Debian Package Tracker

From: Chris Lamb <lamby@debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted geordi 0:20080916T2006-2 (source amd64)
Date: Wed, 28 Jan 2009 23:17:03 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Wed, 28 Jan 2009 21:54:03 +0000
Source: geordi
Binary: geordi
Architecture: source amd64
Version: 0:20080916T2006-2
Distribution: unstable
Urgency: low
Maintainer: Chris Lamb <lamby@debian.org>
Changed-By: Chris Lamb <lamby@debian.org>
Description: 
 geordi     - IRC bot and interactive shell that evaluates C++ snippets
Changes: 
 geordi (0:20080916T2006-2) unstable; urgency=low
 .
   * Ignore (rather than allow) fcntl system call to prevent a DoS. Upstream
     writes:
 .
       By using fcntl with F_SETOWN to make the geordi process the owner of its
       stdout and then using fcntl again to set O_ASYNC on stdout, the C++
       program could have the geordi process receive SIGIO, causing it to shut
       down.
 .
       We only allowed fcntl because g++ appeared to need it. Upon closer
       inspection, it turns out g++ only uses it to check some flags on the
       precompiled header fd, and the system call can just be ignored
       altogether.
 .
     Patch backported from upstream darcs repository.
Checksums-Sha1: 
 2f24c00f6b66fbba1bf6ac155e1c88920a64c849 1311 geordi_20080916T2006-2.dsc
 fee8f32d706515285ba049d34aa5cde53f81378a 10629 geordi_20080916T2006-2.diff.gz
 8f0816ec4e936785bc71650e8d2280fe8ecbc3e8 976494 geordi_20080916T2006-2_amd64.deb
Checksums-Sha256: 
 b0a365b5100a5edc33e1482d5dcd701a1481481d9e6a62e7a25aede48f3a7a91 1311 geordi_20080916T2006-2.dsc
 4c01778bee82b2ecf2e21f5b4eed8841490ae5c01eb9fb427022b4dc4d01c323 10629 geordi_20080916T2006-2.diff.gz
 2ec476265d2fb1d4aac303a96b4eeb35e8bb3dad0beb4c5343293c9f4a8d337a 976494 geordi_20080916T2006-2_amd64.deb
Files: 
 39b1933215a7f9ac534cd44f7a2b7cf5 1311 net optional geordi_20080916T2006-2.dsc
 a11dc6e785746aef194505b550849100 10629 net optional geordi_20080916T2006-2.diff.gz
 00c84d5e0f41693799b9a0521b4019fb 976494 net optional geordi_20080916T2006-2_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkmA4rQACgkQ5/8uW2NPmiBDXQCdHzY7D0ee/Gev+ZzvWGGflgV2
4z4AnRZtCpLJ6q9/JmrPGJJ8bKb5UMCK
=pmwd
-----END PGP SIGNATURE-----


Accepted:
geordi_20080916T2006-2.diff.gz
  to pool/main/g/geordi/geordi_20080916T2006-2.diff.gz
geordi_20080916T2006-2.dsc
  to pool/main/g/geordi/geordi_20080916T2006-2.dsc
geordi_20080916T2006-2_amd64.deb
  to pool/main/g/geordi/geordi_20080916T2006-2_amd64.deb
News for package geordi
