Debian Package Tracker

From: Martin Pitt <mpitt@debian.org>
To: <debian-changes@lists.debian.org>
Subject: Accepted udisks 1.0.4-7wheezy1 (source amd64 all)
Date: Mon, 10 Mar 2014 18:17:07 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Mon, 10 Mar 2014 11:15:38 +0100
Source: udisks
Binary: udisks udisks-doc
Architecture: source amd64 all
Version: 1.0.4-7wheezy1
Distribution: wheezy-security
Urgency: medium
Maintainer: Utopia Maintenance Team <pkg-utopia-maintainers@lists.alioth.debian.org>
Changed-By: Martin Pitt <mpitt@debian.org>
Description: 
 udisks     - storage media interface
 udisks-doc - storage media interface - documentation
Changes: 
 udisks (1.0.4-7wheezy1) stable-security; urgency=medium
 .
   * SECURITY UPDATE: Add 00git_mount_path_overflow.patch to fix buffer
     overflow in mount path parsing. A malicious, local user could use this
     flaw to create a specially-crafted mount point directory structure that
     could lead to arbitrary code execution with the privileges of the udisks
     daemon (root). [CVE-2014-0004]
Checksums-Sha1: 
 43dfefe2c2aa182da16a7004dcbf5eddcf58fa60 2401 udisks_1.0.4-7wheezy1.dsc
 10d2acfd6e6ff4c8d9d962af1fb1856a885e3219 719889 udisks_1.0.4.orig.tar.gz
 1a4ea56e44251c9110fc8e7aac5e66a854e81ea5 22533 udisks_1.0.4-7wheezy1.debian.tar.gz
 771465baa5b8c7df41d26277eb45cf196de33df8 237336 udisks_1.0.4-7wheezy1_amd64.deb
 a7207ae2b713331198b06d14d9279cdbc7abfda0 69572 udisks-doc_1.0.4-7wheezy1_all.deb
Checksums-Sha256: 
 ae68dd4e909c27eee1df3ce5bf06baf17db4574d28c535328aa393ed9a9328c1 2401 udisks_1.0.4-7wheezy1.dsc
 854b89368733b9c3a577101b761ad5397ae75a05110c8698ac5b29de9a8bf8f5 719889 udisks_1.0.4.orig.tar.gz
 6613b476b25ecf1f46e48bd73eb6efe7d62fb4dbe35c9fa681f0672703f54ad2 22533 udisks_1.0.4-7wheezy1.debian.tar.gz
 a42a8ac469f069c917f3b4a93a7729bd74a4575e4970fe3104fffc0443500c03 237336 udisks_1.0.4-7wheezy1_amd64.deb
 da52159cf0ea7e361e093aecb1a15522aab029bb16912c722aa92709d01165a6 69572 udisks-doc_1.0.4-7wheezy1_all.deb
Files: 
 a8d720593e650acd796a859a00c05acd 2401 admin optional udisks_1.0.4-7wheezy1.dsc
 86c63b2b5484f2060499a052b5b6256b 719889 admin optional udisks_1.0.4.orig.tar.gz
 679e6490190f8ed622e0845da2b21332 22533 admin optional udisks_1.0.4-7wheezy1.debian.tar.gz
 6a128430d248a096e4c7213e5dfb97c7 237336 admin optional udisks_1.0.4-7wheezy1_amd64.deb
 296a1992a8f3d6d7f111f1c51918613f 69572 doc optional udisks-doc_1.0.4-7wheezy1_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=mK8T
-----END PGP SIGNATURE-----
News for package udisks
