Debian Package Tracker

From: gregor herrmann <gregoa@debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted iodine 0.6.0~rc1-19 (source amd64)
Date: Tue, 17 Jun 2014 19:03:29 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 17 Jun 2014 20:50:54 +0200
Source: iodine
Binary: iodine
Architecture: source amd64
Version: 0.6.0~rc1-19
Distribution: unstable
Urgency: high
Maintainer: gregor herrmann <gregoa@debian.org>
Changed-By: gregor herrmann <gregoa@debian.org>
Description:
 iodine     - tool for tunneling IPv4 data through a DNS server
Closes: 751834
Changes:
 iodine (0.6.0~rc1-19) unstable; urgency=high
 .
   * Add patch 0001-Fix-authentication-bypass-bug.patch from upstream's
     iodine-0.6.0 branch.
 .
     This fixes a security problem where the client could bypass the password
     check by continuing after getting an error from the server and guessing
     the network parameters and the server would still accept the rest of the
     setup and also network traffic. The patch adds checks for normal and raw
     mode that user has authenticated before allowing any other communication.
 .
     Thanks to Salvatore Bonaccorso for the bug report, and Erik Ekman for
     backporting the fix super fast.
     (Closes: #751834)
 .
     Set urgency=high.
 .
   * Declare compliance with Debian Policy 3.9.5.
Checksums-Sha1:
 52e503284bedb3970c61b50cc3dd32551b2749dc 2064 iodine_0.6.0~rc1-19.dsc
 fa9a67df80775ba8236132c22818dcd867c8fda7 24328 iodine_0.6.0~rc1-19.debian.tar.xz
 3ed28f69a03fe468f61fb24ee67e8e0d6ecc6dc6 86512 iodine_0.6.0~rc1-19_amd64.deb
Checksums-Sha256:
 3682c0477523ae1e5cc2fc74ac57ce22af661d8b3c1070b890aade7d50c14d98 2064 iodine_0.6.0~rc1-19.dsc
 9a91089cbb8d8dcc7b70dbfa995d8f1fcdd36da641d9cec85da6662059d84723 24328 iodine_0.6.0~rc1-19.debian.tar.xz
 f7ea219c154d3d0cc916c1643eaa719a4e17f70741ad9c776139544b5f497200 86512 iodine_0.6.0~rc1-19_amd64.deb
Files:
 d3c27abe85ac8c21b34ec29606465595 86512 net extra iodine_0.6.0~rc1-19_amd64.deb
 400033f8968708f5c6e7aa01fb3704d3 2064 net extra iodine_0.6.0~rc1-19.dsc
 7951cf486be2fdb24dbfc958e73a4160 24328 net extra iodine_0.6.0~rc1-19.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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==
=07A3
-----END PGP SIGNATURE-----
News for package iodine
