Debian Package Tracker

From: Chris Lamb <lamby@debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted suckless-tools 38-2+deb7u1 (source amd64) into oldstable
Date: Sat, 20 Aug 2016 14:50:11 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sat, 20 Aug 2016 15:35:45 +0100
Source: suckless-tools
Binary: suckless-tools
Architecture: source amd64
Version: 38-2+deb7u1
Distribution: wheezy-security
Urgency: high
Maintainer: Vasudev Kamath <kamathvasudev@gmail.com>
Changed-By: Chris Lamb <lamby@debian.org>
Description: 
 suckless-tools - simple commands for minimalistic window managers
Changes: 
 suckless-tools (38-2+deb7u1) wheezy-security; urgency=high
 .
   * CVE-2016-6866: Fix SEGV in slock when users account has been disabled.
 .
     The screen locking application slock called crypt(3) and used the return
     value for strcmp(3) without checking to see if the return value of crypt(3)
     was a NULL pointer.
 .
     If the hash returned by (getspnam()->sp_pwdp) was invalid, crypt(3) would
     return NULL and set errno to EINVAL. This would cause slock to segfault
     which then leaves the machine unprotected.
Checksums-Sha1: 
 9beb4784b3fa27863e4931e4e8804eefe2722f07 1909 suckless-tools_38-2+deb7u1.dsc
 eeab390508579aa3f31d7575d5d7b293b75624b4 40256 suckless-tools_38.orig.tar.gz
 6063b0ca13f53fb3fea3029921c76d8006b2016d 6857 suckless-tools_38-2+deb7u1.diff.gz
 fdcbf4ecc0aee96339236d99fc98da9cb5fbdec5 54246 suckless-tools_38-2+deb7u1_amd64.deb
Checksums-Sha256: 
 2a27e96cc66e2c3c1768fcb0d4682460e2ea5e28d25e9f06d5bb88e9af0a34b5 1909 suckless-tools_38-2+deb7u1.dsc
 58bb6dbb8d0b1c2f18d565fe15553106d02756137ca48cac3bb286f0bd5a35a6 40256 suckless-tools_38.orig.tar.gz
 f6f5bfde6e2a2f90c0e46dbb64fabb66953c4c5a0673d47f6b857831fb9d0475 6857 suckless-tools_38-2+deb7u1.diff.gz
 c420973a93f26b815213c87bf4d0b5902f988f2d66aa3688eb3bf9877caeab2a 54246 suckless-tools_38-2+deb7u1_amd64.deb
Files: 
 c457a61790b2af599638e2e395703a4c 1909 x11 optional suckless-tools_38-2+deb7u1.dsc
 9bd7f05a610e47a4deb92de4b4b07245 40256 x11 optional suckless-tools_38.orig.tar.gz
 18de37ac8f63525dcc135bb350010fd3 6857 x11 optional suckless-tools_38-2+deb7u1.diff.gz
 936b276a5433e9de86a41b94b53b4ee0 54246 x11 optional suckless-tools_38-2+deb7u1_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=t2cz
-----END PGP SIGNATURE-----
News for package suckless-tools
