Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To:
Subject: Accepted python-apt 1.8.4.2 (source) into stable->embargoed, stable
Date: Wed, 09 Dec 2020 16:36:26 +0000
Signed by: Julian Andres Klode <jak@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 01 Dec 2020 20:18:12 +0100
Source: python-apt
Architecture: source
Version: 1.8.4.2
Distribution: buster-security
Urgency: high
Maintainer: APT Development Team <deity@lists.debian.org>
Changed-By: Julian Andres Klode <jak@debian.org>
Changes:
 python-apt (1.8.4.2) buster-security; urgency=high
 .
   * SECURITY UPDATE: various memory and file descriptor leaks (LP: #1899193)
     - python/arfile.cc, python/generic.h, python/tag.cc, python/tarfile.cc:
       fix file descriptor and memory leaks
     - python/apt_instmodule.cc, python/apt_instmodule.h, python/arfile.h:
       Avoid reference cycle with control,data members in apt_inst.DebFile
       objects
     - tests/test_cve_2020_27351.py: Test cases for DebFile (others not easily
       testable)
     - CVE-2020-27351
   * data/templates: Update mirror lists
Checksums-Sha1:
 b391afdf3b056f4b54faa08bff5dc1d590f256a2 2459 python-apt_1.8.4.2.dsc
 07901c78a7f09643519ed7d48c56b3311767c36a 344640 python-apt_1.8.4.2.tar.xz
 ec68d41d6b7e73c5c4d06d7e2aa860a5f4de12cd 10051 python-apt_1.8.4.2_source.buildinfo
Checksums-Sha256:
 2bd6d6272cf8401d21a7ab37c1974e7ba93e3659342a43c16eee9a06bcc84c4c 2459 python-apt_1.8.4.2.dsc
 0899aa56e8d9e79ff6e7539391dddb8c9e2faf6231e9a862809d2eb11bc8280c 344640 python-apt_1.8.4.2.tar.xz
 033994911ffc547cdc8b61d09101f4160f38c7a2d16dddc719646376fd9b1019 10051 python-apt_1.8.4.2_source.buildinfo
Files:
 a63ad19840eef9bec15b6e2c8a2995d8 2459 python optional python-apt_1.8.4.2.dsc
 4d02734bb20a962f2075e463fc288749 344640 python optional python-apt_1.8.4.2.tar.xz
 f08dda69ca6a01b1fabcd53ec583ed7c 10051 python optional python-apt_1.8.4.2_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=CTOk
-----END PGP SIGNATURE-----

News for package python-apt