Debian Package Tracker

From: Abhijith PA <abhijith@disroot.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted zsh 4.3.17-1+deb7u1 (source all amd64) into oldoldstable
Date: Fri, 09 Mar 2018 17:10:22 +0000
Signed by: Chris Lamb <chris@chris-lamb.co.uk>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Mon, 05 Mar 2018 16:04:11 +0000
Source: zsh
Binary: zsh zsh-doc zsh-static zsh-dev zsh-dbg
Architecture: source all amd64
Version: 4.3.17-1+deb7u1
Distribution: wheezy-security
Urgency: high
Maintainer: Debian Zsh Maintainers <pkg-zsh-devel@lists.alioth.debian.org>
Changed-By: Abhijith PA <abhijith@disroot.org>
Description: 
 zsh        - shell with lots of features
 zsh-dbg    - shell with lots of features (debugging symbols)
 zsh-dev    - shell with lots of features (development files)
 zsh-doc    - zsh documentation - info/HTML format
 zsh-static - shell with lots of features (static link)
Changes: 
 zsh (4.3.17-1+deb7u1) wheezy-security; urgency=high
 .
   * Non-maintainer upload by the Debian LTS Team.
   * Fix CVE-2014-10070: privilege-elevation contexts when the
     environment has not been properly sanitized
   * Fix CVE-2014-10071: buffer overflow for very long fds in the
     ">& fd" syntax in exec.c
   * Fix CVE-2014-10072: buffer overflow when scanning very long
     directory paths for symbolic links
   * Fix CVE-2016-10714: off-by-one error resulted in undersized buffers
     that were intended to support PATH_MAX
   * Fix CVE-2017-18206: symlink expansion has buffer overflow
Checksums-Sha1: 
 6221aeb18b50fca46472a9a8f086d45c99def379 2314 zsh_4.3.17-1+deb7u1.dsc
 00f95e7dacb0f09e06f371db6c582fd1f0b6c96a 2326771 zsh_4.3.17.orig.tar.bz2
 a21124383e2be09c54a1c1d23c0d3f6f515e34aa 151174 zsh_4.3.17-1+deb7u1.debian.tar.gz
 adc647f03d2d7f4bbdb295f02476ef356f622347 2568902 zsh-doc_4.3.17-1+deb7u1_all.deb
 403831bd4d7c296930c360409eec4e2b8c5b9897 4918570 zsh_4.3.17-1+deb7u1_amd64.deb
 e7d95a7d52b7a0e9e2f958b774720a62c10e237d 1539412 zsh-dbg_4.3.17-1+deb7u1_amd64.deb
 d0f5c7e5d16340a233717fd873bdf1dfec1786d1 1018330 zsh-static_4.3.17-1+deb7u1_amd64.deb
 07168351778a570bf657b1e8e80ba1ab890d2091 85496 zsh-dev_4.3.17-1+deb7u1_amd64.deb
Checksums-Sha256: 
 61996952514de58a75e17825d99a09ad7a73299fa5fe2de775cf6ea947cea300 2314 zsh_4.3.17-1+deb7u1.dsc
 c2a288ddec4302a4950a3d06035d807e45a2fe47f3b1e812daa30b3378b2203f 2326771 zsh_4.3.17.orig.tar.bz2
 359fbd1c77fd9da07b7018574c518e63e4bfd30cb89981560c587baae8247aa9 151174 zsh_4.3.17-1+deb7u1.debian.tar.gz
 93d8996ef25cf771e44f3ee4dd65a87bebd862f1489b0895ac246945f6483175 2568902 zsh-doc_4.3.17-1+deb7u1_all.deb
 38e333c034c61113bd5a93fa62c0fb395ac57be43601715c5a565edcaa32b588 4918570 zsh_4.3.17-1+deb7u1_amd64.deb
 edb86c11ee564fa33811e52aa9fce248fad7be75eaa4ff92cf4bed57916a2cbc 1539412 zsh-dbg_4.3.17-1+deb7u1_amd64.deb
 18fc026415a9f9dab8c33fd273476a665d60bba0de07878412d848a5742f68ae 1018330 zsh-static_4.3.17-1+deb7u1_amd64.deb
 61dd5b68da1ba8eb76ba516b0beb0f90abdd821173e0875de7bfb27d7ffed012 85496 zsh-dev_4.3.17-1+deb7u1_amd64.deb
Files: 
 aa34db16b617d4a318fe634ba9629146 2314 shells optional zsh_4.3.17-1+deb7u1.dsc
 76b46f4d33d73ca874ef63b9a85f647c 2326771 shells optional zsh_4.3.17.orig.tar.bz2
 c913ea718ef64b5a8a4c9d81974702b0 151174 shells optional zsh_4.3.17-1+deb7u1.debian.tar.gz
 5d35ee97409a59a587fa20287cbe56a2 2568902 doc optional zsh-doc_4.3.17-1+deb7u1_all.deb
 f1306425d66798b72f6d5785e4182429 4918570 shells optional zsh_4.3.17-1+deb7u1_amd64.deb
 639b757e65ae9dd200bb86deaecf1d62 1539412 debug extra zsh-dbg_4.3.17-1+deb7u1_amd64.deb
 e15a25425758601423f1c901456a8f1b 1018330 shells optional zsh-static_4.3.17-1+deb7u1_amd64.deb
 548711fbdebd5d3488c6fe4a54248962 85496 libdevel optional zsh-dev_4.3.17-1+deb7u1_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=jiCN
-----END PGP SIGNATURE-----
News for package zsh
