-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Mon, 29 Dec 2008 19:55:02 +0100 Source: xterm Binary: xterm Architecture: source amd64 Version: 222-1etch3 Distribution: stable-security Urgency: high Maintainer: Debian X Strike Force <debian-x@lists.debian.org> Changed-By: Florian Weimer <fw@deneb.enyo.de> Description: xterm - X terminal emulator Closes: 510030 Changes: xterm (222-1etch3) stable-security; urgency=high . * Apply patch from Paul Szabo to fix command injection through DECRQSS sequences (CVE-2008-2383). Closes: #510030. * Disable font shifting, X property changes and user-defined keys through escape sequences. * Update manpage to document that allowWindowOps is disabled. Files: 3bcc850fe7c9057e5d5d03617cc95195 1123 x11 optional xterm_222-1etch3.dsc bb77882a33083632a9c6c9de004a54fb 802986 x11 optional xterm_222.orig.tar.gz f1e11e4f4c85db1e2ffa67c5d132d2e6 61664 x11 optional xterm_222-1etch3.diff.gz 46ba9b4430c313464afeaa856d02f09a 416434 x11 optional xterm_222-1etch3_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iQEcBAEBAgAGBQJJWR4ZAAoJEL97/wQC1SS+KRgH/iW0y9ELbX5gUQesaLPkm2CW tZkUbpUsLABkXS1oCaFMq5TM9S07s9axQwd2QJnhqAe8eyEHsHw3m4TYeJlstFU4 VRU6RhtxgFGWggerJ+offTf9tSHk2AMnGpImH9mupSnAK9V71/1lxnnt1Ho76wjg 3Wsg8RlYWn+4RP3QqOF09HaDrgbsYUqwk5cqFwI3cpNsy7NtqdLbL8W4qFib5l2v IngsmRObVJcprXJIQKe1egmcMUjoCJMHWXDWdARh7BhrpuYJw0aK6GUq1PVYzL+3 XlBw9eQ2Rfp1SQInSvZDDR3vaJNr+nTs3OObfImDXPOU+q7wHuR/6m0//0siHmA= =FO61 -----END PGP SIGNATURE----- Accepted: xterm_222-1etch3.diff.gz to pool/main/x/xterm/xterm_222-1etch3.diff.gz xterm_222-1etch3.dsc to pool/main/x/xterm/xterm_222-1etch3.dsc xterm_222-1etch3_amd64.deb to pool/main/x/xterm/xterm_222-1etch3_amd64.deb
