Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted dojo 1.10.2+dfsg-1+deb8u3 (source all) into oldoldstable
Date: Wed, 11 Mar 2020 17:30:17 +0000
Signed by: Utkarsh Gupta <utkarsh@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Wed, 11 Mar 2020 22:18:24 +0530
Source: dojo
Binary: libjs-dojo-core libjs-dojo-dijit libjs-dojo-dojox
Architecture: source all
Version: 1.10.2+dfsg-1+deb8u3
Distribution: jessie-security
Urgency: high
Maintainer: Debian Javascript Maintainers <pkg-javascript-devel@lists.alioth.debian.org>
Changed-By: Utkarsh Gupta <utkarsh@debian.org>
Description:
 libjs-dojo-core - modular JavaScript toolkit
 libjs-dojo-dijit - modular JavaScript toolkit - Dijit
 libjs-dojo-dojox - modular JavaScript toolkit - DojoX
Closes: 953585 953587
Changes:
 dojo (1.10.2+dfsg-1+deb8u3) jessie-security; urgency=high
 .
   * Non-maintainer upload by the LTS team.
   * Add patch to fix Prototype Pollution in the deepCopy method
     within dojo. (Closes: #953585) (Fixes: CVE-2020-5258)
   * Add patch to fix Prototype Pollution in the Dojox jQuery wrapper
     jqMix mixin method. (Closes: #953587) (Fixes: CVE-2020-5259)
Checksums-Sha1:
 49f376743d16877818dcb6f5a2912e77677868f2 2313 dojo_1.10.2+dfsg-1+deb8u3.dsc
 1d8e439bcd82270d162984f1bcecccb22389c641 23761152 dojo_1.10.2+dfsg.orig.tar.xz
 bbb7bd22929171b821bf3a80e732c71fe9837a22 22080 dojo_1.10.2+dfsg-1+deb8u3.debian.tar.xz
 1f0ad020eb3c525516abda5514f7cbd6850fbbe9 497146 libjs-dojo-core_1.10.2+dfsg-1+deb8u3_all.deb
 d8237bc6d496fd683c7ee0b1baabfaba3e9d18d2 811630 libjs-dojo-dijit_1.10.2+dfsg-1+deb8u3_all.deb
 88087aa585324de0471875f70ff993636d3024e9 2725782 libjs-dojo-dojox_1.10.2+dfsg-1+deb8u3_all.deb
Checksums-Sha256:
 165abef8b85d65958fefc3a54497f32c162da3c0c0575bc9e277934b57102ace 2313 dojo_1.10.2+dfsg-1+deb8u3.dsc
 8863d86917521188b2b927bc8f35eb6fe77ead668c2feea4786aad7fe0e5134c 23761152 dojo_1.10.2+dfsg.orig.tar.xz
 f82ebc3e11ee4434f4cac451aada85bf9b91367be998d1f911d599b6df5dd868 22080 dojo_1.10.2+dfsg-1+deb8u3.debian.tar.xz
 9ec224ec8507dd79fe864d71d4c208241cc16453af126cb3ebee37ae6336807c 497146 libjs-dojo-core_1.10.2+dfsg-1+deb8u3_all.deb
 0952d931fe504f087bded811db48ef659e8346417c3dfab5000af9863b5304e1 811630 libjs-dojo-dijit_1.10.2+dfsg-1+deb8u3_all.deb
 8d7373cfe6ede0e1253812d44778a257b23dd434c24bb1ecb399dbffba6520fa 2725782 libjs-dojo-dojox_1.10.2+dfsg-1+deb8u3_all.deb
Files:
 4ed24547746bbaf6cb41846c4b55b401 2313 web optional dojo_1.10.2+dfsg-1+deb8u3.dsc
 9f60de8a5384af3f485ed4fe7b3279ba 23761152 web optional dojo_1.10.2+dfsg.orig.tar.xz
 22f754dd81f212e9ef0f5fe68e53709c 22080 web optional dojo_1.10.2+dfsg-1+deb8u3.debian.tar.xz
 e216e24a153658bb8d3a539062938d60 497146 web optional libjs-dojo-core_1.10.2+dfsg-1+deb8u3_all.deb
 e96e528399d1eabcb2416e6ff787e354 811630 web optional libjs-dojo-dijit_1.10.2+dfsg-1+deb8u3_all.deb
 3b44b16e7307f9d2a63b75b335e7e387 2725782 web optional libjs-dojo-dojox_1.10.2+dfsg-1+deb8u3_all.deb

-----BEGIN PGP SIGNATURE-----
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=wAkL
-----END PGP SIGNATURE-----
News for package dojo
