Debian Package Tracker

From: Salvatore Bonaccorso <carnil@debian.org>
To: <>
Subject: Accepted cgit 1.1+git2.10.2-3+deb9u1 (source) into stable->embargoed, stable
Date: Sat, 04 Aug 2018 12:01:27 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 04 Aug 2018 12:27:48 +0200
Source: cgit
Binary: cgit
Architecture: source
Version: 1.1+git2.10.2-3+deb9u1
Distribution: stretch-security
Urgency: high
Maintainer: Debian Cgit Packaging Team <pkg-cgit-devel@lists.alioth.debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Description:
 cgit       - hyperfast web frontend for git repositories written in C
Closes: 905382
Changes:
 cgit (1.1+git2.10.2-3+deb9u1) stretch-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * clone: fix directory traversal (CVE-2018-14912) (Closes: #905382)
Checksums-Sha1:
 4203d69518c3134d9ec001c04d894a8fad3a190f 2309 cgit_1.1+git2.10.2-3+deb9u1.dsc
 37d74a9266a995c4fc53bd78a5affdf8d214e174 6118627 cgit_1.1+git2.10.2.orig.tar.gz
 2c5292295fcc0f1e081e7812d569fa271e1bc8d2 11508 cgit_1.1+git2.10.2-3+deb9u1.debian.tar.xz
 abfe9a68f32f856ef369c5cb0d684fc57a471e1f 6336 cgit_1.1+git2.10.2-3+deb9u1_source.buildinfo
Checksums-Sha256:
 12b6b10a306ba9e624187527d58ec89ea4e05f890f6baa5dde76facd7a617686 2309 cgit_1.1+git2.10.2-3+deb9u1.dsc
 ca271d2cd188bd8a1d9a103c3d5e889ac67169bd2b9b554fbdaa98cf76e8a2bb 6118627 cgit_1.1+git2.10.2.orig.tar.gz
 2768eec1f9bc23d762276ce45732bd844ee7835893d898be06094606506cd8c0 11508 cgit_1.1+git2.10.2-3+deb9u1.debian.tar.xz
 d8ae5a5a7f8a5906e6c0c284746c38cde48bd192a5fa03db165c99b98dd085b9 6336 cgit_1.1+git2.10.2-3+deb9u1_source.buildinfo
Files:
 6f4fff92c5c61c461e0517fcf970c174 2309 net extra cgit_1.1+git2.10.2-3+deb9u1.dsc
 ed3b45ecf5b8bc4afe92ace523548b26 6118627 net extra cgit_1.1+git2.10.2.orig.tar.gz
 a422ce22211961179d0efabafad6d3d4 11508 net extra cgit_1.1+git2.10.2-3+deb9u1.debian.tar.xz
 33bee95b83bdef0fd324458ed715b09b 6336 net extra cgit_1.1+git2.10.2-3+deb9u1_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQKmBAEBCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAltlgdVfFIAAAAAALgAo
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2
NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk
ZWJpYW4ub3JnAAoJEAVMuPMTQ89EBj0P/2leun7OtMItU3pJ6fjLERudAwCapM4C
gvMqMc7W0HF9TXZucK9MIn8m8rmiK+Nt7vETk7r9jfkmpgKAAjF8yErh1D/7jD62
ctOOWQQ2+brq5T0RaQ4F6gajeuBSVdmgg8CPiwR7tETQNpLsyMxqJOUBghugiSE3
0ywA2zeS8Mlhc92FsnCJ+A52Ryp/MxgZQFB1c4djaoNGVGlBA4EScX6m39TbnVzD
VPFlk7B2ZliWANT5eMO+GXMk0wjR3+f/GGGRFzIuoPbBuGLJvJE+oxjxuenmmKm/
0u6/mnhlguqBuvSUUyLE3hVblRF3FHFOpiv3eQbIWUota5b5bvdOX9mRtX1/9/Br
xrVtXm9xUag7VF0dM0VXt568IsGXO0EHyePUclknorM1yH9xiJuXBL+mjy5SFaaZ
Nfzj9Z1n6rBZiNCSjo4pEjT6KS2FbwMbqY3t18JrRWDQv9vLev4fD2qDTgJRyISU
DlGp/vgWe0m0wemA9taHY/DH39wiL9iXMvlgwvwIOZedR3xBtGI62OSiSoc+1fqy
qRKI+g4phUeZtBL0ypuS8JlydWx8oD+iljsexAox2zn0J2bbe6f7KIkIcB6rTcIe
pC44nMpgXctKx8JaeIL0UJ959QsvSjDGfaAZ7y4ErU44qFE1wAshlaaQd1XRPfr6
Rpj/3OIIoYyb
=05E0
-----END PGP SIGNATURE-----
News for package cgit
