-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Fri, 23 Sep 2005 21:36:41 -0400 Source: webmin Binary: webmin-core webmin Architecture: source all Version: 1.230-1 Distribution: unstable Urgency: high Maintainer: Debian Webmin maintainers <webmin-maintainers@lists.alioth.debian.org> Changed-By: Jaldhar H. Vyas <jaldhar@debian.org> Description: webmin - web-based administration toolkit webmin-core - core modules for webmin Closes: 329741 Changes: webmin (1.230-1) unstable; urgency=high . * New upstream version. * [SECURITY] CAN-2005-3042: miniserv.pl in versions before this one when "full PAM conversations" is enabled, allowed remote attackers to bypass authentication by spoofing session IDs via certain metacharacters (line feed or carriage return). An immediate upgrade to this version is advised. (Closes: #329741) Files: d6cc98f9067134491e844e64d58c572c 691 admin optional webmin_1.230-1.dsc 7dc97de282bfc30ff6d3d436b0763897 2415142 admin optional webmin_1.230.orig.tar.gz a155911e5aeb4511ed8021d443cb835f 30049 admin optional webmin_1.230-1.diff.gz 58eb89bf4322dcb32a3817cc5fdd4168 1182044 admin optional webmin_1.230-1_all.deb 42adb8c22c74cf39438f8cde11c3eb13 1195156 admin optional webmin-core_1.230-1_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) iD8DBQFDNLQb2kYOR+5txmoRAl3NAJ96EwEBsGPXftCRkTFHPe8r19LvjQCgkNAv t2nDhZC7KhhPg9tCWj1d5mE= =ky6I -----END PGP SIGNATURE----- Accepted: webmin-core_1.230-1_all.deb to pool/main/w/webmin/webmin-core_1.230-1_all.deb webmin_1.230-1.diff.gz to pool/main/w/webmin/webmin_1.230-1.diff.gz webmin_1.230-1.dsc to pool/main/w/webmin/webmin_1.230-1.dsc webmin_1.230-1_all.deb to pool/main/w/webmin/webmin_1.230-1_all.deb webmin_1.230.orig.tar.gz to pool/main/w/webmin/webmin_1.230.orig.tar.gz -- To UNSUBSCRIBE, email to debian-devel-changes-REQUEST@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
