-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sun, 18 Dec 2011 20:44:15 +0100 Source: libpar-packer-perl Binary: libpar-packer-perl Architecture: amd64 source Version: 1.006-1+squeeze1 Distribution: stable Urgency: low Maintainer: Debian Perl Group <pkg-perl-maintainers@lists.alioth.debian.org> Changed-By: Salvatore Bonaccorso <carnil@debian.org> Closes: 650706 Description: libpar-packer-perl - utility for creating PAR archives and stand-alone executables Changes: libpar-packer-perl (1.006-1+squeeze1) stable; urgency=low . * Team upload. * Add create-safe-temporary-directories.patch patch. Fixes CVE-2011-4114: PAR packed files are extracted to unsafe and predictable temporary directories. (Closes: #650706) * Bump (Build-)Depends on libpar-perl. Bump the dependencies to libpar-perl (>= 1.000-1+squeeze1) as this version contains the other half of the fix for CVE-2011-4114. * Add run_all_tests_using_a_nonce_PAR_TMPDIR.patch. Run all tests using a nonce PAR_TMPDIR (a leftover /tmp/par-USER directory from previous builds may now be considered "unsafe") Checksums-Sha1: 01ea0ea6429563d89ca5501c49da3152c26b88b8 1810918 libpar-packer-perl_1.006-1+squeeze1_amd64.deb 36eda1efa5b30d5b93c2748270e9f1acd6123859 2457 libpar-packer-perl_1.006-1+squeeze1.dsc 0c4a09f8c6e44adfe815a0459faf0bd5cf3ca1e8 8716 libpar-packer-perl_1.006-1+squeeze1.debian.tar.gz Checksums-Sha256: 500b2f38a1512c19798a00851ecafee85420496f20d5caf074aae373de367de7 1810918 libpar-packer-perl_1.006-1+squeeze1_amd64.deb 150eda4af4dd01f348e9426846fcd83a00d8e627e1d5d82f61d3f931d779c38c 2457 libpar-packer-perl_1.006-1+squeeze1.dsc 6ed0d2805398c4e7dc4654da73a19e1257a2aed677917042f80bdd2f34a3ac72 8716 libpar-packer-perl_1.006-1+squeeze1.debian.tar.gz Files: a26fa5f9dfe6e629921c93179bc96c0d 1810918 perl optional libpar-packer-perl_1.006-1+squeeze1_amd64.deb fcdb17f24ed411cf970a40b72aace4fe 2457 perl optional libpar-packer-perl_1.006-1+squeeze1.dsc 167e60d47773f4a30ebd7a4c11c9b935 8716 perl optional libpar-packer-perl_1.006-1+squeeze1.debian.tar.gz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQIcBAEBCAAGBQJO+WpWAAoJEHidbwV/2GP+cu4P/3sf5MsWbTvHkRv5PtnWYc4F Gx6pggvwyU4I13GloK6drBSX3ZvMSipk5TAbcEPJvEzQWFUZxBjnV/8FCVsUbRxX /0C1HpKTrCUA3evKWbADmS1JJjEoFuSUjA0AHPnI05uqE2FZxzMaItfzotUF7Rpl 6yS5xAeDzFJGH95rEjKgPKjaYOatVSwCey3cb0mZ65l5SHs7BeLxFjGwIRBug0bK 6gD4lSoJnuyoF/3CZ0UFWMPwwhJmfHo4nCaddiB7tgj8Pr9Nn9UdAZ2se2+TLxVT dHxbB2vSdFB+mg6QYqLhBqtHfygt1wN9+o5nSmRGogDyjjPTUYkNv4ZD7NCHgoRO MaOxufoo+EPbEauGEs6SbEl9/n29h+vTRNM0SAvhRflsZdoTaxXn5xtprGYD0XS1 nV0B5bUceCru1FdlFq3/rBRKK7t5Byb46L4bcqDHvebmiLZu88QKKcRA/it8n89H tHLjT9ub1nqF3KN38ynKjcz0FeoUY9t7SCma68ICcR+3EWpFsxenKBtHtggxMx/U nWPm4nKVEceuTGnHkkaKDY2w6D3IThNfuUZkK0I8j+aQpt0jp8jeCWTapIa7+iiT EbGw4h02C/eWMwDkJrKO+MIPLXNhE7itcjJUjZynVjXRbLKmrj57XoDCPWfFJ71v wEjBEEkK2H3rRvmyEAeX =x5Yv -----END PGP SIGNATURE----- Accepted: libpar-packer-perl_1.006-1+squeeze1.debian.tar.gz to main/libp/libpar-packer-perl/libpar-packer-perl_1.006-1+squeeze1.debian.tar.gz libpar-packer-perl_1.006-1+squeeze1.dsc to main/libp/libpar-packer-perl/libpar-packer-perl_1.006-1+squeeze1.dsc libpar-packer-perl_1.006-1+squeeze1_amd64.deb to main/libp/libpar-packer-perl/libpar-packer-perl_1.006-1+squeeze1_amd64.deb