Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted znuny 6.5.8-1 (source) into unstable
Date: Fri, 19 Apr 2024 15:10:47 +0000
Signed by: Patrick Matthäi <pmatthaei@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Fri, 19 Apr 2024 16:09:51 +0200
Source: znuny
Architecture: source
Version: 6.5.8-1
Distribution: unstable
Urgency: high
Maintainer: Patrick Matthäi <pmatthaei@debian.org>
Changed-By: Patrick Matthäi <pmatthaei@debian.org>
Changes:
 znuny (6.5.8-1) unstable; urgency=high
 .
   * New upstream release.
     - Fixes CVE-2024-32493: Fixed SQL injection issue regarding Form IDs when
       cleaning up drafts.
     - Fixes CVE-2024-32491: Fixed security issue with uploading files that could
       be placed to any writable location and used for remote code execution.
Checksums-Sha1:
 37aa93647af3f0600871f2309d9938c1857325af 1819 znuny_6.5.8-1.dsc
 6cf51f8c5306692fcb2fbd9c84ca4501244bccfa 43724755 znuny_6.5.8.orig.tar.gz
 38112643af5a64c4d9b5bd7df6061f40dd558a9d 56192 znuny_6.5.8-1.debian.tar.xz
 aa465218cc3f107f5b6d57913b2216518d77d9c6 6326 znuny_6.5.8-1_source.buildinfo
Checksums-Sha256:
 2493bab29c80be6157b5668a2a44a0153b0b2bcdb7b022f71534f34e69f64c34 1819 znuny_6.5.8-1.dsc
 a85735b2f3496a17230022ccfaea3fe370a07eafd80301237c0457ed1c0c9e67 43724755 znuny_6.5.8.orig.tar.gz
 61307431d3e95f5b4866e997e97e31d1b0a181e8201a74fb197a35baf930da75 56192 znuny_6.5.8-1.debian.tar.xz
 661433175269463c17c47dffa1009b382c90fe8064ab549f0d9a28d57329b144 6326 znuny_6.5.8-1_source.buildinfo
Files:
 cb74b2931d68aa0cd69a91c1e4bc9bba 1819 non-free/web optional znuny_6.5.8-1.dsc
 9316884761dfb460d04e822588f6fdf4 43724755 non-free/web optional znuny_6.5.8.orig.tar.gz
 962c6e2a21a6d8e221a3fcdb6b4e3465 56192 non-free/web optional znuny_6.5.8-1.debian.tar.xz
 a4e71befda36deac355522b698081c84 6326 non-free/web optional znuny_6.5.8-1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=ZNXO
-----END PGP SIGNATURE-----

News for package znuny