-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Fri, 19 Jan 2018 21:06:25 +1100 Source: smarty3 Binary: smarty3 Architecture: source all Version: 3.1.10-2+deb7u2 Distribution: wheezy-security Urgency: high Maintainer: Mike Gabriel <mike.gabriel@das-netzwerkteam.de> Changed-By: Chris Lamb <lamby@debian.org> Description: smarty3 - Template engine for PHP Closes: 886460 Changes: smarty3 (3.1.10-2+deb7u2) wheezy-security; urgency=high . * CVE-2017-1000480: Fix a code-injection vulnerability via specially-crafted filenames in comments. Thanks to Mike Gabriel for backporting the patch. (Closes: #886460) Checksums-Sha1: a33d080fbfbb4f18212ad22e474c9c861aa7b3a4 1890 smarty3_3.1.10-2+deb7u2.dsc 5a71931c986a2493e2ffbaac1ed6e05f78336e6e 1644260 smarty3_3.1.10.orig.tar.gz 5a9a21b281fba1c89f3d62b1be064ea3819e9c66 8088 smarty3_3.1.10-2+deb7u2.debian.tar.gz 1dc5d967bf87cc0cf9e4486718ef17b11fa7d7bc 209414 smarty3_3.1.10-2+deb7u2_all.deb Checksums-Sha256: db8e0da856ed1cbbc6aa531f6d1e9aca144f79b56ef58a615ff13c7530c6eb7e 1890 smarty3_3.1.10-2+deb7u2.dsc 91fa8ca11287420af9c98ddf6fd8f66fdf0ec243f88f6d95f9c4137421d1da71 1644260 smarty3_3.1.10.orig.tar.gz 0beafd85c4e2f1576ac15fa3e2ecf8bc9165eae0f83d37ace89afd72a45a376e 8088 smarty3_3.1.10-2+deb7u2.debian.tar.gz 55487c87bc0dcf7132f524057b7afac7f22fe88feb9624517e05c082074ed999 209414 smarty3_3.1.10-2+deb7u2_all.deb Files: a8e94b06659bc48bc173ae9dc78f7e1d 1890 web optional smarty3_3.1.10-2+deb7u2.dsc 727cc6056a636ed18b7661671e096b1f 1644260 web optional smarty3_3.1.10.orig.tar.gz 62a444478833ef0575218aa345eb10db 8088 web optional smarty3_3.1.10-2+deb7u2.debian.tar.gz 0d04837bfeaf2f1ccc7afdb14da7befa 209414 web optional smarty3_3.1.10-2+deb7u2_all.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAlph1/EACgkQHpU+J9Qx HliXoQ//Vf/baHAf0IRPwN/YbH1Dm2tNqX+Q7h+k9DZ5v6M0VHC1IQV3aTHMVNlG rP8JVx/b6ItnnnmdyrGeWDNzlWkkOiLHX2OhSYqIMaDxV0W/ziFvJ3YB16CqKwfB BbZmkw1xwmju01pVrBaBClz7rASkp/7WuDTiBhJ8xC3Y0PWCUGrhLOwZV+WsaxY8 LvjUDV8OOJACZKjPRo778g3xtQqbk9FsmKSusefHTsCne0JSbjScYL3giAgcnznB 87s1EHun8FAlECirAmw2GnnKpEcbaC518gHXuox4vBAMpaoA7/2wWWwlRWW9EB1M nOPLMumsqKdLAzVS6+IBrNyV3mBJZtGHz+tg2rivH1hs1Lq45ivOZ9vYGc0D1QGb 9Tm0BBfRBE+rh1hdkI6DXz0jOfXpVi0ZUHHa6rILDQzs+FG4W5kfopAJSzvKlC4d xXMvDkCcDLIeJFa/ucsv7J9aHN/UzdqKXSOHKcrvpMaEfvn9617xQ7DXj8ToKh1q aDnMdk0EYwUddaRmtJSm+wgu92Grz1YQpp7HWd64EK0Rbis+9xESjwVR8Zs15gYH W0As1qvtjfj67BRdnNV21zDLhOCcEJC+wvXrEpqQoZMJG4DMrk9H39TBYTjWYeZa zNuCsOLp8146g94a7ygyeW0sjf+7cCTtUuTs5Q+w1J0ioB3GxrU= =HOaR -----END PGP SIGNATURE-----