Debian Package Tracker

From: Josselin Mouette <joss@debian.org>
To: <debian-changes@lists.debian.org>
Subject: Accepted glib2.0 2.16.6-3 (source all amd64)
Date: Sat, 05 Dec 2009 21:22:41 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Sat, 14 Nov 2009 16:19:20 +0100
Source: glib2.0
Binary: libglib2.0-0 libglib2.0-udeb libglib2.0-dev libglib2.0-0-dbg libglib2.0-data libglib2.0-doc libgio-fam
Architecture: source all amd64
Version: 2.16.6-3
Distribution: stable
Urgency: low
Maintainer: Loic Minier <lool@dooz.org>
Changed-By: Josselin Mouette <joss@debian.org>
Description: 
 libgio-fam - GLib Input, Output and Streaming Library (fam module)
 libglib2.0-0 - The GLib library of C routines
 libglib2.0-0-dbg - The GLib libraries and debugging symbols
 libglib2.0-data - Common files for GLib library
 libglib2.0-dev - Development files for the GLib library
 libglib2.0-doc - Documentation files for the GLib library
 libglib2.0-udeb - The GLib library of C routines - minimal runtime (udeb)
Changes: 
 glib2.0 (2.16.6-3) stable; urgency=low
 .
   * SECURITY: 13_permissions_CVE-2009-3289.patch:
     + The g_file_copy function in glib 2.0 sets the permissions of a
       target file to the permissions of a symbolic link (777), which
       allows user-assisted local users to modify files of other users,
       as demonstrated by using Nautilus to modify the permissions of the
       user home directory.
     + Concatenation of 3 upstream patches, fixes CVE-2009-3289.
Checksums-Sha1: 
 69037515c08001575f5dc96a2286d7f10465db2b 1476 glib2.0_2.16.6-3.dsc
 66c774b9cd0d8d612bc9f813ca35412b52068909 34133 glib2.0_2.16.6-3.diff.gz
 091b47fc88f25f86e2adabf486185e89f88f6331 700482 libglib2.0-data_2.16.6-3_all.deb
 d9497c60e1053192528e46a002a9683290e361d6 1153228 libglib2.0-doc_2.16.6-3_all.deb
 5c88fb0be8a78271b862bffe8604b090d4e8757b 827638 libglib2.0-0_2.16.6-3_amd64.deb
 809376f23d9f7a4860f5b9258e4592c0b44db303 1311868 libglib2.0-udeb_2.16.6-3_amd64.udeb
 7ee693f409716f172259e8a41cd0b9bfc7355992 988638 libglib2.0-dev_2.16.6-3_amd64.deb
 c9e4cbeb63480317e473bd180f4cd5ba2094a463 1207600 libglib2.0-0-dbg_2.16.6-3_amd64.deb
 12dad742ab6a5a63b12edf1192872777a30c8aa1 46660 libgio-fam_2.16.6-3_amd64.deb
Checksums-Sha256: 
 7b46ba0e9325fe6dab474b5ceb638b345b1a3074928e758dafcfb1b19c83aa55 1476 glib2.0_2.16.6-3.dsc
 635966d6b1b12330ecd903d3476a84a7efae0e4c86040801c2d9e39922389d65 34133 glib2.0_2.16.6-3.diff.gz
 c82847fbcf5ba15379de112f4f8b79f6df521033fa00c77f6020448391d94667 700482 libglib2.0-data_2.16.6-3_all.deb
 08c453bddd19fd405383a7686c322398bb7de15c39e5cf972557a706537c1d9c 1153228 libglib2.0-doc_2.16.6-3_all.deb
 47c791f526975fbc172e853a1e321a3718d825f0a75953b68e0701727697fed4 827638 libglib2.0-0_2.16.6-3_amd64.deb
 f41bd229ccfe60b59588547ff02305a3dad9490782f6da6685e4462f6bb52d5f 1311868 libglib2.0-udeb_2.16.6-3_amd64.udeb
 f9107fe120a866fc2a26181fbe33176128b9c3fca84425ffcb1dcd577b0f9a27 988638 libglib2.0-dev_2.16.6-3_amd64.deb
 bb0e8b0db4ea4d7beb246b6a4c8f0827d8b1d555b3a3554693379a62a47e56c8 1207600 libglib2.0-0-dbg_2.16.6-3_amd64.deb
 e2d1fa5d768e6766346f503811ab0181262cae547b0a27b8a74766f3b4fd58d9 46660 libgio-fam_2.16.6-3_amd64.deb
Files: 
 3ad73c8b002e96fc52c459f89703f7fd 1476 libs optional glib2.0_2.16.6-3.dsc
 daebfc46fc87d9b869dfcc62a0e7482c 34133 libs optional glib2.0_2.16.6-3.diff.gz
 9830f58a48988513b88f1cfbfd966397 700482 misc optional libglib2.0-data_2.16.6-3_all.deb
 438234d70ed7451c2c7cd3446a0491a9 1153228 doc optional libglib2.0-doc_2.16.6-3_all.deb
 b0b100e51617bb11b6bdc82258fb8b7f 827638 libs optional libglib2.0-0_2.16.6-3_amd64.deb
 322b8b4eccf6ff11e17af2a87009c11b 1311868 debian-installer optional libglib2.0-udeb_2.16.6-3_amd64.udeb
 e6a1e1340517e63d14938f7f0b79c9ae 988638 libdevel optional libglib2.0-dev_2.16.6-3_amd64.deb
 53818d0615692fd83b44d54adfb17e46 1207600 libdevel extra libglib2.0-0-dbg_2.16.6-3_amd64.deb
 d8d55a04439e9e470eb1f7a7369a2d79 46660 libs optional libgio-fam_2.16.6-3_amd64.deb
Package-Type: udeb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iD8DBQFK/tRErSla4ddfhTMRAkiHAKDlXy3nOkuuD1wufWcGihAy6Fc/ZgCfdHLd
+qfSQ5uiN7GYoTY+7e48qzk=
=s73i
-----END PGP SIGNATURE-----


Accepted:
glib2.0_2.16.6-3.diff.gz
  to main/g/glib2.0/glib2.0_2.16.6-3.diff.gz
glib2.0_2.16.6-3.dsc
  to main/g/glib2.0/glib2.0_2.16.6-3.dsc
libgio-fam_2.16.6-3_amd64.deb
  to main/g/glib2.0/libgio-fam_2.16.6-3_amd64.deb
libglib2.0-0-dbg_2.16.6-3_amd64.deb
  to main/g/glib2.0/libglib2.0-0-dbg_2.16.6-3_amd64.deb
libglib2.0-0_2.16.6-3_amd64.deb
  to main/g/glib2.0/libglib2.0-0_2.16.6-3_amd64.deb
libglib2.0-data_2.16.6-3_all.deb
  to main/g/glib2.0/libglib2.0-data_2.16.6-3_all.deb
libglib2.0-dev_2.16.6-3_amd64.deb
  to main/g/glib2.0/libglib2.0-dev_2.16.6-3_amd64.deb
libglib2.0-doc_2.16.6-3_all.deb
  to main/g/glib2.0/libglib2.0-doc_2.16.6-3_all.deb
libglib2.0-udeb_2.16.6-3_amd64.udeb
  to main/g/glib2.0/libglib2.0-udeb_2.16.6-3_amd64.udeb
News for package glib2.0
