[diffoscope] 01/04: Add CVE-2017-0359 to the changelog of v76
Mattia Rizzolo
mattia at debian.org
Mon Feb 20 19:53:12 CET 2017
This is an automated email from the git hooks/post-receive script.
mattia pushed a commit to annotated tag 76+build1
in repository diffoscope.
commit 934e419452006c77331ef07320702b43e48091b9
Author: Mattia Rizzolo <mattia at debian.org>
Date: Sat Feb 11 12:51:46 2017 +0100
Add CVE-2017-0359 to the changelog of v76
---
debian/changelog | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/debian/changelog b/debian/changelog
index f42407c..ec1a2d0 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -3,7 +3,7 @@ diffoscope (76) unstable; urgency=medium
[ Chris Lamb ]
* Extract archive members using an auto-incrementing integer, avoiding the
need to sanitise filenames and avoiding writes to arbitrary locations.
- (Closes: #854723)
+ (Closes: #854723 - CVE-2017-0359)
[ Ximin Luo ]
* Simplify call to subprocess.Popen
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/reproducible/diffoscope.git
More information about the diffoscope
mailing list