Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted lemonldap-ng 2.0.11+ds-4 (source) into unstable
Date: Thu, 22 Jul 2021 20:48:57 +0000
Signed by: Xavier Guimard <yadd@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 22 Jul 2021 22:13:38 +0200
Source: lemonldap-ng
Architecture: source
Version: 2.0.11+ds-4
Distribution: unstable
Urgency: high
Maintainer: Debian Perl Group <pkg-perl-maintainers@lists.alioth.debian.org>
Changed-By: Yadd <yadd@debian.org>
Changes:
 lemonldap-ng (2.0.11+ds-4) unstable; urgency=high
 .
   * Import security fixes from 2.0.12
     * Session cache corruption can lead to authorization bypass or spoofing
       (Closes: CVE-2021-35472)
     * OAuth2 handler does not verify access token validity
       (Closes: CVE-2021-35473)
     * Fix XSS on register form
     * Don't display TOTP secret to connected user, neither in logs
Checksums-Sha1: 
 30ac055df17ddad7655fd357c7541cb76ccccbfb 4767 lemonldap-ng_2.0.11+ds-4.dsc
 4a8cecbf2e123fdef4cb1ee7298d08ffe068f737 48476 lemonldap-ng_2.0.11+ds-4.debian.tar.xz
Checksums-Sha256: 
 8a9f84f22fa6e9f635d9d32e325aa1d58d8ee9acc2129a17428311e5c8bd4a16 4767 lemonldap-ng_2.0.11+ds-4.dsc
 64b03108dcb028c415925872ec8f1c1ec2e326c037d92588da89c4a81b54b527 48476 lemonldap-ng_2.0.11+ds-4.debian.tar.xz
Files: 
 4e72e16e469dfceabdf1d412e7b88066 4767 perl optional lemonldap-ng_2.0.11+ds-4.dsc
 c98e1e7abacd7b03c4b12684ce9cc09f 48476 perl optional lemonldap-ng_2.0.11+ds-4.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
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=PQbr
-----END PGP SIGNATURE-----

News for package lemonldap-ng