-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Fri, 14 Aug 2009 23:22:04 +0100 Source: logrotate Binary: logrotate Architecture: source i386 Version: 3.7.8-4 Distribution: unstable Urgency: high Maintainer: Paul Martin <pm@debian.org> Changed-By: Paul Martin <pm@debian.org> Description: logrotate - Log rotation utility Closes: 388608 Changes: logrotate (3.7.8-4) unstable; urgency=high . * New patch: + security-388608.patch: A race condition in the creation of compressed and copied log files makes it possible to overwrite arbitrary files by generating a link or symlink during a window of opportunity between logrotate renaming a log file and creating the copy of the next. (Closes: #388608) Once again, many thanks to Florian Zumbiehl for forcing me to think. * Uploading to unstable. Checksums-Sha1: 151551081caf64058d916ca0784b924ff5fbe420 1024 logrotate_3.7.8-4.dsc 093bd3c377e49135f48ced1698474bf39a53fabb 19405 logrotate_3.7.8-4.diff.gz 1fdc711cad3bd9d2b502aa5048e1f9ecd257f39a 42390 logrotate_3.7.8-4_i386.deb Checksums-Sha256: 8bc92ebbab9a29f6176498aacd6651faf6eaaf9ae2171f916fc389fc9d15e029 1024 logrotate_3.7.8-4.dsc 97e68faa5466d26a9a00f9c212e731351b081f784e4836e38cd038d8e94680eb 19405 logrotate_3.7.8-4.diff.gz bec7210b498a4886f3217ce2e1cf21426fbb72936203fd3d1feba89097cf5c1f 42390 logrotate_3.7.8-4_i386.deb Files: b39b76c54ff8ae2abd343c79b8f9da52 1024 admin important logrotate_3.7.8-4.dsc 4401128624b0d361fda968e180e0d78e 19405 admin important logrotate_3.7.8-4.diff.gz dd91de5d549c7c2ea95af91b8fef48e1 42390 admin important logrotate_3.7.8-4_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iD8DBQFKheWW+gi+rt7UWRIRAp5pAJ4oIUuP8Q1O7BtHty51xxJCAJboqgCeNgfB 5aC942CbkPqV7vbQ3kAl0cI= =71IE -----END PGP SIGNATURE----- Accepted: logrotate_3.7.8-4.diff.gz to pool/main/l/logrotate/logrotate_3.7.8-4.diff.gz logrotate_3.7.8-4.dsc to pool/main/l/logrotate/logrotate_3.7.8-4.dsc logrotate_3.7.8-4_i386.deb to pool/main/l/logrotate/logrotate_3.7.8-4_i386.deb
