Debian Package Tracker

From: Chris Lamb <lamby@debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted cgit 0.10.2.git2.0.1-3+deb8u2 (source amd64) into oldstable
Date: Mon, 06 Aug 2018 07:20:19 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Mon, 06 Aug 2018 14:43:24 +0800
Source: cgit
Binary: cgit
Architecture: source amd64
Version: 0.10.2.git2.0.1-3+deb8u2
Distribution: jessie-security
Urgency: high
Maintainer: Alexander Wirt <formorer@debian.org>
Changed-By: Chris Lamb <lamby@debian.org>
Description:
 cgit       - hyperfast web frontend for git repositories written in C
Closes: 905382
Changes:
 cgit (0.10.2.git2.0.1-3+deb8u2) jessie-security; urgency=high
 .
   * CVE-2018-14912: Prevent a directory traversal vulnerability when
     "enable-http-clone=1" is not turned off. (Closes: #905382)
Checksums-Sha1:
 19fc8671970d564a107f98afe3cf60c844b6eff0 1881 cgit_0.10.2.git2.0.1-3+deb8u2.dsc
 d0fccec308fdaeb9471a9cbebdf8b4f23527fd58 5157263 cgit_0.10.2.git2.0.1.orig.tar.gz
 c8761f77ab84e071aab8d2adf097840c18b24fde 11516 cgit_0.10.2.git2.0.1-3+deb8u2.debian.tar.xz
 2e637093c0e186474760a922c4be48311d10c888 442090 cgit_0.10.2.git2.0.1-3+deb8u2_amd64.deb
Checksums-Sha256:
 de0b3ea6de8732a903d30a1682541f805187aba0391622a9c243cf6455bdf027 1881 cgit_0.10.2.git2.0.1-3+deb8u2.dsc
 9e4070ad5a2fda0375b92df4805f861da9022bbd861ee2d402fc8c39e2dbf681 5157263 cgit_0.10.2.git2.0.1.orig.tar.gz
 c06666138c6384b7dcf2a25fcf55eefd175276e5813d8563461a115a92341c79 11516 cgit_0.10.2.git2.0.1-3+deb8u2.debian.tar.xz
 448808746d49a3663a37fb991f0d62fbcc726551b8e616f21813e26af5ad533f 442090 cgit_0.10.2.git2.0.1-3+deb8u2_amd64.deb
Files:
 d609ce06d58688da8b51f3977b8d6793 1881 net extra cgit_0.10.2.git2.0.1-3+deb8u2.dsc
 15c7bc81344eb0e20875d24342f47e0a 5157263 net extra cgit_0.10.2.git2.0.1.orig.tar.gz
 595975b3125e082e6aea7c1aa420162a 11516 net extra cgit_0.10.2.git2.0.1-3+deb8u2.debian.tar.xz
 32b95ec2835a0f2c5f11e2d0dd5b9194 442090 net extra cgit_0.10.2.git2.0.1-3+deb8u2_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=gaXB
-----END PGP SIGNATURE-----
News for package cgit
