Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To:
Subject: Accepted moin 1.9.9-1+deb10u1 (source) into stable->embargoed, stable
Date: Mon, 09 Nov 2020 20:24:41 +0000
Signed by: Salvatore Bonaccorso <carnil@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 09 Nov 2020 12:57:19 +0100
Source: moin
Architecture: source
Version: 1.9.9-1+deb10u1
Distribution: buster-security
Urgency: high
Maintainer: Steve McIntyre <93sam@debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Changes:
 moin (1.9.9-1+deb10u1) buster-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * security: fix stored XSS vulnerability via SVG attachment (CVE-2020-15275)
   * security: fix remote code execution via cache action (CVE-2020-25074)
   * Tweak Debian version used to 1.9.9-1+deb10u1 to avoid possible version
     clash with lower suite.
Checksums-Sha1: 
 2a9b97d264ee9088b90d9b23b22c1ba92f4c5d50 2052 moin_1.9.9-1+deb10u1.dsc
 d582126c443939cb09e650eeddd677ed7e8c3f99 37206341 moin_1.9.9.orig.tar.gz
 c3bd8e4c5f204017c23e9339b654ea0ff811d857 153852 moin_1.9.9-1+deb10u1.debian.tar.xz
Checksums-Sha256: 
 2d935497a89f396a9282af23f05c5522386abc62ff14ca72b649ebf5558a378c 2052 moin_1.9.9-1+deb10u1.dsc
 4397d7760b7ae324d7914ffeb1a9eeb15e09933b61468072acd3c3870351efa4 37206341 moin_1.9.9.orig.tar.gz
 9c2f7e77db8b30fb57712e3e1efd173331352c8e4c5d19ed0c2eed662f5b69c2 153852 moin_1.9.9-1+deb10u1.debian.tar.xz
Files: 
 cb539631bc91d24fbd657c91c53c4ab1 2052 net optional moin_1.9.9-1+deb10u1.dsc
 32f02a5d0df06b80d889ca6cdc51593e 37206341 net optional moin_1.9.9.orig.tar.gz
 4d0f2f50fcd6dd8625dafeec44654afd 153852 net optional moin_1.9.9-1+deb10u1.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=fMQR
-----END PGP SIGNATURE-----

News for package moin