-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 16 Apr 2022 03:43:12 +0200 Source: salt Built-For-Profiles: noudeb Architecture: source Version: 3004.1+dfsg-1 Distribution: unstable Urgency: medium Maintainer: Debian Salt Team <pkg-salt-team@alioth-lists.debian.net> Changed-By: Benjamin Drung <bdrung@debian.org> Closes: 1006036 1008896 1008945 Changes: salt (3004.1+dfsg-1) unstable; urgency=medium . * New upstream security/bugfix release. (Closes: #1008945) - Sign authentication replies to prevent MiTM (CVE-2022-22935) - Prevent job and fileserver replays (CVE-2022-22936) - Sign pillar data to prevent MiTM attacks. (CVE-2202-22934) - Fixed targeting bug, especially visible when using syndic and user auth. (CVE-2022-22941) (#60413) - Fix denial of service in junos ifconfig output parsing. * d/watch: Drop number from repack suffix * Refresh patches * Mark test_list_available_packages requiring network * Rely on pytest-skip-markers 1.1.0-3 that supports NO_INTERNET * Don't rely on importlib.metadata, it's still not ready for our usage (Closes: #1008896) * test_aptpkg.py: Fix UnboundLocalError: local variable 'test_repo' (Closes: #1006036) * Update my email address to @debian.org Checksums-Sha1: 91dcc739adee3a196928f055564f95fc552eedf8 4699 salt_3004.1+dfsg-1.dsc 39531d5eeb7c7ae9273c6f4e33d329c37162eef7 12587748 salt_3004.1+dfsg.orig.tar.xz 6661df66586012a1409cbf0fe7f81d0b9f13e9db 126180 salt_3004.1+dfsg-1.debian.tar.xz e902af1ae060d49af49a6304c98e415e54cab18b 10291 salt_3004.1+dfsg-1_source.buildinfo Checksums-Sha256: 906a279291ac8092dd56e18f660d0e34bd0527cbb14578aa0e8f2f043746c6a6 4699 salt_3004.1+dfsg-1.dsc c66e13363e9e8803aeb58433429bd17a004ad596a70a93cfdf7ea3c925ca2307 12587748 salt_3004.1+dfsg.orig.tar.xz 816fe7469b0bdb17f16c0b5117ca73450b1d05f2919c02bcc438abecae9483e9 126180 salt_3004.1+dfsg-1.debian.tar.xz 961db1e2ce56bdc94b5ea224a27e2fe59abbb50e7e5624f6d59876a0ec6aa6c0 10291 salt_3004.1+dfsg-1_source.buildinfo Files: d530132f823be6d199e293813a375bf2 4699 admin optional salt_3004.1+dfsg-1.dsc 8ece5fdeac8df4704769be95d020d79e 12587748 admin optional salt_3004.1+dfsg.orig.tar.xz f76a8196ae776f25d5738ae698943ab1 126180 admin optional salt_3004.1+dfsg-1.debian.tar.xz 664f5025f9ae8ba957b06d315a5de95d 10291 admin optional salt_3004.1+dfsg-1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEpi0s+9ULm1vzYNVLFZ61xO/Id0wFAmJaH6IACgkQFZ61xO/I d0xxJQ/8D3FS6iZ8MCg7qvoqD2nOZ/LwMhHlOHE1+Lulic8O+i5v0J0VCyosE+Vp JEO93Au3oFWyqNDCARBmq5FsDarhKANS0hbSmnv7HX+ZdcdayUJXgK8LMSamAxLS o1+SlSVYoP9ex2LadKplcvLV3eW3kIoXlG3FnjoBje9Qw6xg70qtA4xMM0T3oh0g phYt286Cp9YaHRSpsO/5GYS8BaPWdFsalIzNeMIe2hZs0Oshd17NrY28yLSUHyql wZlEhB4G9dcGOg9w2fWEJOWvFh6wp6TNznSSkgO1zeyi2NfUVDKeuaMKDjF12kZl PI5SVNbm2Fwbh+nY5GKjdlC1g5PDABSMbKxGwzBQ/QunhN1xLGqkvK5kmBIUFdrL NJNIykON4GDjK+P7EOD3K/YLKZBbvEh4/Auir85FrqP3LYLkCK29MJsHtt5rEqZH 25HH91XQrUw3XEqoELLnKHU/1PWSiiQGPgrKrpeKSPZINm0xwmZLCQadR6HLdmsq TG2hhREFxsOsEAQTacj+C3ew7GIoWJVHgBEohE0vg9FXwzVluhItaVPpC6vE55fd JgkBkHB9qQUl1Vq9dAA8fIcJbJHbLgVVdDWIvDvW+wg2aKU01TAXw0KuSQ8gjJzM dnwMRDxQm9/Mnm4hAB4EcwTaqX1go/8M7dVetpYOipD9DgoEia8= =EFaE -----END PGP SIGNATURE-----
