-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sun, 09 Jun 2024 19:24:43 +0200 Source: python-aiosmtpd Architecture: source Version: 1.4.6-1 Distribution: unstable Urgency: medium Maintainer: Debian Python Team <team+python@tracker.debian.org> Changed-By: Jakob Haufe <sur5r@debian.org> Closes: 1066820 1072119 Changes: python-aiosmtpd (1.4.6-1) unstable; urgency=medium . [ Dale Richards ] * Team upload. * New upstream version 1.4.6 - CVE-2024-27305 - SMTP smuggling due to poor handling of non-standard line endings (Closes: #1066820) - CVE-2024-34083 - STARTTLS unencrypted command injection (Closes: #1072119) * d/watch: Update for new version format. * Update patch line offsets for new upstream version. * Add .gitattributes file to use CRLF line endings for aiosmtpd/tests/test_smtpsmuggling.py, so the checked out file matches the one in the upstream release tarball. * Bump Standards-Version to 4.7.0, no changes needed. Checksums-Sha1: 90e3401186c0cd0a417f33938cb96d3ea0bb588b 2252 python-aiosmtpd_1.4.6-1.dsc 3635c0bb5dd42c587753c7772a453977e7f643b7 153666 python-aiosmtpd_1.4.6.orig.tar.gz 40bb6ef9e9e8a4910c923c11e0837ac4658e06e2 6988 python-aiosmtpd_1.4.6-1.debian.tar.xz e135c2e5b99b03f0400a7cad6ce697e15c2bf6c0 7308 python-aiosmtpd_1.4.6-1_source.buildinfo Checksums-Sha256: bc94ce2679039eb6264cb0c7d15774f322a306db86544b0b979aacbef3cb6f33 2252 python-aiosmtpd_1.4.6-1.dsc 297d28b1b57da9debe5c0f8815fc153cd17605120a59f6200735a720445c5337 153666 python-aiosmtpd_1.4.6.orig.tar.gz 06b589629f1656b625ae19ba5861129abf97e92fd0643b4a83d9aad596e67dfa 6988 python-aiosmtpd_1.4.6-1.debian.tar.xz f3ceb954f351d2525a637b7f80a99dc9ee5191f8c5effa8c297ad2a51aae3739 7308 python-aiosmtpd_1.4.6-1_source.buildinfo Files: 883580e39e6c0957a3aa24826a0e2d93 2252 python optional python-aiosmtpd_1.4.6-1.dsc 6e8c6828395c3e5a37573e693d4c0e29 153666 python optional python-aiosmtpd_1.4.6.orig.tar.gz 0c6ea50cc2995c7e34042a6c064d11d7 6988 python optional python-aiosmtpd_1.4.6-1.debian.tar.xz 6ade3b26bd102fcffead9caa149696f7 7308 python optional python-aiosmtpd_1.4.6-1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQJFBAEBCgAvFiEEe/X2rDZDH11A3BN6TPKyGPVNrj0FAmZl5aoRHHN1cjVyQGRl Ymlhbi5vcmcACgkQTPKyGPVNrj28QxAAr39as3Cw1yc2gIKYJbPdk+63ICAk40cu 9bXMD8TvkTSso4txlLvASHTABehiD1lqrPGnSSQoOYgpUUg634QLl+DmjATXxFYT 32WLJ684XZR8fZP/KWAEWlOJN1luwZZgP+TvKQMRwHpfuvEJ/1iYPJdf/DcFO0sq 6pMj9TQMV27+DNWBZ4CFGb9OKZ1iE4JRpQnfj/pE4+I5j2zEq7nS+4xHVmKq6AQq 8mQMnqnFUebtjHJmNMQg/aDjWRQFx1N+UuuFUE6IxeYBNY5zl7MMjElB+F7Qkeww u6OHsmq6sh+rU86mdUPr3PaIWTiQGi6ci5JxPzoBxOjLm/ERRvKg+7jtUE6kFfLc otmOzmkiHsOeRPr2pT5Uw4SfBoKzN6rRf5Af32tkick/Ykr43AzKSHd8vgMeYSZX wcruoa74NDTRVEJtwxtA4RL4yVWTczhiO2vmFMEwfiQ1a5ytyoNidotWrNRKN/Bx 2twabXxQrj9181CZbV7UZX/PVJByEA84yuuMUK7FjdC4yApBsfLKRnTVZMyRYjDK Gl2XVchUxJh3V5IM1t6O1NnwZSRtlrEFwPFjB3wuZf8a8vdxlqxNM1ez1Z3JjTLW xzjeRJlehyC3+CcY43/XcGsDQBgkvryzFRxu76iL2oQ8xIU6DggehhB7OkYha+Br Rrc+MYYrl5A= =Kf2p -----END PGP SIGNATURE-----
