-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 26 May 2012 23:53:19 +0200 Source: arpwatch Binary: arpwatch Architecture: source amd64 Version: 2.1a15-1.1+squeeze1 Distribution: stable-security Urgency: high Maintainer: KELEMEN Péter <fuji@debian.org> Changed-By: Yves-Alexis Perez <corsac@debian.org> Description: arpwatch - Ethernet/FDDI station activity monitor Closes: 674715 Changes: arpwatch (2.1a15-1.1+squeeze1) stable-security; urgency=high . * Non-maintainer upload by the Security Team. * Fix initgroups() adding the gid 0 group to the list. Instead of dropping privileges it was in fact adding it. This is CVE-2012-2653. closes: #674715 Checksums-Sha1: 7e6ecaefcf64542424499406833c9b4c1006df79 1706 arpwatch_2.1a15-1.1+squeeze1.dsc 9dffaec0f132e5bb7aedfc840c5c67068bfbce69 202729 arpwatch_2.1a15.orig.tar.gz 94161e464ce50967b71f07fe865010a4230f5fec 150105 arpwatch_2.1a15-1.1+squeeze1.diff.gz 75c9d036f5a71a1769d62cda333b827b4863c2a2 188294 arpwatch_2.1a15-1.1+squeeze1_amd64.deb Checksums-Sha256: d02dace3f9b3e2075efb9a7bb14b3649f16d783ba6a6e005cb2d9ed1d943f021 1706 arpwatch_2.1a15-1.1+squeeze1.dsc c1df9737e208a96a61fa92ddad83f4b4d9be66f8992f3c917e9edf4b05ff5898 202729 arpwatch_2.1a15.orig.tar.gz 289873de4fc24a836d6219a1e272aa9df253255d5b6e1434ff74e284444f3af8 150105 arpwatch_2.1a15-1.1+squeeze1.diff.gz e694736b69f5571a093d5cba773ea8b88cb679ee9368ec9c54019a0ed4d763bd 188294 arpwatch_2.1a15-1.1+squeeze1_amd64.deb Files: a8728af287fa60c61a7d89cfd9e61fb3 1706 admin optional arpwatch_2.1a15-1.1+squeeze1.dsc cebfeb99c4a7c2a6cee2564770415fe7 202729 admin optional arpwatch_2.1a15.orig.tar.gz ebd379d4f7f4ae7782e00e5f86aeea9f 150105 admin optional arpwatch_2.1a15-1.1+squeeze1.diff.gz 5436f25de47de028726db436def5dea8 188294 admin optional arpwatch_2.1a15-1.1+squeeze1_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQIcBAEBCgAGBQJPxnQlAAoJEDBVD3hx7wuouVAP/0x++u8um6wz9QL6v15FeeaE Z4WZT9fg75zNZ5vVAdXX9UgZw3g7y/cJjXVF2phRvaiV1gJZueVmB8CPi07PqyNP 8tRFm3dIcoNunb4LTPakntJpqly7dQSTCxpWT4cWcdnNQM5UB4AaERxFR8kLAwSl tp/zclODMc3LvVWgzfpFQek+6KwOnkFMuIwl46NbCResD2iFESECGd9g//RRUeDw heWLND+xBvXkFztnk6etaGPlJ+ERW5USKwLGyTyE4lK9rfpb1ib5C97e+NYweOJy L8DgvnxwScs632L7wGraCAXMxzqoqbyXS+st7a+mNItF3tGxWNwYnmhzSk6Rtx9r bCejdIm92zRL4BQ9TbJ6ySk/n8c6ZXUsBzoD5jep1oK1xvuDmvmLTQtugk+QMPLn F5/8VfX6OZBAqfTsUD2Q/qMcYeBKQEoGUcy4G9AWGJBNeHFpNFAD0mMUBiGgynSO J0YYCCANmK8mQsRX/vdmKkSxH0P2b2AP5925DX4lEg7xEeCvsjxk6LCVZCYbk9C/ eS0gXOeX5xyuVLHTUw0fIyQnSAwqbMC4pKyEnDZIuSrYfsTZ1Y5vLirmeRP38krj eggUovyTfCshCmnzk6U8npR3Rumxd7S5n2unzzZRHxvgqTedjQunHOrCoTVNNSEa 8tZQdsayNqPv/kJEU/c+ =+5E6 -----END PGP SIGNATURE----- Accepted: arpwatch_2.1a15-1.1+squeeze1.diff.gz to main/a/arpwatch/arpwatch_2.1a15-1.1+squeeze1.diff.gz arpwatch_2.1a15-1.1+squeeze1.dsc to main/a/arpwatch/arpwatch_2.1a15-1.1+squeeze1.dsc arpwatch_2.1a15-1.1+squeeze1_amd64.deb to main/a/arpwatch/arpwatch_2.1a15-1.1+squeeze1_amd64.deb