-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sun, 21 Jul 2019 12:20:38 +0000 Source: patch Architecture: source Version: 2.7.6-5 Distribution: unstable Urgency: high Maintainer: Laszlo Boszormenyi (GCS) <gcs@debian.org> Changed-By: Laszlo Boszormenyi (GCS) <gcs@debian.org> Closes: 932401 Changes: patch (2.7.6-5) unstable; urgency=high . * Fix CVE-2019-13636: mishandled following of symlinks (closes: #932401). * Fix CVE-2019-13638: shell command injection. Checksums-Sha1: fb3e8123a6e811719de8f22cdb960e1bd5383a7a 1699 patch_2.7.6-5.dsc 8817614c12fd7bd41dff18f3f6b16d14b7053c1f 13348 patch_2.7.6-5.debian.tar.xz Checksums-Sha256: 87b0b1814b84d8170359efb25f9c67e8e6c4e6dc38abc417328292165a8a447b 1699 patch_2.7.6-5.dsc df316da8d48c848bebbfe4970a274ac5514eade0f0e8373f53a67899d459a80a 13348 patch_2.7.6-5.debian.tar.xz Files: 73d7cc848f3b8f27b5e7ea7a56c96398 1699 vcs optional patch_2.7.6-5.dsc 6089cc5c78b5c4db143ebabe63143aaf 13348 vcs optional patch_2.7.6-5.debian.tar.xz -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEfYh9yLp7u6e4NeO63OMQ54ZMyL8FAl00cEwACgkQ3OMQ54ZM yL+LGw//ZO7ZnjCKcDKDOL8VTUTVyO+lfZ68rgjcF+0bnNtsAAkv4ZfICSOWkgUo H7gSgaklZMP4j+J/SdG/vJ79Jkr3P1+z9lMomcE+XsuMhF4AUHWilSIXMZ8KVsde wy6lRXcMqL8SrRFsHQZtcDr0RvzX6j3aOucgTv+2CbDYNLVsrxtCWerVeMZL8EOq EuCluDvepVva/WjiNOBYX3GApKfjGtADxxCO3aSnnRQ/pi1KrGKdio9XG9xtPopY 4iKJ8WswRBinPyTMUKtgOFByPviGDjvL29LKzDY2LvDXOmsWl/HTi9gZXllybzUl o2xNG8Tx0/CgdOcIJRowM5zZlnxSxVwk2uWVltAeor3zpj9yeR23nnCBC1/eXo1F GL9QGwmNIlDj+xaDOPjFCmPzMCwRgvSEOyAjLwfkM4uRizBlsoy5euoC8F+4FZDy l+o2wKiLRbQdyYoiajHHUymlBbpe/MTSrl2W0eHnBWKvtMxbHIEgbGNuRegPF1sB OZHKsAACW2YKQicpAF1mcaCmXznk7VExIr1tLfP2Fnv88yQFkOEaNDN8ZIM5ALkG C4ywDEeTKDN+GUbX9GLpOGfZBmj9fnoWi0AsgBCwpSuq2V2GBJdV8AaGlExJvrul vKuSTiOSvUI8xxD9zpoqx+E1XsfgvH6M1X4/XQLLKEBxFwZseFw= =NKWC -----END PGP SIGNATURE-----
