i forgot to add this (trivial) patch fix a security issue, CVE-2010-3350
i will upload the dsc, deb files to mentors soon
On Wed, Oct 06, 2010 at 10:08:22AM -0300, gustavo panizzo <gfa> wrote:
> tags 598284 + patch
> tags 598284 + pending
> thanks
>
> Dear maintainer,
>
> I've prepared an NMU for bareftp (versioned as 0.3.4-1.1)
>
> Regards.
>
> --
> 1AE0 322E B8F7 4717 BDEA BF1D 44BB 1BA7 9F6C 6333
>
> diff -u bareftp-0.3.4/debian/changelog bareftp-0.3.4/debian/changelog
> --- bareftp-0.3.4/debian/changelog
> +++ bareftp-0.3.4/debian/changelog
> @@ -1,3 +1,10 @@
> +bareftp (0.3.4-1.1) unstable; urgency=low
> +
> + * Non-maintainer upload.
> + * Fix security issue CVE-2010-3350 (Closes: #598284)
> +
> + -- gustavo panizzo <g...@zumbi.com.ar> Tue, 05 Oct 2010 23:37:54 -0300
> +
> bareftp (0.3.4-1) unstable; urgency=low
>
> * New upstream bugfix release 0.3.4
> only in patch2:
> unchanged:
> --- bareftp-0.3.4.orig/bareftp.in
> +++ bareftp-0.3.4/bareftp.in
> @@ -1,3 +1,8 @@
> #!/bin/sh
> -export ld_library_pa...@expanded_libdir@/bareftp:$LD_LIBRARY_PATH
> +if [ -z ${LD_LIBRARY_PATH} ]; then
> + export ld_library_pa...@expanded_libdir@/bareftp
> + else
> + export ld_library_pa...@expanded_libdir@/bareftp:${LD_LIBRARY_PATH}
> +fi
> +
> exec @MONO@ @expanded_libdir@/bareftp/bareftp.exe $MONO_EXTRA_ARGS "$@"
--
1AE0 322E B8F7 4717 BDEA BF1D 44BB 1BA7 9F6C 6333
signature.asc
Description: Digital signature
