Debian Package Tracker

From: Simon Horman <horms@debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted perdition 1.17.1-1 (source i386)
Date: Thu, 01 Nov 2007 06:32:06 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Wed, 31 Oct 2007 11:44:22 +0900
Source: perdition
Binary: perdition perdition-postgresql perdition-mysql perdition-ldap perdition-dev perdition-odbc
Architecture: source i386
Version: 1.17.1-1
Distribution: unstable
Urgency: high
Maintainer: Simon Horman <horms@debian.org>
Changed-By: Simon Horman <horms@debian.org>
Description: 
 perdition  - POP3 and IMAP4 Proxy server
 perdition-dev - Development libraries and headers for perdition
 perdition-ldap - Library to allow perdition to access LDAP based popmaps
 perdition-mysql - Library to allow perdition to access MySQL based popmaps
 perdition-odbc - Library to allow perdition to access ODBC based popmaps
 perdition-postgresql - Library to allow perdition to access PostgreSQL based popmaps
Changes: 
 perdition (1.17.1-1) unstable; urgency=high
 .
   * New Upstream
     - Verify that tag read from end-users is valid
       + CVE-2007-5740
         The format string protection mechanism in IMAPD for Perdition Mail
         Retrieval Proxy 1.17 and earlier allows remote attackers to execute
         arbitrary code via an IMAP tag with a null byte followed by a format
         string specifier, which is not counted by the mechanism.
     - Merged in all changes made between 1.17-1 and 1.17-8 inclusive
Files: 
 b93c6ac306e489e8d0e88d3405fd1544 899 mail optional perdition_1.17.1-1.dsc
 5464c517f8be810519b6187b694c9d98 638162 mail optional perdition_1.17.1.orig.tar.gz
 986d667d175f138a7f98217de5a51369 437 mail optional perdition_1.17.1-1.diff.gz
 b8a52f8c2efdeac8887c094a8534eded 121624 mail optional perdition_1.17.1-1_i386.deb
 d036180d27d620d091945b1016b787de 7182 mail optional perdition-dev_1.17.1-1_i386.deb
 7653602ab6c5ec652905cae4180be706 16122 mail optional perdition-ldap_1.17.1-1_i386.deb
 5a101131a0854c168a246c0662e26410 15132 mail optional perdition-mysql_1.17.1-1_i386.deb
 f82c36c5c006c1d01fc84240eed90dcb 14970 mail optional perdition-odbc_1.17.1-1_i386.deb
 b74aa0fe5b0c27f2e5994651d1a97b99 14932 mail optional perdition-postgresql_1.17.1-1_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFHKW2eA8ACPgVBDpcRAo9HAKDJfyL9t1xaXf512HHiudRsCw17ewCfRSdh
Qao5XC6+OhE4F39y0wAj2Ik=
=PvDR
-----END PGP SIGNATURE-----


Accepted:
perdition-dev_1.17.1-1_i386.deb
  to pool/main/p/perdition/perdition-dev_1.17.1-1_i386.deb
perdition-ldap_1.17.1-1_i386.deb
  to pool/main/p/perdition/perdition-ldap_1.17.1-1_i386.deb
perdition-mysql_1.17.1-1_i386.deb
  to pool/main/p/perdition/perdition-mysql_1.17.1-1_i386.deb
perdition-odbc_1.17.1-1_i386.deb
  to pool/main/p/perdition/perdition-odbc_1.17.1-1_i386.deb
perdition-postgresql_1.17.1-1_i386.deb
  to pool/main/p/perdition/perdition-postgresql_1.17.1-1_i386.deb
perdition_1.17.1-1.diff.gz
  to pool/main/p/perdition/perdition_1.17.1-1.diff.gz
perdition_1.17.1-1.dsc
  to pool/main/p/perdition/perdition_1.17.1-1.dsc
perdition_1.17.1-1_i386.deb
  to pool/main/p/perdition/perdition_1.17.1-1_i386.deb
perdition_1.17.1.orig.tar.gz
  to pool/main/p/perdition/perdition_1.17.1.orig.tar.gz
News for package perdition
