Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-changes@lists.debian.org>
Subject: Accepted cairosvg 2.5.0-1.1+deb11u1 (source) into proposed-updates
Date: Fri, 07 Apr 2023 10:02:08 +0000
Signed by: Salvatore Bonaccorso <carnil@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 23 Mar 2023 20:51:51 +0100
Source: cairosvg
Architecture: source
Version: 2.5.0-1.1+deb11u1
Distribution: bullseye-security
Urgency: high
Maintainer: Debian Python Team <team+python@tracker.debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Closes: 1033295
Changes:
 cairosvg (2.5.0-1.1+deb11u1) bullseye-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Don't allow fetching external files unless explicitly asked for
     (CVE-2023-27586) (Closes: #1033295)
Checksums-Sha1:
 6dafb710f0e598b2ad145e058950f646eeba681b 2397 cairosvg_2.5.0-1.1+deb11u1.dsc
 12a1e41cef6167f7e207ca6d128fe39ee46f0158 8340610 cairosvg_2.5.0.orig.tar.gz
 9c4f5e448f74931af7413728ec01746a3e5bdb18 7992 cairosvg_2.5.0-1.1+deb11u1.debian.tar.xz
 353c64eefc0894ce2b463af02c67e26cca23c0b7 7692 cairosvg_2.5.0-1.1+deb11u1_source.buildinfo
Checksums-Sha256:
 fb962bb09f09dbbaebb2c2205e3bb97e93e050b2ac13078d87a14574cb035799 2397 cairosvg_2.5.0-1.1+deb11u1.dsc
 1560c66c119a1f74348293f484be4aef837b9691502c228e5e0f4824a0b6dfa5 8340610 cairosvg_2.5.0.orig.tar.gz
 69d2e1ea6934de434af38355e8186b6d72a4ceb2e517b03190db9e3e664e620d 7992 cairosvg_2.5.0-1.1+deb11u1.debian.tar.xz
 ae18d2d715d923e9bb3707e0456c5a4bb99f2d98bb5fa29e9c3024b6c3996680 7692 cairosvg_2.5.0-1.1+deb11u1_source.buildinfo
Files:
 633383b28b5c6209e492211a078ea4af 2397 python optional cairosvg_2.5.0-1.1+deb11u1.dsc
 08fafc33e0f747b9240558e4865af3e9 8340610 python optional cairosvg_2.5.0.orig.tar.gz
 aede5f5ba2213942aafb0d687ebb88ac 7992 python optional cairosvg_2.5.0-1.1+deb11u1.debian.tar.xz
 89d81645ccd59a846d68520808bf5cea 7692 python optional cairosvg_2.5.0-1.1+deb11u1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=X8KN
-----END PGP SIGNATURE-----

News for package cairosvg