-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Mon, 17 Jan 2011 15:47:37 +0000 Source: ia32-libs Binary: ia32-libs ia32-libs-dev Architecture: source amd64 Version: 20110117 Distribution: unstable Urgency: low Maintainer: Debian ia32-libs Team <pkg-ia32-libs-maintainers@lists.alioth.debian.org> Changed-By: Thijs Kinkhorst <thijs@debian.org> Description: ia32-libs - ia32 shared libraries for use on amd64 and ia64 systems ia32-libs-dev - ia32 development files for use on amd64 and ia64 systems Closes: 610089 Changes: ia32-libs (20110117) unstable; urgency=low . * Do not disable secure APT when downloading packages (closes: #610089) * Add security repository next to the regular Debian mirror. . * Packages updated: . [ cyrus-sasl2 (2.1.23.dfsg1-7) unstable; urgency=low ] . [ Luca Capello ] * Fix for (#601977), the idea coming from Gaudenz Steinlin <gaudenz@debian.org>: + debian/control: - cyrus-sasl2-dbg Depends: on one of the two GSSAPI dbg packages. - new cyrus-sasl2-mit-dbg package which Conflicts: with cyrus-sasl2-heimdal-dbg. - cyrus-sasl2-heimdal-dbg now Conflicts: with cyrus-sasl2-mit-dbg. + debian/cyrus-sasl2-heimdal-dbg.preinst: - remove, useless. + debian/cyrus-sasl2-heimdal-dbg.postrm: - remove, useless. + debian/cyrus-sasl2-mit-dbg.dirs: - create /usr/lib/debug/usr/lib/sasl2/. + debian/rules: - mv MIT libgssapiv2.so.2.0.23 into cyrus-sasl2-mit-dbg. . [ Roberto C. Sanchez ] * Thanks to Luca Capello for providing the patch. . [ dbus (1.2.24-4) unstable; urgency=high ] . * debian/patches/12-CVE-2010-4352-reject-deeply-nested-variants.patch - Fixes CVE-2010-4352: sending messages with excessively-nested variants can crash the bus. The existing restriction to 64-levels of nesting previously only applied to the static type signature; now it also applies to dynamic nesting using variants. Patch cherry-picked from upstream Git. * Urgency high for the security fix. . [ isdnutils (1:3.9.20060704+dfsg.2-4.1) testing-proposed-updates; urgency=low ] . * Non-maintainer upload. * debian/{ipppd,isdnvboxserver,isdnvboxserver}.postinst: Call MAKEDEV in /dev not via search path (#604219, #604211, #597926, #604216). Thanks to Alexander Reichle-Schmehl for the patch. . [ krb5 (1.8.3+dfsg-4) unstable; urgency=medium ] . * Ignore PACs without a server signature generated by OS X Open Directory rather than failing authentication, #604925 . [ krb5 (1.8.3+dfsg-3) unstable; urgency=emergency ] . * MITKRB5-SA-2010-007 * CVE-2010-1324: An unauthenticated attacker can inject arbitrary content into an existing GSS connection that appears to be integrity protected from the legitimate peer under some circumstances * GSS applications may accept a PAC produced by an attacker as if it were signed by a KDC * CVE-2010-1323: attackers have a 1/256 chance of being able to produce krb_safe messages that appear to be from legitimate remote sources. Other than use in KDC database copies this may not be a huge issue only because no one actually uses krb_safe messages. Similarly, an attacker can force clients to display challenge/response values of the attacker's choice. * CVE-2010-4020: An attacker may be able to generate what is accepted as a ad-signedpath or ad-kdc-issued checksum with 1/256 probability * New Vietnamese debconf translations, Thanks Clytie Siddall, #601533 * Update standards version to 3.9.1 (no changes required . [ libasyncns (0.3-1.1) unstable; urgency=low ] . * Non-maintainer upload. * libasyncns/asyncns.c: Fix data alignment issue on armel, backported from upstream. (#566139) . [ libx11 (2:1.3.3-4) unstable; urgency=low ] . * Cherry-pick patches from upstream, 1.3-branch: - man: Fix typo in Makefile - Bug 27465 - Rewritten fi_FI.UTF-8 Compose file - Fix typo in new fi_FI.UTF-8 that was reported by "make check" - man: Redirect users from XKeycodeToKeysym to XkbKeycodeToKeysym #25732 - man: Fix return value specification of XkbKeyActionEntry - man: Return value of XkbGetState is Status and not Bool - man: Add missing geometry component flag - man: Correct the XkbAllAccessXEventsMask mask name - Fix manual typos. - Allow X11 users to compose anarchism - Clarify requirements in XRestackWindows man page - Fix typo that made configure always report "none" for man page suffix - Define FILE_MAN_DIR_SUFFIX so XCompose shadow page has correct path - Compose.man: default user compose file is .XCompose, not .Xcompose - Make Compose-comma map to Ogonek for A and E in UTF-8 locales. - Make Compose-comma map to ogonek for I and U in UTF-8 locales. - NLS: Add o/ Compose sequence - nls: Switch one of the interrobang sequences to gnaborretni - Bug 29773: aliases for nb_NO.utf8 and nn_NO.utf8 . [ libxi (2:1.3-6) unstable; urgency=medium ] . * WireToEvent: Set display member of all events as well (cherry-pick from upstream). . [ libxml2 (2.7.8.dfsg-2) unstable; urgency=low ] . * xpath.c: Fix a double-freeing error in XPath processing code. (CVE-2010-4494). #607922. . [ openldap (2.4.23-7) unstable; urgency=low ] . * Updated vietnamese translation, thanks Clytie Siddall (#601537, #598575) * Updated portuguese translation, thanks Traduz (#599760) * Updated danish translation, thanks Joe Dalton (#599835) . [ openssl (0.9.8o-4) unstable; urgency=low ] . * Fix CVE-2010-4180 (#529221) . [ sane-backends (1.0.21-9) unstable; urgency=low ] . * debian/patches/fix_epson2_cancel.patch: + Added; fix handling of scanner errors by sending a cancel command (#597922). . [ sane-backends (1.0.21-8) unstable; urgency=low ] . * debian/patches/fix_epson2_commands.patch: + Added; fix list of supported commands for levels D1 and D2 (#582066). . [ util-linux (2.17.2-5) unstable; urgency=low ] . * Merge in all those NMUs that were never pushed to me in bugs. . [ util-linux (2.17.2-4) unstable; urgency=low ] . [Miklos Szeredi] . * mount: don't canonicalize "spec" with --no-canonicalize option. #593336 . [Karel Zak] . * fdisk: fix freespace boundaries calculation on SGI disklabel. #510130 . [LaMont Jones] . * Deliver agetty as both agetty and getty, preferring agetty. #117596 * Declare source format (1.0) * use debconf (iff installed) to warn about noauto fileysstems with non-zero pass numbers. #566072 * update lintian-overrides, actually install them in the deb Checksums-Sha1: dc6c06ca1311cd89b97c4c3a636092c782c44fed 1526 ia32-libs_20110117.dsc 0d1fe96a938e5cdbf42392cbed007cbea5a35229 336493121 ia32-libs_20110117.tar.gz af879a3b7ff3b5db011157cd54dc7b3b6641d5b9 34214006 ia32-libs_20110117_amd64.deb 6f95dba105053dc554adfee3784344302a9e902c 13064278 ia32-libs-dev_20110117_amd64.deb Checksums-Sha256: fc4fa19b91d1dbef7facc743be17205a0863cb1f6af9575b6a13a4d68a755368 1526 ia32-libs_20110117.dsc 9837e0d653d61cb8f00ba6851aa433b97866da5b1fc3028ca46db2c766b3a0b5 336493121 ia32-libs_20110117.tar.gz 32d5e34cdcb9d67b0cc9393c5e4b1118b2494a553440727f09683b74b9a600f5 34214006 ia32-libs_20110117_amd64.deb 2ade1bbc9bc96ef590a6bb2fb14c14dde03db4b640377e6bdbc389a9995d6566 13064278 ia32-libs-dev_20110117_amd64.deb Files: da3e395be06fc0bb241613eb764c43dc 1526 libs optional ia32-libs_20110117.dsc 0c929a31120e74fa38d759025646c85d 336493121 libs optional ia32-libs_20110117.tar.gz 230ef034d5469ca780b09109360e248d 34214006 libs optional ia32-libs_20110117_amd64.deb b3eda10a7d0e2493017c59a2ac736ea4 13064278 libdevel extra ia32-libs-dev_20110117_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iQEcBAEBAgAGBQJNNc5HAAoJEOxfUAG2iX576mMIANIqrAYV7Z/7ArNXU6cVSpd1 9Wv0ZYuBAyfX55LS+GDlMRD3kJuemYSd3SIQw9rtatI+3nHeyDlJuljU6OCgvnIs /hgkX/C4IWpermTPZnHOL2QvA6HBcGb2BdkLR+0Gd4Twk0ZRbVv2hPKwdik90gGz kZfp1RWmc/3fVGi+2yhvxArkSRkLA1DtX32oTE0ZjkdtxusMfTiDu77fQJlgExWd o4klcIWBJW74/AFBYmE6463h85u1f1LebnbvjYHCdeoEDaootnl8EDvoRhWaQiQd 1lxFVzd7OU6NmjxL+ZuKarssqih6VJ+SADJT9jqjOW1H5gwW9M29sxsgczAzG/s= =2gKt -----END PGP SIGNATURE----- Accepted: ia32-libs-dev_20110117_amd64.deb to main/i/ia32-libs/ia32-libs-dev_20110117_amd64.deb ia32-libs_20110117.dsc to main/i/ia32-libs/ia32-libs_20110117.dsc ia32-libs_20110117.tar.gz to main/i/ia32-libs/ia32-libs_20110117.tar.gz ia32-libs_20110117_amd64.deb to main/i/ia32-libs/ia32-libs_20110117_amd64.deb