-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Fri, 02 May 2008 12:44:34 +0200 Source: peercast Binary: peercast-servent peercast peercast-handlers Architecture: source all amd64 Version: 0.1218+svn20080104-1.1 Distribution: unstable Urgency: high Maintainer: Romain Beauxis <toots@rastageeks.org> Changed-By: Nico Golde <nion@debian.org> Description: peercast - P2P audio and video streaming servent peercast-handlers - P2P audio and video streaming handlers peercast-servent - P2P audio and video streaming servent (dummy package) Closes: 478573 Changes: peercast (0.1218+svn20080104-1.1) unstable; urgency=high . * Non-maintainer upload by the Security Team. * This update addresses the following security issue: - CVE-2008-2040: stack-based buffer overfow in the HTTP::getAuthUserPass function leading to remote DoS or arbitrary code execution if peercast is configured to use http-basic authentication (Closes: #478573). Checksums-Sha1: 9c44bc5d221a820b5c65dd45fec7594a4642b35c 1142 peercast_0.1218+svn20080104-1.1.dsc edc177024da645e969838f61c56ce9c93e519e32 9956 peercast_0.1218+svn20080104-1.1.diff.gz 8ac38683d3a489c31584c04614c272e91da4b53d 3784 peercast-servent_0.1218+svn20080104-1.1_all.deb 529e8c1fca0ece55d8af14d6e9332bb0ce7bd270 6908 peercast-handlers_0.1218+svn20080104-1.1_all.deb 6bba22f7e8a28a2c0464e07825734c2633d07dd9 200278 peercast_0.1218+svn20080104-1.1_amd64.deb Checksums-Sha256: 27bb594d4b66138131a53d6204e0fe4fcf690f943b4782395eaa8540fc08cb87 1142 peercast_0.1218+svn20080104-1.1.dsc 5cdcaac114a132202c6258603953fbdecb9f6941a8dc2431e577d9544406069a 9956 peercast_0.1218+svn20080104-1.1.diff.gz 5259ec71211bbb91b0bf7447bc50e074ca2a0e19362f57999e62489ee818a9ce 3784 peercast-servent_0.1218+svn20080104-1.1_all.deb 4713b8d72e5afbcc48f5f849442b3c14aee4206193e8f687101354cf6dfc175a 6908 peercast-handlers_0.1218+svn20080104-1.1_all.deb c7bd5525327058b207702ea36dc12decd8cd95b1b184cbf1fdea7e5e6d3ba56f 200278 peercast_0.1218+svn20080104-1.1_amd64.deb Files: 31301f18409e31ddac40f89dc8ac2b3f 1142 sound optional peercast_0.1218+svn20080104-1.1.dsc 98cbcc57586e3c39488adbd075d71908 9956 sound optional peercast_0.1218+svn20080104-1.1.diff.gz cfd41041fb026aed4240214017c14c88 3784 sound optional peercast-servent_0.1218+svn20080104-1.1_all.deb a54955b37b0205e005bbbb93efac0164 6908 sound optional peercast-handlers_0.1218+svn20080104-1.1_all.deb 3c7c94e943a2f5ebeb7b3835a6ebf009 200278 sound optional peercast_0.1218+svn20080104-1.1_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFIGvNRHYflSXNkfP8RAn8wAKCi22X2JDvzM4VTVEctcccqskhKmgCfUTuO wRlEneLrE9SIy9zUZTFcaWA= =5cuj -----END PGP SIGNATURE----- Accepted: peercast-handlers_0.1218+svn20080104-1.1_all.deb to pool/main/p/peercast/peercast-handlers_0.1218+svn20080104-1.1_all.deb peercast-servent_0.1218+svn20080104-1.1_all.deb to pool/main/p/peercast/peercast-servent_0.1218+svn20080104-1.1_all.deb peercast_0.1218+svn20080104-1.1.diff.gz to pool/main/p/peercast/peercast_0.1218+svn20080104-1.1.diff.gz peercast_0.1218+svn20080104-1.1.dsc to pool/main/p/peercast/peercast_0.1218+svn20080104-1.1.dsc peercast_0.1218+svn20080104-1.1_amd64.deb to pool/main/p/peercast/peercast_0.1218+svn20080104-1.1_amd64.deb
