Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-lts-changes@lists.debian.org> , <dispatch@tracker.debian.org>
Subject: Accepted tryton-client 5.0.33-1+deb11u1 (source) into oldstable-security
Date: Sun, 19 Jan 2025 20:50:22 +0000
Signed by: Daniel Leidert <dleidert@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 19 Jan 2025 21:14:30 +0100
Source: tryton-client
Architecture: source
Version: 5.0.33-1+deb11u1
Distribution: bullseye-security
Urgency: high
Maintainer: Debian Tryton Maintainers <team+tryton-team@tracker.debian.org>
Changed-By: Daniel Leidert <dleidert@debian.org>
Changes:
 tryton-client (5.0.33-1+deb11u1) bullseye-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * d/patches/zipbomb-fix-regressiuon-fix.patch: Add patch to fix a regression
     caused by the tryton-server fix for the zipbomb vulnerability.
     - tryton-server was vulnerable to a zipbomb attack. The fix, allowing
       gzipped content only in a session, caused a regression where content was
       sent gzipped even without a session leading to an error. This fixes the
       regression.
Checksums-Sha1:
 f3f560b188e3bc75c654748a6d815db2edd30cf3 2235 tryton-client_5.0.33-1+deb11u1.dsc
 2693c1a7019eb8b0d0375103ff286bc552eca77d 581647 tryton-client_5.0.33.orig.tar.gz
 3255d7e5f19ea55b48ac2c63aa62973d588a3389 20356 tryton-client_5.0.33-1+deb11u1.debian.tar.xz
 927ed6d50e64a10330933885c69fe3a61cb99dba 11995 tryton-client_5.0.33-1+deb11u1_amd64.buildinfo
Checksums-Sha256:
 5cb55334f4c6160c0c5596a8ef99b6d759976871c423328cbf2b75709ac3d538 2235 tryton-client_5.0.33-1+deb11u1.dsc
 e620aef77bdf880d591bf955829e820e64f3162506f202f26a266983b3ed2acf 581647 tryton-client_5.0.33.orig.tar.gz
 f724493ed5be575a94c01501a80e40f353e873de323ffca5f9f679241a141fa8 20356 tryton-client_5.0.33-1+deb11u1.debian.tar.xz
 44122f1b485b7cc7bce2832b7c761d0818ba4311c9c0ba926b5833912a234af8 11995 tryton-client_5.0.33-1+deb11u1_amd64.buildinfo
Files:
 9c5cb3f5793dc5708280bb35d69386e0 2235 python optional tryton-client_5.0.33-1+deb11u1.dsc
 16b34e66d0ff7892a3ec69426cc66241 581647 python optional tryton-client_5.0.33.orig.tar.gz
 d1d34158fe3e271fab0071129167ba83 20356 python optional tryton-client_5.0.33-1+deb11u1.debian.tar.xz
 c7bdee323c31d26c007bff71916b8bef 11995 python optional tryton-client_5.0.33-1+deb11u1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=qMLh
-----END PGP SIGNATURE-----

News for package tryton-client