Debian Package Tracker

From: Simon Horman <horms@debian.org>
To: <debian-testing-changes@lists.debian.org>
Subject: Accepted perdition 1.17-8+lenny1 (source i386)
Date: Tue, 13 Nov 2007 09:47:03 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Wed, 31 Oct 2007 13:30:14 +0900
Source: perdition
Binary: perdition perdition-postgresql perdition-mysql perdition-ldap perdition-dev perdition-odbc
Architecture: source i386
Version: 1.17-8+lenny1
Distribution: testing-security
Urgency: high
Maintainer: Simon Horman <horms@debian.org>
Changed-By: Simon Horman <horms@debian.org>
Description: 
 perdition  - POP3 and IMAP4 Proxy server
 perdition-dev - Development libraries and headers for perdition
 perdition-ldap - Library to allow perdition to access LDAP based popmaps
 perdition-mysql - Library to allow perdition to access MySQL based popmaps
 perdition-odbc - Library to allow perdition to access ODBC based popmaps
 perdition-postgresql - Library to allow perdition to access PostgreSQL based popmaps
Changes: 
 perdition (1.17-8+lenny1) testing-security; urgency=high
 .
   * Verify that tag read from end-users is valid
     - CVE-2007-5740
       The format string protection mechanism in IMAPD for Perdition Mail
       Retrieval Proxy 1.17 and earlier allows remote attackers to execute
       arbitrary code via an IMAP tag with a null byte followed by a format
       string specifier, which is not counted by the mechanism.
Files: 
 8057b1b2ae946ea044744c658dfb3e29 910 mail optional perdition_1.17-8+lenny1.dsc
 70eef35fcc872f7f97f33fa108ca75b5 115397 mail optional perdition_1.17-8+lenny1.diff.gz
 397aff76eab6e173b62848b70ea9376d 122062 mail optional perdition_1.17-8+lenny1_i386.deb
 6869319e5e881815bbaa7fb146f33ddc 7172 mail optional perdition-dev_1.17-8+lenny1_i386.deb
 03cedd789b297b41c3afa25ece0404be 16070 mail optional perdition-ldap_1.17-8+lenny1_i386.deb
 fda934747776a4936307474d1eb6ed08 15056 mail optional perdition-mysql_1.17-8+lenny1_i386.deb
 b1c5f862a0178caef2c2eda49c3b6efa 14906 mail optional perdition-odbc_1.17-8+lenny1_i386.deb
 f59a9eea11d7a9897c766424fb0655db 14898 mail optional perdition-postgresql_1.17-8+lenny1_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFHNmi6A8ACPgVBDpcRApByAJ0XKiWj62CHjrgkAHXrvm2nHZRJuwCfV9N0
A9MjqLTRzXs4svfxZe9TukA=
=+XLR
-----END PGP SIGNATURE-----


Accepted:
perdition-dev_1.17-8+lenny1_i386.deb
  to pool/main/p/perdition/perdition-dev_1.17-8+lenny1_i386.deb
perdition-ldap_1.17-8+lenny1_i386.deb
  to pool/main/p/perdition/perdition-ldap_1.17-8+lenny1_i386.deb
perdition-mysql_1.17-8+lenny1_i386.deb
  to pool/main/p/perdition/perdition-mysql_1.17-8+lenny1_i386.deb
perdition-odbc_1.17-8+lenny1_i386.deb
  to pool/main/p/perdition/perdition-odbc_1.17-8+lenny1_i386.deb
perdition-postgresql_1.17-8+lenny1_i386.deb
  to pool/main/p/perdition/perdition-postgresql_1.17-8+lenny1_i386.deb
perdition_1.17-8+lenny1.diff.gz
  to pool/main/p/perdition/perdition_1.17-8+lenny1.diff.gz
perdition_1.17-8+lenny1.dsc
  to pool/main/p/perdition/perdition_1.17-8+lenny1.dsc
perdition_1.17-8+lenny1_i386.deb
  to pool/main/p/perdition/perdition_1.17-8+lenny1_i386.deb
News for package perdition
