tags 598284 + patch tags 598284 + pending thanks Dear maintainer,
I've prepared an NMU for bareftp (versioned as 0.3.4-1.1) Regards. -- 1AE0 322E B8F7 4717 BDEA BF1D 44BB 1BA7 9F6C 6333
diff -u bareftp-0.3.4/debian/changelog bareftp-0.3.4/debian/changelog
--- bareftp-0.3.4/debian/changelog
+++ bareftp-0.3.4/debian/changelog
@@ -1,3 +1,10 @@
+bareftp (0.3.4-1.1) unstable; urgency=low
+
+ * Non-maintainer upload.
+ * Fix security issue CVE-2010-3350 (Closes: #598284)
+
+ -- gustavo panizzo <g...@zumbi.com.ar> Tue, 05 Oct 2010 23:37:54 -0300
+
bareftp (0.3.4-1) unstable; urgency=low
* New upstream bugfix release 0.3.4
only in patch2:
unchanged:
--- bareftp-0.3.4.orig/bareftp.in
+++ bareftp-0.3.4/bareftp.in
@@ -1,3 +1,8 @@
#!/bin/sh
-export ld_library_pa...@expanded_libdir@/bareftp:$LD_LIBRARY_PATH
+if [ -z ${LD_LIBRARY_PATH} ]; then
+ export ld_library_pa...@expanded_libdir@/bareftp
+ else
+ export ld_library_pa...@expanded_libdir@/bareftp:${LD_LIBRARY_PATH}
+fi
+
exec @MONO@ @expanded_libdir@/bareftp/bareftp.exe $MONO_EXTRA_ARGS "$@"
signature.asc
Description: Digital signature
