Debian Package Tracker

From: David Gil <dgil@telefonica.net>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted acidbase 1.2.4-1 (source all)
Date: Thu, 11 May 2006 14:32:08 -0700
Signed by: Javier Fernández-Sanguino Peña <jfs@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Mon, 03 Apr 2006 12:16:33 +0200
Source: acidbase
Binary: acidbase
Architecture: source all
Version: 1.2.4-1
Distribution: unstable
Urgency: high
Maintainer: David Gil <dgil@telefonica.net>
Changed-By: David Gil <dgil@telefonica.net>
Description: 
 acidbase   - Basic Analysis and Security Engine
Closes: 348881 349597 351230 361139 366432
Changes: 
 acidbase (1.2.4-1) unstable; urgency=high
 .
   * New upstream release, which fixes many bugs including the following security bug:
     - base_maintenance.php in BASE before 1.2.4 (melissa), when running in
       standalone mode, allows remote attackers to bypass authentication,
       possibly by setting the standalone parameter to "yes".
       This fixes CVE-2006-1505 (Closes: #361139.)
   * Added patch to fix a warning replacing strings in CleanVariable:
     - debian/patches/03_fix_warning_in_CleanVariable.dpatch: added.
     - debian/patches/00list: updated.
   * Now base_conf.php has all its strings quoted with ' instead of ":
     - debian/patches/01_default_config.dpatch: updated.
     - debian/patches/02_update_external_links.dpatch: updated.
   [  Javier Fernandez-Sanguino ]
   * Po-debconf translation updates:
      - Swedish by Daniel Nylander (Closes: #348881)
      - Portuguese by Miguel Figueiredo (Closes: #349597)
      - French by "Steve" (Closes: #351230, #366432)
Files: 
 beb00fcae4b395366ccf553e0921cb1a 683 web optional acidbase_1.2.4-1.dsc
 b2ddd1a695bb0f673186ff1ff99c0ad1 337362 web optional acidbase_1.2.4.orig.tar.gz
 92cb468543303f8705cdd1c65ca1bf3a 14246 web optional acidbase_1.2.4-1.diff.gz
 b015bee2152a64b2a9cca61ae7573577 344078 web optional acidbase_1.2.4-1_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)

iD8DBQFEY2bCsandgtyBSwkRAuzzAJ9zEq3ZeU6d9x/zfoABbJBA6z3ucwCffiJ7
KVmLdY7q7aA/RcNQBpaV1T0=
=RLNg
-----END PGP SIGNATURE-----


Accepted:
acidbase_1.2.4-1.diff.gz
  to pool/main/a/acidbase/acidbase_1.2.4-1.diff.gz
acidbase_1.2.4-1.dsc
  to pool/main/a/acidbase/acidbase_1.2.4-1.dsc
acidbase_1.2.4-1_all.deb
  to pool/main/a/acidbase/acidbase_1.2.4-1_all.deb
acidbase_1.2.4.orig.tar.gz
  to pool/main/a/acidbase/acidbase_1.2.4.orig.tar.gz

News for package acidbase