this in stable. stable/main/binary-arm/man2html_1.5-23_arm.deb man2html (1.5-23) stable; urgency=low * Fixing the DoS bug #78195 justifies including this in stable. stable/main/binary-alpha/man2html_1.5-23_alpha.deb man2html (1.5-23) stable; urgency=low * Fixing the DoS bug #78195 justifies including this in stable. stable/main/binary-arm/man-db_2.3.16-1.1_arm.deb stable/main/binary-powerpc/man-db_2.3.16-1.1_powerpc.deb stable/main/binary-m68k/man-db_2.3.16-1.1_m68k.deb stable/main/binary-i386/man-db_2.3.16-1.1_i386.deb stable/main/binary-sparc/man-db_2.3.16-1.1_sparc.deb stable/main/source/man-db_2.3.16-1.1.dsc stable/main/source/man-db_2.3.16-1.1.tar.gz man-db (2.3.16-1.1) stable; urgency=high * Non-maintainer upload by Security Team * Fixed unquoted throughpassing of format strings that could crash man stable/main/binary-alpha/man-db_2.3.16-1.1.1_alpha.deb man-db (2.3.16-1.1.1) stable; urgency=high * binary only rebuild to fix "sh: ../debian/tmp/usr/bin/zsoelim: not found" error which renders that version totally useless stable/main/binary-sparc/mailx_8.1.1-11_sparc.deb mailx (1:8.1.1-11) stable; urgency=medium * New maintainer. * Upload to stable to fix problems introduced in the last security upgrade: + Use the liblockfile library for mailbox locking (closes: #90446). Patch backported from current sid version of mailx. + Remove bashism from postinst (closes: #89642). * Add Build-Depends field. stable/main/binary-powerpc/mailx_8.1.1-11_powerpc.deb mailx (1:8.1.1-11) stable; urgency=medium * New maintainer. * Upload to stable to fix problems introduced in the last security upgrade: + Use the liblockfile library for mailbox locking (closes: #90446). Patch backported from current sid version of mailx. + Remove bashism from postinst (closes: #89642). * Add Build-Depends field. stable/main/binary-m68k/mailx_8.1.1-11_m68k.deb mailx (1:8.1.1-11) stable; urgency=medium * New maintainer. * Upload to stable to fix problems introduced in the last security upgrade: + Use the liblockfile library for mailbox locking (closes: #90446). Patch backported from current sid version of mailx. + Remove bashism from postinst (closes: #89642). * Add Build-Depends field. stable/main/source/mailx_8.1.1-11.dsc stable/main/source/mailx_8.1.1-11.diff.gz stable/main/binary-i386/mailx_8.1.1-11_i386.deb mailx (1:8.1.1-11) stable; urgency=medium * New maintainer. * Upload to stable to fix problems introduced in the last security upgrade: + Use the liblockfile library for mailbox locking (closes: #90446). Patch backported from current sid version of mailx. + Remove bashism from postinst (closes: #89642). * Add Build-Depends field. stable/main/binary-arm/mailx_8.1.1-11_arm.deb mailx (1:8.1.1-11) stable; urgency=medium * New maintainer. * Upload to stable to fix problems introduced in the last security upgrade: + Use the liblockfile library for mailbox locking (closes: #90446). Patch backported from current sid version of mailx. + Remove bashism from postinst (closes: #89642). * Add Build-Depends field. stable/main/binary-alpha/mailx_8.1.1-11_alpha.deb mailx (1:8.1.1-11) stable; urgency=medium * New maintainer. * Upload to stable to fix problems introduced in the last security upgrade: + Use the liblockfile library for mailbox locking (closes: #90446). Patch backported from current sid version of mailx. + Remove bashism from postinst (closes: #89642). * Add Build-Depends field. stable/main/binary-alpha/libdb1-dev_1.85.4-4_alpha.deb stable/main/binary-alpha/libdb1_1.85.4-4_alpha.deb libdb (1.85.4-4) stable; urgency=low * PORT/linux/Makefile: SECURITY FIX: don't build broken snprintf, which ignores the bounds check, making programs which just *happen* to use libdb vulnerable... * debian/rules: argh, dpkg-gencontrol syntax changed, using libdb1.files instead of libdb1/files. Sigh. stable/contrib/binary-sparc/jazip_0.33-1_sparc.deb jazip (0.33-1) stable; urgency=high * Close root exploit that can give root shell to members of floppy group. First, the interface doesn't run as root anymore. Upstream did this by partitioning off all the parts of the code that need root access between 'seteuid(0)' and 'seteuid(getuid())' calls. So now, even though the binary is suid root, the program runs as the normal user except at very specific times (when the device is being opened, mounted, etc.). This had the effect of removing the root exploit, but not the buffer overflow. As you might expect, the exploit still caused the prog to crash and run the shell, but the shell didn't run as root anymore. Second, upstream added a few lines at the beginning of main.c which does a sanity check on the DISPLAY environment. Basically it truncates it to 256 chars if it's bigger than that. This "fixed" the buffer overflow problem. (closes: #82586) stable/contrib/binary-powerpc/jazip_0.33-1_powerpc.deb jazip (0.33-1) stable; urgency=high * Close root exploit that can give root shell to members of floppy group. First, the interface doesn't run as root anymore. Upstream did this by partitioning off all the parts of the code that need root access between 'seteuid(0)' and 'seteuid(getuid())' calls. So now, even though the binary is suid root, the program runs as the normal user except at very specific times (when the device is being opened, mounted, etc.). This had the effect of removing the root exploit, but not the buffer overflow. As you might expect, the exploit still caused the prog to crash and run the shell, but the shell didn't run as root anymore. Second, upstream added a few lines at the beginning of main.c which does a sanity check on the DISPLAY environment. Basically it truncates it to 256 chars if it's bigger than that. This "fixed" the buffer overflow problem. (closes: #82586) stable/contrib/binary-m68k/jazip_0.33-1_m68k.deb jazip (0.33-1) stable; urgency=high * Close root exploit that can give root shell to members of floppy group. First, the interface doesn't run as root anymore. Upstream did this by partitioning off all the parts of the code that need root access between 'seteuid(0)' and 'seteuid(getuid())' calls. So now, even though the binary is suid root, the program runs as the normal user except at very specific times (when the device is being opened, mounted, etc.). This had the effect of removing the root exploit, but not the buffer overflow. As you might expect, the exploit still caused the prog to crash and run the shell, but the shell didn't run as root anymore. Second, upstream added a few lines at the beginning of main.c which does a sanity check on the DISPLAY environment. Basically it truncates it to 256 chars if it's bigger than that. This "fixed" the buffer overflow problem. (closes: #82586) stable/contrib/source/jazip_0.33.orig.tar.gz stable/contrib/source/jazip_0.33-1.dsc stable/contrib/source/jazip_0.33-1.diff.gz stable/contrib/binary-i386/jazip_0.33-1_i386.deb jazip (0.33-1) stable; urgency=high * Close root exploit that can give root shell to members of floppy group. First, the interface doesn't run as root anymore. Upstream did this by partitioning off all the parts of the code that need root access between 'seteuid(0)' and 'seteuid(getuid())' calls. So now, even though the binary is suid root, the program runs as the normal user except at very specific times (when the device is being opened, mounted, etc.). This had the effect of removing the root exploit, but not the buffer overflow. As you might expect, the exploit still caused the prog to crash and run the shell, but the shell didn't run as root anymore. Second, upstream added a few lines at the beginning of main.c which does a sanity check on the DISPLAY environment. Basically it truncates it to 256 chars if it's bigger than that. This "fixed" the buffer overflow problem. (closes: #82586) stable/contrib/binary-alpha/jazip_0.33-1_alpha.deb jazip (0.33-1) stable; urgency=high * Close root exploit that can give root shell to members of floppy group. First, the interface doesn't run as root anymore. Upstream did this by partitioning off all the parts of the code that need root access between 'seteuid(0)' and 'seteuid(getuid())' calls. So now, even though the binary is suid root, the program runs as the normal user except at very specific times (when the device is being opened, mounted, etc.). This had the effect of removing the root exploit, but not the buffer overflow. As you might expect, the exploit still caused the prog to crash and run the shell, but the shell didn't run as root anymore. Second, upstream added a few lines at the beginning of main.c which does a sanity check on the DISPLAY environment. Basically it truncates it to 256 chars if it's bigger than that. This "fixed" the buffer overflow problem. (closes: #82586) stable/main/binary-sparc/ibcs-base_981105-1_sparc.deb ibcs (981105-1) frozen unstable; urgency=low * New upstream source. * Fixed incorrect control file (Sorry, Michael). * Broke module code out into source package a la pcmcia-cs. If you need iBCS you can work out how to use make-kpkg, closes: #14104, #26235 * Cleaned up messy kernel module dependcies, closes: #18561 * Fixed broken MAKEDEV utilisation, closes: #36343, #55669 * Fixed broken dependencies, closes: #32761, #62818, #60506 stable/main/binary-arm/gnuplot_3.7.1p1-4_arm.deb gnuplot (3.7.1p1-4) stable; urgency=low * Added missing source dependency information as suggested by Roman Hodek, closes: #53280 * added code to reset suid-bit on binary instead of doing nothing. Now even dpkg-reconfigure should work. Thanks to Zack Weinberg for reporting this bug, closes: #54816 stable/main/binary-sparc/eperl_2.2.14-0.7potato2_sparc.deb eperl (2.2.14-0.7potato2) stable; urgency=high * Fix unneded dependency to libgdbmg1-dev in Makefile (Closes: Bug#87703) Thanks to Roman Hodek for reporting this bug. stable/main/binary-powerpc/eperl_2.2.14-0.7potato2_powerpc.deb eperl (2.2.14-0.7potato2) stable; urgency=high * Fix unneded dependency to libgdbmg1-dev in Makefile (Closes: Bug#87703) Thanks to Roman Hodek for reporting this bug. stable/main/binary-m68k/eperl_2.2.14-0.7potato2_m68k.deb eperl (2.2.14-0.7potato2) stable; urgency=high * Fix unneded dependency to libgdbmg1-dev in Makefile (Closes: Bug#87703) Thanks to Roman Hodek for reporting this bug. stable/main/source/eperl_2.2.14-0.7potato2.dsc stable/main/source/eperl_2.2.14-0.7potato2.diff.gz stable/main/binary-i386/eperl_2.2.14-0.7potato2_i386.deb eperl (2.2.14-0.7potato2) stable; urgency=high * Fix unneded dependency to libgdbmg1-dev in Makefile (Closes: Bug#87703) Thanks to Roman Hodek for reporting this bug. stable/main/binary-arm/eperl_2.2.14-0.7potato2_arm.deb eperl (2.2.14-0.7potato2) stable; urgency=high * Fix unneded dependency to libgdbmg1-dev in Makefile (Closes: Bug#87703) Thanks to Roman Hodek for reporting this bug. stable/main/binary-alpha/eperl_2.2.14-0.7potato2_alpha.deb eperl (2.2.14-0.7potato2) stable; urgency=high * Fix unneded dependency to libgdbmg1-dev in Makefile (Closes: Bug#87703) Thanks to Roman Hodek for reporting this bug. stable/main/binary-sparc/libc6-prof_2.1.3-18_sparc.deb stable/main/binary-sparc/nscd_2.1.3-18_sparc.deb stable/main/binary-sparc/locales_2.1.3-18_sparc.deb stable/main/binary-sparc/libc6-dbg_2.1.3-18_sparc.deb stable/main/binary-sparc/libc6_2.1.3-18_sparc.deb stable/main/binary-all/glibc-doc_2.1.3-18_all.deb stable/main/binary-sparc/libc6-dev_2.1.3-18_sparc.deb stable/main/source/glibc_2.1.3-18.diff.gz stable/main/source/glibc_2.1.3-18.dsc stable/main/binary-sparc/libc6-pic_2.1.3-18_sparc.deb stable/main/binary-all/i18ndata_2.1.3-18_all.deb glibc (2.1.3-18) stable; urgency=low * Fix case where root cannot use LD_* env vars on suid/sgid programs stable/main/binary-powerpc/libc6-prof_2.1.3-18_powerpc.deb stable/main/binary-powerpc/libc6-dbg_2.1.3-18_powerpc.deb stable/main/binary-powerpc/libc6_2.1.3-18_powerpc.deb stable/main/binary-powerpc/nscd_2.1.3-18_powerpc.deb stable/main/binary-powerpc/libc6-dev_2.1.3-18_powerpc.deb stable/main/binary-powerpc/libc6-pic_2.1.3-18_powerpc.deb stable/main/binary-powerpc/locales_2.1.3-18_powerpc.deb glibc (2.1.3-18) stable; urgency=low * Fix case where root cannot use LD_* env vars on suid/sgid programs stable/main/binary-m68k/libc6-dbg_2.1.3-18_m68k.deb stable/main/binary-m68k/libc6-prof_2.1.3-18_m68k.deb stable/main/binary-m68k/libc6-pic_2.1.3-18_m68k.deb stable/main/binary-m68k/libnss1-compat_2.1.3-18_m68k.deb stable/main/binary-m68k/nscd_2.1.3-18_m68k.deb stable/main/binary-m68k/libc6-dev_2.1.3-18_m68k.deb stable/main/binary-m68k/locales_2.1.3-18_m68k.deb stable/main/binary-m68k/libc6_2.1.3-18_m68k.deb glibc (2.1.3-18) stable; urgency=low * Fix case where root cannot use LD_* env vars on suid/sgid programs stable/main/binary-i386/libc6_2.1.3-18_i386.deb stable/main/binary-i386/libc6-pic_2.1.3-18_i386.deb stable/main/binary-i386/locales_2.1.3-18_i386.deb stable/main/binary-i386/libc6-prof_2.1.3-18_i386.deb stable/main/binary-i386/libnss1-compat_2.1.3-18_i386.deb stable/main/binary-i386/libc6-dbg_2.1.3-18_i386.deb stable/main/binary-i386/libc6-dev_2.1.3-18_i386.deb stable/main/binary-i386/nscd_2.1.3-18_i386.deb glibc (2.1.3-18) stable; urgency=low * Fix case where root cannot use LD_* env vars on suid/sgid programs stable/main/binary-arm/nscd_2.1.3-18_arm.deb stable/main/binary-arm/libc6_2.1.3-18_arm.deb stable/main/binary-arm/libc6-dbg_2.1.3-18_arm.deb stable/main/binary-arm/libc6-pic_2.1.3-18_arm.deb stable/main/binary-arm/locales_2.1.3-18_arm.deb stable/main/binary-arm/libc6-dev_2.1.3-18_arm.deb stable/main/binary-arm/libc6-prof_2.1.3-18_arm.deb glibc (2.1.3-18) stable; urgency=low * Fix case where root cannot use LD_* env vars on suid/sgid programs stable/main/binary-alpha/nscd_2.1.3-18_alpha.deb stable/main/binary-alpha/libc6.1_2.1.3-18_alpha.deb stable/main/binary-alpha/libc6.1-dev_2.1.3-18_alpha.deb stable/main/binary-alpha/libc6.1-dbg_2.1.3-18_alpha.deb stable/main/binary-alpha/libc6.1-pic_2.1.3-18_alpha.deb stable/main/binary-alpha/libc6.1-prof_2.1.3-18_alpha.deb stable/main/binary-alpha/libnss1-compat_2.1.3-18_alpha.deb stable/main/binary-alpha/locales_2.1.3-18_alpha.deb glibc (2.1.3-18) stable; urgency=low * Fix case where root cannot use LD_* env vars on suid/sgid programs stable/main/binary-arm/gaby_1.9.15-0.2_arm.deb gaby (1.9.15-0.2) stable; urgency=low * Non-maintainer upload to fix the Build-Depends line. stable/main/binary-alpha/exuberant-ctags_3.2.4-0.1_alpha.deb stable/main/source/exuberant-ctags_3.2.4-0.1.dsc stable/main/binary-m68k/exuberant-ctags_3.2.4-0.1_m68k.deb stable/main/binary-powerpc/exuberant-ctags_3.2.4-0.1_powerpc.deb stable/main/binary-sparc/exuberant-ctags_3.2.4-0.1_sparc.deb stable/main/binary-i386/exuberant-ctags_3.2.4-0.1_i386.deb stable/main/source/exuberant-ctags_3.2.4-0.1.diff.gz stable/main/binary-arm/exuberant-ctags_3.2.4-0.1_arm.deb exuberant-ctags (1:3.2.4-0.1) stable; urgency=high * Non-maintainer upload by security team * Fix insecure handling of temporary files stable/main/binary-all/exmh_2.1.1-1.1_all.deb stable/main/source/exmh_2.1.1-1.1.diff.gz stable/main/source/exmh_2.1.1-1.1.dsc exmh (1:2.1.1-1.1) stable; urgency=high * Non-maintainer upload by Security Team * Backported security update covering insecure tempfile creation, will use /tmp/username instead of /tmp now * Backported security update, will remove xmhErrorMsg if it exists prior to writing to it. stable/main/binary-i386/ethereal_0.8.0-2potato_i386.deb ethereal (0.8.0-2potato) stable; urgency=high * Security upload; fixes possible buffer overflow exploits (including one with an already written exploit) in packet-afs.c, packet-ntp.c and packet-nbns.c (closes: #77561) stable/main/binary-sparc/emacs20-dl_20.7-5_sparc.deb emacs20-dl (20.7-5) stable unstable; urgency=high * closes: #69171: emacs20-dl does not have /etc/emacs20/ in load-path. (RC Bug) * debian/in.control: added emacs-dl-{canna,wnn}-20.5a to Conflicts field. stable/main/binary-arm/emacs20-dl_20.7-5_arm.deb emacs20-dl (20.7-5) stable; urgency=high * closes: #69171: emacs20-dl does not have /etc/emacs20/ in load-path. (RC Bug) * debian/in.control: added emacs-dl-{canna,wnn}-20.5a to Conflicts field. stable/main/binary-sparc/elvis-tiny_1.4-11_sparc.deb elvis-tiny (1.4-11) stable unstable; urgency=high * The patch by Topi Miettinen to fix critical bug #74976 broke file recovery, but also the :w command. Re-engineered the patch so that the bug is fixed without any side-effects (closes: #77918) * Add explanation by the author to clear up copyright notice (closes: #72021) stable/main/binary-powerpc/elvis-tiny_1.4-11_powerpc.deb elvis-tiny (1.4-11) stable unstable; urgency=high * The patch by Topi Miettinen to fix critical bug #74976 broke file recovery, but also the :w command. Re-engineered the patch so that the bug is fixed without any side-effects (closes: #77918) * Add explanation by the author to clear up copyright notice (closes: #72021) stable/main/binary-m68k/elvis-tiny_1.4-11_m68k.deb elvis-tiny (1.4-11) stable unstable; urgency=high * The patch by Topi Miettinen to fix critical bug #74976 broke file recovery, but also the :w command. Re-engineered the patch so that the bug is fixed without any side-effects (closes: #77918) * Add explanation by the author to clear up copyright notice (closes: #72021) stable/main/binary-sparc/dialog_0.9a-20000118-3bis_sparc.deb dialog (0.9a-20000118-3bis) stable; urgency=high * Fixed insecure handling of lock files (Bug #78951). Patch backported from 0.9a-20001213-1 in woody. stable/main/binary-powerpc/dialog_0.9a-20000118-3bis_powerpc.deb dialog (0.9a-20000118-3bis) stable; urgency=high * Fixed insecure handling of lock files (Bug #78951). Patch backported from 0.9a-20001213-1 in woody. stable/main/binary-m68k/dialog_0.9a-20000118-3bis_m68k.deb dialog (0.9a-20000118-3bis) stable; urgency=high * Fixed insecure handling of lock files (Bug #78951). Patch backported from 0.9a-20001213-1 in woody. stable/main/source/dialog_0.9a-20000118-3bis.dsc stable/main/binary-i386/dialog_0.9a-20000118-3bis_i386.deb stable/main/source/dialog_0.9a-20000118-3bis.diff.gz dialog (0.9a-20000118-3bis) stable; urgency=high * Fixed insecure handling of lock files (Bug #78951). Patch backported from 0.9a-20001213-1 in woody. stable/main/binary-arm/dialog_0.9a-20000118-3bis_arm.deb dialog (0.9a-20000118-3bis) stable; urgency=high * Fixed insecure handling of lock files (Bug #78951). Patch backported from 0.9a-20001213-1 in woody. stable/main/binary-alpha/dialog_0.9a-20000118-3bis_alpha.deb dialog (0.9a-20000118-3bis) stable; urgency=high * Fixed insecure handling of lock files (Bug #78951). Patch backported from 0.9a-20001213-1 in woody. stable/main/binary-arm/dedit_0.5.11_arm.deb dedit (0.5.11) stable; urgency=low * debian/control: added Build-Depends (closes: Bug#70258) * reFixed intl support. (Bug#68942) stable/main/binary-sparc/cupsys-bsd_1.0.4-9_sparc.deb stable/main/binary-sparc/cupsys_1.0.4-9_sparc.deb stable/main/binary-sparc/libcupsys1_1.0.4-9_sparc.deb stable/main/binary-sparc/libcupsys1-dev_1.0.4-9_sparc.deb cupsys (1.0.4-9) stable; urgency=high * Security fix: backported many security fixes developed by SuSE from 1.1.6 to 1.0.4, including /tmp races and buffer overflows. * While we're at it, fix some brain-damage in library dep handling. stable/main/binary-powerpc/cupsys-bsd_1.0.4-9_powerpc.deb stable/main/binary-powerpc/cupsys_1.0.4-9_powerpc.deb stable/main/binary-powerpc/libcupsys1-dev_1.0.4-9_powerpc.deb stable/main/binary-powerpc/libcupsys1_1.0.4-9_powerpc.deb cupsys (1.0.4-9) stable; urgency=high * Security fix: backported many security fixes developed by SuSE from 1.1.6 to 1.0.4, including /tmp races and buffer overflows. * While we're at it, fix some brain-damage in library dep handling. stable/main/binary-m68k/cupsys_1.0.4-9_m68k.deb stable/main/binary-m68k/libcupsys1_1.0.4-9_m68k.deb stable/main/binary-m68k/cupsys-bsd_1.0.4-9_m68k.deb stable/main/binary-m68k/libcupsys1-dev_1.0.4-9_m68k.deb cupsys (1.0.4-9) stable; urgency=high * Security fix: backported many security fixes developed by SuSE from 1.1.6 to 1.0.4, including /tmp races and buffer overflows. * While we're at it, fix some brain-damage in library dep handling. stable/main/binary-i386/libcupsys1_1.0.4-9_i386.deb stable/main/binary-i386/libcupsys1-dev_1.0.4-9_i386.deb stable/main/source/cupsys_1.0.4-9.dsc stable/main/binary-i386/cupsys_1.0.4-9_i386.deb stable/main/source/cupsys_1.0.4-9.diff.gz stable/main/binary-i386/cupsys-bsd_1.0.4-9_i386.deb cupsys (1.0.4-9) stable; urgency=high * Security fix: backported many security fixes developed by SuSE from 1.1.6 to 1.0.4, including /tmp races and buffer overflows. * While we're at it, fix some brain-damage in library dep handling. stable/main/binary-arm/libcupsys1-dev_1.0.4-9_arm.deb stable/main/binary-alpha/cupsys_1.0.4-9_alpha.deb stable/main/binary-alpha/libcupsys1_1.0.4-9_alpha.deb stable/main/binary-arm/cupsys-bsd_1.0.4-9_arm.deb stable/main/binary-alpha/libcupsys1-dev_1.0.4-9_alpha.deb stable/main/binary-arm/libcupsys1_1.0.4-9_arm.deb stable/main/binary-arm/cupsys_1.0.4-9_arm.deb stable/main/binary-alpha/cupsys-bsd_1.0.4-9_alpha.deb cupsys (1.0.4-9) stable; urgency=high * Security fix: backported many security fixes developed by SuSE from 1.1.6 to 1.0.4, including /tmp races and buffer overflows. * While we're at it, fix some brain-damage in library dep handling. stable/main/source/cslatex_1.2.2.dsc stable/main/source/cslatex_1.2.2.tar.gz stable/main/binary-all/cslatex_1.2.2_all.deb cslatex (1.2.2) stable; urgency=medium * Maintainer upload into stable. * Fixed cslatex stops installation (closes: #67214, #69224) stable/main/source/cron_3.0pl1-57.2.dsc stable/main/source/cron_3.0pl1-57.2.diff.gz stable/main/binary-i386/cron_3.0pl1-57.2_i386.deb cron (3.0pl1-57.2) stable; urgency=medium * Add fix for crontab.c that might allow read access to other user's crontab files. stable/main/binary-sparc/cron_3.0pl1-57.2_sparc.deb stable/main/binary-powerpc/cron_3.0pl1-57.2_powerpc.deb stable/main/binary-alpha/cron_3.0pl1-57.2_alpha.deb stable/main/binary-m68k/cron_3.0pl1-57.2_m68k.deb stable/main/binary-arm/cron_3.0pl1-57.2_arm.deb cron (3.0pl1-57.2) stable; urgency=medium * Add fix for crontab.c that might allow read access to other user's crontab files. stable/main/binary-arm/console-apt_0.7.7.2potato2_arm.deb console-apt (0.7.7.2potato2) stable; urgency=high * Rebuilt with latest apt library in potato. 0.7.7.2potato1 will not work with potato systems. stable/main/binary-alpha/console-apt_0.7.7.2potato2_alpha.deb console-apt (0.7.7.2potato2) stable; urgency=high * Rebuilt with latest apt library in potato. 0.7.7.2potato1 will not work with potato systems. stable/main/source/boot-floppies_2.2.23.dsc stable/main/source/boot-floppies_2.2.23.tar.gz stable/main/binary-all/boot-floppies_2.2.23_all.deb boot-floppies (2.2.23) stable; urgency=low * Matt Kraai: - fix the drive_blocks array for hdg, hdh, hdi, and hdj (closes: Bug#90967) * Daniel Jacobowitz: - bump PowerPC to kernel 2.2.19. - fix URLs for bootx/bootvars - use \( \) in Makefile find invocation - bootprep.sh: Turn on CONFIG_IP_PNP_ENABLE also * Phil Blundell: - bump ARM kernel to 2.2.19 stable/main/binary-alpha/bind_8.2.3-0.potato.1_alpha.deb stable/main/binary-sparc/bind-dev_8.2.3-0.potato.1_sparc.deb stable/main/binary-arm/bind-dev_8.2.3-0.potato.1_arm.deb stable/main/binary-arm/dnsutils_8.2.3-0.potato.1_arm.deb stable/main/binary-powerpc/dnsutils_8.2.3-0.potato.1_powerpc.deb stable/main/binary-i386/bind_8.2.3-0.potato.1_i386.deb stable/main/binary-alpha/dnsutils_8.2.3-0.potato.1_alpha.deb stable/main/binary-m68k/bind-dev_8.2.3-0.potato.1_m68k.deb stable/main/binary-arm/bind_8.2.3-0.potato.1_arm.deb stable/main/source/bind_8.2.3-0.potato.1.dsc stable/main/binary-i386/dnsutils_8.2.3-0.potato.1_i386.deb stable/main/binary-alpha/bind-dev_8.2.3-0.potato.1_alpha.deb stable/main/binary-sparc/bind_8.2.3-0.potato.1_sparc.deb stable/main/binary-sparc/dnsutils_8.2.3-0.potato.1_sparc.deb stable/main/binary-all/task-dns-server_8.2.3-0.potato.1_all.deb stable/main/binary-powerpc/bind_8.2.3-0.potato.1_powerpc.deb stable/main/binary-all/bind-doc_8.2.3-0.potato.1_all.deb stable/main/binary-m68k/bind_8.2.3-0.potato.1_m68k.deb stable/main/binary-i386/bind-dev_8.2.3-0.potato.1_i386.deb stable/main/binary-powerpc/bind-dev_8.2.3-0.potato.1_powerpc.deb stable/main/binary-m68k/dnsutils_8.2.3-0.potato.1_m68k.deb stable/main/source/bind_8.2.3-0.potato.1.diff.gz bind (1:8.2.3-0.potato.1) stable; urgency=high * new upstream release, highlights include: Several serious security holes plugged. Many bug fixes, especially to IXFR and TSIG. New "ndc reload -noexpired" feature. "ndc status" now shows config file name and age. Ignore stuck stale queries after long zone load delay. TTL 0 is now allowed in zone files. Several updated contrib/ packages. Better portability to Win/NT. Ported to Darwin (Mac OS X). Forwarders are now used in order by measured RTT. * this version built on/for potato with changes for impending bind9 package release reverted to meet potato package expectations. stable/main/binary-m68k/aview_1.2-8.1.1_m68k.deb aview (1.2-8.1.1) stable; urgency=low * Binary-only non-maintainer upload for m68k; no source changes. * rebuilt to fix dependency on aalib1 stable/main/binary-powerpc/apache_1.3.9-13.2_powerpc.deb stable/main/binary-powerpc/apache-common_1.3.9-13.2_powerpc.deb stable/main/binary-powerpc/apache-dev_1.3.9-13.2_powerpc.deb apache (1.3.9-13.2) stable; urgency=high * Non-maintainer upload by Security Team * Applied patch from Greg K-H from WireX fixing insecure creation of tempfiles in htpasswd and htdigest. * Added one more incarnation of 'chmod +x debian/ubersed' was required * Backported security patch from 1.3.13 that fixes a bug in mod_rewrite that enables an attacker to be able to access any file on the web server. stable/main/binary-sparc/apache-common_1.3.9-13.2_sparc.deb stable/main/binary-sparc/apache-dev_1.3.9-13.2_sparc.deb stable/main/binary-arm/apache_1.3.9-13.2_arm.deb stable/main/binary-m68k/apache-dev_1.3.9-13.2_m68k.deb stable/main/binary-m68k/apache-common_1.3.9-13.2_m68k.deb stable/main/binary-i386/apache_1.3.9-13.2_i386.deb stable/main/binary-arm/apache-dev_1.3.9-13.2_arm.deb stable/main/binary-i386/apache-dev_1.3.9-13.2_i386.deb stable/main/binary-all/apache-doc_1.3.9-13.2_all.deb stable/main/binary-m68k/apache_1.3.9-13.2_m68k.deb stable/main/binary-alpha/apache-dev_1.3.9-13.2_alpha.deb stable/main/binary-alpha/apache-common_1.3.9-13.2_alpha.deb stable/main/binary-alpha/apache_1.3.9-13.2_alpha.deb stable/main/binary-sparc/apache_1.3.9-13.2_sparc.deb stable/main/source/apache_1.3.9-13.2.dsc stable/main/source/apache_1.3.9-13.2.diff.gz stable/main/binary-arm/apache-common_1.3.9-13.2_arm.deb stable/main/binary-i386/apache-common_1.3.9-13.2_i386.deb apache (1.3.9-13.2) stable; urgency=high * Non-maintainer upload by Security Team * Applied patch from Greg K-H from WireX fixing insecure creation of tempfiles in htpasswd and htdigest. * Added one more incarnation of 'chmod +x debian/ubersed' was required * Backported security patch from 1.3.13 that fixes a bug in mod_rewrite that enables an attacker to be able to access any file on the web server. stable/main/binary-sparc/analog_4.01-1potato1_sparc.deb analog (1:4.01-1potato1) stable; urgency=HIGH * Backported buffer overflow bug fix from analog 4.16 (Thanks, Stephen!) stable/main/binary-powerpc/analog_4.01-1potato1_powerpc.deb analog (1:4.01-1potato1) stable; urgency=HIGH * Backported buffer overflow bug fix from analog 4.16 (Thanks, Stephen!) stable/main/source/analog_4.01-1potato1.diff.gz stable/main/binary-i386/analog_4.01-1potato1_i386.deb stable/main/source/analog_4.01-1potato1.dsc analog (1:4.01-1potato1) stable; urgency=HIGH * Backported buffer overflow bug fix from analog 4.16 (Thanks, Stephen!) stable/main/binary-m68k/analog_4.01-1potato1_m68k.deb analog (1:4.01-1potato1) stable; urgency=HIGH * Backported buffer overflow bug fix from analog 4.16 (Thanks, Stephen!) stable/main/binary-arm/analog_4.01-1potato1_arm.deb analog (1:4.01-1potato1) stable; urgency=HIGH * Backported buffer overflow bug fix from analog 4.16 (Thanks, Stephen!) stable/main/binary-alpha/analog_4.01-1potato1_alpha.deb analog (1:4.01-1potato1) stable; urgency=HIGH * Backported buffer overflow bug fix from analog 4.16 (Thanks, Stephen!) dists/potato/non-free/source/text/acroread_4.05-3.dsc dists/potato/non-free/source/text/acroread_4.05-3.diff.gz dists/potato/non-free/binary-i386/text/acroread_4.05-3_i386.deb acroread (4.05-3) stable unstable; urgency=low * Acroread has some NLS issues that broke viewing and printing for international users when the decimal separator is not a dot. A patch is applied to the acroread wrapper script to set LC_NUMERIC. Thanks to Mirek, Serge Gavrilov, Sebastien Cabot for their bug reports, and special thanks to Florian Siegesmund for providing a patch ported from the netscape wrapper script written by H. Peter Anvin et al. Closes: Bug#66586, #66593, #76840, #86473. * Moved /usr/X11R6/bin/acroread back to /usr/bin/acroread. :-) * Added menu hints="PDF". Thanks, Arthur Korn! Closes: Bug#82321. * Acroread 4.05 does support type-in fields for fill-in forms. Closes: Bug#36451. ======================================== Sun, 3 Dec 2000 - Debian 2.2r2 released ======================================== dists/potato/main/binary-alpha/net/tcpdump_3.4a6-5.deb dists/potato/main/binary-m68k/net/tcpdump_3.4a6-5.deb dists/potato/main/binary-sparc/net/tcpdump_3.4a6-5.deb tcpdump (3.4a6-5) stable; urgency=high * New Maintainer * Wichert missed a security fix, apply it. dists/potato/main/binary-sparc/shells/zsh_3.1.9.dev6-7.deb zsh (3.1.9.dev6-7) stable; urgency=medium * Recompile to fix bad i386 build. dists/potato/main/binary-sparc/x11/xcin_2.5.2-1.deb xcin (2.5.2-1) stable unstable; urgency=low * New upstream release. dists/potato/main/binary-sparc/x11/x2vnc_1.0-5.deb x2vnc (1.0-5) unstable; urgency=low * Imakefile: modified to compile against libvncauth0 * debian/control: updateded Standards-Version to 3.1.1 * debian/control: added Build-Depends. * debian/rules: rewritten. * debian/rules: added xmkmf. dists/potato/main/binary-sparc/x11/task-x-window-system-core_1.2.deb task-x-window-system-core (1.2) stable unstable; urgency=medium * The "REAL BEFORE VIRTUAL" release. * Because that's the order or'ed dependencies should be in. (Closes: #70672) * Uploading to stable because this will improve the utility of this task package. dists/potato/main/binary-sparc/x11/skkinput_2.03-3.potato.1.deb skkinput (1:2.03-3.potato.1) stable; urgency=medium * fix segfault problem with all XIM applications - closes: Bug#32408 - skkinput sigsegvs applications dists/potato/main/binary-sparc/mail/sendmail-wide_8.9.3+3.2W-23.deb sendmail-wide (8.9.3+3.2W-23) stable; urgency=high * follow sendmail 8.9.3-23 * fix segfault problem dists/potato/main/binary-sparc/mail/procmail_3.13.1-4.deb procmail (3.13.1-4) stable; urgency=high * Fixed weird formail -rk behavior (patch from the author, backported from procmail-3.15). Thanks to Ben Collins for the report. * s/smail/exim/ in `Recommends:' field. dists/potato/non-free/binary-powerpc/devel/libdbf1.6-dev_1.6-13.deb dists/potato/non-free/binary-powerpc/libs/libdbf1.6_1.6-13.deb dists/potato/non-free/binary-powerpc/misc/dbf_1.6-13.deb dists/potato/non-free/binary-powerpc/web/php3-cgi-dbase_3.0.18-0potato1.deb dists/potato/non-free/binary-powerpc/web/php3-dbase_3.0.18-0potato1.deb php3-dbase (3:3.0.18-0potato1) stable; urgency=medium * New maintainer. * Bring in sync with php3 in proposed-updates/security. dists/potato/main/binary-sparc/net/ntop_1.2a7-11.deb ntop (1.2a7-11) stable unstable; urgency=high * GRAVE security hole, install immediatly! * Ntop, when run in web mode, as root (this is typical use), can be remotely exploited to gain root access. Disabled web mode. Preinst now kills all ntop processes running in web mode. * This is also exploitable if ntop is made suid/sgid -- allows local users to obtain root. Ntop is not shipped this way, but suigregister could be used by the admin to make it suid. The preinst now removes all such bits, and suidregister can no longer control the program's permissions. Also added a README.Debian about this. * Reference: http://lwn.net/2000/0824/a/fb-ntop.php3 * Recommendation: Ntop currently has no maintainer in debian, and seems to be full of security holes. After a reasonable period to allow current installations to be updated to this version, it is my opinion it should be removed from unstable. * Closes: #69842. dists/potato/main/binary-sparc/net/telnet_0.16-4potato.1.deb dists/potato/main/binary-sparc/net/telnetd_0.16-4potato.1.deb netkit-telnet (0.16-4potato.1) stable; urgency=low * Fixed a memory allocation bug. dists/potato/main/binary-sparc/net/talk_0.10-8.deb dists/potato/main/binary-sparc/net/talkd_0.10-8.deb netkit-ntalk (0.10-8) stable; urgency=high * Fixed format string bug. dists/potato/main/binary-powerpc/devel/libnspr4-dev_M18-3.deb dists/potato/main/binary-powerpc/devel/mozilla-dev_M18-3.deb dists/potato/main/binary-powerpc/libs/libnspr4_M18-3.deb dists/potato/main/binary-powerpc/web/mozilla_M18-3.deb mozilla (M18-3) unstable stable; urgency=low * Uploading to stable (Closes: #75880) * Added note about UserAgent hidden pref to FAQ * Added note about being required to download xpi not open it in mozilla * Added forgotten start-psm script * Hopefully, finally fixed the flaming /usr/share/doc/mozilla-dev link * Linked mozilla-config manpage to undocumented dists/potato/main/binary-sparc/devel/libnspr4-dev_M18-3.deb dists/potato/main/binary-sparc/devel/mozilla-dev_M18-3.deb dists/potato/main/binary-sparc/libs/libnspr4_M18-3.deb dists/potato/main/binary-sparc/web/mozilla_M18-3.deb mozilla (M18-3) unstable stable; urgency=low * Uploading to stable (Closes: #75880) * Added note about UserAgent hidden pref to FAQ * Added note about being required to download xpi not open it in mozilla * Added forgotten start-psm script * Hopefully, finally fixed the flaming /usr/share/doc/mozilla-dev link * Linked mozilla-config manpage to undocumented dists/potato/main/binary-m68k/devel/libnspr4-dev_M18-3.deb dists/potato/main/binary-m68k/devel/mozilla-dev_M18-3.deb dists/potato/main/binary-m68k/libs/libnspr4_M18-3.deb dists/potato/main/binary-m68k/web/mozilla_M18-3.deb mozilla (M18-3) unstable stable; urgency=low * Uploading to stable (Closes: #75880) * Added note about UserAgent hidden pref to FAQ * Added note about being required to download xpi not open it in mozilla * Added forgotten start-psm script * Hopefully, finally fixed the flaming /usr/share/doc/mozilla-dev link * Linked mozilla-config manpage to undocumented dists/potato/main/binary-arm/devel/libnspr4-dev_M18-3.deb dists/potato/main/binary-arm/devel/mozilla-dev_M18-3.deb dists/potato/main/binary-arm/libs/libnspr4_M18-3.deb dists/potato/main/binary-arm/web/mozilla_M18-3.deb mozilla (M18-3) stable; urgency=low * Uploading to stable (Closes: #75880) * Added note about UserAgent hidden pref to FAQ * Added note about being required to download xpi not open it in mozilla * Added forgotten start-psm script * Hopefully, finally fixed the flaming /usr/share/doc/mozilla-dev link * Linked mozilla-config manpage to undocumented dists/potato/main/binary-sparc/comm/mgetty-fax_1.1.21-3.deb dists/potato/main/binary-sparc/comm/mgetty-viewfax_1.1.21-3.deb dists/potato/main/binary-sparc/comm/mgetty-voice_1.1.21-3.deb dists/potato/main/binary-sparc/comm/mgetty_1.1.21-3.deb mgetty (1.1.21-3) stable; urgency=low * make mgetty-fax's postinst create /var/spool/fax/outgoing/.last_run to close a potential symlink exploit by members of the fax group that is otherwise possible until that file is created dists/potato/main/binary-sparc/mail/mew_1.94.2-2.deb mew (1:1.94.2-2) stable unstable; urgency=low * fix the problem if set langage environment is non English (e.g LANG=ja_JP.eucJP), Mew freeze with gpg. Backport patches from Mew-1.95beta closes: Bug#71804 dists/potato/main/binary-sparc/mail/masqmail_0.0.12-3.deb masqmail (0.0.12-3) stable; urgency=high * Security bugfix: An unprivileged user could use `masqmail -C' (use alternative configuration file) and/or `-d' (enable debug output) for exploits. We disable these options for non-privileged users (closes: #74422). dists/potato/main/binary-sparc/devel/make_3.79.1-1.potato.1.deb make (3.79.1-1.potato.1) stable; urgency=low * This is an update for potato. There are no changes made since the update for woody 45 days ago. The old make did not honour the MAKEFILES variable, this closes: Bug#71261 * I have heard rimours that the old make did not correctly build libc either, and one needs this version. I can't say for sure, since no bug was ever filed. dists/potato/main/binary-sparc/mail/maildrop_0.75-2.1.deb maildrop (0.75-2.1) frozen unstable; urgency=high * Non-maintainer release * Added 'char *' operator to Buffer since 'const char *' didn't match 'char *' anymore. * Applied patch suggested by Josip Rodin: chgrp mail/chmod g+s maildrop to make the program work again dists/potato/main/binary-sparc/net/lprng_3.6.12-8.deb lprng (3.6.12-8) stable; urgency=high * Apparently the upstream lprng 3.6.15 which the setuid test code was taken from was buggy itself giving lots of false positives!! This code is from 3.6.24 which does work. Closes: #74942, #74946 dists/potato/main/binary-sparc/devel/libsdl-dev_0.10.0-2.deb dists/potato/main/binary-sparc/libs/libsdl0_0.10.0-2.deb libsdl (0.10.0-2) unstable; urgency=low * Fixed build problem (closes: #50103) dists/potato/main/binary-sparc/net/libnss-ldap_122-1.deb libnss-ldap (122-1) stable; urgency=HIGH * New upstream version that fixes an important security related bug. For more info check http://bugzilla.padl.com/show_bug.cgi?id=49. (now we really close this; closes: #76018). dists/potato/main/binary-arm/net/libnss-ldap_122-1.deb libnss-ldap (122-1) stable; urgency=HIGH * New upstream version that fixes an important security related bug. For more info check http://bugzilla.padl.com/show_bug.cgi?id=49. (now we really close this; closes: #76018). dists/potato/main/binary-sparc/oldlibs/libdb1-dev_1.85.4-4.deb dists/potato/main/binary-sparc/oldlibs/libdb1_1.85.4-4.deb libdb (1.85.4-4) stable; urgency=low * PORT/linux/Makefile: SECURITY FIX: don't build broken snprintf, which ignores the bounds check, making programs which just *happen* to use libdb vulnerable... * debian/rules: argh, dpkg-gencontrol syntax changed, using libdb1.files instead of libdb1/files. Sigh. dists/potato/main/binary-sparc/interpreters/eruby_0.0.9-1potato1.deb eruby (0.0.9-1potato1) stable; urgency=high * rebuilt package with correct Debian version. Because on account of Debian version wasn't appropriate in a package before one and therefore, I might not wear it with upgrade from R2.2 to next release of Debian it probably based on the Woody. dists/potato/main/binary-sparc/net/dhcp-client_2.0pl4-2.deb dists/potato/main/binary-sparc/net/dhcp-relay_2.0pl4-2.deb dists/potato/main/binary-sparc/net/dhcp_2.0pl4-2.deb dhcp (2.0pl4-2) stable unstable; urgency=low * Uploading to stable because the current dhcp* packages in stable do not contain the recent security fixes. dists/potato/main/binary-sparc/editors/dedit_0.5.11.deb dedit (0.5.11) stable unstable; urgency=low * debian/control: added Build-Depends (closes: Bug#70258) * reFixed intl support. (Bug#68942) dists/potato/main/binary-sparc/admin/console-apt_0.7.7.2potato2.deb console-apt (0.7.7.2potato2) stable; urgency=high * Rebuilt with latest apt library in potato. 0.7.7.2potato1 will not work with potato systems. dists/potato/main/binary-sparc/base/base-passwd_3.1.10.deb base-passwd (3.1.10) stable unstable; urgency=high * Call update-passwd with --dry-run when testing for needed changes Closes: Bug#74494 dists/potato/main/binary-sparc/admin/base-config_0.33.2.deb base-config (0.33.2) stable; urgency=low * Corrected stupid typo in templates file, Closes: #74785, #74815, #74828 * This problem makes it impossible to install the package, so it is important and must go in. dists/potato/main/binary-i386/oldlibs/libreadline2-altdev_2.1-21.deb dists/potato/main/binary-i386/oldlibs/libreadline2_2.1-21.deb dists/potato/main/binary-i386/oldlibs/libreadlineg2_2.1-21.deb dists/potato/main/source/libs/readline2_2.1-21.diff.gz dists/potato/main/source/libs/readline2_2.1-21.dsc readline2 (2.1-21) stable; urgency=low * Fix dependency on ncurses3.0-ALTdev (fixes #77722). dists/potato/contrib/binary-sparc/misc/setiathome_3.0-7.deb setiathome (3.0-7) stable unstable; urgency=medium * PowerPC client updated upstream. Thanks to C.M. Connelly. Closes: #77599 dists/potato/contrib/binary-i386/misc/setiathome_3.0-7.deb dists/potato/contrib/source/misc/setiathome_3.0-7.dsc dists/potato/contrib/source/misc/setiathome_3.0-7.tar.gz setiathome (3.0-7) stable unstable; urgency=medium * PowerPC client updated upstream. Thanks to C.M. Connelly. Closes: #77599 dists/potato/contrib/binary-alpha/misc/setiathome_3.0-7.deb setiathome (3.0-7) stable unstable; urgency=medium * PowerPC client updated upstream. Thanks to C.M. Connelly. Closes: #77599 dists/potato/main/binary-m68k/base/libstdc++2.10-glibc2.1_2.95.2-13.1.deb dists/potato/main/binary-m68k/devel/chill_2.95.2-13.1.deb dists/potato/main/binary-m68k/devel/g++_2.95.2-13.1.deb dists/potato/main/binary-m68k/devel/g77_2.95.2-13.1.deb dists/potato/main/binary-m68k/devel/gcc_2.95.2-13.1.deb dists/potato/main/binary-m68k/devel/gcj_2.95.2-13.1.deb dists/potato/main/binary-m68k/devel/gobjc_2.95.2-13.1.deb dists/potato/main/binary-m68k/devel/gpc_2.95.2-13.1.deb dists/potato/main/binary-m68k/devel/libg++2.8.1.3-glibc2.1-dbg_2.95.2-13.1.deb dists/potato/main/binary-m68k/devel/libg++2.8.1.3-glibc2.1-dev_2.95.2-13.1.deb dists/potato/main/binary-m68k/devel/libstdc++2.10-glibc2.1-dbg_2.95.2-13.1.deb dists/potato/main/binary-m68k/devel/libstdc++2.10-glibc2.1-dev_2.95.2-13.1.deb dists/potato/main/binary-m68k/devel/protoize_2.95.2-13.1.deb dists/potato/main/binary-m68k/interpreters/cpp_2.95.2-13.1.deb dists/potato/main/binary-m68k/libs/libg++2.8.1.3-glibc2.1_2.95.2-13.1.deb gcc (2.95.2-13.1) stable; urgency=low * Non-maintainer upload * Add new patch for ARM (closes #75801) dists/potato/main/binary-all/doc/cpp-doc_2.95.2-13.1.deb dists/potato/main/binary-all/doc/g77-doc_2.95.2-13.1.deb dists/potato/main/binary-all/doc/gcc-doc_2.95.2-13.1.deb dists/potato/main/binary-all/doc/gpc-doc_2.95.2-13.1.deb dists/potato/main/binary-all/oldlibs/gcc-docs_2.95.2-13.1.deb dists/potato/main/binary-arm/base/libstdc++2.10_2.95.2-13.1.deb dists/potato/main/binary-arm/devel/chill_2.95.2-13.1.deb dists/potato/main/binary-arm/devel/g++_2.95.2-13.1.deb dists/potato/main/binary-arm/devel/g77_2.95.2-13.1.deb dists/potato/main/binary-arm/devel/gcc-soft-float_2.95.2-13.1.deb dists/potato/main/binary-arm/devel/gcc_2.95.2-13.1.deb dists/potato/main/binary-arm/devel/gcj_2.95.2-13.1.deb dists/potato/main/binary-arm/devel/gobjc_2.95.2-13.1.deb dists/potato/main/binary-arm/devel/gpc_2.95.2-13.1.deb dists/potato/main/binary-arm/devel/libg++2.8.1.3-dbg_2.95.2-13.1.deb dists/potato/main/binary-arm/devel/libg++2.8.1.3-dev_2.95.2-13.1.deb dists/potato/main/binary-arm/devel/libstdc++2.10-dbg_2.95.2-13.1.deb dists/potato/main/binary-arm/devel/libstdc++2.10-dev_2.95.2-13.1.deb dists/potato/main/binary-arm/devel/protoize_2.95.2-13.1.deb dists/potato/main/binary-arm/interpreters/cpp_2.95.2-13.1.deb dists/potato/main/binary-arm/libs/libg++2.8.1.3_2.95.2-13.1.deb dists/potato/main/source/devel/gcc_2.95.2-13.1.diff.gz dists/potato/main/source/devel/gcc_2.95.2-13.1.dsc gcc (2.95.2-13.1) stable; urgency=low * Non-maintainer upload * Add new patch for ARM (closes #75801) dists/potato/main/binary-all/web/imp_2.2.3-0.potato.4.deb dists/potato/main/source/web/imp_2.2.3-0.potato.4.diff.gz dists/potato/main/source/web/imp_2.2.3-0.potato.4.dsc imp (2:2.2.3-0.potato.4) stable; urgency=low * Fixing problem with reloading "none" web server (left system hung and is thus a RC bug) dists/potato/main/binary-all/web/horde_1.2.3-0.potato.4.deb dists/potato/main/source/web/horde_1.2.3-0.potato.4.diff.gz dists/potato/main/source/web/horde_1.2.3-0.potato.4.dsc horde (2:1.2.3-0.potato.4) stable; urgency=low * Fixing problem with restarting of "none" web server (Closes: #74883) (this bug left the isntall process hung and thus is a RC bug) dists/potato/main/binary-m68k/math/octave-plplot_0.3-9.deb octave-plplot (0.3-9) stable unstable; urgency=low * This is just a recompile to get the right library dependencies. No modifications of the package has been done. This fixes a release critical bug, so it is worth to get into 2.2r2 (closes: #69704). dists/potato/main/binary-i386/math/octave-plplot_0.3-9.deb dists/potato/main/source/math/octave-plplot_0.3-9.diff.gz dists/potato/main/source/math/octave-plplot_0.3-9.dsc octave-plplot (0.3-9) stable unstable; urgency=low * This is just a recompile to get the right library dependencies. No modifications of the package has been done. This fixes a release critical bug, so it is worth to get into 2.2r2 (closes: #69704). dists/potato/main/binary-alpha/math/octave-plplot_0.3-9.deb octave-plplot (0.3-9) stable unstable; urgency=low * This is just a recompile to get the right library dependencies. No modifications of the package has been done. This fixes a release critical bug, so it is worth to get into 2.2r2 (closes: #69704). dists/potato/contrib/binary-i386/web/communicator_4.76-1.deb dists/potato/contrib/binary-i386/web/navigator_4.76-1.deb dists/potato/contrib/binary-i386/web/netscape-base-4-libc5_4.76-1.deb dists/potato/contrib/binary-i386/web/netscape-base-4_4.76-1.deb dists/potato/contrib/binary-i386/web/netscape_4.76-1.deb dists/potato/contrib/source/web/netscape4.base_4.76-1.dsc dists/potato/contrib/source/web/netscape4.base_4.76-1.tar.gz netscape4.base (1:4.76-1) stable unstable; urgency=high * To Release Manager: Fixes many bugs, required by security fix in netscape4.76-4.76. Please install to stable as well. * Updated bookmarks (closes: #75574) * Fix libnsfix-wcsmbs for glibc 2.2 (closes: #74667) * Add quoting to wrapper (closes: #77203) * Don't prepend http:// for "" (closes: #71071, #74840, #71398, #70789) * Add a Google Button (closes: #71162) * Use ldd instead of objdump to get the libc version (closes: #69881) * Bring back the mime system, better this time :) (closes: #70966) * Add mime entries for netscape/communicator helper packages (closes: #62061) dists/potato/non-free/binary-all/web/communicator-nethelp-476_4.76-1.deb dists/potato/non-free/binary-all/web/communicator-spellchk-476_4.76-1.deb dists/potato/non-free/binary-all/web/navigator-nethelp-476_4.76-1.deb dists/potato/non-free/binary-all/web/netscape-ja-resource-476_4.76-1.deb dists/potato/non-free/binary-all/web/netscape-java-476_4.76-1.deb dists/potato/non-free/binary-all/web/netscape-ko-resource-476_4.76-1.deb dists/potato/non-free/binary-all/web/netscape-zh-resource-476_4.76-1.deb dists/potato/non-free/binary-i386/web/communicator-base-476_4.76-1.deb dists/potato/non-free/binary-i386/web/communicator-smotif-476-libc5_4.76-1.deb dists/potato/non-free/binary-i386/web/communicator-smotif-476_4.76-1.deb dists/potato/non-free/binary-i386/web/navigator-base-476_4.76-1.deb dists/potato/non-free/binary-i386/web/navigator-smotif-476-libc5_4.76-1.deb dists/potato/non-free/binary-i386/web/navigator-smotif-476_4.76-1.deb dists/potato/non-free/binary-i386/web/netscape-base-476_4.76-1.deb dists/potato/non-free/binary-i386/web/netscape-smotif-476-libc5_4.76-1.deb dists/potato/non-free/binary-i386/web/netscape-smotif-476_4.76-1.deb dists/potato/non-free/source/web/netscape4.76_4.76-1.diff.gz dists/potato/non-free/source/web/netscape4.76_4.76-1.dsc dists/potato/non-free/source/web/netscape4.76_4.76.orig.tar.gz netscape4.76 (4.76-1) stable unstable; urgency=high * To release manager: This fixes a segfault security bug, so should be installed to stable as well. * Fix locales dependancies (closes: #72670, #75414) * Fix Japanese shortcut (closes: #71255) * Update Japanese translation (closes: #77678) * Update Korean resources (closes: #72896) * Remove DEBHELPER tokens that are being done by shell (closes: #71614) * New upstream version (closes: #77764) * Updated alternatives maintenance (closes: #74584, #47610, #65621) dists/potato/main/binary-sparc/utils/gmc_4.5.42-11.potato.5.deb dists/potato/main/binary-sparc/utils/mc-common_4.5.42-11.potato.5.deb dists/potato/main/binary-sparc/utils/mc_4.5.42-11.potato.5.deb mc (4.5.42-11.potato.5) stable; urgency=high * SECURITY: DOS in cons.saver dists/potato/main/binary-powerpc/utils/gmc_4.5.42-11.potato.5.deb dists/potato/main/binary-powerpc/utils/mc-common_4.5.42-11.potato.5.deb dists/potato/main/binary-powerpc/utils/mc_4.5.42-11.potato.5.deb mc (4.5.42-11.potato.5) stable; urgency=high * SECURITY: DOS in cons.saver dists/potato/main/binary-m68k/utils/gmc_4.5.42-11.potato.5.deb dists/potato/main/binary-m68k/utils/mc-common_4.5.42-11.potato.5.deb dists/potato/main/binary-m68k/utils/mc_4.5.42-11.potato.5.deb mc (4.5.42-11.potato.5) stable; urgency=high * SECURITY: DOS in cons.saver dists/potato/main/binary-i386/utils/gmc_4.5.42-11.potato.5.deb dists/potato/main/binary-i386/utils/mc-common_4.5.42-11.potato.5.deb dists/potato/main/binary-i386/utils/mc_4.5.42-11.potato.5.deb dists/potato/main/source/utils/mc_4.5.42-11.potato.5.diff.gz dists/potato/main/source/utils/mc_4.5.42-11.potato.5.dsc mc (4.5.42-11.potato.5) stable; urgency=high * SECURITY: DOS in cons.saver dists/potato/main/binary-arm/utils/gmc_4.5.42-11.potato.5.deb dists/potato/main/binary-arm/utils/mc-common_4.5.42-11.potato.5.deb dists/potato/main/binary-arm/utils/mc_4.5.42-11.potato.5.deb mc (4.5.42-11.potato.5) stable; urgency=high * SECURITY: DOS in cons.saver dists/potato/main/binary-alpha/utils/gmc_4.5.42-11.potato.5.deb dists/potato/main/binary-alpha/utils/mc-common_4.5.42-11.potato.5.deb dists/potato/main/binary-alpha/utils/mc_4.5.42-11.potato.5.deb mc (4.5.42-11.potato.5) stable; urgency=high * SECURITY: DOS in cons.saver dists/potato/main/binary-sparc/editors/ed_0.2-18.1.deb ed (0.2-18.1) stable; urgency=low * Non-maintainer upload by security team * Fix symlink attack dists/potato/main/binary-alpha/editors/ed_0.2-18.1.deb dists/potato/main/binary-arm/editors/ed_0.2-18.1.deb dists/potato/main/binary-i386/editors/ed_0.2-18.1.deb dists/potato/main/binary-powerpc/editors/ed_0.2-18.1.deb dists/potato/main/source/editors/ed_0.2-18.1.diff.gz dists/potato/main/source/editors/ed_0.2-18.1.dsc ed (0.2-18.1) stable; urgency=low * Non-maintainer upload by security team * Fix symlink attack dists/potato/main/binary-m68k/editors/ed_0.2-18.1.deb ed (0.2-18.1) stable; urgency=low * Non-maintainer upload by security team * Fix symlink attack dists/potato/main/binary-sparc/text/gs_5.10-10.1.deb gs (5.10-10.1) stable unstable; urgency=high * Non-maintainer upload by security team * Patch from Werner Fink: + Create temporary files securely using mkstemp instead of mktemp + Don't set LD_RUN_PATH to empty, that makes the runtime linker look in the current path as well dists/potato/main/binary-powerpc/text/gs_5.10-10.1.deb gs (5.10-10.1) stable unstable; urgency=high * Non-maintainer upload by security team * Patch from Werner Fink: + Create temporary files securely using mkstemp instead of mktemp + Don't set LD_RUN_PATH to empty, that makes the runtime linker look in the current path as well dists/potato/main/binary-m68k/text/gs_5.10-10.1.deb gs (5.10-10.1) stable unstable; urgency=high * Non-maintainer upload by security team * Patch from Werner Fink: + Create temporary files securely using mkstemp instead of mktemp + Don't set LD_RUN_PATH to empty, that makes the runtime linker look in the current path as well dists/potato/main/binary-i386/text/gs_5.10-10.1.deb dists/potato/main/source/text/gs_5.10-10.1.diff.gz dists/potato/main/source/text/gs_5.10-10.1.dsc gs (5.10-10.1) stable unstable; urgency=high * Non-maintainer upload by security team * Patch from Werner Fink: + Create temporary files securely using mkstemp instead of mktemp + Don't set LD_RUN_PATH to empty, that makes the runtime linker look in the current path as well dists/potato/main/binary-arm/text/gs_5.10-10.1.deb gs (5.10-10.1) stable unstable; urgency=high * Non-maintainer upload by security team * Patch from Werner Fink: + Create temporary files securely using mkstemp instead of mktemp + Don't set LD_RUN_PATH to empty, that makes the runtime linker look in the current path as well dists/potato/main/binary-alpha/text/gs_5.10-10.1.deb gs (5.10-10.1) stable unstable; urgency=high * Non-maintainer upload by security team * Patch from Werner Fink: + Create temporary files securely using mkstemp instead of mktemp + Don't set LD_RUN_PATH to empty, that makes the runtime linker look in the current path as well dists/potato/main/binary-sparc/editors/joe_2.8-15.2.deb joe (2.8-15.2) stable; urgency=low * Non-maintainer upload by security team * Correct problem with security fix: persmissions for DEADJOE were wrong * Correct some other issues while we're at it as well dists/potato/main/binary-alpha/editors/joe_2.8-15.2.deb dists/potato/main/binary-arm/editors/joe_2.8-15.2.deb dists/potato/main/binary-i386/editors/joe_2.8-15.2.deb dists/potato/main/binary-powerpc/editors/joe_2.8-15.2.deb dists/potato/main/source/editors/joe_2.8-15.2.diff.gz dists/potato/main/source/editors/joe_2.8-15.2.dsc joe (2.8-15.2) stable; urgency=low * Non-maintainer upload by security team * Correct problem with security fix: persmissions for DEADJOE were wrong * Correct some other issues while we're at it as well dists/potato/main/binary-m68k/editors/joe_2.8-15.2.deb joe (2.8-15.2) stable; urgency=low * Non-maintainer upload by security team * Correct problem with security fix: persmissions for DEADJOE were wrong * Correct some other issues while we're at it as well dists/potato/main/binary-alpha/sound/cddb_2.5pl1-7.1.deb dists/potato/main/binary-alpha/sound/xmcd_2.5pl1-7.1.deb dists/potato/main/binary-arm/sound/cddb_2.5pl1-7.1.deb dists/potato/main/binary-arm/sound/xmcd_2.5pl1-7.1.deb dists/potato/main/binary-i386/sound/cddb_2.5pl1-7.1.deb dists/potato/main/binary-i386/sound/xmcd_2.5pl1-7.1.deb dists/potato/main/binary-m68k/sound/cddb_2.5pl1-7.1.deb dists/potato/main/binary-m68k/sound/xmcd_2.5pl1-7.1.deb dists/potato/main/binary-powerpc/sound/cddb_2.5pl1-7.1.deb dists/potato/main/binary-powerpc/sound/xmcd_2.5pl1-7.1.deb dists/potato/main/binary-sparc/sound/cddb_2.5pl1-7.1.deb dists/potato/main/binary-sparc/sound/xmcd_2.5pl1-7.1.deb dists/potato/main/source/sound/xmcd_2.5pl1-7.1.diff.gz dists/potato/main/source/sound/xmcd_2.5pl1-7.1.dsc xmcd (2.5pl1-7.1) stable unstable; urgency=high * NMU by security team, with permission of maintainer. * Do not mark our binaries setuid root; remove setuid root when upgrading from an older version. dists/potato/main/binary-sparc/net/ethereal_0.8.0-2potato.deb ethereal (0.8.0-2potato) stable; urgency=high * Security upload; fixes possible buffer overflow exploits (including one with an already written exploit) in packet-afs.c, packet-ntp.c and packet-nbns.c (closes: #77561) dists/potato/main/binary-powerpc/net/ethereal_0.8.0-2potato.deb ethereal (0.8.0-2potato) stable; urgency=high * Security upload; fixes possible buffer overflow exploits (including one with an already written exploit) in packet-afs.c, packet-ntp.c and packet-nbns.c (closes: #77561) dists/potato/main/binary-m68k/net/ethereal_0.8.0-2potato.deb ethereal (0.8.0-2potato) stable; urgency=high * Security upload; fixes possible buffer overflow exploits (including one with an already written exploit) in packet-afs.c, packet-ntp.c and packet-nbns.c (closes: #77561) dists/potato/main/source/net/ethereal_0.8.0-2potato.diff.gz dists/potato/main/source/net/ethereal_0.8.0-2potato.dsc ethereal (0.8.0-2potato) stable; urgency=high * Security upload; fixes possible buffer overflow exploits (including one with an already written exploit) in packet-afs.c, packet-ntp.c and packet-nbns.c (closes: #77561) dists/potato/main/binary-arm/net/ethereal_0.8.0-2potato.deb ethereal (0.8.0-2potato) stable; urgency=high * Security upload; fixes possible buffer overflow exploits (including one with an already written exploit) in packet-afs.c, packet-ntp.c and packet-nbns.c (closes: #77561) dists/potato/main/binary-alpha/net/ethereal_0.8.0-2potato.deb ethereal (0.8.0-2potato) stable; urgency=high * Security upload; fixes possible buffer overflow exploits (including one with an already written exploit) in packet-afs.c, packet-ntp.c and packet-nbns.c (closes: #77561) dists/potato/main/binary-i386/base/elvis-tiny_1.4-11.deb dists/potato/main/source/base/elvis-tiny_1.4-11.diff.gz dists/potato/main/source/base/elvis-tiny_1.4-11.dsc elvis-tiny (1.4-11) stable unstable; urgency=high * The patch by Topi Miettinen to fix critical bug #74976 broke file recovery, but also the :w command. Re-engineered the patch so that the bug is fixed without any side-effects (closes: #77918) * Add explanation by the author to clear up copyright notice (closes: #72021) dists/potato/main/binary-alpha/base/elvis-tiny_1.4-11.deb elvis-tiny (1.4-11) stable unstable; urgency=high * The patch by Topi Miettinen to fix critical bug #74976 broke file recovery, but also the :w command. Re-engineered the patch so that the bug is fixed without any side-effects (closes: #77918) * Add explanation by the author to clear up copyright notice (closes: #72021) dists/potato/main/binary-sparc/base/elvis-tiny_1.4-10.deb elvis-tiny (1.4-10) stable unstable; urgency=high * Close tempfile hole. This is a critical bug, since it can be exploited locally. Patch by Topi Miettinen Upload to both stable and unstable. (closes: #74976) * Check for files > 500000 bytes (closes: #44601) * There is no changelog file, say so (closes: #60003) * Runs fine in 80x30 for me (closes: #62720) * Compile warnings aren't bugs on old sources (closes: #62807) * Add Build-Depends (closes: #70311) * Fix update-alternatives call (closes: #71212) * Compile with gcc -fsigned-char (closes: #62807) dists/potato/main/binary-powerpc/base/elvis-tiny_1.4-10.deb elvis-tiny (1.4-10) stable unstable; urgency=high * Close tempfile hole. This is a critical bug, since it can be exploited locally. Patch by Topi Miettinen Upload to both stable and unstable. (closes: #74976) * Check for files > 500000 bytes (closes: #44601) * There is no changelog file, say so (closes: #60003) * Runs fine in 80x30 for me (closes: #62720) * Compile warnings aren't bugs on old sources (closes: #62807) * Add Build-Depends (closes: #70311) * Fix update-alternatives call (closes: #71212) * Compile with gcc -fsigned-char (closes: #62807) dists/potato/main/binary-m68k/base/elvis-tiny_1.4-10.deb elvis-tiny (1.4-10) stable unstable; urgency=high * Close tempfile hole. This is a critical bug, since it can be exploited locally. Patch by Topi Miettinen Upload to both stable and unstable. (closes: #74976) * Check for files > 500000 bytes (closes: #44601) * There is no changelog file, say so (closes: #60003) * Runs fine in 80x30 for me (closes: #62720) * Compile warnings aren't bugs on old sources (closes: #62807) * Add Build-Depends (closes: #70311) * Fix update-alternatives call (closes: #71212) * Compile with gcc -fsigned-char (closes: #62807) dists/potato/main/binary-arm/base/elvis-tiny_1.4-10.deb elvis-tiny (1.4-10) stable unstable; urgency=high * Close tempfile hole. This is a critical bug, since it can be exploited locally. Patch by Topi Miettinen Upload to both stable and unstable. (closes: #74976) * Check for files > 500000 bytes (closes: #44601) * There is no changelog file, say so (closes: #60003) * Runs fine in 80x30 for me (closes: #62720) * Compile warnings aren't bugs on old sources (closes: #62807) * Add Build-Depends (closes: #70311) * Fix update-alternatives call (closes: #71212) * Compile with gcc -fsigned-char (closes: #62807) dists/potato/main/binary-all/admin/ncurses-term_5.0-6.0potato1.deb dists/potato/main/binary-all/base/ncurses-base_5.0-6.0potato1.deb dists/potato/main/binary-alpha/base/libncurses5_5.0-6.0potato1.deb dists/potato/main/binary-alpha/base/ncurses-bin_5.0-6.0potato1.deb dists/potato/main/binary-alpha/devel/libncurses5-dbg_5.0-6.0potato1.deb dists/potato/main/binary-alpha/devel/libncurses5-dev_5.0-6.0potato1.deb dists/potato/main/binary-arm/base/libncurses5_5.0-6.0potato1.deb dists/potato/main/binary-arm/base/ncurses-bin_5.0-6.0potato1.deb dists/potato/main/binary-arm/devel/libncurses5-dbg_5.0-6.0potato1.deb dists/potato/main/binary-arm/devel/libncurses5-dev_5.0-6.0potato1.deb dists/potato/main/binary-i386/base/libncurses5_5.0-6.0potato1.deb dists/potato/main/binary-i386/base/ncurses-bin_5.0-6.0potato1.deb dists/potato/main/binary-i386/devel/libncurses5-dbg_5.0-6.0potato1.deb dists/potato/main/binary-i386/devel/libncurses5-dev_5.0-6.0potato1.deb dists/potato/main/binary-m68k/base/libncurses5_5.0-6.0potato1.deb dists/potato/main/binary-m68k/base/ncurses-bin_5.0-6.0potato1.deb dists/potato/main/binary-m68k/devel/libncurses5-dbg_5.0-6.0potato1.deb dists/potato/main/binary-m68k/devel/libncurses5-dev_5.0-6.0potato1.deb dists/potato/main/binary-powerpc/base/libncurses5_5.0-6.0potato1.deb dists/potato/main/binary-powerpc/base/ncurses-bin_5.0-6.0potato1.deb dists/potato/main/binary-powerpc/devel/libncurses5-dbg_5.0-6.0potato1.deb dists/potato/main/binary-powerpc/devel/libncurses5-dev_5.0-6.0potato1.deb dists/potato/main/binary-sparc/base/libncurses5_5.0-6.0potato1.deb dists/potato/main/binary-sparc/base/ncurses-bin_5.0-6.0potato1.deb dists/potato/main/binary-sparc/devel/libncurses5-dbg_5.0-6.0potato1.deb dists/potato/main/binary-sparc/devel/libncurses5-dev_5.0-6.0potato1.deb dists/potato/main/source/libs/ncurses_5.0-6.0potato1.diff.gz dists/potato/main/source/libs/ncurses_5.0-6.0potato1.dsc ncurses (5.0-6.0potato1) stable; urgency=high * Security upload, fixing several exploitable buffer overflows. * New member of ncurses-maint, unfortunately... dists/potato/main/binary-sparc/mail/xmh_3.3.6-11potato15.deb dists/potato/main/binary-sparc/x11/rstartd_3.3.6-11potato15.deb dists/potato/main/binary-sparc/x11/twm_3.3.6-11potato15.deb dists/potato/main/binary-sparc/x11/xbase-clients_3.3.6-11potato15.deb dists/potato/main/binary-sparc/x11/xdm_3.3.6-11potato15.deb dists/potato/main/binary-sparc/x11/xext_3.3.6-11potato15.deb dists/potato/main/binary-sparc/x11/xfs_3.3.6-11potato15.deb dists/potato/main/binary-sparc/x11/xlib6g-dev_3.3.6-11potato15.deb dists/potato/main/binary-sparc/x11/xlib6g-static_3.3.6-11potato15.deb dists/potato/main/binary-sparc/x11/xlib6g_3.3.6-11potato15.deb dists/potato/main/binary-sparc/x11/xnest_3.3.6-11potato15.deb dists/potato/main/binary-sparc/x11/xproxy_3.3.6-11potato15.deb dists/potato/main/binary-sparc/x11/xprt_3.3.6-11potato15.deb dists/potato/main/binary-sparc/x11/xserver-3dlabs_3.3.6-11potato15.deb dists/potato/main/binary-sparc/x11/xserver-common_3.3.6-11potato15.deb dists/potato/main/binary-sparc/x11/xserver-fbdev_3.3.6-11potato15.deb dists/potato/main/binary-sparc/x11/xserver-mach64_3.3.6-11potato15.deb dists/potato/main/binary-sparc/x11/xserver-xsun-mono_3.3.6-11potato15.deb dists/potato/main/binary-sparc/x11/xserver-xsun24_3.3.6-11potato15.deb dists/potato/main/binary-sparc/x11/xserver-xsun_3.3.6-11potato15.deb dists/potato/main/binary-sparc/x11/xsm_3.3.6-11potato15.deb dists/potato/main/binary-sparc/x11/xterm_3.3.6-11potato15.deb dists/potato/main/binary-sparc/x11/xvfb_3.3.6-11potato15.deb xfree86-1 (3.3.6-11potato15) stable; urgency=medium * upstream public fixes #7 and #8: + S3 Trio64 V2/GX and IBM Netfinity fixes + S3 Savage /IX and /MX support * patch #061: fix typo in s3sav_cursor.c * patch #063: fix compile error against GNU libc 2.2's stdlib.h * patch #064: make X server respect XAUTHORITY environment variable if it is set and -authfile option is not given * patch #065: fix buffer overflow in Xlib * patch #066: Tim Roberts's fixes for S3 Savage /IX and /MX cards (see ) * patch #067: fix for tempfile race condition in libXaw (SECURITY) dists/potato/main/binary-powerpc/mail/xmh_3.3.6-11potato15.deb dists/potato/main/binary-powerpc/x11/rstartd_3.3.6-11potato15.deb dists/potato/main/binary-powerpc/x11/twm_3.3.6-11potato15.deb dists/potato/main/binary-powerpc/x11/xbase-clients_3.3.6-11potato15.deb dists/potato/main/binary-powerpc/x11/xdm_3.3.6-11potato15.deb dists/potato/main/binary-powerpc/x11/xext_3.3.6-11potato15.deb dists/potato/main/binary-powerpc/x11/xfs_3.3.6-11potato15.deb dists/potato/main/binary-powerpc/x11/xlib6g-dev_3.3.6-11potato15.deb dists/potato/main/binary-powerpc/x11/xlib6g-static_3.3.6-11potato15.deb dists/potato/main/binary-powerpc/x11/xlib6g_3.3.6-11potato15.deb dists/potato/main/binary-powerpc/x11/xnest_3.3.6-11potato15.deb dists/potato/main/binary-powerpc/x11/xproxy_3.3.6-11potato15.deb dists/potato/main/binary-powerpc/x11/xprt_3.3.6-11potato15.deb dists/potato/main/binary-powerpc/x11/xserver-common_3.3.6-11potato15.deb dists/potato/main/binary-powerpc/x11/xserver-fbdev_3.3.6-11potato15.deb dists/potato/main/binary-powerpc/x11/xsm_3.3.6-11potato15.deb dists/potato/main/binary-powerpc/x11/xterm_3.3.6-11potato15.deb dists/potato/main/binary-powerpc/x11/xvfb_3.3.6-11potato15.deb xfree86-1 (3.3.6-11potato15) stable; urgency=medium * upstream public fixes #7 and #8: + S3 Trio64 V2/GX and IBM Netfinity fixes + S3 Savage /IX and /MX support * patch #061: fix typo in s3sav_cursor.c * patch #063: fix compile error against GNU libc 2.2's stdlib.h * patch #064: make X server respect XAUTHORITY environment variable if it is set and -authfile option is not given * patch #065: fix buffer overflow in Xlib * patch #066: Tim Roberts's fixes for S3 Savage /IX and /MX cards (see ) * patch #067: fix for tempfile race condition in libXaw (SECURITY) dists/potato/main/binary-m68k/mail/xmh_3.3.6-11potato15.deb dists/potato/main/binary-m68k/oldlibs/xlib6-altdev_3.3.6-11potato15.deb dists/potato/main/binary-m68k/oldlibs/xlib6_3.3.6-11potato15.deb dists/potato/main/binary-m68k/x11/rstartd_3.3.6-11potato15.deb dists/potato/main/binary-m68k/x11/twm_3.3.6-11potato15.deb dists/potato/main/binary-m68k/x11/xbase-clients_3.3.6-11potato15.deb dists/potato/main/binary-m68k/x11/xdm_3.3.6-11potato15.deb dists/potato/main/binary-m68k/x11/xext_3.3.6-11potato15.deb dists/potato/main/binary-m68k/x11/xfs_3.3.6-11potato15.deb dists/potato/main/binary-m68k/x11/xlib6g-dev_3.3.6-11potato15.deb dists/potato/main/binary-m68k/x11/xlib6g-static_3.3.6-11potato15.deb dists/potato/main/binary-m68k/x11/xlib6g_3.3.6-11potato15.deb dists/potato/main/binary-m68k/x11/xnest_3.3.6-11potato15.deb dists/potato/main/binary-m68k/x11/xproxy_3.3.6-11potato15.deb dists/potato/main/binary-m68k/x11/xprt_3.3.6-11potato15.deb dists/potato/main/binary-m68k/x11/xserver-common_3.3.6-11potato15.deb dists/potato/main/binary-m68k/x11/xserver-fbdev_3.3.6-11potato15.deb dists/potato/main/binary-m68k/x11/xsm_3.3.6-11potato15.deb dists/potato/main/binary-m68k/x11/xterm_3.3.6-11potato15.deb dists/potato/main/binary-m68k/x11/xvfb_3.3.6-11potato15.deb xfree86-1 (3.3.6-11potato15) stable; urgency=medium * upstream public fixes #7 and #8: + S3 Trio64 V2/GX and IBM Netfinity fixes + S3 Savage /IX and /MX support * patch #061: fix typo in s3sav_cursor.c * patch #063: fix compile error against GNU libc 2.2's stdlib.h * patch #064: make X server respect XAUTHORITY environment variable if it is set and -authfile option is not given * patch #065: fix buffer overflow in Xlib * patch #066: Tim Roberts's fixes for S3 Savage /IX and /MX cards (see ) * patch #067: fix for tempfile race condition in libXaw (SECURITY) dists/potato/main/binary-all/x11/rstart_3.3.6-11potato15.deb dists/potato/main/binary-all/x11/xbase_3.3.6-11potato15.deb dists/potato/main/binary-all/x11/xfree86-common_3.3.6-11potato15.deb dists/potato/main/binary-i386/mail/xmh_3.3.6-11potato15.deb dists/potato/main/binary-i386/oldlibs/xlib6-altdev_3.3.6-11potato15.deb dists/potato/main/binary-i386/oldlibs/xlib6_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/rstartd_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/twm_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xbase-clients_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xdm_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xext_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xf86setup_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xfs_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xlib6g-dev_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xlib6g-static_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xlib6g_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xnest_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xproxy_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xprt_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xserver-3dlabs_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xserver-8514_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xserver-agx_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xserver-common_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xserver-fbdev_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xserver-i128_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xserver-mach32_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xserver-mach64_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xserver-mach8_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xserver-mono_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xserver-p9000_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xserver-s3_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xserver-s3v_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xserver-svga_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xserver-vga16_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xserver-w32_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xsm_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xterm_3.3.6-11potato15.deb dists/potato/main/binary-i386/x11/xvfb_3.3.6-11potato15.deb dists/potato/main/source/x11/xfree86-1_3.3.6-11potato15.diff.gz dists/potato/main/source/x11/xfree86-1_3.3.6-11potato15.dsc xfree86-1 (3.3.6-11potato15) stable; urgency=medium * upstream public fixes #7 and #8: + S3 Trio64 V2/GX and IBM Netfinity fixes + S3 Savage /IX and /MX support * patch #061: fix typo in s3sav_cursor.c * patch #063: fix compile error against GNU libc 2.2's stdlib.h * patch #064: make X server respect XAUTHORITY environment variable if it is set and -authfile option is not given * patch #065: fix buffer overflow in Xlib * patch #066: Tim Roberts's fixes for S3 Savage /IX and /MX cards (see ) * patch #067: fix for tempfile race condition in libXaw (SECURITY) dists/potato/main/binary-arm/mail/xmh_3.3.6-11potato15.deb dists/potato/main/binary-arm/x11/rstartd_3.3.6-11potato15.deb dists/potato/main/binary-arm/x11/twm_3.3.6-11potato15.deb dists/potato/main/binary-arm/x11/xbase-clients_3.3.6-11potato15.deb dists/potato/main/binary-arm/x11/xdm_3.3.6-11potato15.deb dists/potato/main/binary-arm/x11/xext_3.3.6-11potato15.deb dists/potato/main/binary-arm/x11/xfs_3.3.6-11potato15.deb dists/potato/main/binary-arm/x11/xlib6g-dev_3.3.6-11potato15.deb dists/potato/main/binary-arm/x11/xlib6g-static_3.3.6-11potato15.deb dists/potato/main/binary-arm/x11/xlib6g_3.3.6-11potato15.deb dists/potato/main/binary-arm/x11/xnest_3.3.6-11potato15.deb dists/potato/main/binary-arm/x11/xproxy_3.3.6-11potato15.deb dists/potato/main/binary-arm/x11/xprt_3.3.6-11potato15.deb dists/potato/main/binary-arm/x11/xserver-common_3.3.6-11potato15.deb dists/potato/main/binary-arm/x11/xserver-fbdev_3.3.6-11potato15.deb dists/potato/main/binary-arm/x11/xsm_3.3.6-11potato15.deb dists/potato/main/binary-arm/x11/xterm_3.3.6-11potato15.deb dists/potato/main/binary-arm/x11/xvfb_3.3.6-11potato15.deb xfree86-1 (3.3.6-11potato15) stable; urgency=medium * upstream public fixes #7 and #8: + S3 Trio64 V2/GX and IBM Netfinity fixes + S3 Savage /IX and /MX support * patch #061: fix typo in s3sav_cursor.c * patch #063: fix compile error against GNU libc 2.2's stdlib.h * patch #064: make X server respect XAUTHORITY environment variable if it is set and -authfile option is not given * patch #065: fix buffer overflow in Xlib * patch #066: Tim Roberts's fixes for S3 Savage /IX and /MX cards (see ) * patch #067: fix for tempfile race condition in libXaw (SECURITY) dists/potato/main/binary-alpha/mail/xmh_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/rstartd_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/twm_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xbase-clients_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xdm_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xext_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xf86setup_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xfs_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xlib6g-dev_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xlib6g-static_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xlib6g_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xnest_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xproxy_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xprt_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xserver-3dlabs_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xserver-common_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xserver-fbdev_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xserver-i128_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xserver-mach64_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xserver-mono_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xserver-p9000_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xserver-s3_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xserver-s3v_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xserver-svga_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xserver-tga_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xserver-vga16_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xsm_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xterm_3.3.6-11potato15.deb dists/potato/main/binary-alpha/x11/xvfb_3.3.6-11potato15.deb xfree86-1 (3.3.6-11potato15) stable; urgency=medium * upstream public fixes #7 and #8: + S3 Trio64 V2/GX and IBM Netfinity fixes + S3 Savage /IX and /MX support * patch #061: fix typo in s3sav_cursor.c * patch #063: fix compile error against GNU libc 2.2's stdlib.h * patch #064: make X server respect XAUTHORITY environment variable if it is set and -authfile option is not given * patch #065: fix buffer overflow in Xlib * patch #066: Tim Roberts's fixes for S3 Savage /IX and /MX cards (see ) * patch #067: fix for tempfile race condition in libXaw (SECURITY) dists/potato/main/binary-sparc/net/cupsys-bsd_1.0.4-8.deb dists/potato/main/binary-sparc/net/cupsys_1.0.4-8.deb dists/potato/main/binary-sparc/net/libcupsys1-dev_1.0.4-8.deb dists/potato/main/binary-sparc/net/libcupsys1_1.0.4-8.deb cupsys (1.0.4-8) stable; urgency=high * Security fix: the default configuration now no longer allows people to connect to printers except from localhost. The previous default configuration allowed anyone to connect to any printer from any location; not a smart security move. dists/potato/main/binary-powerpc/net/cupsys-bsd_1.0.4-8.deb dists/potato/main/binary-powerpc/net/cupsys_1.0.4-8.deb dists/potato/main/binary-powerpc/net/libcupsys1-dev_1.0.4-8.deb dists/potato/main/binary-powerpc/net/libcupsys1_1.0.4-8.deb cupsys (1.0.4-8) stable; urgency=high * Security fix: the default configuration now no longer allows people to connect to printers except from localhost. The previous default configuration allowed anyone to connect to any printer from any location; not a smart security move. dists/potato/main/binary-m68k/net/cupsys-bsd_1.0.4-8.deb dists/potato/main/binary-m68k/net/cupsys_1.0.4-8.deb dists/potato/main/binary-m68k/net/libcupsys1-dev_1.0.4-8.deb dists/potato/main/binary-m68k/net/libcupsys1_1.0.4-8.deb cupsys (1.0.4-8) stable; urgency=high * Security fix: the default configuration now no longer allows people to connect to printers except from localhost. The previous default configuration allowed anyone to connect to any printer from any location; not a smart security move. dists/potato/main/binary-i386/net/cupsys-bsd_1.0.4-8.deb dists/potato/main/binary-i386/net/cupsys_1.0.4-8.deb dists/potato/main/binary-i386/net/libcupsys1-dev_1.0.4-8.deb dists/potato/main/binary-i386/net/libcupsys1_1.0.4-8.deb dists/potato/main/source/net/cupsys_1.0.4-8.diff.gz dists/potato/main/source/net/cupsys_1.0.4-8.dsc cupsys (1.0.4-8) stable; urgency=high * Security fix: the default configuration now no longer allows people to connect to printers except from localhost. The previous default configuration allowed anyone to connect to any printer from any location; not a smart security move. dists/potato/main/binary-arm/net/cupsys-bsd_1.0.4-8.deb dists/potato/main/binary-arm/net/cupsys_1.0.4-8.deb dists/potato/main/binary-arm/net/libcupsys1-dev_1.0.4-8.deb dists/potato/main/binary-arm/net/libcupsys1_1.0.4-8.deb cupsys (1.0.4-8) stable; urgency=high * Security fix: the default configuration now no longer allows people to connect to printers except from localhost. The previous default configuration allowed anyone to connect to any printer from any location; not a smart security move. dists/potato/main/binary-alpha/net/cupsys-bsd_1.0.4-8.deb dists/potato/main/binary-alpha/net/cupsys_1.0.4-8.deb dists/potato/main/binary-alpha/net/libcupsys1-dev_1.0.4-8.deb dists/potato/main/binary-alpha/net/libcupsys1_1.0.4-8.deb cupsys (1.0.4-8) stable; urgency=high * Security fix: the default configuration now no longer allows people to connect to printers except from localhost. The previous default configuration allowed anyone to connect to any printer from any location; not a smart security move. dists/potato/main/binary-alpha/admin/cron_3.0pl1-57.1.deb dists/potato/main/binary-arm/admin/cron_3.0pl1-57.1.deb dists/potato/main/binary-m68k/admin/cron_3.0pl1-57.1.deb dists/potato/main/binary-powerpc/admin/cron_3.0pl1-57.1.deb dists/potato/main/binary-sparc/admin/cron_3.0pl1-57.1.deb cron (3.0pl1-57.1) stable; urgency=high * Add fix for tempfile attack security hole. dists/potato/main/binary-i386/admin/cron_3.0pl1-57.1.deb dists/potato/main/source/admin/cron_3.0pl1-57.1.diff.gz dists/potato/main/source/admin/cron_3.0pl1-57.1.dsc cron (3.0pl1-57.1) stable; urgency=high * Add fix for tempfile attack security hole. dists/potato/main/binary-sparc/net/nis_3.8-2.deb nis (3.8-2) stable; urgency=high * Upload to stable * This fixes the Alpha problems. This is of high urgency, because the old 3.7 packages still contain the security hole. * The Alpha problems were due to configure not reckognizing the system type on (certain!) Alpha's, so that the USE_BROADCAST=0 code got compiled in which was broken. I debugged and fixed both problems. This might also fix brokenness on other non-i386 platforms. * Updated HOWTO (closes: #76043) dists/potato/main/binary-powerpc/net/nis_3.8-2.deb nis (3.8-2) stable; urgency=high * Upload to stable * This fixes the Alpha problems. This is of high urgency, because the old 3.7 packages still contain the security hole. * The Alpha problems were due to configure not reckognizing the system type on (certain!) Alpha's, so that the USE_BROADCAST=0 code got compiled in which was broken. I debugged and fixed both problems. This might also fix brokenness on other non-i386 platforms. * Updated HOWTO (closes: #76043) dists/potato/main/binary-m68k/net/nis_3.8-2.deb nis (3.8-2) stable; urgency=high * Upload to stable * This fixes the Alpha problems. This is of high urgency, because the old 3.7 packages still contain the security hole. * The Alpha problems were due to configure not reckognizing the system type on (certain!) Alpha's, so that the USE_BROADCAST=0 code got compiled in which was broken. I debugged and fixed both problems. This might also fix brokenness on other non-i386 platforms. * Updated HOWTO (closes: #76043) dists/potato/main/binary-i386/net/nis_3.8-2.deb dists/potato/main/source/net/nis_3.8-2.diff.gz dists/potato/main/source/net/nis_3.8-2.dsc nis (3.8-2) stable; urgency=high * Upload to stable * This fixes the Alpha problems. This is of high urgency, because the old 3.7 packages still contain the security hole. * The Alpha problems were due to configure not reckognizing the system type on (certain!) Alpha's, so that the USE_BROADCAST=0 code got compiled in which was broken. I debugged and fixed both problems. This might also fix brokenness on other non-i386 platforms. * Updated HOWTO (closes: #76043) dists/potato/main/binary-arm/net/nis_3.8-2.deb nis (3.8-2) stable; urgency=high * Upload to stable * This fixes the Alpha problems. This is of high urgency, because the old 3.7 packages still contain the security hole. * The Alpha problems were due to configure not reckognizing the system type on (certain!) Alpha's, so that the USE_BROADCAST=0 code got compiled in which was broken. I debugged and fixed both problems. This might also fix brokenness on other non-i386 platforms. * Updated HOWTO (closes: #76043) dists/potato/main/binary-alpha/net/nis_3.8-2.deb nis (3.8-2) stable; urgency=high * Upload to stable * This fixes the Alpha problems. This is of high urgency, because the old 3.7 packages still contain the security hole. * The Alpha problems were due to configure not reckognizing the system type on (certain!) Alpha's, so that the USE_BROADCAST=0 code got compiled in which was broken. I debugged and fixed both problems. This might also fix brokenness on other non-i386 platforms. * Updated HOWTO (closes: #76043) dists/potato/main/binary-sparc/web/zope_2.1.6-5.2.deb zope (2.1.6-5.2) stable; urgency=high * Same problem again. Fun. dists/potato/main/binary-powerpc/web/zope_2.1.6-5.2.deb zope (2.1.6-5.2) stable; urgency=high * Same problem again. Fun. dists/potato/main/binary-m68k/web/zope_2.1.6-5.2.deb zope (2.1.6-5.2) stable; urgency=high * Same problem again. Fun. dists/potato/main/binary-i386/web/zope_2.1.6-5.2.deb dists/potato/main/source/web/zope_2.1.6-5.2.diff.gz dists/potato/main/source/web/zope_2.1.6-5.2.dsc zope (2.1.6-5.2) stable; urgency=high * Same problem again. Fun. dists/potato/main/binary-arm/web/zope_2.1.6-5.2.deb zope (2.1.6-5.2) stable; urgency=high * Same problem again. Fun. dists/potato/main/binary-alpha/base/modutils_2.3.11-13.1.deb dists/potato/main/binary-arm/base/modutils_2.3.11-13.1.deb dists/potato/main/binary-i386/base/modutils_2.3.11-13.1.deb dists/potato/main/binary-m68k/base/modutils_2.3.11-13.1.deb dists/potato/main/binary-sparc/base/modutils_2.3.11-13.1.deb modutils (2.3.11-13.1) stable; urgency=high * Fix typos in -13. dists/potato/main/binary-powerpc/base/modutils_2.3.11-13.1.deb dists/potato/main/source/base/modutils_2.3.11-13.1.diff.gz dists/potato/main/source/base/modutils_2.3.11-13.1.dsc modutils (2.3.11-13.1) stable; urgency=high * Fix typos in -13. dists/potato/main/binary-sparc/net/bind-dev_8.2.2p7-1.deb dists/potato/main/binary-sparc/net/bind_8.2.2p7-1.deb dists/potato/main/binary-sparc/net/dnsutils_8.2.2p7-1.deb bind (1:8.2.2p7-1) stable unstable; urgency=high * new upstream version, release notes indicate highlights since 8.2.2p5 as Fixes "ZXFR" denial of service attack Fixes "division by 0" denial of service attack Fix various other random problems Add *no* new functionality target stable since this includes fixes for denial of service attacks closes: #76620 * fix debian/rules to use distclean, and clean up old mkdep cruft in various makefiles, greatly reducing the size of the diff.gz dists/potato/main/binary-powerpc/net/bind-dev_8.2.2p7-1.deb dists/potato/main/binary-powerpc/net/bind_8.2.2p7-1.deb dists/potato/main/binary-powerpc/net/dnsutils_8.2.2p7-1.deb bind (1:8.2.2p7-1) stable unstable; urgency=high * new upstream version, release notes indicate highlights since 8.2.2p5 as Fixes "ZXFR" denial of service attack Fixes "division by 0" denial of service attack Fix various other random problems Add *no* new functionality target stable since this includes fixes for denial of service attacks closes: #76620 * fix debian/rules to use distclean, and clean up old mkdep cruft in various makefiles, greatly reducing the size of the diff.gz dists/potato/main/binary-m68k/net/bind-dev_8.2.2p7-1.deb dists/potato/main/binary-m68k/net/bind_8.2.2p7-1.deb dists/potato/main/binary-m68k/net/dnsutils_8.2.2p7-1.deb bind (1:8.2.2p7-1) stable unstable; urgency=high * new upstream version, release notes indicate highlights since 8.2.2p5 as Fixes "ZXFR" denial of service attack Fixes "division by 0" denial of service attack Fix various other random problems Add *no* new functionality target stable since this includes fixes for denial of service attacks closes: #76620 * fix debian/rules to use distclean, and clean up old mkdep cruft in various makefiles, greatly reducing the size of the diff.gz dists/potato/main/binary-all/net/bind-doc_8.2.2p7-1.deb dists/potato/main/binary-all/net/task-dns-server_8.2.2p7-1.deb dists/potato/main/binary-i386/net/bind-dev_8.2.2p7-1.deb dists/potato/main/binary-i386/net/bind_8.2.2p7-1.deb dists/potato/main/binary-i386/net/dnsutils_8.2.2p7-1.deb dists/potato/main/source/net/bind_8.2.2p7-1.diff.gz dists/potato/main/source/net/bind_8.2.2p7-1.dsc dists/potato/main/source/net/bind_8.2.2p7.orig.tar.gz bind (1:8.2.2p7-1) stable unstable; urgency=high * new upstream version, release notes indicate highlights since 8.2.2p5 as Fixes "ZXFR" denial of service attack Fixes "division by 0" denial of service attack Fix various other random problems Add *no* new functionality target stable since this includes fixes for denial of service attacks closes: #76620 * fix debian/rules to use distclean, and clean up old mkdep cruft in various makefiles, greatly reducing the size of the diff.gz dists/potato/main/binary-arm/net/bind-dev_8.2.2p7-1.deb dists/potato/main/binary-arm/net/bind_8.2.2p7-1.deb dists/potato/main/binary-arm/net/dnsutils_8.2.2p7-1.deb bind (1:8.2.2p7-1) stable unstable; urgency=high * new upstream version, release notes indicate highlights since 8.2.2p5 as Fixes "ZXFR" denial of service attack Fixes "division by 0" denial of service attack Fix various other random problems Add *no* new functionality target stable since this includes fixes for denial of service attacks closes: #76620 * fix debian/rules to use distclean, and clean up old mkdep cruft in various makefiles, greatly reducing the size of the diff.gz dists/potato/main/binary-alpha/net/bind-dev_8.2.2p7-1.deb dists/potato/main/binary-alpha/net/bind_8.2.2p7-1.deb dists/potato/main/binary-alpha/net/dnsutils_8.2.2p7-1.deb bind (1:8.2.2p7-1) stable unstable; urgency=high * new upstream version, release notes indicate highlights since 8.2.2p5 as Fixes "ZXFR" denial of service attack Fixes "division by 0" denial of service attack Fix various other random problems Add *no* new functionality target stable since this includes fixes for denial of service attacks closes: #76620 * fix debian/rules to use distclean, and clean up old mkdep cruft in various makefiles, greatly reducing the size of the diff.gz dists/potato/main/binary-alpha/shells/tcsh-kanji_6.09.00-10.deb dists/potato/main/binary-alpha/shells/tcsh_6.09.00-10.deb dists/potato/main/binary-arm/shells/tcsh-kanji_6.09.00-10.deb dists/potato/main/binary-arm/shells/tcsh_6.09.00-10.deb dists/potato/main/binary-sparc/shells/tcsh-kanji_6.09.00-10.deb dists/potato/main/binary-sparc/shells/tcsh_6.09.00-10.deb tcsh (6.09.00-10) stable; urgency=high * Applied patch to close a security hole in the creation of temporary files dists/potato/main/binary-powerpc/shells/tcsh-kanji_6.09.00-10.deb dists/potato/main/binary-powerpc/shells/tcsh_6.09.00-10.deb tcsh (6.09.00-10) stable; urgency=high * Applied patch to close a security hole in the creation of temporary files dists/potato/main/binary-i386/text/sgml-tools_1.0.9-14.deb dists/potato/main/source/text/sgml-tools_1.0.9-14.diff.gz dists/potato/main/source/text/sgml-tools_1.0.9-14.dsc sgml-tools (1.0.9-14) stable unstable; urgency=low * Release Manager: Please include this into proposed-updates for potato * Another security fix for /tmp race conditions and weak permissions. Thanks to Colin Phipps. Closes: #78452 * Fix Makefile to invoke bash script correctly. Also thanks to Colin Phipps. Closes: #78455 dists/potato/main/binary-arm/text/sgml-tools_1.0.9-14.deb sgml-tools (1.0.9-14) stable unstable; urgency=low * Release Manager: Please include this into proposed-updates for potato * Another security fix for /tmp race conditions and weak permissions. Thanks to Colin Phipps. Closes: #78452 * Fix Makefile to invoke bash script correctly. Also thanks to Colin Phipps. Closes: #78455 dists/potato/main/binary-alpha/text/sgml-tools_1.0.9-14.deb sgml-tools (1.0.9-14) stable unstable; urgency=low * Release Manager: Please include this into proposed-updates for potato * Another security fix for /tmp race conditions and weak permissions. Thanks to Colin Phipps. Closes: #78452 * Fix Makefile to invoke bash script correctly. Also thanks to Colin Phipps. Closes: #78455 dists/potato/main/binary-sparc/text/sgml-tools_1.0.9-13.deb sgml-tools (1.0.9-13) stable unstable; urgency=medium * Release Manager: Please include this into proposed-udpatges and point-release of potato. * fix the dangarous bug which removes the all files in the current directory. The timing to cause this bug is very short, so that I had not found this bug recently. Now I have checked that this bug in fact exists, and do very harm. Maybe the bug severity weighs grave or clitical because of the data loss. * Thanks to Evgeny Stambulchik. This fix is back-ported from his patch for my linuxdoc-tools 0.7.4. * fix the sgml2txt list error. another back-port from linuxdoc-tools Closes: #66348 * Add build-depend. Closes: #69282, #69289 dists/potato/main/binary-all/x11/gnome-help-data_1.0.55-2.0.2.deb dists/potato/main/binary-all/x11/gnome-panel-data_1.0.55-2.0.2.deb dists/potato/main/binary-sparc/devel/libpanel-applet-dev_1.0.55-2.0.2.deb dists/potato/main/binary-sparc/libs/libpanel-applet0_1.0.55-2.0.2.deb dists/potato/main/binary-sparc/x11/gnome-core_1.0.55-2.0.2.deb dists/potato/main/binary-sparc/x11/gnome-help_1.0.55-2.0.2.deb dists/potato/main/binary-sparc/x11/gnome-panel_1.0.55-2.0.2.deb dists/potato/main/binary-sparc/x11/gnome-session_1.0.55-2.0.2.deb dists/potato/main/binary-sparc/x11/gnome-terminal_1.0.55-2.0.2.deb gnome-core (1.0.55-2.0.2) stable; urgency=low * Binary-only NMU: hand hack depends on binary-all packages to refer to 1.0.55-2, so package is installable. dists/potato/main/binary-powerpc/net/tcpdump_3.4a6-6.deb tcpdump (3.4a6-6) stable; urgency=low * Update both config.guess and config.sub so that arm builds properly * Recompiled against right libpcap (i386 only). (Closes: #77991). Other architecures need not be updated but for i386 this is grave. dists/potato/main/binary-i386/net/tcpdump_3.4a6-6.deb dists/potato/main/source/net/tcpdump_3.4a6-6.diff.gz dists/potato/main/source/net/tcpdump_3.4a6-6.dsc tcpdump (3.4a6-6) stable; urgency=low * Update both config.guess and config.sub so that arm builds properly * Recompiled against right libpcap (i386 only). (Closes: #77991). Other architecures need not be updated but for i386 this is grave. dists/potato/main/binary-arm/net/tcpdump_3.4a6-6.deb tcpdump (3.4a6-6) stable; urgency=low * Update both config.guess and config.sub so that arm builds properly * Recompiled against right libpcap (i386 only). (Closes: #77991). Other architecures need not be updated but for i386 this is grave. dists/potato/main/binary-sparc/devel/libtabe0-dev_0.1.8-0.1.deb dists/potato/main/binary-sparc/libs/libtabe0_0.1.8-0.1.deb dists/potato/main/binary-sparc/text/libtabe-db_0.1.8-0.1.deb libtabe (0.1.8-0.1) stable unstable; urgency=low * New upstream bug-fix release. * Non-maintainer upload. dists/potato/main/binary-alpha/devel/libtabe0-dev_0.1.8-0.1.1.deb dists/potato/main/binary-alpha/libs/libtabe0_0.1.8-0.1.1.deb dists/potato/main/binary-alpha/text/libtabe-db_0.1.8-0.1.1.deb libtabe (0.1.8-0.1.1) stable; urgency=low * Non-maintainer upload to fix broken dependencies in the current potato build on Alpha. dists/potato/main/binary-alpha/admin/cfengine_1.5.3-6.0.1.deb cfengine (1.5.3-6.0.1) stable; urgency=low * Non-maintainer upload to fix broken dependencies in the current potato build on Alpha. / dists/potato/main/binary-sparc/base/dpkg_1.6.15.2.deb dpkg (1.6.15.2) stable; urgency=high * Yet Another Binary-only NMU for sparc / / / / / / / boot-floppies (2.2.20) stable; urgency=low * Herbert Xu : - alpha: Use kernel 2.2.18pre21. dists/potato/main/binary-all/devel/kernel-headers-2.2.18pre21-sparc_3.deb dists/potato/main/binary-sparc/base/kernel-image-2.2.18pre21-sun4cdm_3.deb dists/potato/main/binary-sparc/base/kernel-image-2.2.18pre21-sun4dm-pci_3.deb dists/potato/main/binary-sparc/base/kernel-image-2.2.18pre21-sun4dm-smp_3.deb dists/potato/main/binary-sparc/base/kernel-image-2.2.18pre21-sun4u-smp_3.deb dists/potato/main/binary-sparc/base/kernel-image-2.2.18pre21-sun4u_3.deb dists/potato/main/source/base/kernel-image-sparc-2.2_3.dsc dists/potato/main/source/base/kernel-image-sparc-2.2_3.tar.gz kernel-image-sparc-2.2 (3) stable unstable; urgency=low * Using 2.2.18pre21 * Updated config's - now includes nfsv3 support - sparc64 includes 7-segment display, and Creator DRI dists/potato/main/binary-m68k/base/kernel-image-2.2.17-mvme16x_2.2.17-1.deb kernel-source-2.2.17 (2.2.17-1) unstable; urgency=low * First release of m68k/VME 2.2.17 kernel binaries. dists/potato/main/binary-m68k/base/kernel-image-2.2.17-mvme147_2.2.17-1.deb kernel-source-2.2.17 (2.2.17-1) unstable; urgency=low * First release of m68k/VME 2.2.17 kernel binaries. dists/potato/main/binary-m68k/base/kernel-image-2.2.17-bvme6000_2.2.17-1.deb kernel-source-2.2.17 (2.2.17-1) unstable; urgency=low * First release of m68k/VME 2.2.17 kernel binaries. dists/potato/main/binary-all/devel/kernel-patch-2.2.17-m68k_2.2.17-0potato1.deb dists/potato/main/source/devel/kernel-patch-2.2.17-m68k_2.2.17-0potato1.dsc dists/potato/main/source/devel/kernel-patch-2.2.17-m68k_2.2.17-0potato1.tar.gz kernel-patch-2.2.17-m68k (2.2.17-0potato1) stable; urgency=low * First 2.2.17 patch set for m68k. dists/potato/main/binary-all/devel/kernel-patch-2.2.10-m68k_2.2.10-12.deb dists/potato/main/source/devel/kernel-patch-2.2.10-m68k_2.2.10-12.dsc dists/potato/main/source/devel/kernel-patch-2.2.10-m68k_2.2.10-12.tar.gz kernel-patch-2.2.10-m68k (2.2.10-12) stable unstable; urgency=low * Added NCR5380 reselection patch from Michael Schmitz. * Added 8390 patch. dists/potato/main/binary-m68k/base/kernel-image-2.2.17-atari_2.2.17-1.deb kernel-source-2.2.17 (2.2.17-1) stable unstable; urgency=low * First release of m68k/atari 2.2.17 kernel-binaries dists/potato/main/binary-m68k/base/kernel-image-2.2.17-amiga_2.2.17-1.deb kernel-source-2.2.17 (2.2.17-1) stable unstable; urgency=low * First release of m68k/amiga 2.2.17 kernel-binaries dists/potato/main/binary-m68k/base/kernel-image-2.2.10-mac_2.2.10-4.deb kernel-source-2.2.10 (2.2.10-4) unstable; urgency=low * rebuild with kernel-patch 2.2.10-12 dists/potato/main/binary-m68k/base/kernel-image-2.2.10-atari_2.2.10-4.deb kernel-source-2.2.10 (2.2.10-4) stable unstable; urgency=low * rebuild with kernel-patch 2.2.10-12 dists/potato/main/binary-m68k/base/kernel-image-2.2.10-amiga_2.2.10-4.deb kernel-source-2.2.10 (2.2.10-4) stable unstable; urgency=low * rebuild with kernel-patch 2.2.10-12 / / / / / / / / / / / boot-floppies (2.2.19) stable; urgency=low * PowerPC fixes: - Update kernel version to 2.2.18pre21 - Fix the miBoot command line options not to try to force atyfb (should fix color issues on some mach64 cards) - Create /dev/nvram on the root disk - Add nvsetenv and ofpath, as well as fixing the paths for yaboot - No longer include System.map on the HFS (powermac) boot floppy (there isn't enough room with the new kernels) - en/dbootstrap.sgml updates from Ethan Benson to match the new ybin - Bail out earlier in the boot floppy creation process if we can't do it on this architecture - Make CHRP rescue.bin be DOS formatted. Perhaps the same thing needs done to PReP - can PReP even boot FAT images? - Populate /dev/input in the base tarball - adbmouse and friends no longer work with the new kernels. * Build with packages from proposed-updates: - ncurses 5.0-6.0potato1 - modutils 2.3.11-13.1 - dpkg 1.6.15.2 (sparc only) - kernel 2.2.18pre21 / pcmcia 3.1.22-0.1* (all relevant flavors) dists/potato/main/binary-alpha/base/kernel-image-2.2.18pre21-generic_2.2.18pre21-1.deb dists/potato/main/binary-alpha/base/kernel-image-2.2.18pre21-jensen_2.2.18pre21-1.deb dists/potato/main/binary-alpha/base/kernel-image-2.2.18pre21-nautilus_2.2.18pre21-1.deb dists/potato/main/binary-alpha/base/kernel-image-2.2.18pre21-smp_2.2.18pre21-1.deb dists/potato/main/binary-alpha/devel/kernel-headers-2.2.18pre21_2.2.18pre21-1.deb dists/potato/main/source/devel/kernel-image-2.2.18pre21-alpha_2.2.18pre21-1.dsc dists/potato/main/source/devel/kernel-image-2.2.18pre21-alpha_2.2.18pre21-1.tar.gz kernel-image-2.2.18pre21-alpha (2.2.18pre21-1) stable unstable; urgency=low * New upstream release. * New maintainer. / / / / / / boot-floppies (2.2.20) stable; urgency=low * Herbert Xu : - alpha: Use kernel 2.2.18pre21. / / / / / boot-floppies (2.2.19) stable; urgency=low * PowerPC fixes: - Update kernel version to 2.2.18pre21 - Fix the miBoot command line options not to try to force atyfb (should fix color issues on some mach64 cards) - Create /dev/nvram on the root disk - Add nvsetenv and ofpath, as well as fixing the paths for yaboot - No longer include System.map on the HFS (powermac) boot floppy (there isn't enough room with the new kernels) - en/dbootstrap.sgml updates from Ethan Benson to match the new ybin - Bail out earlier in the boot floppy creation process if we can't do it on this architecture - Make CHRP rescue.bin be DOS formatted. Perhaps the same thing needs done to PReP - can PReP even boot FAT images? - Populate /dev/input in the base tarball - adbmouse and friends no longer work with the new kernels. * Build with packages from proposed-updates: - ncurses 5.0-6.0potato1 - modutils 2.3.11-13.1 - dpkg 1.6.15.2 (sparc only) - kernel 2.2.18pre21 / pcmcia 3.1.22-0.1* (all relevant flavors) dists/potato/main/binary-powerpc/base/pcmcia-modules-2.2.18pre21-pmac_3.1.22-0.1potatok2.deb pcmcia-cs (3.1.22-0.1potato) stable; urgency=low * NMU * Rebuilt for Debian 2.2rN dists/potato/main/binary-powerpc/base/pcmcia-cs_3.1.22-0.1potato.deb pcmcia-cs (3.1.22-0.1potato) stable; urgency=low * NMU * Rebuilt for Debian 2.2rN dists/potato/main/binary-powerpc/base/powerpc-utils_1.1.3-3.deb dists/potato/main/source/base/powerpc-utils_1.1.3-3.diff.gz dists/potato/main/source/base/powerpc-utils_1.1.3-3.dsc powerpc-utils (1.1.3-3) stable unstable; urgency=medium * Add (harmless) trackpad and backlight utilities. dists/potato/main/binary-all/devel/kernel-patch-2.2.18pre21-powerpc_20001119-2.2.18pre21-2.deb dists/potato/main/binary-powerpc/base/kernel-image-2.2.18pre21-chrp_2.2.18pre21-2.deb dists/potato/main/binary-powerpc/base/kernel-image-2.2.18pre21-pmac_2.2.18pre21-2.deb dists/potato/main/binary-powerpc/base/kernel-image-2.2.18pre21-prep_2.2.18pre21-2.deb dists/potato/main/binary-powerpc/devel/kernel-headers-2.2.18pre21_2.2.18pre21-2.deb dists/potato/main/source/devel/kernel-patch-2.2.18pre21-powerpc_20001119-2.2.18pre21-2.dsc dists/potato/main/source/devel/kernel-patch-2.2.18pre21-powerpc_20001119-2.2.18pre21-2.tar.gz kernel-patch-2.2.18pre21-powerpc (20001119-2.2.18pre21-2) stable unstable; urgency=medium * Update configs a bit: - sync networking options on pmac with the standard Intel kernel image packages (Closes: #72503). I still need to do the same for prep and chrp. - Turn off CONFIG_BOOTX_TEXT; it interferes with Quik. - Enable serial console on CHRP. dists/potato/main/binary-powerpc/base/yaboot_0.9-0.30-2.deb dists/potato/main/source/base/yaboot_0.9-0.30-2.diff.gz dists/potato/main/source/base/yaboot_0.9-0.30-2.dsc dists/potato/main/source/base/yaboot_0.9-0.30.orig.tar.gz yaboot (0.9-0.30-2) stable unstable; urgency=medium * Fix link creation on upgrades (Closes: #78027). dists/potato/main/binary-i386/base/pcmcia-modules-2.2.18pre21_3.1.22-0.1potato.0.2k1.deb pcmcia-cs (3.1.22-0.1potato.0.2) stable; urgency=low * Binary-only NMU. * Didn't forget make clean this time :) dists/potato/main/binary-i386/base/pcmcia-modules-2.2.18pre21-idepci_3.1.22-0.1potato+2.2.18pre21+idepci.deb pcmcia-cs (3.1.22-0.1potato) stable; urgency=low * NMU * Rebuilt for Debian 2.2rN dists/potato/main/binary-i386/base/pcmcia-modules-2.2.18pre21-ide_3.1.22-0.1potato.0.2k1.deb pcmcia-cs (3.1.22-0.1potato.0.2) stable; urgency=low * Binary-only NMU. * Didn't forget make clean this time :) dists/potato/main/binary-i386/base/pcmcia-modules-2.2.18pre21-compact_3.1.22-0.1potato+2.2.18pre21+compact.deb pcmcia-cs (3.1.22-0.1potato) stable; urgency=low * NMU * Rebuilt for Debian 2.2rN dists/potato/main/binary-all/admin/pcmcia-source_3.1.22-0.1potato.deb dists/potato/main/binary-i386/base/pcmcia-cs_3.1.22-0.1potato.deb dists/potato/main/source/base/pcmcia-cs_3.1.22-0.1potato.diff.gz dists/potato/main/source/base/pcmcia-cs_3.1.22-0.1potato.dsc dists/potato/main/source/base/pcmcia-cs_3.1.22.orig.tar.gz pcmcia-cs (3.1.22-0.1potato) stable; urgency=low * NMU * Rebuilt for Debian 2.2rN dists/potato/main/binary-all/devel/kernel-source-2.2.18pre21_2.2.18pre21-1.deb dists/potato/main/binary-all/doc/kernel-doc-2.2.18pre21_2.2.18pre21-1.deb dists/potato/main/source/devel/kernel-source-2.2.18pre21_2.2.18pre21-1.diff.gz dists/potato/main/source/devel/kernel-source-2.2.18pre21_2.2.18pre21-1.dsc dists/potato/main/source/devel/kernel-source-2.2.18pre21_2.2.18pre21.orig.tar.gz kernel-source-2.2.18pre21 (2.2.18pre21-1) stable unstable; urgency=low * New upstream release (closes: #68474, #68993, #72378). * Added NetGear's tulip.c (closes: #66193). * Added build-time dependency on bzip2. dists/potato/main/binary-all/devel/kernel-patch-2.2.18pre21-ide_20001118-1.deb dists/potato/main/source/devel/kernel-patch-2.2.18pre21-ide_20001118-1.dsc dists/potato/main/source/devel/kernel-patch-2.2.18pre21-ide_20001118-1.tar.gz kernel-patch-2.2.18pre21-ide (20001118-1) stable unstable; urgency=low * Updated new upstream patch for 2.2.18pre21. dists/potato/main/binary-i386/base/kernel-image-2.2.18pre21-idepci_2.2.18pre21-2.deb dists/potato/main/source/base/kernel-image-2.2.18pre21-idepci_2.2.18pre21-2.dsc dists/potato/main/source/base/kernel-image-2.2.18pre21-idepci_2.2.18pre21-2.tar.gz kernel-image-2.2.18pre21-idepci (2.2.18pre21-2) stable unstable; urgency=low * Build from new kernel source, 2.2.18pre21 dists/potato/main/binary-i386/base/kernel-image-2.2.18pre21-ide_2.2.18pre21-1.deb dists/potato/main/binary-i386/base/kernel-image-2.2.18pre21_2.2.18pre21-1.deb dists/potato/main/binary-i386/devel/kernel-headers-2.2.18pre21_2.2.18pre21-1.deb dists/potato/main/source/base/kernel-image-2.2.18pre21-i386_2.2.18pre21-1.dsc dists/potato/main/source/base/kernel-image-2.2.18pre21-i386_2.2.18pre21-1.tar.gz kernel-image-2.2.18pre21-i386 (2.2.18pre21-1) stable unstable; urgency=low * New upstream release. * Build QLOGIC_FC as a module since we're over 1M again. dists/potato/main/binary-i386/base/kernel-image-2.2.18pre21-compact_2.2.18pre21-1.deb dists/potato/main/source/base/kernel-image-2.2.18pre21-compact_2.2.18pre21-1.dsc dists/potato/main/source/base/kernel-image-2.2.18pre21-compact_2.2.18pre21-1.tar.gz kernel-image-2.2.18pre21-compact (2.2.18pre21-1) stable unstable; urgency=low * New upstream version, kernel 2.2.18pre21 / / / / / / boot-floppies (2.2.20.0.1) stable; urgency=low * binary-only recompile for i386, new pcmcia modules ======================================== Tue, 14th Nov 2000 - Debian 2.2r1 released ======================================== dists/potato/main/binary-arm/net/nis_3.8-0.1.deb dists/potato/main/binary-i386/net/nis_3.8-0.1.deb dists/potato/main/binary-powerpc/net/nis_3.8-0.1.deb dists/potato/main/source/net/nis_3.8-0.1.diff.gz dists/potato/main/source/net/nis_3.8-0.1.dsc dists/potato/main/source/net/nis_3.8.orig.tar.gz nis (3.8-0.1) stable unstable; urgency=high * Non-maintainer upload by security team * Up the versionnumber since we upgrade one of our tarballs * Upgrade ypbindt-mt to 1.7, which is a security-fix for 1.6. This really fixes the printf formating security problem. * Upload to both stable and unstable so potato doesn't have a newer version anymore and woody gets the fix as well. dists/potato/main/binary-all/doc/doc-debian_2.2.2.deb dists/potato/main/source/doc/doc-debian_2.2.2.dsc dists/potato/main/source/doc/doc-debian_2.2.2.tar.gz doc-debian (2.2.2) stable unstable; urgency=low * Quite a few updates to the FAQ regarding potato being stable now. (we don't want packages in released potato saying slink is the current stable distribution, don't we? :) * Refreshed the doc/ directory from the FTP site, to include the dedication (with the translations) and an updated mailing-lists.txt file. * Fixed the section about dselect a bit, closes: #67218. * Added a blurb about apt-get in the section about packaging tools, closes: #69784. dists/potato/main/binary-alpha/web/curl_6.0-1.1.deb dists/potato/main/binary-arm/web/curl_6.0-1.1.deb dists/potato/main/binary-powerpc/web/curl_6.0-1.1.deb dists/potato/main/binary-sparc/web/curl_6.0-1.1.deb dists/potato/main/source/web/curl_6.0-1.1.diff.gz dists/potato/main/source/web/curl_6.0-1.1.dsc curl (6.0-1.1) stable; urgency=high * Non-maintainer update by security team * Fixed a buffer overflow bug (see BTS #74569) * Fix broken Maintainer field, commas are not allowed (rfc822 violation) dists/potato/main/binary-arm/utils/bsdmainutils_4.7.1.deb bsdmainutils (4.7.1) stable; urgency=high * NMU by Security Team. * Fix vacation's invocation of sendmail. dists/potato/main/binary-arm/sound/snack_1.6-3.deb snack (1.6-3) stable; urgency=low * Moved /usr/doc to /usr/share/doc consistently, solving bug#60958. / dists/potato/main/binary-sparc/base/dpkg_1.6.15.deb dpkg (1.6.15) stable unstable; urgency=low * Clean up fd handling in some places. Closes: Bug#69359,#69360,#69361 * Fix update-alternatives behaviour for --config * Improve -l output * Update Swedish translation * Read trailing zeroes when uncompressing packages to fix SIGPIPE errors. Closes: Bug#73625 / dists/potato/main/binary-powerpc/base/dpkg_1.6.15.deb dpkg (1.6.15) stable unstable; urgency=low * Clean up fd handling in some places. Closes: Bug#69359,#69360,#69361 * Fix update-alternatives behaviour for --config * Improve -l output * Update Swedish translation * Read trailing zeroes when uncompressing packages to fix SIGPIPE errors. Closes: Bug#73625 / dists/potato/main/binary-m68k/base/dpkg_1.6.15.deb dpkg (1.6.15) stable unstable; urgency=low * Clean up fd handling in some places. Closes: Bug#69359,#69360,#69361 * Fix update-alternatives behaviour for --config * Improve -l output * Update Swedish translation * Read trailing zeroes when uncompressing packages to fix SIGPIPE errors. Closes: Bug#73625 / / dists/potato/main/binary-all/doc/dpkg-doc_1.6.15.deb dists/potato/main/binary-all/utils/dpkg-dev_1.6.15.deb dists/potato/main/binary-i386/base/dpkg_1.6.15.deb dists/potato/main/source/base/dpkg_1.6.15.dsc dists/potato/main/source/base/dpkg_1.6.15.tar.gz dpkg (1.6.15) stable unstable; urgency=low * Clean up fd handling in some places. Closes: Bug#69359,#69360,#69361 * Fix update-alternatives behaviour for --config * Improve -l output * Update Swedish translation * Read trailing zeroes when uncompressing packages to fix SIGPIPE errors. Closes: Bug#73625 / dists/potato/main/binary-arm/base/dpkg_1.6.15.deb dpkg (1.6.15) stable; urgency=low * Clean up fd handling in some places. Closes: Bug#69359,#69360,#69361 * Fix update-alternatives behaviour for --config * Improve -l output * Update Swedish translation * Read trailing zeroes when uncompressing packages to fix SIGPIPE errors. Closes: Bug#73625 / dists/potato/main/binary-alpha/base/dpkg_1.6.15.deb dpkg (1.6.15) stable unstable; urgency=low * Clean up fd handling in some places. Closes: Bug#69359,#69360,#69361 * Fix update-alternatives behaviour for --config * Improve -l output * Update Swedish translation * Read trailing zeroes when uncompressing packages to fix SIGPIPE errors. Closes: Bug#73625 / / / / / / / / / / boot-floppies (2.2.17) stable; urgency=low * Adam Di Carlo: - release-notes: fix typo (closes: Bug#68630) - fix bugs preventing some l10n'd documentation from building - temporarily disable Russian documentation, unless you have woody debiandoc-sgml - config: re-organize a bit - fix .cvsignore file (closes: Bug#68911) - fix URLs in documentation based on link checking - documentation improvements (closes: Bug#67900); change the wording of the "in progress" warning in Chapter 1 (closes: Bug#69620); correct workaround for volume manager, patch from Jim Crumley (closes: Bug#69141); fix documentation on how mkofboot is invoked; rework the 'dbootstrap' chapter, removing plenty of slink'isms; fix some make-kpkg bugs (closes: Bug#71080) - dbootstrap: fix a condition where /target/lib/modules was being made a link to itself (closes: Bug#68021); run 'depmod -a' after manipulating the /lib/modules symlink after extracting the kernel and modules which fixes a problem with PCMCIA - fix a minor libfdisk Makefile / depends problem * Guillaume Morin: - more dbootstrap i18n - dbootstrap floppy module pre-load support * Vincent Renardias: French updates (thank to Eric VanBuggenhaut) * Jiøí Ma¹ík : Czech updates * Gleydson Mazioli da Silva: Portuguese updates * novdv: Russian translations * Yoshizumi Endo : Japanese updates * Risko Gergely : Hungarian updates * Marcin Owsiany : Polish updates * Peter Karlsson: Swedish updates * Vilem Vychodil: Czech update * Tapio Lehtonen: Finnish translation thanks to Markku Verkkoniemi * Enrique Zanardi: Spanish updates * Michael Bramer: German updates * C.M. Connelly: English documentation corrections and improvements * Josip Rodin: - release notes updates: APT::Force-LoopBreak, kernel 2.2.x upgrade issues; remove sis6326 note; add info about i810; fixed X upgrade pointer; notes about CD sets; notes about ssh - some documentation and doc build fixes; move documenation build rules to documentation/ dir - fix index.LANG.html broken links (closes: Bug#67898) * Daniel Jacobowitz: - some powerpc-specific boot stuff fixed - update PowerPC kernel version * Martin Schulze: - Added little documentation to some routines - dbootstrap.h: Added prototype of get_kver() - getFloppies() and affected routines return DLG_CANCEL (aka 10) when Cancel is pressed, no need to spit an error message (closes: Bug#68900) - boxes.h: DLG_CANCEL is now 10 instead of 1, in order to avoid problems with 'return 1' stuff - Added calls to get_kver() to every _test target. Thanks tausq for the quick investigation - basedisk.sh: Added workarounds for missing device files and added others to MAKEDEV call - rootdisk.sh: Added optcd sjcd to list of i386 devices, still missing: gscd, cm206cd and proper support for mcdx (partially fixes: Bug#68665) - rootdisk.sh: Added ida.1 creation (closes: Bug#68517) - rootdisk.sh: Added -O none to mke2fs call to gain 2.0 compatibility (closes: Bug#68659) - basedisk.sh: Added /dev/sg* to list of created devices in the base system (closes: Bug#67378) - Corrected error messages when rescue.bin wasn't found (but is there..), added " + drivers.tgz" (closes: Bug#66326, Bug#64349) - Added padding code to pad the last drivers disk with zeroes (closes: Bug#66030) - Corrected behavior when user has to type in the path relative to /instmnt, he won't be able to leave that dir anymore and don't has to type in /instmnt anymore (closes: Bug#67082, Bug#61693) - Filling /lib/modules/2.2.17/modules.dep properly so the tools won't spread warnings all over the freshly started console - Added more sanity checks to floppy install, inserting base disks when the drivers are requested will result in an error (partially close: Bug#64428) - Choosing an archive dir that is a link indeed will not result in 'not found' messages anymore, a '/' will be appended automatically (closes: Bug#61373) - When selecting a directory that does not exist, an error box is opened (closes: Bug#57733) - Added a call to eject() after writing the boot floppy on powerpc failed (closes: Bug#69158) - Added support for kernel boot parameters (lilo, syslinux, m68k, aboot) (closes: Bug#11000, Bug#25848) - Moved Preload of essential modules around in the main install cycle - Moved nfs:server mount into a condition (if network isup) - German update - Added support for new french keyboard layout fr-latin0 (closes: Bug#57609) - Added sanity checks before installing the base system and configuring the device driver modules (closes: Bug#31449) - Added a conditional message warning Netwinder people about ignoring ext2 2.0 compatibility (close: Bug#67888) - Corrected rescue.sh to create usable 1200 root floppies (closes: Bug#69959, Bug#69970) * Akira YOSHIYAMA: - add 'termwrap' script to the base system; this is invoked by init and allows us to set i18n env var settings for base-config and other chores * Othmar Pasteka: - Substitution of Linux with GNU/Linux when appropriate (i.e. when a GNU/Linux distribution is meant) * Risko Gergely: A big Hungarian update * Peter Naulls: add support for ARM Linux partition support / / / / / / dists/potato/main/binary-all/admin/boot-floppies_2.2.17.deb dists/potato/main/source/admin/boot-floppies_2.2.17.dsc dists/potato/main/source/admin/boot-floppies_2.2.17.tar.gz boot-floppies (2.2.17) stable; urgency=low * Adam Di Carlo: - release-notes: fix typo (closes: Bug#68630) - fix bugs preventing some l10n'd documentation from building - temporarily disable Russian documentation, unless you have woody debiandoc-sgml - config: re-organize a bit - fix .cvsignore file (closes: Bug#68911) - fix URLs in documentation based on link checking - documentation improvements (closes: Bug#67900); change the wording of the "in progress" warning in Chapter 1 (closes: Bug#69620); correct workaround for volume manager, patch from Jim Crumley (closes: Bug#69141); fix documentation on how mkofboot is invoked; rework the 'dbootstrap' chapter, removing plenty of slink'isms; fix some make-kpkg bugs (closes: Bug#71080) - dbootstrap: fix a condition where /target/lib/modules was being made a link to itself (closes: Bug#68021); run 'depmod -a' after manipulating the /lib/modules symlink after extracting the kernel and modules which fixes a problem with PCMCIA - fix a minor libfdisk Makefile / depends problem * Guillaume Morin: - more dbootstrap i18n - dbootstrap floppy module pre-load support * Vincent Renardias: French updates (thank to Eric VanBuggenhaut) * Jiøí Ma¹ík : Czech updates * Gleydson Mazioli da Silva: Portuguese updates * novdv: Russian translations * Yoshizumi Endo : Japanese updates * Risko Gergely : Hungarian updates * Marcin Owsiany : Polish updates * Peter Karlsson: Swedish updates * Vilem Vychodil: Czech update * Tapio Lehtonen: Finnish translation thanks to Markku Verkkoniemi * Enrique Zanardi: Spanish updates * Michael Bramer: German updates * C.M. Connelly: English documentation corrections and improvements * Josip Rodin: - release notes updates: APT::Force-LoopBreak, kernel 2.2.x upgrade issues; remove sis6326 note; add info about i810; fixed X upgrade pointer; notes about CD sets; notes about ssh - some documentation and doc build fixes; move documenation build rules to documentation/ dir - fix index.LANG.html broken links (closes: Bug#67898) * Daniel Jacobowitz: - some powerpc-specific boot stuff fixed - update PowerPC kernel version * Martin Schulze: - Added little documentation to some routines - dbootstrap.h: Added prototype of get_kver() - getFloppies() and affected routines return DLG_CANCEL (aka 10) when Cancel is pressed, no need to spit an error message (closes: Bug#68900) - boxes.h: DLG_CANCEL is now 10 instead of 1, in order to avoid problems with 'return 1' stuff - Added calls to get_kver() to every _test target. Thanks tausq for the quick investigation - basedisk.sh: Added workarounds for missing device files and added others to MAKEDEV call - rootdisk.sh: Added optcd sjcd to list of i386 devices, still missing: gscd, cm206cd and proper support for mcdx (partially fixes: Bug#68665) - rootdisk.sh: Added ida.1 creation (closes: Bug#68517) - rootdisk.sh: Added -O none to mke2fs call to gain 2.0 compatibility (closes: Bug#68659) - basedisk.sh: Added /dev/sg* to list of created devices in the base system (closes: Bug#67378) - Corrected error messages when rescue.bin wasn't found (but is there..), added " + drivers.tgz" (closes: Bug#66326, Bug#64349) - Added padding code to pad the last drivers disk with zeroes (closes: Bug#66030) - Corrected behavior when user has to type in the path relative to /instmnt, he won't be able to leave that dir anymore and don't has to type in /instmnt anymore (closes: Bug#67082, Bug#61693) - Filling /lib/modules/2.2.17/modules.dep properly so the tools won't spread warnings all over the freshly started console - Added more sanity checks to floppy install, inserting base disks when the drivers are requested will result in an error (partially close: Bug#64428) - Choosing an archive dir that is a link indeed will not result in 'not found' messages anymore, a '/' will be appended automatically (closes: Bug#61373) - When selecting a directory that does not exist, an error box is opened (closes: Bug#57733) - Added a call to eject() after writing the boot floppy on powerpc failed (closes: Bug#69158) - Added support for kernel boot parameters (lilo, syslinux, m68k, aboot) (closes: Bug#11000, Bug#25848) - Moved Preload of essential modules around in the main install cycle - Moved nfs:server mount into a condition (if network isup) - German update - Added support for new french keyboard layout fr-latin0 (closes: Bug#57609) - Added sanity checks before installing the base system and configuring the device driver modules (closes: Bug#31449) - Added a conditional message warning Netwinder people about ignoring ext2 2.0 compatibility (close: Bug#67888) - Corrected rescue.sh to create usable 1200 root floppies (closes: Bug#69959, Bug#69970) * Akira YOSHIYAMA: - add 'termwrap' script to the base system; this is invoked by init and allows us to set i18n env var settings for base-config and other chores * Othmar Pasteka: - Substitution of Linux with GNU/Linux when appropriate (i.e. when a GNU/Linux distribution is meant) * Risko Gergely: A big Hungarian update * Peter Naulls: add support for ARM Linux partition support dists/potato/main/binary-powerpc/shells/zsh_3.1.9.dev6-7.deb zsh (3.1.9.dev6-7) stable; urgency=medium * Recompile to fix bad i386 build. dists/potato/main/binary-m68k/shells/zsh_3.1.9.dev6-7.deb zsh (3.1.9.dev6-7) stable; urgency=medium * Recompile to fix bad i386 build. dists/potato/main/binary-all/doc/zsh-doc_3.1.9.dev6-7.deb dists/potato/main/binary-i386/shells/zsh_3.1.9.dev6-7.deb dists/potato/main/source/shells/zsh_3.1.9.dev6-7.diff.gz dists/potato/main/source/shells/zsh_3.1.9.dev6-7.dsc dists/potato/main/source/shells/zsh_3.1.9.dev6.orig.tar.gz zsh (3.1.9.dev6-7) stable; urgency=medium * Recompile to fix bad i386 build. dists/potato/main/binary-arm/shells/zsh_3.1.9.dev6-7.deb zsh (3.1.9.dev6-7) stable; urgency=medium * Recompile to fix bad i386 build. dists/potato/main/binary-alpha/shells/zsh_3.1.9.dev6-2.deb zsh (3.1.9.dev6-2) stable unstable; urgency=high * Add module aliasing to /etc/zshrc to provide backward compatibility with versions prior to 3.1.9-dev-5. closes: bug#71046. dists/potato/main/binary-powerpc/web/zope_2.1.6-5.1.deb zope (2.1.6-5.1) stable; urgency=high * Another security fix. DTML + privs dists/potato/main/binary-m68k/web/zope_2.1.6-5.1.deb zope (2.1.6-5.1) stable; urgency=high * Another security fix. DTML + privs dists/potato/main/binary-i386/web/zope_2.1.6-5.1.deb dists/potato/main/source/web/zope_2.1.6-5.1.diff.gz dists/potato/main/source/web/zope_2.1.6-5.1.dsc zope (2.1.6-5.1) stable; urgency=high * Another security fix. DTML + privs dists/potato/main/binary-arm/web/zope_2.1.6-5.1.deb zope (2.1.6-5.1) stable; urgency=high * Another security fix. DTML + privs dists/potato/main/binary-powerpc/base/yaboot_0.9-0.29-1.deb dists/potato/main/source/base/yaboot_0.9-0.29-1.diff.gz dists/potato/main/source/base/yaboot_0.9-0.29-1.dsc dists/potato/main/source/base/yaboot_0.9-0.29.orig.tar.gz yaboot (0.9-0.29-1) stable unstable; urgency=medium * Brown paper bag bugfix, man page was corrupt. dists/potato/non-free/binary-arm/x11/xtoolplaces_1.6-3.deb xtoolplaces (1.6-3) stable; urgency=low * uploading again dists/potato/main/binary-m68k/text/xpdf_0.90-7.deb xpdf (0.90-7) stable; urgency=high * Fixed temporary file exploits and malicious URL exploits (closes: #70636) dists/potato/main/binary-i386/text/xpdf_0.90-7.deb dists/potato/main/source/text/xpdf_0.90-7.diff.gz dists/potato/main/source/text/xpdf_0.90-7.dsc xpdf (0.90-7) stable; urgency=high * Fixed temporary file exploits and malicious URL exploits (closes: #70636) dists/potato/main/binary-alpha/text/xpdf_0.90-7.deb dists/potato/main/binary-powerpc/text/xpdf_0.90-7.deb dists/potato/main/binary-sparc/text/xpdf_0.90-7.deb xpdf (0.90-7) stable; urgency=high * Fixed temporary file exploits and malicious URL exploits (closes: #70636) dists/potato/main/binary-powerpc/x11/xlockmore-gl_4.15-10.deb dists/potato/main/binary-powerpc/x11/xlockmore_4.15-10.deb xlockmore (4.15-10) stable unstable; urgency=high * correct suidunregister handling (Closes: #69357) dists/potato/main/binary-m68k/x11/xlockmore-gl_4.15-10.deb dists/potato/main/binary-m68k/x11/xlockmore_4.15-10.deb xlockmore (4.15-10) stable unstable; urgency=high * correct suidunregister handling (Closes: #69357) dists/potato/main/binary-i386/x11/xlockmore-gl_4.15-10.deb dists/potato/main/binary-i386/x11/xlockmore_4.15-10.deb dists/potato/main/source/x11/xlockmore_4.15-10.diff.gz dists/potato/main/source/x11/xlockmore_4.15-10.dsc xlockmore (4.15-10) stable unstable; urgency=high * correct suidunregister handling (Closes: #69357) dists/potato/main/binary-arm/x11/xlockmore-gl_4.15-10.deb dists/potato/main/binary-arm/x11/xlockmore_4.15-10.deb xlockmore (4.15-10) stable; urgency=high * correct suidunregister handling (Closes: #69357) dists/potato/main/binary-alpha/x11/xlockmore-gl_4.15-10.deb dists/potato/main/binary-alpha/x11/xlockmore_4.15-10.deb xlockmore (4.15-10) stable unstable; urgency=high * correct suidunregister handling (Closes: #69357) dists/potato/main/binary-sparc/mail/xmh_3.3.6-11.deb dists/potato/main/binary-sparc/x11/rstartd_3.3.6-11.deb dists/potato/main/binary-sparc/x11/twm_3.3.6-11.deb dists/potato/main/binary-sparc/x11/xbase-clients_3.3.6-11.deb dists/potato/main/binary-sparc/x11/xdm_3.3.6-11.deb dists/potato/main/binary-sparc/x11/xext_3.3.6-11.deb dists/potato/main/binary-sparc/x11/xfs_3.3.6-11.deb dists/potato/main/binary-sparc/x11/xlib6g-dev_3.3.6-11.deb dists/potato/main/binary-sparc/x11/xlib6g-static_3.3.6-11.deb dists/potato/main/binary-sparc/x11/xlib6g_3.3.6-11.deb dists/potato/main/binary-sparc/x11/xnest_3.3.6-11.deb dists/potato/main/binary-sparc/x11/xproxy_3.3.6-11.deb dists/potato/main/binary-sparc/x11/xprt_3.3.6-11.deb dists/potato/main/binary-sparc/x11/xserver-3dlabs_3.3.6-11.deb dists/potato/main/binary-sparc/x11/xserver-common_3.3.6-11.deb dists/potato/main/binary-sparc/x11/xserver-fbdev_3.3.6-11.deb dists/potato/main/binary-sparc/x11/xserver-mach64_3.3.6-11.deb dists/potato/main/binary-sparc/x11/xserver-xsun-mono_3.3.6-11.deb dists/potato/main/binary-sparc/x11/xserver-xsun24_3.3.6-11.deb dists/potato/main/binary-sparc/x11/xserver-xsun_3.3.6-11.deb dists/potato/main/binary-sparc/x11/xsm_3.3.6-11.deb dists/potato/main/binary-sparc/x11/xterm_3.3.6-11.deb dists/potato/main/binary-sparc/x11/xvfb_3.3.6-11.deb xfree86-1 (3.3.6-11) stable unstable; urgency=medium * Release Manager: fixes 1 RC bug and one unfiled very annoying problem for Xsun server users (see debian-sparc list archives for several dozen reports on this) * patch #037: Xsun server now no longer checks /dev/gpmdata as the mouse device * debian/control: + rstart now Depends: ssh | rsh-client + rstartd now Depends: ssh | rsh-server + (Closes: #70574) dists/potato/main/binary-powerpc/mail/xmh_3.3.6-11.deb dists/potato/main/binary-powerpc/x11/rstartd_3.3.6-11.deb dists/potato/main/binary-powerpc/x11/twm_3.3.6-11.deb dists/potato/main/binary-powerpc/x11/xbase-clients_3.3.6-11.deb dists/potato/main/binary-powerpc/x11/xdm_3.3.6-11.deb dists/potato/main/binary-powerpc/x11/xext_3.3.6-11.deb dists/potato/main/binary-powerpc/x11/xfs_3.3.6-11.deb dists/potato/main/binary-powerpc/x11/xlib6g-dev_3.3.6-11.deb dists/potato/main/binary-powerpc/x11/xlib6g-static_3.3.6-11.deb dists/potato/main/binary-powerpc/x11/xlib6g_3.3.6-11.deb dists/potato/main/binary-powerpc/x11/xnest_3.3.6-11.deb dists/potato/main/binary-powerpc/x11/xproxy_3.3.6-11.deb dists/potato/main/binary-powerpc/x11/xprt_3.3.6-11.deb dists/potato/main/binary-powerpc/x11/xserver-common_3.3.6-11.deb dists/potato/main/binary-powerpc/x11/xserver-fbdev_3.3.6-11.deb dists/potato/main/binary-powerpc/x11/xsm_3.3.6-11.deb dists/potato/main/binary-powerpc/x11/xterm_3.3.6-11.deb dists/potato/main/binary-powerpc/x11/xvfb_3.3.6-11.deb xfree86-1 (3.3.6-11) stable unstable; urgency=medium * Release Manager: fixes 1 RC bug and one unfiled very annoying problem for Xsun server users (see debian-sparc list archives for several dozen reports on this) * patch #037: Xsun server now no longer checks /dev/gpmdata as the mouse device * debian/control: + rstart now Depends: ssh | rsh-client + rstartd now Depends: ssh | rsh-server + (Closes: #70574) dists/potato/main/binary-m68k/mail/xmh_3.3.6-11.deb dists/potato/main/binary-m68k/oldlibs/xlib6-altdev_3.3.6-11.deb dists/potato/main/binary-m68k/oldlibs/xlib6_3.3.6-11.deb dists/potato/main/binary-m68k/x11/rstartd_3.3.6-11.deb dists/potato/main/binary-m68k/x11/twm_3.3.6-11.deb dists/potato/main/binary-m68k/x11/xbase-clients_3.3.6-11.deb dists/potato/main/binary-m68k/x11/xdm_3.3.6-11.deb dists/potato/main/binary-m68k/x11/xext_3.3.6-11.deb dists/potato/main/binary-m68k/x11/xfs_3.3.6-11.deb dists/potato/main/binary-m68k/x11/xlib6g-dev_3.3.6-11.deb dists/potato/main/binary-m68k/x11/xlib6g-static_3.3.6-11.deb dists/potato/main/binary-m68k/x11/xlib6g_3.3.6-11.deb dists/potato/main/binary-m68k/x11/xnest_3.3.6-11.deb dists/potato/main/binary-m68k/x11/xproxy_3.3.6-11.deb dists/potato/main/binary-m68k/x11/xprt_3.3.6-11.deb dists/potato/main/binary-m68k/x11/xserver-common_3.3.6-11.deb dists/potato/main/binary-m68k/x11/xserver-fbdev_3.3.6-11.deb dists/potato/main/binary-m68k/x11/xsm_3.3.6-11.deb dists/potato/main/binary-m68k/x11/xterm_3.3.6-11.deb dists/potato/main/binary-m68k/x11/xvfb_3.3.6-11.deb xfree86-1 (3.3.6-11) stable unstable; urgency=medium * Release Manager: fixes 1 RC bug and one unfiled very annoying problem for Xsun server users (see debian-sparc list archives for several dozen reports on this) * patch #037: Xsun server now no longer checks /dev/gpmdata as the mouse device * debian/control: + rstart now Depends: ssh | rsh-client + rstartd now Depends: ssh | rsh-server + (Closes: #70574) dists/potato/main/binary-all/x11/rstart_3.3.6-11.deb dists/potato/main/binary-all/x11/xbase_3.3.6-11.deb dists/potato/main/binary-all/x11/xfree86-common_3.3.6-11.deb dists/potato/main/binary-i386/mail/xmh_3.3.6-11.deb dists/potato/main/binary-i386/oldlibs/xlib6-altdev_3.3.6-11.deb dists/potato/main/binary-i386/oldlibs/xlib6_3.3.6-11.deb dists/potato/main/binary-i386/x11/rstartd_3.3.6-11.deb dists/potato/main/binary-i386/x11/twm_3.3.6-11.deb dists/potato/main/binary-i386/x11/xbase-clients_3.3.6-11.deb dists/potato/main/binary-i386/x11/xdm_3.3.6-11.deb dists/potato/main/binary-i386/x11/xext_3.3.6-11.deb dists/potato/main/binary-i386/x11/xf86setup_3.3.6-11.deb dists/potato/main/binary-i386/x11/xfs_3.3.6-11.deb dists/potato/main/binary-i386/x11/xlib6g-dev_3.3.6-11.deb dists/potato/main/binary-i386/x11/xlib6g-static_3.3.6-11.deb dists/potato/main/binary-i386/x11/xlib6g_3.3.6-11.deb dists/potato/main/binary-i386/x11/xnest_3.3.6-11.deb dists/potato/main/binary-i386/x11/xproxy_3.3.6-11.deb dists/potato/main/binary-i386/x11/xprt_3.3.6-11.deb dists/potato/main/binary-i386/x11/xserver-3dlabs_3.3.6-11.deb dists/potato/main/binary-i386/x11/xserver-8514_3.3.6-11.deb dists/potato/main/binary-i386/x11/xserver-agx_3.3.6-11.deb dists/potato/main/binary-i386/x11/xserver-common_3.3.6-11.deb dists/potato/main/binary-i386/x11/xserver-fbdev_3.3.6-11.deb dists/potato/main/binary-i386/x11/xserver-i128_3.3.6-11.deb dists/potato/main/binary-i386/x11/xserver-mach32_3.3.6-11.deb dists/potato/main/binary-i386/x11/xserver-mach64_3.3.6-11.deb dists/potato/main/binary-i386/x11/xserver-mach8_3.3.6-11.deb dists/potato/main/binary-i386/x11/xserver-mono_3.3.6-11.deb dists/potato/main/binary-i386/x11/xserver-p9000_3.3.6-11.deb dists/potato/main/binary-i386/x11/xserver-s3_3.3.6-11.deb dists/potato/main/binary-i386/x11/xserver-s3v_3.3.6-11.deb dists/potato/main/binary-i386/x11/xserver-svga_3.3.6-11.deb dists/potato/main/binary-i386/x11/xserver-vga16_3.3.6-11.deb dists/potato/main/binary-i386/x11/xserver-w32_3.3.6-11.deb dists/potato/main/binary-i386/x11/xsm_3.3.6-11.deb dists/potato/main/binary-i386/x11/xterm_3.3.6-11.deb dists/potato/main/binary-i386/x11/xvfb_3.3.6-11.deb dists/potato/main/source/x11/xfree86-1_3.3.6-11.diff.gz dists/potato/main/source/x11/xfree86-1_3.3.6-11.dsc xfree86-1 (3.3.6-11) stable unstable; urgency=medium * Release Manager: fixes 1 RC bug and one unfiled very annoying problem for Xsun server users (see debian-sparc list archives for several dozen reports on this) * patch #037: Xsun server now no longer checks /dev/gpmdata as the mouse device * debian/control: + rstart now Depends: ssh | rsh-client + rstartd now Depends: ssh | rsh-server + (Closes: #70574) dists/potato/main/binary-arm/mail/xmh_3.3.6-11.deb dists/potato/main/binary-arm/x11/rstartd_3.3.6-11.deb dists/potato/main/binary-arm/x11/twm_3.3.6-11.deb dists/potato/main/binary-arm/x11/xbase-clients_3.3.6-11.deb dists/potato/main/binary-arm/x11/xdm_3.3.6-11.deb dists/potato/main/binary-arm/x11/xext_3.3.6-11.deb dists/potato/main/binary-arm/x11/xfs_3.3.6-11.deb dists/potato/main/binary-arm/x11/xlib6g-dev_3.3.6-11.deb dists/potato/main/binary-arm/x11/xlib6g-static_3.3.6-11.deb dists/potato/main/binary-arm/x11/xlib6g_3.3.6-11.deb dists/potato/main/binary-arm/x11/xnest_3.3.6-11.deb dists/potato/main/binary-arm/x11/xproxy_3.3.6-11.deb dists/potato/main/binary-arm/x11/xprt_3.3.6-11.deb dists/potato/main/binary-arm/x11/xserver-common_3.3.6-11.deb dists/potato/main/binary-arm/x11/xserver-fbdev_3.3.6-11.deb dists/potato/main/binary-arm/x11/xsm_3.3.6-11.deb dists/potato/main/binary-arm/x11/xterm_3.3.6-11.deb dists/potato/main/binary-arm/x11/xvfb_3.3.6-11.deb xfree86-1 (3.3.6-11) stable unstable; urgency=medium * Release Manager: fixes 1 RC bug and one unfiled very annoying problem for Xsun server users (see debian-sparc list archives for several dozen reports on this) * patch #037: Xsun server now no longer checks /dev/gpmdata as the mouse device * debian/control: + rstart now Depends: ssh | rsh-client + rstartd now Depends: ssh | rsh-server + (Closes: #70574) dists/potato/main/binary-all/x11/xfonts-baekmuk_2.0-2potato.deb dists/potato/main/source/x11/xfonts-baekmuk_2.0-2potato.diff.gz dists/potato/main/source/x11/xfonts-baekmuk_2.0-2potato.dsc xfonts-baekmuk (2.0-2potato) stable; urgency=low * Same as 2.0-2, but just for stable upload. dists/potato/main/binary-m68k/x11/xcin_2.5.2-1.deb xcin (2.5.2-1) stable unstable; urgency=low * New upstream release. dists/potato/main/binary-i386/x11/xcin_2.5.2-1.deb dists/potato/main/source/x11/xcin_2.5.2-1.diff.gz dists/potato/main/source/x11/xcin_2.5.2-1.dsc dists/potato/main/source/x11/xcin_2.5.2.orig.tar.gz xcin (2.5.2-1) stable unstable; urgency=low * New upstream release. dists/potato/main/binary-alpha/x11/xcin_2.5.1.99.pre6.1-1.deb xcin (2.5.1.99.pre6.1-1) stable unstable; urgency=low * New upstream bugfix release: 2.5.2.pre6.diff1. * Enabled the new phonegb2 input method in /etc/xcinrc. * Added example script gb24k. dists/potato/main/binary-sparc/net/xchat-gnome_1.4.3-0.1.deb dists/potato/main/binary-sparc/net/xchat-text_1.4.3-0.1.deb dists/potato/main/binary-sparc/net/xchat_1.4.3-0.1.deb xchat (1.4.3-0.1) stable; urgency=high * Non-maintainer upload. * New upstream release, which contains the security fix for Bugtraq #1601: X-Chat Command Execution Via URLs Vulnerability. (Closes: Bug#69982) * Added libpanel-applet-dev to Build-Depends. (Closes: Bug#58293) * Added Chinese support: Added zh_TW.Big5 and zh_CN po files, and turned on fontset by default. * Updated the Spanish and Portugese translations with the ones provided by Conectiva: * Thu Jun 08 2000 Rafael Rigues - Added spanish (es_ES) 1.4.2 potfile. * Mon Jun 05 2000 Rafael Rigues - Added final portuguese (pt_BR) 1.4.2 potfile * Revised the debian/copyright file. dists/potato/main/binary-powerpc/net/xchat-gnome_1.4.3-0.1.deb dists/potato/main/binary-powerpc/net/xchat-text_1.4.3-0.1.deb dists/potato/main/binary-powerpc/net/xchat_1.4.3-0.1.deb xchat (1.4.3-0.1) stable unstable; urgency=high * Non-maintainer upload. * New upstream release, which contains the security fix for Bugtraq #1601: X-Chat Command Execution Via URLs Vulnerability. (Closes: Bug#69982) * Added libpanel-applet-dev to Build-Depends. (Closes: Bug#58293) * Added Chinese support: Added zh_TW.Big5 and zh_CN po files, and turned on fontset by default. * Updated the Spanish and Portugese translations with the ones provided by Conectiva: * Thu Jun 08 2000 Rafael Rigues - Added spanish (es_ES) 1.4.2 potfile. * Mon Jun 05 2000 Rafael Rigues - Added final portuguese (pt_BR) 1.4.2 potfile * Revised the debian/copyright file. dists/potato/main/binary-m68k/net/xchat-gnome_1.4.3-0.1.deb dists/potato/main/binary-m68k/net/xchat-text_1.4.3-0.1.deb dists/potato/main/binary-m68k/net/xchat_1.4.3-0.1.deb xchat (1.4.3-0.1) stable unstable; urgency=high * Non-maintainer upload. * New upstream release, which contains the security fix for Bugtraq #1601: X-Chat Command Execution Via URLs Vulnerability. (Closes: Bug#69982) * Added libpanel-applet-dev to Build-Depends. (Closes: Bug#58293) * Added Chinese support: Added zh_TW.Big5 and zh_CN po files, and turned on fontset by default. * Updated the Spanish and Portugese translations with the ones provided by Conectiva: * Thu Jun 08 2000 Rafael Rigues - Added spanish (es_ES) 1.4.2 potfile. * Mon Jun 05 2000 Rafael Rigues - Added final portuguese (pt_BR) 1.4.2 potfile * Revised the debian/copyright file. dists/potato/main/binary-all/net/xchat-common_1.4.3-0.1.deb dists/potato/main/binary-i386/net/xchat-gnome_1.4.3-0.1.deb dists/potato/main/binary-i386/net/xchat-text_1.4.3-0.1.deb dists/potato/main/binary-i386/net/xchat_1.4.3-0.1.deb dists/potato/main/source/net/xchat_1.4.3-0.1.diff.gz dists/potato/main/source/net/xchat_1.4.3-0.1.dsc dists/potato/main/source/net/xchat_1.4.3.orig.tar.gz xchat (1.4.3-0.1) stable unstable; urgency=high * Non-maintainer upload. * New upstream release, which contains the security fix for Bugtraq #1601: X-Chat Command Execution Via URLs Vulnerability. (Closes: Bug#69982) * Added libpanel-applet-dev to Build-Depends. (Closes: Bug#58293) * Added Chinese support: Added zh_TW.Big5 and zh_CN po files, and turned on fontset by default. * Updated the Spanish and Portugese translations with the ones provided by Conectiva: * Thu Jun 08 2000 Rafael Rigues - Added spanish (es_ES) 1.4.2 potfile. * Mon Jun 05 2000 Rafael Rigues - Added final portuguese (pt_BR) 1.4.2 potfile * Revised the debian/copyright file. dists/potato/main/binary-arm/net/xchat-gnome_1.4.3-0.1.deb dists/potato/main/binary-arm/net/xchat-text_1.4.3-0.1.deb dists/potato/main/binary-arm/net/xchat_1.4.3-0.1.deb xchat (1.4.3-0.1) stable unstable; urgency=high * Non-maintainer upload. * New upstream release, which contains the security fix for Bugtraq #1601: X-Chat Command Execution Via URLs Vulnerability. (Closes: Bug#69982) * Added libpanel-applet-dev to Build-Depends. (Closes: Bug#58293) * Added Chinese support: Added zh_TW.Big5 and zh_CN po files, and turned on fontset by default. * Updated the Spanish and Portugese translations with the ones provided by Conectiva: * Thu Jun 08 2000 Rafael Rigues - Added spanish (es_ES) 1.4.2 potfile. * Mon Jun 05 2000 Rafael Rigues - Added final portuguese (pt_BR) 1.4.2 potfile * Revised the debian/copyright file. dists/potato/main/binary-alpha/net/xchat-gnome_1.4.3-0.1.1.deb dists/potato/main/binary-alpha/net/xchat-text_1.4.3-0.1.1.deb dists/potato/main/binary-alpha/net/xchat_1.4.3-0.1.1.deb xchat (1.4.3-0.1.1) stable; urgency=high * Non-maintainer upload to fix dependencies. dists/potato/main/binary-arm/devel/libwnn6-dev_1.0.0-8.deb dists/potato/main/binary-arm/libs/libwnn6_1.0.0-8.deb wnn6-sdk (1.0.0-8) stable; urgency=low * Now uses /usr/lib instead of /usr/X11R6/lib (closes: Bug#60078). dists/potato/non-free/binary-arm/graphics/ucbmpeg-play_2.3p-9.deb ucbmpeg-play (2.3p-9) stable; urgency=low * Updated package to latest standards version * Added arm porting option (#58471) dists/potato/contrib/binary-arm/otherosfs/uae-exotic_0.7.6-4.deb dists/potato/contrib/binary-arm/otherosfs/uae-suid_0.7.6-4.deb dists/potato/contrib/binary-arm/otherosfs/uae_0.7.6-4.deb uae (0.7.6-4) stable; urgency=low * Added reference to /usr/share/common-licenses/GPL in doc/copyright. * Added note about emulated clock && CPU speed to README.Debian. Fixes: #44114. * Using FHS debhelper. * Checked upgrade-policy (3.0.0); Faithfully updated standards version to 3.0.0. * Upstream won't move, so I hacked (hopefully sanely) source to compile with new [g]as-2.9.5 and new make-3.78. Fixes: #49198. * Bugfix: uae-ggi binary from uae to uae-exotic; added undocumented uae-ggi.1. (however, it still doesn't compile ;). dists/potato/main/binary-sparc/net/traceroute_1.4a5-3.deb traceroute (1.4a5-3) stable unstable; urgency=low * Fixed a bug where free(3) was called on non-malloced memory. dists/potato/main/binary-powerpc/net/traceroute_1.4a5-3.deb traceroute (1.4a5-3) stable unstable; urgency=low * Fixed a bug where free(3) was called on non-malloced memory. dists/potato/main/binary-m68k/net/traceroute_1.4a5-3.deb traceroute (1.4a5-3) stable unstable; urgency=low * Fixed a bug where free(3) was called on non-malloced memory. dists/potato/main/binary-i386/net/traceroute_1.4a5-3.deb dists/potato/main/source/net/traceroute_1.4a5-3.diff.gz dists/potato/main/source/net/traceroute_1.4a5-3.dsc traceroute (1.4a5-3) stable unstable; urgency=low * Fixed a bug where free(3) was called on non-malloced memory. dists/potato/main/binary-arm/net/traceroute_1.4a5-3.deb traceroute (1.4a5-3) stable unstable; urgency=low * Fixed a bug where free(3) was called on non-malloced memory. dists/potato/main/binary-alpha/net/traceroute_1.4a5-3.deb traceroute (1.4a5-3) stable unstable; urgency=low * Fixed a bug where free(3) was called on non-malloced memory. dists/potato/main/binary-powerpc/net/traceroute-nanog_6.0-2.deb traceroute-nanog (6.0-2) stable unstable; urgency=high * Fixed possible multiple local root exploits (Closes: #74793). * Removed changelog.gz: it's not a changelog (Closes: #64640). * Added a man page (Closes: #64637). * Added FAQ document. dists/potato/main/binary-m68k/net/traceroute-nanog_6.0-2.deb traceroute-nanog (6.0-2) stable unstable; urgency=high * Fixed possible multiple local root exploits (Closes: #74793). * Removed changelog.gz: it's not a changelog (Closes: #64640). * Added a man page (Closes: #64637). * Added FAQ document. dists/potato/main/binary-i386/net/traceroute-nanog_6.0-2.deb dists/potato/main/source/net/traceroute-nanog_6.0-2.diff.gz dists/potato/main/source/net/traceroute-nanog_6.0-2.dsc traceroute-nanog (6.0-2) stable unstable; urgency=high * Fixed possible multiple local root exploits (Closes: #74793). * Removed changelog.gz: it's not a changelog (Closes: #64640). * Added a man page (Closes: #64637). * Added FAQ document. dists/potato/main/binary-arm/net/traceroute-nanog_6.0-2.deb traceroute-nanog (6.0-2) stable; urgency=high * Fixed possible multiple local root exploits (Closes: #74793). * Removed changelog.gz: it's not a changelog (Closes: #64640). * Added a man page (Closes: #64637). * Added FAQ document. dists/potato/main/binary-alpha/net/traceroute-nanog_6.0-2.deb traceroute-nanog (6.0-2) stable unstable; urgency=high * Fixed possible multiple local root exploits (Closes: #74793). * Removed changelog.gz: it's not a changelog (Closes: #64640). * Added a man page (Closes: #64637). * Added FAQ document. dists/potato/main/binary-powerpc/admin/tmpreaper_1.4.12.deb tmpreaper (1.4.12) stable unstable; urgency=high * Limit fork recursion to foil deep directory nesting attack. closes:#71249 dists/potato/main/binary-m68k/admin/tmpreaper_1.4.12.deb tmpreaper (1.4.12) stable unstable; urgency=high * Limit fork recursion to foil deep directory nesting attack. closes:#71249 dists/potato/main/binary-i386/admin/tmpreaper_1.4.12.deb dists/potato/main/source/admin/tmpreaper_1.4.12.dsc dists/potato/main/source/admin/tmpreaper_1.4.12.tar.gz tmpreaper (1.4.12) stable unstable; urgency=high * Limit fork recursion to foil deep directory nesting attack. closes:#71249 dists/potato/main/binary-arm/admin/tmpreaper_1.4.12.deb tmpreaper (1.4.12) stable unstable; urgency=high * Limit fork recursion to foil deep directory nesting attack. closes:#71249 dists/potato/main/binary-alpha/admin/tmpreaper_1.4.12.deb tmpreaper (1.4.12) stable unstable; urgency=high * Limit fork recursion to foil deep directory nesting attack. closes:#71249 dists/potato/non-free/binary-arm/graphics/tgif_4.1.34-2.deb tgif (1:4.1.34-2) stable; urgency=medium * drop debian-specific Xdefaults file - most things should be commented out. This may break some Japanese support a bit we'll refix that if so. * RM: security fixes (closes: #65160) which should all tgif back in again dists/potato/main/binary-m68k/shells/tcsh-kanji_6.09.00-10.deb dists/potato/main/binary-m68k/shells/tcsh_6.09.00-10.deb tcsh (6.09.00-10) stable; urgency=high * Applied patch to close a security hole in the creation of temporary files dists/potato/main/binary-all/shells/tcsh-i18n_6.09.00-10.deb dists/potato/main/binary-i386/shells/tcsh-kanji_6.09.00-10.deb dists/potato/main/binary-i386/shells/tcsh_6.09.00-10.deb dists/potato/main/source/shells/tcsh_6.09.00-10.diff.gz dists/potato/main/source/shells/tcsh_6.09.00-10.dsc tcsh (6.09.00-10) stable; urgency=high * Applied patch to close a security hole in the creation of temporary files dists/potato/main/binary-powerpc/x11/task-x-window-system-core_1.2.deb task-x-window-system-core (1.2) stable unstable; urgency=medium * The "REAL BEFORE VIRTUAL" release. * Because that's the order or'ed dependencies should be in. (Closes: #70672) * Uploading to stable because this will improve the utility of this task package. dists/potato/main/binary-m68k/x11/task-x-window-system-core_1.2.deb task-x-window-system-core (1.2) stable unstable; urgency=medium * The "REAL BEFORE VIRTUAL" release. * Because that's the order or'ed dependencies should be in. (Closes: #70672) * Uploading to stable because this will improve the utility of this task package. dists/potato/main/binary-i386/x11/task-x-window-system-core_1.2.deb dists/potato/main/source/x11/task-x-window-system-core_1.2.dsc dists/potato/main/source/x11/task-x-window-system-core_1.2.tar.gz task-x-window-system-core (1.2) stable unstable; urgency=medium * The "REAL BEFORE VIRTUAL" release. * Because that's the order or'ed dependencies should be in. (Closes: #70672) * Uploading to stable because this will improve the utility of this task package. dists/potato/main/binary-arm/x11/task-x-window-system-core_1.2.deb task-x-window-system-core (1.2) stable; urgency=medium * The "REAL BEFORE VIRTUAL" release. * Because that's the order or'ed dependencies should be in. (Closes: #70672) * Uploading to stable because this will improve the utility of this task package. dists/potato/main/binary-alpha/x11/task-x-window-system-core_1.2.deb task-x-window-system-core (1.2) stable unstable; urgency=medium * The "REAL BEFORE VIRTUAL" release. * Because that's the order or'ed dependencies should be in. (Closes: #70672) * Uploading to stable because this will improve the utility of this task package. dists/potato/main/binary-alpha/base/sysklogd_1.3-33.1.deb dists/potato/main/binary-arm/base/sysklogd_1.3-33.1.deb dists/potato/main/binary-i386/base/sysklogd_1.3-33.1.deb dists/potato/main/binary-m68k/base/sysklogd_1.3-33.1.deb dists/potato/main/binary-powerpc/base/sysklogd_1.3-33.1.deb dists/potato/main/binary-sparc/base/sysklogd_1.3-33.1.deb dists/potato/main/source/base/sysklogd_1.3-33.1.diff.gz dists/potato/main/source/base/sysklogd_1.3-33.1.dsc sysklogd (1.3-33.1) stable unstable; urgency=high * SECURITY: various syslogd/klogd security problems dists/potato/main/binary-arm/utils/slocate_2.2-0.0.deb slocate (2.2-0.0) stable; urgency=low * NMU to fix a security issue. Slocate has an potentially exploitable buffer overrun in LOCATE_PATH. If exploited, the attacker could access info about files they normally cannot see the presense of. Updated to version 2.2 to fix the problem (no other changes in this new version). Closes: #66718 dists/potato/main/binary-powerpc/x11/skkinput_2.03-3.potato.1.deb skkinput (1:2.03-3.potato.1) stable; urgency=medium * fix segfault problem with all XIM applications - closes: Bug#32408 - skkinput sigsegvs applications dists/potato/main/binary-m68k/x11/skkinput_2.03-3.potato.1.deb skkinput (1:2.03-3.potato.1) stable; urgency=medium * fix segfault problem with all XIM applications - closes: Bug#32408 - skkinput sigsegvs applications dists/potato/main/binary-i386/x11/skkinput_2.03-3.potato.1.deb dists/potato/main/source/x11/skkinput_2.03-3.potato.1.diff.gz dists/potato/main/source/x11/skkinput_2.03-3.potato.1.dsc dists/potato/main/source/x11/skkinput_2.03.orig.tar.gz skkinput (1:2.03-3.potato.1) stable; urgency=medium * fix segfault problem with all XIM applications - closes: Bug#32408 - skkinput sigsegvs applications dists/potato/main/binary-arm/x11/skkinput_2.03-3.potato.1.deb skkinput (1:2.03-3.potato.1) stable; urgency=medium * fix segfault problem with all XIM applications - closes: Bug#32408 - skkinput sigsegvs applications dists/potato/main/binary-powerpc/text/sgml-tools_1.0.9-13.deb sgml-tools (1.0.9-13) stable unstable; urgency=medium * Release Manager: Please include this into proposed-udpatges and point-release of potato. * fix the dangarous bug which removes the all files in the current directory. The timing to cause this bug is very short, so that I had not found this bug recently. Now I have checked that this bug in fact exists, and do very harm. Maybe the bug severity weighs grave or clitical because of the data loss. * Thanks to Evgeny Stambulchik. This fix is back-ported from his patch for my linuxdoc-tools 0.7.4. * fix the sgml2txt list error. another back-port from linuxdoc-tools Closes: #66348 * Add build-depend. Closes: #69282, #69289 dists/potato/main/binary-m68k/text/sgml-tools_1.0.9-13.deb sgml-tools (1.0.9-13) stable unstable; urgency=medium * Release Manager: Please include this into proposed-udpatges and point-release of potato. * fix the dangarous bug which removes the all files in the current directory. The timing to cause this bug is very short, so that I had not found this bug recently. Now I have checked that this bug in fact exists, and do very harm. Maybe the bug severity weighs grave or clitical because of the data loss. * Thanks to Evgeny Stambulchik. This fix is back-ported from his patch for my linuxdoc-tools 0.7.4. * fix the sgml2txt list error. another back-port from linuxdoc-tools Closes: #66348 * Add build-depend. Closes: #69282, #69289 dists/potato/main/binary-i386/text/sgml-tools_1.0.9-13.deb dists/potato/main/source/text/sgml-tools_1.0.9-13.diff.gz dists/potato/main/source/text/sgml-tools_1.0.9-13.dsc sgml-tools (1.0.9-13) stable unstable; urgency=medium * Release Manager: Please include this into proposed-udpatges and point-release of potato. * fix the dangarous bug which removes the all files in the current directory. The timing to cause this bug is very short, so that I had not found this bug recently. Now I have checked that this bug in fact exists, and do very harm. Maybe the bug severity weighs grave or clitical because of the data loss. * Thanks to Evgeny Stambulchik. This fix is back-ported from his patch for my linuxdoc-tools 0.7.4. * fix the sgml2txt list error. another back-port from linuxdoc-tools Closes: #66348 * Add build-depend. Closes: #69282, #69289 dists/potato/main/binary-arm/text/sgml-tools_1.0.9-13.deb sgml-tools (1.0.9-13) stable unstable; urgency=medium * Release Manager: Please include this into proposed-udpatges and point-release of potato. * fix the dangarous bug which removes the all files in the current directory. The timing to cause this bug is very short, so that I had not found this bug recently. Now I have checked that this bug in fact exists, and do very harm. Maybe the bug severity weighs grave or clitical because of the data loss. * Thanks to Evgeny Stambulchik. This fix is back-ported from his patch for my linuxdoc-tools 0.7.4. * fix the sgml2txt list error. another back-port from linuxdoc-tools Closes: #66348 * Add build-depend. Closes: #69282, #69289 dists/potato/main/binary-alpha/text/sgml-tools_1.0.9-13.deb sgml-tools (1.0.9-13) stable unstable; urgency=medium * Release Manager: Please include this into proposed-udpatges and point-release of potato. * fix the dangarous bug which removes the all files in the current directory. The timing to cause this bug is very short, so that I had not found this bug recently. Now I have checked that this bug in fact exists, and do very harm. Maybe the bug severity weighs grave or clitical because of the data loss. * Thanks to Evgeny Stambulchik. This fix is back-ported from his patch for my linuxdoc-tools 0.7.4. * fix the sgml2txt list error. another back-port from linuxdoc-tools Closes: #66348 * Add build-depend. Closes: #69282, #69289 dists/potato/contrib/binary-i386/misc/setiathome_3.0-6.deb dists/potato/contrib/source/misc/setiathome_3.0-6.dsc dists/potato/contrib/source/misc/setiathome_3.0-6.tar.gz setiathome (3.0-6) stable unstable; urgency=medium * Fixes architecture issues. Since setiathome is available (for now) only on i386,sparc,alpha and powerpc, replaces Architecture: any with specific archs. Thanks Roman Hodek. Closes: #76394 dists/potato/contrib/binary-alpha/misc/setiathome_3.0-6.deb setiathome (3.0-6) stable unstable; urgency=medium * Fixes architecture issues. Since setiathome is available (for now) only on i386,sparc,alpha and powerpc, replaces Architecture: any with specific archs. Thanks Roman Hodek. Closes: #76394 dists/potato/contrib/binary-arm/misc/setiathome_3.0-5.deb setiathome (3.0-5) stable; urgency=medium * Fixed postinst problem - md5sum overwritten for i386. Thanks to Martin Samesch. fixing important bug. Closes: #76165 dists/potato/contrib/binary-powerpc/misc/setiathome_3.0-3.deb setiathome (3.0-3) stable; urgency=medium * Version 2.4 client is no longer downloadable from ftp sites, breaking potato version. This upgrade fixes it. Closes: #75243 dists/potato/contrib/binary-m68k/misc/setiathome_3.0-3.deb setiathome (3.0-3) stable; urgency=medium * Version 2.4 client is no longer downloadable from ftp sites, breaking potato version. This upgrade fixes it. Closes: #75243 dists/potato/main/binary-powerpc/mail/sendmail-wide_8.9.3+3.2W-23.deb sendmail-wide (8.9.3+3.2W-23) stable; urgency=high * follow sendmail 8.9.3-23 * fix segfault problem dists/potato/main/binary-m68k/mail/sendmail-wide_8.9.3+3.2W-23.deb sendmail-wide (8.9.3+3.2W-23) stable; urgency=high * follow sendmail 8.9.3-23 * fix segfault problem dists/potato/main/binary-i386/mail/sendmail-wide_8.9.3+3.2W-23.deb dists/potato/main/source/mail/sendmail-wide_8.9.3+3.2W-23.dsc dists/potato/main/source/mail/sendmail-wide_8.9.3+3.2W-23.tar.gz sendmail-wide (8.9.3+3.2W-23) stable; urgency=high * follow sendmail 8.9.3-23 * fix segfault problem dists/potato/main/binary-powerpc/misc/screen_3.9.5-9.deb screen (3.9.5-9) stable unstable; urgency=HIGH * Fixed security bug (group utmp compromise) dists/potato/main/binary-m68k/misc/screen_3.9.5-9.deb screen (3.9.5-9) stable unstable; urgency=HIGH * Fixed security bug (group utmp compromise) dists/potato/main/binary-i386/misc/screen_3.9.5-9.deb dists/potato/main/source/misc/screen_3.9.5-9.diff.gz dists/potato/main/source/misc/screen_3.9.5-9.dsc screen (3.9.5-9) stable unstable; urgency=HIGH * Fixed security bug (group utmp compromise) dists/potato/main/binary-alpha/misc/screen_3.9.5-9.deb screen (3.9.5-9) stable unstable; urgency=HIGH * Fixed security bug (group utmp compromise) dists/potato/main/binary-arm/devel/librrd0-dev_1.0.7-5.deb dists/potato/main/binary-arm/devel/librrds-perl_1.0.7-5.deb dists/potato/main/binary-arm/libs/librrd0_1.0.7-5.deb dists/potato/main/binary-arm/utils/rrdtool_1.0.7-5.deb rrdtool (1.0.7-5) stable; urgency=low * Added Build-Depends: zlib1g-dev, libpng2-dev, libgd1g-dev, groff, debhelper (Closes: #61967) dists/potato/main/binary-arm/web/rpm2html_0.70p1-1.1.deb rpm2html (0.70p1-1.1) stable; urgency=low * NMU, rebuilt to fix rc bug (closes: 64414) * Various small changes to work with new librpm dists/potato/non-free/binary-arm/doc/rman_3.0.8-1.deb rman (3.0.8-1) stable; urgency=low * New upstream version dists/potato/main/binary-arm/net/rexec_1.5-2.deb rexec (1.5-2) stable; urgency=low * Removed incorrect fix of user/password bug that's actually in libc6 (closes: #46142). dists/potato/main/binary-m68k/oldlibs/libreadline2-altdev_2.1-20.deb dists/potato/main/binary-m68k/oldlibs/libreadline2_2.1-20.deb dists/potato/main/binary-m68k/oldlibs/libreadlineg2_2.1-20.deb readline2 (2.1-20) stable; urgency=low * Recompile with correct libc5 dependencies for libreadline2 (fixes #69353). * Add dependencies. dists/potato/main/binary-i386/oldlibs/libreadline2-altdev_2.1-20.deb dists/potato/main/binary-i386/oldlibs/libreadline2_2.1-20.deb dists/potato/main/binary-i386/oldlibs/libreadlineg2_2.1-20.deb dists/potato/main/source/libs/readline2_2.1-20.diff.gz dists/potato/main/source/libs/readline2_2.1-20.dsc readline2 (2.1-20) stable; urgency=low * Recompile with correct libc5 dependencies for libreadline2 (fixes #69353). * Add dependencies. dists/potato/main/binary-arm/math/python-netcdf_1.03-3.deb python-netcdf (1.03-3) stable; urgency=low * Recompiled with new libc. * Make lintian happy. dists/potato/main/binary-arm/graphics/python-graphics_1.5-11.5.1.deb dists/potato/main/binary-arm/interpreters/python-pdb_1.1-11.5.1.deb dists/potato/main/binary-arm/interpreters/python-rng_1.1-11.5.1.deb dists/potato/main/binary-arm/math/python-numeric_11-11.5.1.deb python-llnl (11-11.5.1) stable; urgency=low * Non maintainer upload. * [RC] debian/control: Added alternative to pdf-viewer to get tasksel working (closes: #64601). dists/potato/main/binary-powerpc/mail/procmail_3.13.1-4.deb procmail (3.13.1-4) stable; urgency=high * Fixed weird formail -rk behavior (patch from the author, backported from procmail-3.15). Thanks to Ben Collins for the report. * s/smail/exim/ in `Recommends:' field. dists/potato/main/binary-m68k/mail/procmail_3.13.1-4.deb procmail (3.13.1-4) stable; urgency=high * Fixed weird formail -rk behavior (patch from the author, backported from procmail-3.15). Thanks to Ben Collins for the report. * s/smail/exim/ in `Recommends:' field. dists/potato/main/binary-i386/mail/procmail_3.13.1-4.deb dists/potato/main/source/mail/procmail_3.13.1-4.diff.gz dists/potato/main/source/mail/procmail_3.13.1-4.dsc procmail (3.13.1-4) stable; urgency=high * Fixed weird formail -rk behavior (patch from the author, backported from procmail-3.15). Thanks to Ben Collins for the report. * s/smail/exim/ in `Recommends:' field. dists/potato/main/binary-arm/mail/procmail_3.13.1-4.deb procmail (3.13.1-4) stable; urgency=high * Fixed weird formail -rk behavior (patch from the author, backported from procmail-3.15). Thanks to Ben Collins for the report. * s/smail/exim/ in `Recommends:' field. dists/potato/main/binary-powerpc/base/powerpc-utils_1.1.3-2.deb dists/potato/main/source/base/powerpc-utils_1.1.3-2.diff.gz dists/potato/main/source/base/powerpc-utils_1.1.3-2.dsc powerpc-utils (1.1.3-2) stable unstable; urgency=medium * New maintainer, alas. * Add newworld support to nvsetenv, by Klaus Halfmann. * Migrate to debhelper. * Move mousemode's man page to section 8 - mousemode is not a user utility. dists/potato/main/binary-arm/devel/postgresql-dev_6.5.3-23.deb dists/potato/main/binary-arm/libs/ecpg_6.5.3-23.deb dists/potato/main/binary-arm/libs/libpgperl_6.5.3-23.deb dists/potato/main/binary-arm/libs/libpgsql2_6.5.3-23.deb dists/potato/main/binary-arm/libs/libpgtcl_6.5.3-23.deb dists/potato/main/binary-arm/libs/odbc-postgresql_6.5.3-23.deb dists/potato/main/binary-arm/libs/postgresql-pl_6.5.3-23.deb dists/potato/main/binary-arm/libs/python-pygresql_6.5.3-23.deb dists/potato/main/binary-arm/misc/pgaccess_6.5.3-23.deb dists/potato/main/binary-arm/misc/postgresql-client_6.5.3-23.deb dists/potato/main/binary-arm/misc/postgresql-contrib_6.5.3-23.deb dists/potato/main/binary-arm/misc/postgresql-test_6.5.3-23.deb dists/potato/main/binary-arm/misc/postgresql_6.5.3-23.deb postgresql (6.5.3-23) stable; urgency=low * Patch preinst and postinst scripts to cope with changes to ps between slink and potato; thanks to Miguel Wooding Closes: bug#66587 dists/potato/contrib/binary-arm/tex/pmx_2.2.0-1.deb pmx (2.2.0-1) stable; urgency=low * New upstream release: Among many bug fixes, the biggest news is that PMX can now generate MIDI files! Hurray! * Compiled with g77 instead of fort77 this time, and it worked! :-) dists/potato/main/binary-sparc/web/php4-cgi-gd_4.0.3pl1-0potato1.deb dists/potato/main/binary-sparc/web/php4-cgi-imap_4.0.3pl1-0potato1.deb dists/potato/main/binary-sparc/web/php4-cgi-ldap_4.0.3pl1-0potato1.deb dists/potato/main/binary-sparc/web/php4-cgi-mhash_4.0.3pl1-0potato1.deb dists/potato/main/binary-sparc/web/php4-cgi-mysql_4.0.3pl1-0potato1.deb dists/potato/main/binary-sparc/web/php4-cgi-pgsql_4.0.3pl1-0potato1.deb dists/potato/main/binary-sparc/web/php4-cgi-snmp_4.0.3pl1-0potato1.deb dists/potato/main/binary-sparc/web/php4-cgi-xml_4.0.3pl1-0potato1.deb dists/potato/main/binary-sparc/web/php4-cgi_4.0.3pl1-0potato1.deb dists/potato/main/binary-sparc/web/php4-gd_4.0.3pl1-0potato1.deb dists/potato/main/binary-sparc/web/php4-imap_4.0.3pl1-0potato1.deb dists/potato/main/binary-sparc/web/php4-ldap_4.0.3pl1-0potato1.deb dists/potato/main/binary-sparc/web/php4-mhash_4.0.3pl1-0potato1.deb dists/potato/main/binary-sparc/web/php4-mysql_4.0.3pl1-0potato1.deb dists/potato/main/binary-sparc/web/php4-pgsql_4.0.3pl1-0potato1.deb dists/potato/main/binary-sparc/web/php4-snmp_4.0.3pl1-0potato1.deb dists/potato/main/binary-sparc/web/php4-xml_4.0.3pl1-0potato1.deb dists/potato/main/binary-sparc/web/php4_4.0.3pl1-0potato1.deb php4 (4.0.3pl1-0potato1) stable; urgency=medium * New upstream bugfix release (closes: #74732). * Don't issue warning about incompatible library versions (closes: #74747). dists/potato/main/binary-powerpc/web/php4-cgi-gd_4.0.3pl1-0potato1.deb dists/potato/main/binary-powerpc/web/php4-cgi-imap_4.0.3pl1-0potato1.deb dists/potato/main/binary-powerpc/web/php4-cgi-ldap_4.0.3pl1-0potato1.deb dists/potato/main/binary-powerpc/web/php4-cgi-mhash_4.0.3pl1-0potato1.deb dists/potato/main/binary-powerpc/web/php4-cgi-mysql_4.0.3pl1-0potato1.deb dists/potato/main/binary-powerpc/web/php4-cgi-pgsql_4.0.3pl1-0potato1.deb dists/potato/main/binary-powerpc/web/php4-cgi-snmp_4.0.3pl1-0potato1.deb dists/potato/main/binary-powerpc/web/php4-cgi-xml_4.0.3pl1-0potato1.deb dists/potato/main/binary-powerpc/web/php4-cgi_4.0.3pl1-0potato1.deb dists/potato/main/binary-powerpc/web/php4-gd_4.0.3pl1-0potato1.deb dists/potato/main/binary-powerpc/web/php4-imap_4.0.3pl1-0potato1.deb dists/potato/main/binary-powerpc/web/php4-ldap_4.0.3pl1-0potato1.deb dists/potato/main/binary-powerpc/web/php4-mhash_4.0.3pl1-0potato1.deb dists/potato/main/binary-powerpc/web/php4-mysql_4.0.3pl1-0potato1.deb dists/potato/main/binary-powerpc/web/php4-pgsql_4.0.3pl1-0potato1.deb dists/potato/main/binary-powerpc/web/php4-snmp_4.0.3pl1-0potato1.deb dists/potato/main/binary-powerpc/web/php4-xml_4.0.3pl1-0potato1.deb dists/potato/main/binary-powerpc/web/php4_4.0.3pl1-0potato1.deb php4 (4.0.3pl1-0potato1) stable; urgency=medium * New upstream bugfix release (closes: #74732). * Don't issue warning about incompatible library versions (closes: #74747). dists/potato/main/binary-m68k/web/php4-cgi-gd_4.0.3pl1-0potato1.deb dists/potato/main/binary-m68k/web/php4-cgi-imap_4.0.3pl1-0potato1.deb dists/potato/main/binary-m68k/web/php4-cgi-ldap_4.0.3pl1-0potato1.deb dists/potato/main/binary-m68k/web/php4-cgi-mhash_4.0.3pl1-0potato1.deb dists/potato/main/binary-m68k/web/php4-cgi-mysql_4.0.3pl1-0potato1.deb dists/potato/main/binary-m68k/web/php4-cgi-pgsql_4.0.3pl1-0potato1.deb dists/potato/main/binary-m68k/web/php4-cgi-snmp_4.0.3pl1-0potato1.deb dists/potato/main/binary-m68k/web/php4-cgi-xml_4.0.3pl1-0potato1.deb dists/potato/main/binary-m68k/web/php4-cgi_4.0.3pl1-0potato1.deb dists/potato/main/binary-m68k/web/php4-gd_4.0.3pl1-0potato1.deb dists/potato/main/binary-m68k/web/php4-imap_4.0.3pl1-0potato1.deb dists/potato/main/binary-m68k/web/php4-ldap_4.0.3pl1-0potato1.deb dists/potato/main/binary-m68k/web/php4-mhash_4.0.3pl1-0potato1.deb dists/potato/main/binary-m68k/web/php4-mysql_4.0.3pl1-0potato1.deb dists/potato/main/binary-m68k/web/php4-pgsql_4.0.3pl1-0potato1.deb dists/potato/main/binary-m68k/web/php4-snmp_4.0.3pl1-0potato1.deb dists/potato/main/binary-m68k/web/php4-xml_4.0.3pl1-0potato1.deb dists/potato/main/binary-m68k/web/php4_4.0.3pl1-0potato1.deb php4 (4.0.3pl1-0potato1) stable; urgency=medium * New upstream bugfix release (closes: #74732). * Don't issue warning about incompatible library versions (closes: #74747). dists/potato/main/binary-all/web/php4-dev_4.0.3pl1-0potato1.deb dists/potato/main/binary-i386/web/php4-cgi-gd_4.0.3pl1-0potato1.deb dists/potato/main/binary-i386/web/php4-cgi-imap_4.0.3pl1-0potato1.deb dists/potato/main/binary-i386/web/php4-cgi-ldap_4.0.3pl1-0potato1.deb dists/potato/main/binary-i386/web/php4-cgi-mhash_4.0.3pl1-0potato1.deb dists/potato/main/binary-i386/web/php4-cgi-mysql_4.0.3pl1-0potato1.deb dists/potato/main/binary-i386/web/php4-cgi-pgsql_4.0.3pl1-0potato1.deb dists/potato/main/binary-i386/web/php4-cgi-snmp_4.0.3pl1-0potato1.deb dists/potato/main/binary-i386/web/php4-cgi-xml_4.0.3pl1-0potato1.deb dists/potato/main/binary-i386/web/php4-cgi_4.0.3pl1-0potato1.deb dists/potato/main/binary-i386/web/php4-gd_4.0.3pl1-0potato1.deb dists/potato/main/binary-i386/web/php4-imap_4.0.3pl1-0potato1.deb dists/potato/main/binary-i386/web/php4-ldap_4.0.3pl1-0potato1.deb dists/potato/main/binary-i386/web/php4-mhash_4.0.3pl1-0potato1.deb dists/potato/main/binary-i386/web/php4-mysql_4.0.3pl1-0potato1.deb dists/potato/main/binary-i386/web/php4-pgsql_4.0.3pl1-0potato1.deb dists/potato/main/binary-i386/web/php4-snmp_4.0.3pl1-0potato1.deb dists/potato/main/binary-i386/web/php4-xml_4.0.3pl1-0potato1.deb dists/potato/main/binary-i386/web/php4_4.0.3pl1-0potato1.deb dists/potato/main/source/web/php4_4.0.3pl1-0potato1.diff.gz dists/potato/main/source/web/php4_4.0.3pl1-0potato1.dsc dists/potato/main/source/web/php4_4.0.3pl1.orig.tar.gz php4 (4.0.3pl1-0potato1) stable; urgency=medium * New upstream bugfix release (closes: #74732). * Don't issue warning about incompatible library versions (closes: #74747). dists/potato/main/binary-alpha/web/php4-cgi-gd_4.0.3pl1-0potato1.deb dists/potato/main/binary-alpha/web/php4-cgi-imap_4.0.3pl1-0potato1.deb dists/potato/main/binary-alpha/web/php4-cgi-ldap_4.0.3pl1-0potato1.deb dists/potato/main/binary-alpha/web/php4-cgi-mhash_4.0.3pl1-0potato1.deb dists/potato/main/binary-alpha/web/php4-cgi-mysql_4.0.3pl1-0potato1.deb dists/potato/main/binary-alpha/web/php4-cgi-pgsql_4.0.3pl1-0potato1.deb dists/potato/main/binary-alpha/web/php4-cgi-snmp_4.0.3pl1-0potato1.deb dists/potato/main/binary-alpha/web/php4-cgi-xml_4.0.3pl1-0potato1.deb dists/potato/main/binary-alpha/web/php4-cgi_4.0.3pl1-0potato1.deb dists/potato/main/binary-alpha/web/php4-gd_4.0.3pl1-0potato1.deb dists/potato/main/binary-alpha/web/php4-imap_4.0.3pl1-0potato1.deb dists/potato/main/binary-alpha/web/php4-ldap_4.0.3pl1-0potato1.deb dists/potato/main/binary-alpha/web/php4-mhash_4.0.3pl1-0potato1.deb dists/potato/main/binary-alpha/web/php4-mysql_4.0.3pl1-0potato1.deb dists/potato/main/binary-alpha/web/php4-pgsql_4.0.3pl1-0potato1.deb dists/potato/main/binary-alpha/web/php4-snmp_4.0.3pl1-0potato1.deb dists/potato/main/binary-alpha/web/php4-xml_4.0.3pl1-0potato1.deb dists/potato/main/binary-alpha/web/php4_4.0.3pl1-0potato1.deb php4 (4.0.3pl1-0potato1) stable; urgency=medium * New upstream bugfix release (closes: #74732). * Don't issue warning about incompatible library versions (closes: #74747). dists/potato/main/binary-sparc/web/php3-cgi-gd_3.0.18-0potato1.deb dists/potato/main/binary-sparc/web/php3-cgi-imap_3.0.18-0potato1.deb dists/potato/main/binary-sparc/web/php3-cgi-ldap_3.0.18-0potato1.deb dists/potato/main/binary-sparc/web/php3-cgi-magick_3.0.18-0potato1.deb dists/potato/main/binary-sparc/web/php3-cgi-mhash_3.0.18-0potato1.deb dists/potato/main/binary-sparc/web/php3-cgi-mysql_3.0.18-0potato1.deb dists/potato/main/binary-sparc/web/php3-cgi-pgsql_3.0.18-0potato1.deb dists/potato/main/binary-sparc/web/php3-cgi-snmp_3.0.18-0potato1.deb dists/potato/main/binary-sparc/web/php3-cgi-xml_3.0.18-0potato1.deb dists/potato/main/binary-sparc/web/php3-cgi_3.0.18-0potato1.deb dists/potato/main/binary-sparc/web/php3-dev_3.0.18-0potato1.deb dists/potato/main/binary-sparc/web/php3-gd_3.0.18-0potato1.deb dists/potato/main/binary-sparc/web/php3-imap_3.0.18-0potato1.deb dists/potato/main/binary-sparc/web/php3-ldap_3.0.18-0potato1.deb dists/potato/main/binary-sparc/web/php3-magick_3.0.18-0potato1.deb dists/potato/main/binary-sparc/web/php3-mhash_3.0.18-0potato1.deb dists/potato/main/binary-sparc/web/php3-mysql_3.0.18-0potato1.deb dists/potato/main/binary-sparc/web/php3-pgsql_3.0.18-0potato1.deb dists/potato/main/binary-sparc/web/php3-snmp_3.0.18-0potato1.deb dists/potato/main/binary-sparc/web/php3-xml_3.0.18-0potato1.deb dists/potato/main/binary-sparc/web/php3_3.0.18-0potato1.deb php3 (3:3.0.18-0potato1) stable; urgency=high * New upstream release. * Fixes the enctype="multipart/form-data" bug. dists/potato/main/binary-powerpc/web/php3-cgi-gd_3.0.18-0potato1.deb dists/potato/main/binary-powerpc/web/php3-cgi-imap_3.0.18-0potato1.deb dists/potato/main/binary-powerpc/web/php3-cgi-ldap_3.0.18-0potato1.deb dists/potato/main/binary-powerpc/web/php3-cgi-magick_3.0.18-0potato1.deb dists/potato/main/binary-powerpc/web/php3-cgi-mhash_3.0.18-0potato1.deb dists/potato/main/binary-powerpc/web/php3-cgi-mysql_3.0.18-0potato1.deb dists/potato/main/binary-powerpc/web/php3-cgi-pgsql_3.0.18-0potato1.deb dists/potato/main/binary-powerpc/web/php3-cgi-snmp_3.0.18-0potato1.deb dists/potato/main/binary-powerpc/web/php3-cgi-xml_3.0.18-0potato1.deb dists/potato/main/binary-powerpc/web/php3-cgi_3.0.18-0potato1.deb dists/potato/main/binary-powerpc/web/php3-dev_3.0.18-0potato1.deb dists/potato/main/binary-powerpc/web/php3-gd_3.0.18-0potato1.deb dists/potato/main/binary-powerpc/web/php3-imap_3.0.18-0potato1.deb dists/potato/main/binary-powerpc/web/php3-ldap_3.0.18-0potato1.deb dists/potato/main/binary-powerpc/web/php3-magick_3.0.18-0potato1.deb dists/potato/main/binary-powerpc/web/php3-mhash_3.0.18-0potato1.deb dists/potato/main/binary-powerpc/web/php3-mysql_3.0.18-0potato1.deb dists/potato/main/binary-powerpc/web/php3-pgsql_3.0.18-0potato1.deb dists/potato/main/binary-powerpc/web/php3-snmp_3.0.18-0potato1.deb dists/potato/main/binary-powerpc/web/php3-xml_3.0.18-0potato1.deb dists/potato/main/binary-powerpc/web/php3_3.0.18-0potato1.deb php3 (3:3.0.18-0potato1) stable; urgency=high * New upstream release. * Fixes the enctype="multipart/form-data" bug. dists/potato/main/binary-m68k/web/php3-cgi-gd_3.0.18-0potato1.deb dists/potato/main/binary-m68k/web/php3-cgi-imap_3.0.18-0potato1.deb dists/potato/main/binary-m68k/web/php3-cgi-ldap_3.0.18-0potato1.deb dists/potato/main/binary-m68k/web/php3-cgi-magick_3.0.18-0potato1.deb dists/potato/main/binary-m68k/web/php3-cgi-mhash_3.0.18-0potato1.deb dists/potato/main/binary-m68k/web/php3-cgi-mysql_3.0.18-0potato1.deb dists/potato/main/binary-m68k/web/php3-cgi-pgsql_3.0.18-0potato1.deb dists/potato/main/binary-m68k/web/php3-cgi-snmp_3.0.18-0potato1.deb dists/potato/main/binary-m68k/web/php3-cgi-xml_3.0.18-0potato1.deb dists/potato/main/binary-m68k/web/php3-cgi_3.0.18-0potato1.deb dists/potato/main/binary-m68k/web/php3-dev_3.0.18-0potato1.deb dists/potato/main/binary-m68k/web/php3-gd_3.0.18-0potato1.deb dists/potato/main/binary-m68k/web/php3-imap_3.0.18-0potato1.deb dists/potato/main/binary-m68k/web/php3-ldap_3.0.18-0potato1.deb dists/potato/main/binary-m68k/web/php3-magick_3.0.18-0potato1.deb dists/potato/main/binary-m68k/web/php3-mhash_3.0.18-0potato1.deb dists/potato/main/binary-m68k/web/php3-mysql_3.0.18-0potato1.deb dists/potato/main/binary-m68k/web/php3-pgsql_3.0.18-0potato1.deb dists/potato/main/binary-m68k/web/php3-snmp_3.0.18-0potato1.deb dists/potato/main/binary-m68k/web/php3-xml_3.0.18-0potato1.deb dists/potato/main/binary-m68k/web/php3_3.0.18-0potato1.deb php3 (3:3.0.18-0potato1) stable; urgency=high * New upstream release. * Fixes the enctype="multipart/form-data" bug. dists/potato/main/binary-all/web/php3-doc_3.0.18-0potato1.deb dists/potato/main/binary-i386/web/php3-cgi-gd_3.0.18-0potato1.deb dists/potato/main/binary-i386/web/php3-cgi-imap_3.0.18-0potato1.deb dists/potato/main/binary-i386/web/php3-cgi-ldap_3.0.18-0potato1.deb dists/potato/main/binary-i386/web/php3-cgi-magick_3.0.18-0potato1.deb dists/potato/main/binary-i386/web/php3-cgi-mhash_3.0.18-0potato1.deb dists/potato/main/binary-i386/web/php3-cgi-mysql_3.0.18-0potato1.deb dists/potato/main/binary-i386/web/php3-cgi-pgsql_3.0.18-0potato1.deb dists/potato/main/binary-i386/web/php3-cgi-snmp_3.0.18-0potato1.deb dists/potato/main/binary-i386/web/php3-cgi-xml_3.0.18-0potato1.deb dists/potato/main/binary-i386/web/php3-cgi_3.0.18-0potato1.deb dists/potato/main/binary-i386/web/php3-dev_3.0.18-0potato1.deb dists/potato/main/binary-i386/web/php3-gd_3.0.18-0potato1.deb dists/potato/main/binary-i386/web/php3-imap_3.0.18-0potato1.deb dists/potato/main/binary-i386/web/php3-ldap_3.0.18-0potato1.deb dists/potato/main/binary-i386/web/php3-magick_3.0.18-0potato1.deb dists/potato/main/binary-i386/web/php3-mhash_3.0.18-0potato1.deb dists/potato/main/binary-i386/web/php3-mysql_3.0.18-0potato1.deb dists/potato/main/binary-i386/web/php3-pgsql_3.0.18-0potato1.deb dists/potato/main/binary-i386/web/php3-snmp_3.0.18-0potato1.deb dists/potato/main/binary-i386/web/php3-xml_3.0.18-0potato1.deb dists/potato/main/binary-i386/web/php3_3.0.18-0potato1.deb dists/potato/main/source/web/php3_3.0.18-0potato1.diff.gz dists/potato/main/source/web/php3_3.0.18-0potato1.dsc dists/potato/main/source/web/php3_3.0.18.orig.tar.gz php3 (3:3.0.18-0potato1) stable unstable; urgency=high * New upstream release. * Fixes the enctype="multipart/form-data" bug. dists/potato/main/binary-arm/web/php3-cgi-gd_3.0.18-0potato1.deb dists/potato/main/binary-arm/web/php3-cgi-imap_3.0.18-0potato1.deb dists/potato/main/binary-arm/web/php3-cgi-ldap_3.0.18-0potato1.deb dists/potato/main/binary-arm/web/php3-cgi-magick_3.0.18-0potato1.deb dists/potato/main/binary-arm/web/php3-cgi-mhash_3.0.18-0potato1.deb dists/potato/main/binary-arm/web/php3-cgi-mysql_3.0.18-0potato1.deb dists/potato/main/binary-arm/web/php3-cgi-pgsql_3.0.18-0potato1.deb dists/potato/main/binary-arm/web/php3-cgi-snmp_3.0.18-0potato1.deb dists/potato/main/binary-arm/web/php3-cgi-xml_3.0.18-0potato1.deb dists/potato/main/binary-arm/web/php3-cgi_3.0.18-0potato1.deb dists/potato/main/binary-arm/web/php3-dev_3.0.18-0potato1.deb dists/potato/main/binary-arm/web/php3-gd_3.0.18-0potato1.deb dists/potato/main/binary-arm/web/php3-imap_3.0.18-0potato1.deb dists/potato/main/binary-arm/web/php3-ldap_3.0.18-0potato1.deb dists/potato/main/binary-arm/web/php3-magick_3.0.18-0potato1.deb dists/potato/main/binary-arm/web/php3-mhash_3.0.18-0potato1.deb dists/potato/main/binary-arm/web/php3-mysql_3.0.18-0potato1.deb dists/potato/main/binary-arm/web/php3-pgsql_3.0.18-0potato1.deb dists/potato/main/binary-arm/web/php3-snmp_3.0.18-0potato1.deb dists/potato/main/binary-arm/web/php3-xml_3.0.18-0potato1.deb dists/potato/main/binary-arm/web/php3_3.0.18-0potato1.deb php3 (3:3.0.18-0potato1) stable; urgency=high * New upstream release. * Fixes the enctype="multipart/form-data" bug. dists/potato/main/binary-alpha/web/php3-cgi-gd_3.0.18-0potato1.deb dists/potato/main/binary-alpha/web/php3-cgi-imap_3.0.18-0potato1.deb dists/potato/main/binary-alpha/web/php3-cgi-ldap_3.0.18-0potato1.deb dists/potato/main/binary-alpha/web/php3-cgi-magick_3.0.18-0potato1.deb dists/potato/main/binary-alpha/web/php3-cgi-mhash_3.0.18-0potato1.deb dists/potato/main/binary-alpha/web/php3-cgi-mysql_3.0.18-0potato1.deb dists/potato/main/binary-alpha/web/php3-cgi-pgsql_3.0.18-0potato1.deb dists/potato/main/binary-alpha/web/php3-cgi-snmp_3.0.18-0potato1.deb dists/potato/main/binary-alpha/web/php3-cgi-xml_3.0.18-0potato1.deb dists/potato/main/binary-alpha/web/php3-cgi_3.0.18-0potato1.deb dists/potato/main/binary-alpha/web/php3-dev_3.0.18-0potato1.deb dists/potato/main/binary-alpha/web/php3-gd_3.0.18-0potato1.deb dists/potato/main/binary-alpha/web/php3-imap_3.0.18-0potato1.deb dists/potato/main/binary-alpha/web/php3-ldap_3.0.18-0potato1.deb dists/potato/main/binary-alpha/web/php3-magick_3.0.18-0potato1.deb dists/potato/main/binary-alpha/web/php3-mhash_3.0.18-0potato1.deb dists/potato/main/binary-alpha/web/php3-mysql_3.0.18-0potato1.deb dists/potato/main/binary-alpha/web/php3-pgsql_3.0.18-0potato1.deb dists/potato/main/binary-alpha/web/php3-snmp_3.0.18-0potato1.deb dists/potato/main/binary-alpha/web/php3-xml_3.0.18-0potato1.deb dists/potato/main/binary-alpha/web/php3_3.0.18-0potato1.deb php3 (3:3.0.18-0potato1) stable; urgency=high * New upstream release. * Fixes the enctype="multipart/form-data" bug. dists/potato/non-free/binary-m68k/devel/libdbf1.6-dev_1.6-13.deb dists/potato/non-free/binary-m68k/libs/libdbf1.6_1.6-13.deb dists/potato/non-free/binary-m68k/misc/dbf_1.6-13.deb dists/potato/non-free/binary-m68k/web/php3-cgi-dbase_3.0.18-0potato1.deb dists/potato/non-free/binary-m68k/web/php3-dbase_3.0.18-0potato1.deb php3-dbase (3:3.0.18-0potato1) stable; urgency=medium * New maintainer. * Bring in sync with php3 in proposed-updates/security. dists/potato/non-free/binary-i386/devel/libdbf1.6-dev_1.6-13.deb dists/potato/non-free/binary-i386/libs/libdbf1.6_1.6-13.deb dists/potato/non-free/binary-i386/misc/dbf_1.6-13.deb dists/potato/non-free/binary-i386/web/php3-cgi-dbase_3.0.18-0potato1.deb dists/potato/non-free/binary-i386/web/php3-dbase_3.0.18-0potato1.deb dists/potato/non-free/source/web/php3-dbase_3.0.18-0potato1.diff.gz dists/potato/non-free/source/web/php3-dbase_3.0.18-0potato1.dsc dists/potato/non-free/source/web/php3-dbase_3.0.18.orig.tar.gz php3-dbase (3:3.0.18-0potato1) stable; urgency=medium * New maintainer. * Bring in sync with php3 in proposed-updates/security. dists/potato/main/binary-all/admin/pcmcia-source_3.1.20-2.deb dists/potato/main/binary-i386/base/pcmcia-cs_3.1.20-2.deb dists/potato/main/binary-i386/base/pcmcia-modules-2.2.17-ide_3.1.20-2k1.deb dists/potato/main/binary-i386/base/pcmcia-modules-2.2.17_3.1.20-2k1.deb dists/potato/main/source/base/pcmcia-cs_3.1.20-2.diff.gz dists/potato/main/source/base/pcmcia-cs_3.1.20-2.dsc dists/potato/main/source/base/pcmcia-cs_3.1.20.orig.tar.gz pcmcia-cs (3.1.20-2) stable unstable; urgency=low * Added entry for "ELSA AirLancer MC-11". (Closes: Bug#68481) * Removed bashisms from /etc/pcmcia/wireless. (Closes: Bug#71059) dists/potato/main/binary-alpha/base/pcmcia-cs_3.1.20-2.deb dists/potato/main/binary-alpha/base/pcmcia-modules-2.2.17_3.1.20-2.deb pcmcia-cs (3.1.20-2) stable unstable; urgency=low * Added entry for "ELSA AirLancer MC-11". (Closes: Bug#68481) * Removed bashisms from /etc/pcmcia/wireless. (Closes: Bug#71059) dists/potato/main/binary-powerpc/utils/pax_1.5-8.deb pax (1:1.5-8) stable unstable; urgency=low * oops. rebuild with appropriate libraries for potato, closes: #75012 dists/potato/main/binary-m68k/utils/pax_1.5-8.deb pax (1:1.5-8) stable unstable; urgency=low * oops. rebuild with appropriate libraries for potato, closes: #75012 dists/potato/main/binary-i386/utils/pax_1.5-8.deb dists/potato/main/source/utils/pax_1.5-8.dsc dists/potato/main/source/utils/pax_1.5-8.tar.gz pax (1:1.5-8) stable unstable; urgency=low * oops. rebuild with appropriate libraries for potato, closes: #75012 dists/potato/main/binary-arm/utils/pax_1.5-8.deb pax (1:1.5-8) stable; urgency=low * oops. rebuild with appropriate libraries for potato, closes: #75012 dists/potato/main/binary-alpha/utils/pax_1.5-8.deb pax (1:1.5-8) stable unstable; urgency=low * oops. rebuild with appropriate libraries for potato, closes: #75012 dists/potato/main/binary-m68k/shells/osh_1.7-6.deb osh (1.7-6) stable unstable; urgency=low * Made fixes in postinst so that suid on /usr/bin/osh is properly set and registered with suidmanager (closes: Bug#71648) dists/potato/main/binary-i386/shells/osh_1.7-6.deb dists/potato/main/source/shells/osh_1.7-6.diff.gz dists/potato/main/source/shells/osh_1.7-6.dsc osh (1.7-6) stable unstable; urgency=low * Made fixes in postinst so that suid on /usr/bin/osh is properly set and registered with suidmanager (closes: Bug#71648) dists/potato/main/binary-alpha/shells/osh_1.7-6.deb osh (1.7-6) stable unstable; urgency=low * Made fixes in postinst so that suid on /usr/bin/osh is properly set and registered with suidmanager (closes: Bug#71648) dists/potato/main/binary-powerpc/net/ntop_1.2a7-11.deb ntop (1.2a7-11) stable unstable; urgency=high * GRAVE security hole, install immediatly! * Ntop, when run in web mode, as root (this is typical use), can be remotely exploited to gain root access. Disabled web mode. Preinst now kills all ntop processes running in web mode. * This is also exploitable if ntop is made suid/sgid -- allows local users to obtain root. Ntop is not shipped this way, but suigregister could be used by the admin to make it suid. The preinst now removes all such bits, and suidregister can no longer control the program's permissions. Also added a README.Debian about this. * Reference: http://lwn.net/2000/0824/a/fb-ntop.php3 * Recommendation: Ntop currently has no maintainer in debian, and seems to be full of security holes. After a reasonable period to allow current installations to be updated to this version, it is my opinion it should be removed from unstable. * Closes: #69842. dists/potato/main/binary-m68k/net/ntop_1.2a7-11.deb ntop (1.2a7-11) stable unstable; urgency=high * GRAVE security hole, install immediatly! * Ntop, when run in web mode, as root (this is typical use), can be remotely exploited to gain root access. Disabled web mode. Preinst now kills all ntop processes running in web mode. * This is also exploitable if ntop is made suid/sgid -- allows local users to obtain root. Ntop is not shipped this way, but suigregister could be used by the admin to make it suid. The preinst now removes all such bits, and suidregister can no longer control the program's permissions. Also added a README.Debian about this. * Reference: http://lwn.net/2000/0824/a/fb-ntop.php3 * Recommendation: Ntop currently has no maintainer in debian, and seems to be full of security holes. After a reasonable period to allow current installations to be updated to this version, it is my opinion it should be removed from unstable. * Closes: #69842. dists/potato/main/binary-i386/net/ntop_1.2a7-11.deb dists/potato/main/source/net/ntop_1.2a7-11.diff.gz dists/potato/main/source/net/ntop_1.2a7-11.dsc ntop (1.2a7-11) stable unstable; urgency=high * GRAVE security hole, install immediatly! * Ntop, when run in web mode, as root (this is typical use), can be remotely exploited to gain root access. Disabled web mode. Preinst now kills all ntop processes running in web mode. * This is also exploitable if ntop is made suid/sgid -- allows local users to obtain root. Ntop is not shipped this way, but suigregister could be used by the admin to make it suid. The preinst now removes all such bits, and suidregister can no longer control the program's permissions. Also added a README.Debian about this. * Reference: http://lwn.net/2000/0824/a/fb-ntop.php3 * Recommendation: Ntop currently has no maintainer in debian, and seems to be full of security holes. After a reasonable period to allow current installations to be updated to this version, it is my opinion it should be removed from unstable. * Closes: #69842. dists/potato/main/binary-arm/net/ntop_1.2a7-11.deb ntop (1.2a7-11) stable; urgency=high * GRAVE security hole, install immediatly! * Ntop, when run in web mode, as root (this is typical use), can be remotely exploited to gain root access. Disabled web mode. Preinst now kills all ntop processes running in web mode. * This is also exploitable if ntop is made suid/sgid -- allows local users to obtain root. Ntop is not shipped this way, but suigregister could be used by the admin to make it suid. The preinst now removes all such bits, and suidregister can no longer control the program's permissions. Also added a README.Debian about this. * Reference: http://lwn.net/2000/0824/a/fb-ntop.php3 * Recommendation: Ntop currently has no maintainer in debian, and seems to be full of security holes. After a reasonable period to allow current installations to be updated to this version, it is my opinion it should be removed from unstable. * Closes: #69842. dists/potato/main/binary-alpha/net/ntop_1.2a7-11.deb ntop (1.2a7-11) stable unstable; urgency=high * GRAVE security hole, install immediatly! * Ntop, when run in web mode, as root (this is typical use), can be remotely exploited to gain root access. Disabled web mode. Preinst now kills all ntop processes running in web mode. * This is also exploitable if ntop is made suid/sgid -- allows local users to obtain root. Ntop is not shipped this way, but suigregister could be used by the admin to make it suid. The preinst now removes all such bits, and suidregister can no longer control the program's permissions. Also added a README.Debian about this. * Reference: http://lwn.net/2000/0824/a/fb-ntop.php3 * Recommendation: Ntop currently has no maintainer in debian, and seems to be full of security holes. After a reasonable period to allow current installations to be updated to this version, it is my opinion it should be removed from unstable. * Closes: #69842. dists/potato/main/binary-arm/net/nmap_2.12-5.deb nmap (2.12-5) stable; urgency=high * RM: This closes an RC defect (#66844), and should therefore go into potato if at all possible... * OS scan dies with SEGV on Alpha. Closes: #66844 dists/potato/main/binary-m68k/net/nis_3.8-0.1.deb nis (3.8-0.1) stable unstable; urgency=high * Non-maintainer upload by security team * Up the versionnumber since we upgrade one of our tarballs * Upgrade ypbindt-mt to 1.7, which is a security-fix for 1.6. This really fixes the printf formating security problem. * Upload to both stable and unstable so potato doesn't have a newer version anymore and woody gets the fix as well. dists/potato/main/binary-alpha/net/nis_3.8-0.1.deb nis (3.8-0.1) stable unstable; urgency=high * Non-maintainer upload by security team * Up the versionnumber since we upgrade one of our tarballs * Upgrade ypbindt-mt to 1.7, which is a security-fix for 1.6. This really fixes the printf formating security problem. * Upload to both stable and unstable so potato doesn't have a newer version anymore and woody gets the fix as well. dists/potato/main/binary-arm/net/nfs-common_0.1.9.1-1.deb dists/potato/main/binary-arm/net/nfs-kernel-server_0.1.9.1-1.deb dists/potato/main/binary-arm/net/nhfsstone_0.1.9.1-1.deb nfs-utils (1:0.1.9.1-1) stable; urgency=high * New upstream version, fixes more logging errors. * Fix Debian distribution list. dists/potato/main/binary-arm/base/libnewt0_0.50-7.deb dists/potato/main/binary-arm/base/whiptail_0.50-7.deb dists/potato/main/binary-arm/devel/libnewt-dev_0.50-7.deb dists/potato/main/binary-arm/interpreters/newt-tcl_0.50-7.deb dists/potato/main/binary-arm/interpreters/python-newt_0.50-7.deb newt (0.50-7) stable; urgency=high * Ctrl-U must clear the whole buffer! . Closes: Bug#62828 dists/potato/contrib/binary-i386/web/communicator_4.75-2.deb dists/potato/contrib/binary-i386/web/navigator_4.75-2.deb dists/potato/contrib/binary-i386/web/netscape-base-4-libc5_4.75-2.deb dists/potato/contrib/binary-i386/web/netscape-base-4_4.75-2.deb dists/potato/contrib/binary-i386/web/netscape_4.75-2.deb dists/potato/contrib/source/web/netscape4.base_4.75-2.dsc dists/potato/contrib/source/web/netscape4.base_4.75-2.tar.gz netscape4.base (1:4.75-2) stable unstable; urgency=high * Make netscape3 settings only update if USE_NS3_SETTINGS is set to yes. (closes: #69927, #70664) * Add versioned depends to debianutils (closes: #70684) dists/potato/non-free/binary-all/web/communicator-nethelp-475_4.75-2.deb dists/potato/non-free/binary-all/web/communicator-spellchk-475_4.75-2.deb dists/potato/non-free/binary-all/web/navigator-nethelp-475_4.75-2.deb dists/potato/non-free/binary-all/web/netscape-ja-resource-475_4.75-2.deb dists/potato/non-free/binary-all/web/netscape-java-475_4.75-2.deb dists/potato/non-free/binary-all/web/netscape-ko-resource-475_4.75-2.deb dists/potato/non-free/binary-all/web/netscape-zh-resource-475_4.75-2.deb dists/potato/non-free/binary-i386/web/communicator-base-475_4.75-2.deb dists/potato/non-free/binary-i386/web/communicator-smotif-475-libc5_4.75-2.deb dists/potato/non-free/binary-i386/web/communicator-smotif-475_4.75-2.deb dists/potato/non-free/binary-i386/web/navigator-base-475_4.75-2.deb dists/potato/non-free/binary-i386/web/navigator-smotif-475-libc5_4.75-2.deb dists/potato/non-free/binary-i386/web/navigator-smotif-475_4.75-2.deb dists/potato/non-free/binary-i386/web/netscape-base-475_4.75-2.deb dists/potato/non-free/binary-i386/web/netscape-smotif-475-libc5_4.75-2.deb dists/potato/non-free/binary-i386/web/netscape-smotif-475_4.75-2.deb dists/potato/non-free/source/web/netscape4.75_4.75-2.diff.gz dists/potato/non-free/source/web/netscape4.75_4.75-2.dsc dists/potato/non-free/source/web/netscape4.75_4.75.orig.tar.gz netscape4.75 (4.75-2) stable unstable; urgency=high * Remove mailcap knowledge from netscape, as it caused too many problems. (closes: #69986, #70404) dists/potato/main/binary-powerpc/net/telnet_0.16-4potato.1.deb dists/potato/main/binary-powerpc/net/telnetd_0.16-4potato.1.deb netkit-telnet (0.16-4potato.1) stable; urgency=low * Fixed a memory allocation bug. dists/potato/main/binary-m68k/net/telnet_0.16-4potato.1.deb dists/potato/main/binary-m68k/net/telnetd_0.16-4potato.1.deb netkit-telnet (0.16-4potato.1) stable; urgency=low * Fixed a memory allocation bug. dists/potato/main/binary-i386/net/telnet_0.16-4potato.1.deb dists/potato/main/binary-i386/net/telnetd_0.16-4potato.1.deb dists/potato/main/source/net/netkit-telnet_0.16-4potato.1.diff.gz dists/potato/main/source/net/netkit-telnet_0.16-4potato.1.dsc netkit-telnet (0.16-4potato.1) stable; urgency=low * Fixed a memory allocation bug. dists/potato/main/binary-arm/net/telnet_0.16-4potato.1.deb dists/potato/main/binary-arm/net/telnetd_0.16-4potato.1.deb netkit-telnet (0.16-4potato.1) stable; urgency=low * Fixed a memory allocation bug. dists/potato/main/binary-powerpc/net/talk_0.10-8.deb dists/potato/main/binary-powerpc/net/talkd_0.10-8.deb netkit-ntalk (0.10-8) stable; urgency=high * Fixed format string bug. dists/potato/main/binary-m68k/net/talk_0.10-8.deb dists/potato/main/binary-m68k/net/talkd_0.10-8.deb netkit-ntalk (0.10-8) stable; urgency=high * Fixed format string bug. dists/potato/main/binary-i386/net/talk_0.10-8.deb dists/potato/main/binary-i386/net/talkd_0.10-8.deb dists/potato/main/source/net/netkit-ntalk_0.10-8.diff.gz dists/potato/main/source/net/netkit-ntalk_0.10-8.dsc netkit-ntalk (0.10-8) stable; urgency=high * Fixed format string bug. dists/potato/main/binary-arm/net/talk_0.10-8.deb dists/potato/main/binary-arm/net/talkd_0.10-8.deb netkit-ntalk (0.10-8) stable; urgency=high * Fixed format string bug. dists/potato/non-free/binary-arm/editors/nedit_5.02-7.deb nedit (5.02-7) stable; urgency=low * Recompiled against lesstif1 (closes: #48171, #45304, #31990) dists/potato/main/binary-arm/devel/libncurses4-dev_4.2-9.deb dists/potato/main/binary-arm/oldlibs/libncurses4_4.2-9.deb ncurses4.2 (4.2-9) stable; urgency=low * debian/rules: Pass --host and --build explicitly (closes:Bug#59376). * Update config.{guess,sub} from ncurses 5.0. * Fix c++/demo.cc (closes:Bug#59404,#53652). dists/potato/main/binary-m68k/mail/mutt_1.2.5-4.deb mutt (1.2.5-4) stable unstable; urgency=high * Typo in debian-ldap-query prevented it from running (#74575). dists/potato/main/binary-i386/mail/mutt_1.2.5-4.deb dists/potato/main/source/mail/mutt_1.2.5-4.diff.gz dists/potato/main/source/mail/mutt_1.2.5-4.dsc dists/potato/main/source/mail/mutt_1.2.5.orig.tar.gz mutt (1.2.5-4) stable unstable; urgency=high * Typo in debian-ldap-query prevented it from running (#74575). dists/potato/main/binary-m68k/editors/mule2-bin_2.3+19.34-7potato7.deb dists/potato/main/binary-m68k/editors/mule2-canna-wnn_2.3+19.34-7potato7.deb dists/potato/main/binary-m68k/editors/mule2-canna_2.3+19.34-7potato7.deb dists/potato/main/binary-m68k/editors/mule2-plain_2.3+19.34-7potato7.deb dists/potato/main/binary-m68k/editors/mule2-wnn_2.3+19.34-7potato7.deb mule2 (2.3+19.34-7potato7) stable; urgency=high * closes: Bug#67157: error in pre-install script Thanks patch by Anthony Towns dists/potato/main/binary-all/editors/mule2-support_2.3+19.34-7potato7.deb dists/potato/main/binary-all/editors/mule2-supportel_2.3+19.34-7potato7.deb dists/potato/main/binary-i386/editors/mule2-bin_2.3+19.34-7potato7.deb dists/potato/main/binary-i386/editors/mule2-canna-wnn_2.3+19.34-7potato7.deb dists/potato/main/binary-i386/editors/mule2-canna_2.3+19.34-7potato7.deb dists/potato/main/binary-i386/editors/mule2-plain_2.3+19.34-7potato7.deb dists/potato/main/binary-i386/editors/mule2-wnn_2.3+19.34-7potato7.deb dists/potato/main/source/editors/mule2_2.3+19.34-7potato7.diff.gz dists/potato/main/source/editors/mule2_2.3+19.34-7potato7.dsc mule2 (2.3+19.34-7potato7) stable; urgency=high * closes: Bug#67157: error in pre-install script Thanks patch by Anthony Towns dists/potato/main/binary-all/editors/mule-ucs_0.63-3.deb dists/potato/main/source/editors/mule-ucs_0.63-3.diff.gz dists/potato/main/source/editors/mule-ucs_0.63-3.dsc mule-ucs (0.63-3) stable; urgency=high * Fix Bug#68781: mule-ucs install fails. (closes: Bug#68781) It's Grave bug fix. Update is needed for potato or 2.2r1 dists/potato/main/binary-i386/devel/libnspr4-dev_M18-3.deb dists/potato/main/binary-i386/devel/mozilla-dev_M18-3.deb dists/potato/main/binary-i386/libs/libnspr4_M18-3.deb dists/potato/main/binary-i386/web/mozilla_M18-3.deb dists/potato/main/source/web/mozilla_M18-3.diff.gz dists/potato/main/source/web/mozilla_M18-3.dsc dists/potato/main/source/web/mozilla_M18.orig.tar.gz mozilla (M18-3) unstable stable; urgency=low * Uploading to stable (Closes: #75880) * Added note about UserAgent hidden pref to FAQ * Added note about being required to download xpi not open it in mozilla * Added forgotten start-psm script * Hopefully, finally fixed the flaming /usr/share/doc/mozilla-dev link * Linked mozilla-config manpage to undocumented dists/potato/main/binary-powerpc/base/modutils_2.3.11-10.deb modutils (2.3.11-10) stable; urgency=high * Don't abort in errors in rc.modutils; it's not a problem if we fail to load a single module and we should try to load others anyway. Closes: Bug#74074 * Test if package has not been removed in conffiles. Closes: Bug#69370 dists/potato/main/binary-m68k/base/modutils_2.3.11-10.deb modutils (2.3.11-10) stable; urgency=high * Don't abort in errors in rc.modutils; it's not a problem if we fail to load a single module and we should try to load others anyway. Closes: Bug#74074 * Test if package has not been removed in conffiles. Closes: Bug#69370 dists/potato/main/binary-i386/base/modutils_2.3.11-10.deb dists/potato/main/source/base/modutils_2.3.11-10.diff.gz dists/potato/main/source/base/modutils_2.3.11-10.dsc modutils (2.3.11-10) stable; urgency=high * Don't abort in errors in rc.modutils; it's not a problem if we fail to load a single module and we should try to load others anyway. Closes: Bug#74074 * Test if package has not been removed in conffiles. Closes: Bug#69370 dists/potato/main/binary-arm/base/modutils_2.3.11-10.deb modutils (2.3.11-10) stable; urgency=high * Don't abort in errors in rc.modutils; it's not a problem if we fail to load a single module and we should try to load others anyway. Closes: Bug#74074 * Test if package has not been removed in conffiles. Closes: Bug#69370 dists/potato/main/binary-arm/devel/libmm10-dev_1.0.11-1.deb dists/potato/main/binary-arm/devel/libmm10_1.0.11-1.deb mm (1.0.11-1) stable; urgency=low * New upstream version. * Update to standards version 3.0.1: - Move manpages into /usr/share/man. - Other changes implemented by debhelper. dists/potato/main/binary-arm/devel/mlgtk_1.2.1.2000.01.10-5.deb mlgtk (1.2.1.2000.01.10-5) stable; urgency=low * write protected the doc/mlgtk/examples dir again since it breaks policy, too bad, it was nice to have. dists/potato/main/binary-powerpc/comm/mgetty-fax_1.1.21-3.deb dists/potato/main/binary-powerpc/comm/mgetty-viewfax_1.1.21-3.deb dists/potato/main/binary-powerpc/comm/mgetty-voice_1.1.21-3.deb dists/potato/main/binary-powerpc/comm/mgetty_1.1.21-3.deb mgetty (1.1.21-3) stable; urgency=low * make mgetty-fax's postinst create /var/spool/fax/outgoing/.last_run to close a potential symlink exploit by members of the fax group that is otherwise possible until that file is created dists/potato/main/binary-m68k/comm/mgetty-fax_1.1.21-3.deb dists/potato/main/binary-m68k/comm/mgetty-viewfax_1.1.21-3.deb dists/potato/main/binary-m68k/comm/mgetty-voice_1.1.21-3.deb dists/potato/main/binary-m68k/comm/mgetty_1.1.21-3.deb mgetty (1.1.21-3) stable; urgency=low * make mgetty-fax's postinst create /var/spool/fax/outgoing/.last_run to close a potential symlink exploit by members of the fax group that is otherwise possible until that file is created dists/potato/main/binary-all/comm/mgetty-docs_1.1.21-3.deb dists/potato/main/binary-i386/comm/mgetty-fax_1.1.21-3.deb dists/potato/main/binary-i386/comm/mgetty-viewfax_1.1.21-3.deb dists/potato/main/binary-i386/comm/mgetty-voice_1.1.21-3.deb dists/potato/main/binary-i386/comm/mgetty_1.1.21-3.deb dists/potato/main/source/comm/mgetty_1.1.21-3.diff.gz dists/potato/main/source/comm/mgetty_1.1.21-3.dsc mgetty (1.1.21-3) stable; urgency=low * make mgetty-fax's postinst create /var/spool/fax/outgoing/.last_run to close a potential symlink exploit by members of the fax group that is otherwise possible until that file is created dists/potato/main/binary-powerpc/mail/mew_1.94.2-2.deb mew (1:1.94.2-2) stable unstable; urgency=low * fix the problem if set langage environment is non English (e.g LANG=ja_JP.eucJP), Mew freeze with gpg. Backport patches from Mew-1.95beta closes: Bug#71804 dists/potato/main/binary-i386/mail/mew_1.94.2-2.deb dists/potato/main/source/mail/mew_1.94.2-2.diff.gz dists/potato/main/source/mail/mew_1.94.2-2.dsc dists/potato/main/source/mail/mew_1.94.2.orig.tar.gz mew (1:1.94.2-2) stable unstable; urgency=low * fix the problem if set langage environment is non English (e.g LANG=ja_JP.eucJP), Mew freeze with gpg. Backport patches from Mew-1.95beta closes: Bug#71804 dists/potato/main/binary-alpha/mail/mew_1.94.2-2.deb mew (1:1.94.2-2) stable unstable; urgency=low * fix the problem if set langage environment is non English (e.g LANG=ja_JP.eucJP), Mew freeze with gpg. Backport patches from Mew-1.95beta closes: Bug#71804 dists/potato/main/binary-powerpc/mail/masqmail_0.0.12-3.deb masqmail (0.0.12-3) stable; urgency=high * Security bugfix: An unprivileged user could use `masqmail -C' (use alternative configuration file) and/or `-d' (enable debug output) for exploits. We disable these options for non-privileged users (closes: #74422). dists/potato/main/binary-m68k/mail/masqmail_0.0.12-3.deb masqmail (0.0.12-3) stable; urgency=high * Security bugfix: An unprivileged user could use `masqmail -C' (use alternative configuration file) and/or `-d' (enable debug output) for exploits. We disable these options for non-privileged users (closes: #74422). dists/potato/main/binary-i386/mail/masqmail_0.0.12-3.deb dists/potato/main/source/mail/masqmail_0.0.12-3.diff.gz dists/potato/main/source/mail/masqmail_0.0.12-3.dsc masqmail (0.0.12-3) stable; urgency=high * Security bugfix: An unprivileged user could use `masqmail -C' (use alternative configuration file) and/or `-d' (enable debug output) for exploits. We disable these options for non-privileged users (closes: #74422). dists/potato/main/binary-arm/mail/masqmail_0.0.12-3.deb masqmail (0.0.12-3) stable; urgency=high * Security bugfix: An unprivileged user could use `masqmail -C' (use alternative configuration file) and/or `-d' (enable debug output) for exploits. We disable these options for non-privileged users (closes: #74422). dists/potato/main/binary-all/base/makedev_2.3.1-46.2.deb dists/potato/main/source/base/makedev_2.3.1-46.2.diff.gz dists/potato/main/source/base/makedev_2.3.1-46.2.dsc makedev (2.3.1-46.2) stable unstable; urgency=low * non-maintainer update * argh, target stable and unstable dists/potato/main/binary-powerpc/devel/make_3.79.1-1.potato.1.deb make (3.79.1-1.potato.1) stable; urgency=low * This is an update for potato. There are no changes made since the update for woody 45 days ago. The old make did not honour the MAKEFILES variable, this closes: Bug#71261 * I have heard rimours that the old make did not correctly build libc either, and one needs this version. I can't say for sure, since no bug was ever filed. dists/potato/main/binary-m68k/devel/make_3.79.1-1.potato.1.deb make (3.79.1-1.potato.1) stable; urgency=low * This is an update for potato. There are no changes made since the update for woody 45 days ago. The old make did not honour the MAKEFILES variable, this closes: Bug#71261 * I have heard rimours that the old make did not correctly build libc either, and one needs this version. I can't say for sure, since no bug was ever filed. dists/potato/main/binary-all/doc/make-doc_3.79.1-1.potato.1.deb dists/potato/main/binary-i386/devel/make_3.79.1-1.potato.1.deb dists/potato/main/source/devel/make_3.79.1-1.potato.1.dsc dists/potato/main/source/devel/make_3.79.1-1.potato.1.tar.gz make (3.79.1-1.potato.1) stable; urgency=low * This is an update for potato. There are no changes made since the update for woody 45 days ago. The old make did not honour the MAKEFILES variable, this closes: Bug#71261 * I have heard rimours that the old make did not correctly build libc either, and one needs this version. I can't say for sure, since no bug was ever filed. dists/potato/main/binary-arm/devel/make_3.79.1-1.potato.1.deb make (3.79.1-1.potato.1) stable; urgency=low * This is an update for potato. There are no changes made since the update for woody 45 days ago. The old make did not honour the MAKEFILES variable, this closes: Bug#71261 * I have heard rimours that the old make did not correctly build libc either, and one needs this version. I can't say for sure, since no bug was ever filed. dists/potato/main/binary-powerpc/mail/maildrop_0.75-2.1.deb maildrop (0.75-2.1) frozen unstable; urgency=high * Non-maintainer release * Added 'char *' operator to Buffer since 'const char *' didn't match 'char *' anymore. * Applied patch suggested by Josip Rodin: chgrp mail/chmod g+s maildrop to make the program work again dists/potato/main/binary-m68k/mail/maildrop_0.75-2.1.deb maildrop (0.75-2.1) frozen unstable; urgency=high * Non-maintainer release * Added 'char *' operator to Buffer since 'const char *' didn't match 'char *' anymore. * Applied patch suggested by Josip Rodin: chgrp mail/chmod g+s maildrop to make the program work again dists/potato/main/binary-i386/mail/maildrop_0.75-2.1.deb dists/potato/main/source/mail/maildrop_0.75-2.1.diff.gz dists/potato/main/source/mail/maildrop_0.75-2.1.dsc maildrop (0.75-2.1) frozen unstable; urgency=high * Non-maintainer release * Added 'char *' operator to Buffer since 'const char *' didn't match 'char *' anymore. * Applied patch suggested by Josip Rodin: chgrp mail/chmod g+s maildrop to make the program work again dists/potato/main/binary-arm/mail/maildrop_0.75-2.1.deb maildrop (0.75-2.1) stable; urgency=high * Non-maintainer release * Added 'char *' operator to Buffer since 'const char *' didn't match 'char *' anymore. * Applied patch suggested by Josip Rodin: chgrp mail/chmod g+s maildrop to make the program work again dists/potato/main/binary-powerpc/net/lprng_3.6.12-8.deb lprng (3.6.12-8) stable; urgency=high * Apparently the upstream lprng 3.6.15 which the setuid test code was taken from was buggy itself giving lots of false positives!! This code is from 3.6.24 which does work. Closes: #74942, #74946 dists/potato/main/binary-m68k/net/lprng_3.6.12-8.deb lprng (3.6.12-8) stable; urgency=high * Apparently the upstream lprng 3.6.15 which the setuid test code was taken from was buggy itself giving lots of false positives!! This code is from 3.6.24 which does work. Closes: #74942, #74946 dists/potato/main/binary-i386/net/lprng_3.6.12-8.deb dists/potato/main/source/net/lprng_3.6.12-8.diff.gz dists/potato/main/source/net/lprng_3.6.12-8.dsc lprng (3.6.12-8) stable; urgency=high * Apparently the upstream lprng 3.6.15 which the setuid test code was taken from was buggy itself giving lots of false positives!! This code is from 3.6.24 which does work. Closes: #74942, #74946 dists/potato/main/binary-arm/net/lprng_3.6.12-8.deb lprng (3.6.12-8) stable; urgency=high * Apparently the upstream lprng 3.6.15 which the setuid test code was taken from was buggy itself giving lots of false positives!! This code is from 3.6.24 which does work. Closes: #74942, #74946 dists/potato/main/binary-all/admin/locale-zh_0.9+0.05-5.deb dists/potato/main/source/admin/locale-zh_0.9+0.05-5.diff.gz dists/potato/main/source/admin/locale-zh_0.9+0.05-5.dsc locale-zh (0.9+0.05-5) stable unstable; urgency=high * Oops! I erroneously added "Conflicts: libc (>= 2.1.94-1)" instead of "Conflicts: libc6 (>= 2.1.94-1)". Special thanks (and apologies) to Yu Guanghui for reporting the problem. * Updated the package description to note that this package is only for glibc 2.1.3 and not for 2.1.94 or 2.2 series. dists/potato/main/binary-all/admin/locale-ja_18.deb dists/potato/main/source/admin/locale-ja_18.dsc dists/potato/main/source/admin/locale-ja_18.tar.gz locale-ja (18) stable unstable; urgency=high * change dependency from depends: libc6 (<< 2.1.94) to conflicts: libc6 (>= 2.1.94-1) dists/potato/main/binary-arm/net/ftpd_0.11-8potato.1.deb linux-ftpd (0.11-8potato.1) stable; urgency=high * Fixed a security hole discovered by OpenBSD, thanks to Thomas Roessler for notifying me. dists/potato/main/binary-alpha/net/liece-dcc_1.4.3.0.20000717cvs-3.deb liece (1.4.3.0.20000717cvs-3) stable unstable; urgency=low * reupload to stable. (build with -sa) It'll closes: Bug#68717. (RC bug) dists/potato/main/binary-powerpc/devel/libtabe0-dev_0.1.8-0.1.deb dists/potato/main/binary-powerpc/libs/libtabe0_0.1.8-0.1.deb dists/potato/main/binary-powerpc/text/libtabe-db_0.1.8-0.1.deb libtabe (0.1.8-0.1) stable unstable; urgency=low * New upstream bug-fix release. * Non-maintainer upload. dists/potato/main/binary-m68k/devel/libtabe0-dev_0.1.8-0.1.deb dists/potato/main/binary-m68k/libs/libtabe0_0.1.8-0.1.deb dists/potato/main/binary-m68k/text/libtabe-db_0.1.8-0.1.deb libtabe (0.1.8-0.1) stable unstable; urgency=low * New upstream bug-fix release. * Non-maintainer upload. dists/potato/main/binary-i386/devel/libtabe0-dev_0.1.8-0.1.deb dists/potato/main/binary-i386/libs/libtabe0_0.1.8-0.1.deb dists/potato/main/binary-i386/text/libtabe-db_0.1.8-0.1.deb dists/potato/main/source/libs/libtabe_0.1.8-0.1.diff.gz dists/potato/main/source/libs/libtabe_0.1.8-0.1.dsc dists/potato/main/source/libs/libtabe_0.1.8.orig.tar.gz libtabe (0.1.8-0.1) stable unstable; urgency=low * New upstream bug-fix release. * Non-maintainer upload. dists/potato/main/binary-arm/devel/libtabe0-dev_0.1.8-0.1.deb dists/potato/main/binary-arm/libs/libtabe0_0.1.8-0.1.deb dists/potato/main/binary-arm/text/libtabe-db_0.1.8-0.1.deb libtabe (0.1.8-0.1) stable; urgency=low * New upstream bug-fix release. * Non-maintainer upload. dists/potato/main/binary-alpha/devel/libtabe0-dev_0.1.7-0.1.deb dists/potato/main/binary-alpha/libs/libtabe0_0.1.7-0.1.deb dists/potato/main/binary-alpha/text/libtabe-db_0.1.7-0.1.deb libtabe (0.1.7-0.1) stable unstable; urgency=low * New upstream bug-fix release: Fix the bug in: bims.c: et26 "m+space" keystroke. * Non-maintainer upload since I am uploading a new xcin anyway. Thanks, Anthony Wong! ;-) dists/potato/main/binary-powerpc/libs/libpaperg_1.0.3-13.potato1.deb libpaper (1.0.3-13.potato1) stable; urgency=medium * New maintainer. * Recompiled to get a dependency on libc6 (>= 2.1.2). This prevents the SIGSEGV during upgrade. (closes: #71423) * Updated the location of the GPL in the copyright file. * Upload sponsored by Tony Mancill . dists/potato/main/binary-m68k/libs/libpaperg_1.0.3-13.potato1.deb dists/potato/main/binary-m68k/oldlibs/libpaper_1.0.3-13.potato1.deb libpaper (1.0.3-13.potato1) stable; urgency=medium * New maintainer. * Recompiled to get a dependency on libc6 (>= 2.1.2). This prevents the SIGSEGV during upgrade. (closes: #71423) * Updated the location of the GPL in the copyright file. * Upload sponsored by Tony Mancill . dists/potato/main/binary-i386/libs/libpaperg_1.0.3-13.potato1.deb dists/potato/main/binary-i386/oldlibs/libpaper_1.0.3-13.potato1.deb dists/potato/main/source/text/libpaper_1.0.3-13.potato1.diff.gz dists/potato/main/source/text/libpaper_1.0.3-13.potato1.dsc libpaper (1.0.3-13.potato1) stable; urgency=medium * New maintainer. * Recompiled to get a dependency on libc6 (>= 2.1.2). This prevents the SIGSEGV during upgrade. (closes: #71423) * Updated the location of the GPL in the copyright file. * Upload sponsored by Tony Mancill . dists/potato/main/binary-arm/libs/libpaperg_1.0.3-13.potato1.deb libpaper (1.0.3-13.potato1) stable; urgency=medium * New maintainer. * Recompiled to get a dependency on libc6 (>= 2.1.2). This prevents the SIGSEGV during upgrade. (closes: #71423) * Updated the location of the GPL in the copyright file. * Upload sponsored by Tony Mancill . dists/potato/main/binary-m68k/net/libnss-ldap_122-1.deb libnss-ldap (122-1) stable; urgency=HIGH * New upstream version that fixes an important security related bug. For more info check http://bugzilla.padl.com/show_bug.cgi?id=49. (now we really close this; closes: #76018). dists/potato/main/binary-i386/net/libnss-ldap_122-1.deb dists/potato/main/source/net/libnss-ldap_122-1.diff.gz dists/potato/main/source/net/libnss-ldap_122-1.dsc dists/potato/main/source/net/libnss-ldap_122.orig.tar.gz libnss-ldap (122-1) stable; urgency=HIGH * New upstream version that fixes an important security related bug. For more info check http://bugzilla.padl.com/show_bug.cgi?id=49. (now we really close this; closes: #76018). dists/potato/main/binary-sparc/devel/liblockfile-dev_1.01.0.1.deb dists/potato/main/binary-sparc/libs/liblockfile1_1.01.0.1.deb liblockfile (1.01.0.1) stable unstable; urgency=low * Rebuild for sparc to fix ownership problems (dotlockfile was owned by user buildd). dists/potato/main/binary-arm/web/libhtml-embperl-perl_1.2.1-1.deb libhtml-embperl-perl (1.2.1-1) stable; urgency=low closes=27649 * New upstream version. Orphaned. dists/potato/main/binary-arm/devel/lam2-dev_6.3.2-3.deb dists/potato/main/binary-arm/libs/lam2_6.3.2-3.deb dists/potato/main/binary-arm/utils/lam-runtime_6.3.2-3.deb lam (6.3.2-3) stable; urgency=low * C++ bindings in frozen version didn't work, now fixed. * ROMIO not built before, now fixed. * Made build cleanly from source (closes #62381) dists/potato/main/binary-arm/x11/kinput2-canna-wnn_3.0-9.deb dists/potato/main/binary-arm/x11/kinput2-canna_3.0-9.deb dists/potato/main/binary-arm/x11/kinput2-wnn_3.0-9.deb kinput2 (3.0-9) stable; urgency=low * Now kinput2-canna-wnn and kinput2-wnn depend on freewnn-common (closes: Bug#63755). * If JSERVER environment variable is not set, jserver host will be set to "localhost" (closes: Bug#63852). dists/potato/main/binary-all/devel/kernel-patch-2.2.10-m68k_2.2.10-8.deb dists/potato/main/source/devel/kernel-patch-2.2.10-m68k_2.2.10-8.dsc dists/potato/main/source/devel/kernel-patch-2.2.10-m68k_2.2.10-8.tar.gz kernel-patch-2.2.10-m68k (2.2.10-8) stable unstable; urgency=low * Split gcc272 patch so that a part is applied on all build architectures. * Added Richard Zidlicky's 68040 bus error patch. dists/potato/main/binary-m68k/base/kernel-image-2.2.10-mvme16x_2.2.10-8.deb kernel-source-2.2.10 (2.2.10-8) stable unstable; urgency=low * Rebuild with Richard Zidlicky's 68040 bus error patch. dists/potato/main/binary-m68k/base/kernel-image-2.2.10-mvme147_2.2.10-8.deb kernel-source-2.2.10 (2.2.10-8) stable unstable; urgency=low * Rebuild with Richard Zidlicky's 68040 bus error patch. dists/potato/main/binary-m68k/base/kernel-image-2.2.10-bvme6000_2.2.10-8.deb kernel-source-2.2.10 (2.2.10-8) stable unstable; urgency=low * Rebuild with Richard Zidlicky's 68040 bus error patch. dists/potato/main/binary-all/tex/jtex-base_1.8-6.deb dists/potato/main/source/tex/jtex-base_1.8-6.diff.gz dists/potato/main/source/tex/jtex-base_1.8-6.dsc jtex-base (1.8-6) stable unstable; urgency=low * Added dependency to "tetex-bin". (closes: #69926) dists/potato/main/binary-arm/net/bitchx-gtk_1.0-0c16-2.deb dists/potato/main/binary-arm/net/bitchx_1.0-0c16-2.deb ircii-pana (1:1.0-0c16-2) stable; urgency=high * Fix a DoS and possibly a security hole. dists/potato/main/binary-all/web/imp_2.2.3-0.potato.3.deb dists/potato/main/source/web/imp_2.2.3-0.potato.3.diff.gz dists/potato/main/source/web/imp_2.2.3-0.potato.3.dsc dists/potato/main/source/web/imp_2.2.3.orig.tar.gz imp (2:2.2.3-0.potato.3) stable; urgency=low * More upstream fixes * uploading to proposed-updates dists/potato/main/binary-all/web/horde_1.2.3-0.potato.3.deb dists/potato/main/source/web/horde_1.2.3-0.potato.3.diff.gz dists/potato/main/source/web/horde_1.2.3-0.potato.3.dsc dists/potato/main/source/web/horde_1.2.3.orig.tar.gz horde (2:1.2.3-0.potato.3) stable; urgency=low * Some more upstream fixes * Uploading to proposed-updates * Fixing dependency for php3 dists/potato/contrib/binary-arm/sound/gqmpeg_0.6.3e1-1.deb gqmpeg (0.6.3e1-1) stable; urgency=low * new upstream release * changes to meet new policy dists/potato/contrib/binary-all/web/gnujsp_1.0.0-4.deb dists/potato/contrib/source/web/gnujsp_1.0.0-4.diff.gz dists/potato/contrib/source/web/gnujsp_1.0.0-4.dsc gnujsp (1.0.0-4) stable unstable; urgency=HIGH * Changed permissions of /var/cache/gnujsp to 750 (closes: #74746) World-readable cached class files might expose passwords in JSP pages to local users. * Added lintian override for the above permissions dists/potato/main/binary-arm/admin/gnome-print_0.10-5.deb gnome-print (0.10-5) stable; urgency=low * Recompile to fix dependancy problem with libesd0. closes: #56736: libesd-alsa0 dependency problem. * don't depend on libxml 1.8.5. closes: #56814: gnome-print depends on woody library. dists/potato/main/binary-all/admin/i18ndata_2.1.3-13.deb dists/potato/main/binary-all/doc/glibc-doc_2.1.3-13.deb dists/potato/main/binary-sparc/admin/locales_2.1.3-13.deb dists/potato/main/binary-sparc/admin/nscd_2.1.3-13.deb dists/potato/main/binary-sparc/base/libc6_2.1.3-13.deb dists/potato/main/binary-sparc/devel/libc6-dbg_2.1.3-13.deb dists/potato/main/binary-sparc/devel/libc6-dev_2.1.3-13.deb dists/potato/main/binary-sparc/devel/libc6-pic_2.1.3-13.deb dists/potato/main/binary-sparc/devel/libc6-prof_2.1.3-13.deb dists/potato/main/source/libs/glibc_2.1.3-13.diff.gz dists/potato/main/source/libs/glibc_2.1.3-13.dsc glibc (2.1.3-13) stable; urgency=low * Damnit...used the 0824 patch set, now there's an 0827 :/ dists/potato/main/binary-powerpc/admin/locales_2.1.3-13.deb dists/potato/main/binary-powerpc/admin/nscd_2.1.3-13.deb dists/potato/main/binary-powerpc/base/libc6_2.1.3-13.deb dists/potato/main/binary-powerpc/devel/libc6-dbg_2.1.3-13.deb dists/potato/main/binary-powerpc/devel/libc6-dev_2.1.3-13.deb dists/potato/main/binary-powerpc/devel/libc6-pic_2.1.3-13.deb dists/potato/main/binary-powerpc/devel/libc6-prof_2.1.3-13.deb glibc (2.1.3-13) stable; urgency=low * Damnit...used the 0824 patch set, now there's an 0827 :/ dists/potato/main/binary-m68k/admin/locales_2.1.3-13.deb dists/potato/main/binary-m68k/admin/nscd_2.1.3-13.deb dists/potato/main/binary-m68k/base/libc6_2.1.3-13.deb dists/potato/main/binary-m68k/devel/libc6-dbg_2.1.3-13.deb dists/potato/main/binary-m68k/devel/libc6-dev_2.1.3-13.deb dists/potato/main/binary-m68k/devel/libc6-pic_2.1.3-13.deb dists/potato/main/binary-m68k/devel/libc6-prof_2.1.3-13.deb dists/potato/main/binary-m68k/oldlibs/libnss1-compat_2.1.3-13.deb glibc (2.1.3-13) stable; urgency=low * Damnit...used the 0824 patch set, now there's an 0827 :/ dists/potato/main/binary-i386/admin/locales_2.1.3-13.deb dists/potato/main/binary-i386/admin/nscd_2.1.3-13.deb dists/potato/main/binary-i386/base/libc6_2.1.3-13.deb dists/potato/main/binary-i386/devel/libc6-dbg_2.1.3-13.deb dists/potato/main/binary-i386/devel/libc6-dev_2.1.3-13.deb dists/potato/main/binary-i386/devel/libc6-pic_2.1.3-13.deb dists/potato/main/binary-i386/devel/libc6-prof_2.1.3-13.deb dists/potato/main/binary-i386/oldlibs/libnss1-compat_2.1.3-13.deb glibc (2.1.3-13) stable; urgency=low * Damnit...used the 0824 patch set, now there's an 0827 :/ dists/potato/main/binary-arm/admin/locales_2.1.3-13.deb dists/potato/main/binary-arm/admin/nscd_2.1.3-13.deb dists/potato/main/binary-arm/base/libc6_2.1.3-13.deb dists/potato/main/binary-arm/devel/libc6-dbg_2.1.3-13.deb dists/potato/main/binary-arm/devel/libc6-dev_2.1.3-13.deb dists/potato/main/binary-arm/devel/libc6-pic_2.1.3-13.deb dists/potato/main/binary-arm/devel/libc6-prof_2.1.3-13.deb glibc (2.1.3-13) stable; urgency=low * Damnit...used the 0824 patch set, now there's an 0827 :/ dists/potato/main/binary-alpha/admin/locales_2.1.3-13.deb dists/potato/main/binary-alpha/admin/nscd_2.1.3-13.deb dists/potato/main/binary-alpha/base/libc6.1_2.1.3-13.deb dists/potato/main/binary-alpha/devel/libc6.1-dbg_2.1.3-13.deb dists/potato/main/binary-alpha/devel/libc6.1-dev_2.1.3-13.deb dists/potato/main/binary-alpha/devel/libc6.1-pic_2.1.3-13.deb dists/potato/main/binary-alpha/devel/libc6.1-prof_2.1.3-13.deb dists/potato/main/binary-alpha/oldlibs/libnss1-compat_2.1.3-13.deb glibc (2.1.3-13) stable; urgency=low * Damnit...used the 0824 patch set, now there's an 0827 :/ dists/potato/non-free/binary-powerpc/comm/gettyps_2.0.7j-9.deb gettyps (2.0.7j-9) stable unstable; urgency=high * Fixed a y2k buffer overflow problem (closes: #72037). Thanks to Frank Hintsch for noticing it and sending in a patch. This bug may prevent all console logins. dists/potato/non-free/binary-m68k/comm/gettyps_2.0.7j-9.deb gettyps (2.0.7j-9) stable unstable; urgency=high * Fixed a y2k buffer overflow problem (closes: #72037). Thanks to Frank Hintsch for noticing it and sending in a patch. This bug may prevent all console logins. dists/potato/non-free/binary-i386/comm/gettyps_2.0.7j-9.deb dists/potato/non-free/source/comm/gettyps_2.0.7j-9.diff.gz dists/potato/non-free/source/comm/gettyps_2.0.7j-9.dsc gettyps (2.0.7j-9) stable unstable; urgency=high * Fixed a y2k buffer overflow problem (closes: #72037). Thanks to Frank Hintsch for noticing it and sending in a patch. This bug may prevent all console logins. dists/potato/non-free/binary-arm/comm/gettyps_2.0.7j-9.deb gettyps (2.0.7j-9) stable unstable; urgency=high * Fixed a y2k buffer overflow problem (closes: #72037). Thanks to Frank Hintsch for noticing it and sending in a patch. This bug may prevent all console logins. dists/potato/non-free/binary-alpha/comm/gettyps_2.0.7j-9.deb gettyps (2.0.7j-9) stable unstable; urgency=high * Fixed a y2k buffer overflow problem (closes: #72037). Thanks to Frank Hintsch for noticing it and sending in a patch. This bug may prevent all console logins. dists/potato/main/binary-arm/devel/freewnn-cserver-dev_1.1.0+1.1.1-a016-1.deb dists/potato/main/binary-arm/devel/freewnn-jserver-dev_1.1.0+1.1.1-a016-1.deb dists/potato/main/binary-arm/devel/freewnn-kserver-dev_1.1.0+1.1.1-a016-1.deb dists/potato/main/binary-arm/utils/freewnn-cserver_1.1.0+1.1.1-a016-1.deb dists/potato/main/binary-arm/utils/freewnn-jserver_1.1.0+1.1.1-a016-1.deb dists/potato/main/binary-arm/utils/freewnn-kserver_1.1.0+1.1.1-a016-1.deb freewnn (1.1.0+1.1.1-a016-1) stable; urgency=low * Maintainer release (closes: Bug#59450). * New upstream release with security-related fixes. - fixes for msg_open() bug ([freewnn:00350]). - freewnn-size_limit.diff ([freewnn:00361]). - freewnn-mkdir.diff ([freewnn:00359]). dists/potato/main/binary-sparc/net/ethereal_0.8.0-1.0.1.deb dists/potato/main/source/net/ethereal_0.8.0-1.0.1.diff.gz dists/potato/main/source/net/ethereal_0.8.0-1.0.1.dsc ethereal (0.8.0-1.0.1) stable; urgency=low * Fixed Depends line to say libsnmp and not libsnmp4.0 (Sparc has libsnmp4.1) (closes: #69995) dists/potato/main/binary-powerpc/net/ethereal_0.8.0-1.0.1.deb ethereal (0.8.0-1.0.1) stable; urgency=low * Fixed Depends line to say libsnmp and not libsnmp4.0 (Sparc has libsnmp4.1) (closes: #69995) dists/potato/main/binary-m68k/net/ethereal_0.8.0-1.0.1.deb ethereal (0.8.0-1.0.1) stable; urgency=low * Fixed Depends line to say libsnmp and not libsnmp4.0 (Sparc has libsnmp4.1) (closes: #69995) dists/potato/main/binary-i386/net/ethereal_0.8.0-1.0.1.deb ethereal (0.8.0-1.0.1) stable; urgency=low * Fixed Depends line to say libsnmp and not libsnmp4.0 (Sparc has libsnmp4.1) (closes: #69995) dists/potato/main/binary-powerpc/interpreters/eruby_0.0.9-1potato1.deb eruby (0.0.9-1potato1) stable; urgency=high * rebuilt package with correct Debian version. Because on account of Debian version wasn't appropriate in a package before one and therefore, I might not wear it with upgrade from R2.2 to next release of Debian it probably based on the Woody. dists/potato/main/binary-i386/interpreters/eruby_0.0.9-1potato1.deb dists/potato/main/source/interpreters/eruby_0.0.9-1potato1.diff.gz dists/potato/main/source/interpreters/eruby_0.0.9-1potato1.dsc dists/potato/main/source/interpreters/eruby_0.0.9.orig.tar.gz eruby (0.0.9-1potato1) stable; urgency=high * rebuilt package with correct Debian version. Because on account of Debian version wasn't appropriate in a package before one and therefore, I might not wear it with upgrade from R2.2 to next release of Debian it probably based on the Woody. dists/potato/main/binary-arm/interpreters/eruby_0.0.9-1potato1.deb eruby (0.0.9-1potato1) stable; urgency=high * rebuilt package with correct Debian version. Because on account of Debian version wasn't appropriate in a package before one and therefore, I might not wear it with upgrade from R2.2 to next release of Debian it probably based on the Woody. dists/potato/main/binary-m68k/editors/emacs20-dl_20.7-5.deb emacs20-dl (20.7-5) stable unstable; urgency=high * closes: #69171: emacs20-dl does not have /etc/emacs20/ in load-path. (RC Bug) * debian/in.control: added emacs-dl-{canna,wnn}-20.5a to Conflicts field. dists/potato/main/binary-all/devel/emacs20-dl-dev_20.7-5.deb dists/potato/main/binary-all/editors/emacs20-dl-el_20.7-5.deb dists/potato/main/binary-i386/editors/emacs20-dl_20.7-5.deb dists/potato/main/source/editors/emacs20-dl_20.7-5.diff.gz dists/potato/main/source/editors/emacs20-dl_20.7-5.dsc emacs20-dl (20.7-5) stable unstable; urgency=high * closes: #69171: emacs20-dl does not have /etc/emacs20/ in load-path. (RC Bug) * debian/in.control: added emacs-dl-{canna,wnn}-20.5a to Conflicts field. dists/potato/main/binary-alpha/editors/emacs20-dl_20.7-5.deb emacs20-dl (20.7-5) stable unstable; urgency=high * closes: #69171: emacs20-dl does not have /etc/emacs20/ in load-path. (RC Bug) * debian/in.control: added emacs-dl-{canna,wnn}-20.5a to Conflicts field. dists/potato/main/binary-arm/tex/dvidvi_1.0-3.1.deb dvidvi (1.0-3.1) stable; urgency=low * NMU with permission of David A. van Leeuwen. * Dependency on libc6 is now calculated using "${shlibs:Depends}". (closes: #65051) * Added notice that dvidvi is under the GPL in the copyright file. (closes: #65052) * Upload sponsored by Tony Mancill . dists/potato/main/binary-all/tex/dvi2ps-fontdata-a2n_1.0-5.deb dists/potato/main/binary-all/tex/dvi2ps-fontdata-bsr_1.0-5.deb dists/potato/main/binary-all/tex/dvi2ps-fontdata-ja_1.0-5.deb dists/potato/main/binary-all/tex/dvi2ps-fontdata-n2a_1.0-5.deb dists/potato/main/binary-all/tex/dvi2ps-fontdata-ptexfake_1.0-5.deb dists/potato/main/binary-all/tex/dvi2ps-fontdata-rrs_1.0-5.deb dists/potato/main/binary-all/tex/dvi2ps-fontdata-rsp_1.0-5.deb dists/potato/main/binary-all/tex/dvi2ps-fontdata-tbank_1.0-5.deb dists/potato/main/binary-all/tex/dvi2ps-fontdata-three_1.0-5.deb dists/potato/main/source/tex/dvi2ps-fontdata_1.0-5.diff.gz dists/potato/main/source/tex/dvi2ps-fontdata_1.0-5.dsc dvi2ps-fontdata (1.0-5) stable unstable; urgency=low * fixed syntax errors in postrm scripts. dists/potato/main/binary-sparc/text/dict_1.4.9-9.deb dists/potato/main/binary-sparc/text/dictd_1.4.9-9.deb dictd (1.4.9-9) stable; urgency=low * Note to ftp admins: This fixes a potential security hole, although there is no known exploit. * Patched dictd.c to make it drop root's groups and become group nogroup. As reported by bug#75132, even though dictd dropped root privileges on starting, it retained root's group memberships. dists/potato/main/binary-powerpc/text/dict_1.4.9-9.deb dists/potato/main/binary-powerpc/text/dictd_1.4.9-9.deb dictd (1.4.9-9) stable; urgency=low * Note to ftp admins: This fixes a potential security hole, although there is no known exploit. * Patched dictd.c to make it drop root's groups and become group nogroup. As reported by bug#75132, even though dictd dropped root privileges on starting, it retained root's group memberships. dists/potato/main/binary-m68k/text/dict_1.4.9-9.deb dists/potato/main/binary-m68k/text/dictd_1.4.9-9.deb dictd (1.4.9-9) stable; urgency=low * Note to ftp admins: This fixes a potential security hole, although there is no known exploit. * Patched dictd.c to make it drop root's groups and become group nogroup. As reported by bug#75132, even though dictd dropped root privileges on starting, it retained root's group memberships. dists/potato/main/binary-i386/text/dict_1.4.9-9.deb dists/potato/main/binary-i386/text/dictd_1.4.9-9.deb dists/potato/main/source/text/dictd_1.4.9-9.diff.gz dists/potato/main/source/text/dictd_1.4.9-9.dsc dictd (1.4.9-9) stable; urgency=low * Note to ftp admins: This fixes a potential security hole, although there is no known exploit. * Patched dictd.c to make it drop root's groups and become group nogroup. As reported by bug#75132, even though dictd dropped root privileges on starting, it retained root's group memberships. dists/potato/main/binary-arm/text/dict_1.4.9-9.deb dists/potato/main/binary-arm/text/dictd_1.4.9-9.deb dictd (1.4.9-9) stable; urgency=low * Note to ftp admins: This fixes a potential security hole, although there is no known exploit. * Patched dictd.c to make it drop root's groups and become group nogroup. As reported by bug#75132, even though dictd dropped root privileges on starting, it retained root's group memberships. dists/potato/main/binary-alpha/text/dict_1.4.9-9.deb dists/potato/main/binary-alpha/text/dictd_1.4.9-9.deb dictd (1.4.9-9) stable; urgency=low * Note to ftp admins: This fixes a potential security hole, although there is no known exploit. * Patched dictd.c to make it drop root's groups and become group nogroup. As reported by bug#75132, even though dictd dropped root privileges on starting, it retained root's group memberships. dists/potato/main/binary-powerpc/net/dhcp-client_2.0pl4-2.deb dists/potato/main/binary-powerpc/net/dhcp-relay_2.0pl4-2.deb dists/potato/main/binary-powerpc/net/dhcp_2.0pl4-2.deb dhcp (2.0pl4-2) stable unstable; urgency=low * Uploading to stable because the current dhcp* packages in stable do not contain the recent security fixes. dists/potato/main/binary-m68k/net/dhcp-client_2.0pl4-2.deb dists/potato/main/binary-m68k/net/dhcp-relay_2.0pl4-2.deb dists/potato/main/binary-m68k/net/dhcp_2.0pl4-2.deb dhcp (2.0pl4-2) stable unstable; urgency=low * Uploading to stable because the current dhcp* packages in stable do not contain the recent security fixes. dists/potato/main/binary-i386/net/dhcp-client_2.0pl4-2.deb dists/potato/main/binary-i386/net/dhcp-relay_2.0pl4-2.deb dists/potato/main/binary-i386/net/dhcp_2.0pl4-2.deb dists/potato/main/source/net/dhcp_2.0pl4-2.diff.gz dists/potato/main/source/net/dhcp_2.0pl4-2.dsc dists/potato/main/source/net/dhcp_2.0pl4.orig.tar.gz dhcp (2.0pl4-2) stable unstable; urgency=low * Uploading to stable because the current dhcp* packages in stable do not contain the recent security fixes. dists/potato/main/binary-arm/net/dhcp-client_2.0pl4-2.deb dists/potato/main/binary-arm/net/dhcp-relay_2.0pl4-2.deb dists/potato/main/binary-arm/net/dhcp_2.0pl4-2.deb dhcp (2.0pl4-2) stable; urgency=low * Uploading to stable because the current dhcp* packages in stable do not contain the recent security fixes. dists/potato/main/binary-alpha/net/dhcp-client_2.0pl4-2.deb dists/potato/main/binary-alpha/net/dhcp-relay_2.0pl4-2.deb dists/potato/main/binary-alpha/net/dhcp_2.0pl4-2.deb dhcp (2.0pl4-2) stable unstable; urgency=low * Uploading to stable because the current dhcp* packages in stable do not contain the recent security fixes. dists/potato/main/binary-powerpc/editors/dedit_0.5.11.deb dedit (0.5.11) stable; urgency=low * debian/control: added Build-Depends (closes: Bug#70258) * reFixed intl support. (Bug#68942) dists/potato/main/binary-m68k/editors/dedit_0.5.11.deb dedit (0.5.11) stable unstable; urgency=low * debian/control: added Build-Depends (closes: Bug#70258) * reFixed intl support. (Bug#68942) dists/potato/main/binary-i386/editors/dedit_0.5.11.deb dists/potato/main/source/editors/dedit_0.5.11.dsc dists/potato/main/source/editors/dedit_0.5.11.tar.gz dedit (0.5.11) stable unstable; urgency=low * debian/control: added Build-Depends (closes: Bug#70258) * reFixed intl support. (Bug#68942) dists/potato/main/binary-alpha/editors/dedit_0.5.11.deb dedit (0.5.11) stable unstable; urgency=low * debian/control: added Build-Depends (closes: Bug#70258) * reFixed intl support. (Bug#68942) dists/potato/main/binary-all/text/debiandoc-sgml_1.1.44.deb dists/potato/main/source/text/debiandoc-sgml_1.1.44.dsc dists/potato/main/source/text/debiandoc-sgml_1.1.44.tar.gz debiandoc-sgml (1.1.44) stable unstable; urgency=high * Well, it actually should have gone into stable iso frozen dists/potato/main/binary-all/admin/debconf-tiny_0.2.80.17.deb dists/potato/main/binary-all/admin/debconf_0.2.80.17.deb dists/potato/main/source/admin/debconf_0.2.80.17.dsc dists/potato/main/source/admin/debconf_0.2.80.17.tar.gz debconf (0.2.80.17) stable; urgency=low * Disabled locales. The issue is that select elements are quite broken if used in no-C locales. So broken that any package that uses them with debconf will probably get quite confused. This is fixed in woody, but the fix was quite a lot of code, so it seems safer just to disable them. I modified one line of code. dists/potato/non-free/binary-arm/devel/cyrus-dev_1.5.19-2.deb dists/potato/non-free/binary-arm/mail/cyrus-admin_1.5.19-2.deb dists/potato/non-free/binary-arm/mail/cyrus-common_1.5.19-2.deb dists/potato/non-free/binary-arm/mail/cyrus-imapd_1.5.19-2.deb dists/potato/non-free/binary-arm/mail/cyrus-nntp_1.5.19-2.deb dists/potato/non-free/binary-arm/mail/cyrus-pop3d_1.5.19-2.deb cyrus-imapd (1.5.19-2) stable; urgency=low * Fixed control file descriptions (closes: Bug#53610). * Added dependancy on adduser >= 3.9 (closes: Bug#55358). * Remove inetd.conf entries of cyrus-{imapd,pop3d} on removal, not purge (closes: Bug#55780). * postinst for cyrus-common now works if one doesn't have suidregister installed (closes: Bug#56221). * pwcheck_{pam,standard} now properly managed by the alternatives system (closes: Bug#56217). * Fixed a typo in the cyrus-common postrm that was preventing removal of one of the alternatives (thanks Paul Slootman!). * Remove suidunregister of non-suid pwcheck_pam (thanks Paul Slootman!). dists/potato/main/binary-m68k/web/curl_6.0-1.1.deb curl (6.0-1.1) stable; urgency=high * Non-maintainer update by security team * Fixed a buffer overflow bug (see BTS #74569) * Fix broken Maintainer field, commas are not allowed (rfc822 violation) dists/potato/main/binary-i386/web/curl_6.0-1.1.1.deb curl (6.0-1.1.1) stable; urgency=high * Recompile with correct libc6 dists/potato/main/binary-arm/mail/courier-imap_0.31-1.deb courier-imap (0.31-1) stable; urgency=low * New upstream version, with bugfix patches ported from 0.31.32pre1 by Miquel van Smoorenburg ("Minor fixes for gnus and mutt related issues") * Also added --enable-workarounds-for-imap-client-bugs (Closes: #63376, #62607, #61674) * Targetted to frozen because previous version did not work well with Netscape, Mozilla or mutt- painful. dists/potato/main/binary-powerpc/admin/console-apt_0.7.7.2potato2.deb console-apt (0.7.7.2potato2) stable; urgency=high * Rebuilt with latest apt library in potato. 0.7.7.2potato1 will not work with potato systems. dists/potato/main/binary-m68k/admin/console-apt_0.7.7.2potato2.deb console-apt (0.7.7.2potato2) stable; urgency=high * Rebuilt with latest apt library in potato. 0.7.7.2potato1 will not work with potato systems. dists/potato/main/binary-i386/admin/console-apt_0.7.7.2potato2.deb dists/potato/main/source/admin/console-apt_0.7.7.2potato2.dsc dists/potato/main/source/admin/console-apt_0.7.7.2potato2.tar.gz console-apt (0.7.7.2potato2) stable; urgency=high * Rebuilt with latest apt library in potato. 0.7.7.2potato1 will not work with potato systems. dists/potato/main/binary-all/doc/cfengine-doc_1.5.3-6.deb dists/potato/main/binary-sparc/admin/cfengine_1.5.3-6.deb dists/potato/main/source/admin/cfengine_1.5.3-6.diff.gz dists/potato/main/source/admin/cfengine_1.5.3-6.dsc cfengine (1.5.3-6) stable unstable; urgency=low * Included, syslog security related patch dists/potato/main/binary-powerpc/admin/cfengine_1.5.3-6.deb cfengine (1.5.3-6) stable unstable; urgency=low * Included, syslog security related patch dists/potato/main/binary-m68k/admin/cfengine_1.5.3-6.deb cfengine (1.5.3-6) stable unstable; urgency=low * Included, syslog security related patch dists/potato/main/binary-i386/admin/cfengine_1.5.3-6.deb cfengine (1.5.3-6) stable unstable; urgency=low * Included, syslog security related patch dists/potato/main/binary-arm/admin/cfengine_1.5.3-6.deb cfengine (1.5.3-6) stable unstable; urgency=low * Included, syslog security related patch dists/potato/main/binary-alpha/admin/cfengine_1.5.3-6.deb cfengine (1.5.3-6) stable unstable; urgency=low * Included, syslog security related patch dists/potato/main/binary-arm/otherosfs/cdwrite_2.0-2.deb cdwrite (2.0-2) stable; urgency=low * New maintainer. * Updated package to Standards-Version 2.1.0.0 * Compiled using libc6 dists/potato/main/binary-arm/devel/libcanna1g-dev_3.5b2-25.deb dists/potato/main/binary-arm/libs/libcanna1g_3.5b2-25.deb dists/potato/main/binary-arm/utils/canna-utils_3.5b2-25.deb dists/potato/main/binary-arm/utils/canna_3.5b2-25.deb canna (3.5b2-25) stable; urgency=high * [SECURITY FIX] buffer overflow. If send IR_INIT command to cannaserver with very logn username and/or groupname, remote user can get root facility. * add /etc/hosts.canna file as conffile for security reason. Default setting is `clients can connect cannaserver only from localhost.' closes: Bug#63402 dists/potato/main/binary-sparc/web/boa_0.94.8.3-1.deb boa (0.94.8.3-1) stable unstable; urgency=medium * Move unescape_uri *before* clean_pathname to prevent encoding of / and .. in pathname * wrap execution of GUNZIP in cgi.c with #ifdef GUNZIP * stop parsing when fragment found in URL ('#') dists/potato/main/binary-powerpc/web/boa_0.94.8.3-1.deb boa (0.94.8.3-1) unstable stable; urgency=medium * Move unescape_uri *before* clean_pathname to prevent encoding of / and .. in pathname * wrap execution of GUNZIP in cgi.c with #ifdef GUNZIP * stop parsing when fragment found in URL ('#') dists/potato/main/binary-m68k/web/boa_0.94.8.3-1.deb boa (0.94.8.3-1) unstable stable; urgency=medium * Move unescape_uri *before* clean_pathname to prevent encoding of / and .. in pathname * wrap execution of GUNZIP in cgi.c with #ifdef GUNZIP * stop parsing when fragment found in URL ('#') dists/potato/main/binary-i386/web/boa_0.94.8.3-1.deb dists/potato/main/source/web/boa_0.94.8.3-1.dsc dists/potato/main/source/web/boa_0.94.8.3-1.tar.gz boa (0.94.8.3-1) unstable stable; urgency=medium * Move unescape_uri *before* clean_pathname to prevent encoding of / and .. in pathname * wrap execution of GUNZIP in cgi.c with #ifdef GUNZIP * stop parsing when fragment found in URL ('#') dists/potato/main/binary-arm/web/boa_0.94.8.3-1.deb boa (0.94.8.3-1) unstable stable; urgency=medium * Move unescape_uri *before* clean_pathname to prevent encoding of / and .. in pathname * wrap execution of GUNZIP in cgi.c with #ifdef GUNZIP * stop parsing when fragment found in URL ('#') dists/potato/main/binary-alpha/web/boa_0.94.8.3-1.0.1.deb boa (0.94.8.3-1.0.1) stable; urgency=medium * Recompile against stable libc6.1. dists/potato/main/binary-powerpc/base/base-passwd_3.1.10.deb base-passwd (3.1.10) stable unstable; urgency=high * Call update-passwd with --dry-run when testing for needed changes Closes: Bug#74494 dists/potato/main/binary-m68k/base/base-passwd_3.1.10.deb base-passwd (3.1.10) stable unstable; urgency=high * Call update-passwd with --dry-run when testing for needed changes Closes: Bug#74494 dists/potato/main/binary-i386/base/base-passwd_3.1.10.deb dists/potato/main/source/base/base-passwd_3.1.10.dsc dists/potato/main/source/base/base-passwd_3.1.10.tar.gz base-passwd (3.1.10) stable unstable; urgency=high * Call update-passwd with --dry-run when testing for needed changes Closes: Bug#74494 dists/potato/main/binary-arm/base/base-passwd_3.1.10.deb base-passwd (3.1.10) stable; urgency=high * Call update-passwd with --dry-run when testing for needed changes Closes: Bug#74494 dists/potato/main/binary-alpha/base/base-passwd_3.1.10.deb base-passwd (3.1.10) stable unstable; urgency=high * Call update-passwd with --dry-run when testing for needed changes Closes: Bug#74494 dists/potato/main/binary-powerpc/admin/base-config_0.33.2.deb base-config (0.33.2) stable; urgency=low * Corrected stupid typo in templates file, Closes: #74785, #74815, #74828 * This problem makes it impossible to install the package, so it is important and must go in. dists/potato/main/binary-m68k/admin/base-config_0.33.2.deb base-config (0.33.2) stable; urgency=low * Corrected stupid typo in templates file, Closes: #74785, #74815, #74828 * This problem makes it impossible to install the package, so it is important and must go in. dists/potato/main/binary-i386/admin/base-config_0.33.2.deb dists/potato/main/source/admin/base-config_0.33.2.dsc dists/potato/main/source/admin/base-config_0.33.2.tar.gz base-config (0.33.2) stable; urgency=low * Corrected stupid typo in templates file, Closes: #74785, #74815, #74828 * This problem makes it impossible to install the package, so it is important and must go in. dists/potato/main/binary-arm/admin/base-config_0.33.2.deb base-config (0.33.2) stable; urgency=low * Corrected stupid typo in templates file, Closes: #74785, #74815, #74828 * This problem makes it impossible to install the package, so it is important and must go in. dists/potato/main/binary-arm/utils/autofs_3.1.4-9.deb autofs (3.1.4-9) stable; urgency=low * Another code unification. Options are now 'munged' with an awk script, instead of shell and sed. Closes: #67294. dists/potato/main/binary-m68k/base/amiga-fdisk-bf_0.04-5.deb dists/potato/main/binary-m68k/base/amiga-fdisk_0.04-5.deb dists/potato/main/source/base/amiga-fdisk_0.04-5.diff.gz dists/potato/main/source/base/amiga-fdisk_0.04-5.dsc amiga-fdisk (0.04-5) stable unstable; urgency=low * Non-maintainer upload. * build amiga-fdisk and amiga-fdisk-bf from one source package * rearrange section and priority of both packages (closes: #72227) * this package is needed for the 2.2r1 boot-floppies, thus upload for stable dists/potato/main/binary-arm/utils/amanda-client_2.4.1p1-12.deb dists/potato/main/binary-arm/utils/amanda-common_2.4.1p1-12.deb dists/potato/main/binary-arm/utils/amanda-server_2.4.1p1-12.deb amanda (1:2.4.1p1-12) stable; urgency=low * revert amplot/Makefile.in to upstream version to dodge issues created by newer automake version. Note that items in the build depends list in the control file *must* be available or the package build will fail, as some executables won't be generated if configure doesn't find everything it wants! Closes: #64864, marked as grave for potato. ======================================== Mon, 14 Aug 2000 - Debian 2.2r0 released ========================================