-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Thu, 10 Jun 2010 15:50:02 +0200 Source: prewikka Binary: prewikka Architecture: source all Version: 1.0.0-1.1 Distribution: unstable Urgency: high Maintainer: Pierre Chifflier <pollux@debian.org> Changed-By: Nico Golde <nion@debian.org> Description: prewikka - Security Information Management System [ Web Interface ] Closes: 584469 Changes: prewikka (1.0.0-1.1) unstable; urgency=high . * Non-maintainer upload by the Security Team. * Install prewikka.conf file with mode 0640 to prevent disclosure of db credentials (CVE-2010-2058; Closes: #584469). NOTE to maintainer: I've seen there is a chmod 640 at the end of the postinst script but this is on the one hand prone to a race condition and on the other hand not always effective. Checksums-Sha1: 5b8a48508f2ef161db79634640baa71473dd6333 1040 prewikka_1.0.0-1.1.dsc 1857b8fd3a1ae8d2fd8746acf775c4a050dc9daf 10860 prewikka_1.0.0-1.1.diff.gz 7c59fe5eb7fc83a3b7812b152e764681d29fdefe 339668 prewikka_1.0.0-1.1_all.deb Checksums-Sha256: c44edc5f2e23f64e4eddd4ec0a3e499fb7b9fdf36cd46403274dd276a72e81fd 1040 prewikka_1.0.0-1.1.dsc b5d49e9461dd1ee70447a04a3182ecb0fb90916069eba3ce7f1b12dda5f7c46d 10860 prewikka_1.0.0-1.1.diff.gz 7b17c3f8ed01843e6d6005f505d6f0bf3b3d4fe1670147584279e48196382994 339668 prewikka_1.0.0-1.1_all.deb Files: bab136b84f8bacfa30a5e6f01cbb8354 1040 web extra prewikka_1.0.0-1.1.dsc 332f1209d678483b41a0e55a0b88fc13 10860 web extra prewikka_1.0.0-1.1.diff.gz 6e0e0ccd0c89bb1156673fe0577f0160 339668 web extra prewikka_1.0.0-1.1_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAkwQ8agACgkQHYflSXNkfP98PQCeM12yscKs+7n/kh+9sKovBACF t/IAoJU4jR84tdJ8fHcWDBCThEQkncTo =Z0Ok -----END PGP SIGNATURE----- Accepted: prewikka_1.0.0-1.1.diff.gz to main/p/prewikka/prewikka_1.0.0-1.1.diff.gz prewikka_1.0.0-1.1.dsc to main/p/prewikka/prewikka_1.0.0-1.1.dsc prewikka_1.0.0-1.1_all.deb to main/p/prewikka/prewikka_1.0.0-1.1_all.deb