RC Bugs 2013/10

Here concrete contributions on RC fixes for the week 2013/10:

• #701227 - nagios-nrpe: CVE-2013-1362: allows the passing of $() as command arguments to execute shell commands

  Propose a patch to the BTS.

• #698871 - CVE-2013-0219 CVE-2013-0220

  Upload packages prepared by Timo Aaltonen.

• #702525 - ruby1.9.1: CVE-2013-1821: entity expansion DoS vulnerability in REXML

  Upload package to delayed queue but also asked maintainers for an upload.

• #702526 - ruby1.8: CVE-2013-1821: entity expansion DoS vulnerability in REXML

  Sent patch to the BTS.

• #702821 libapache2-mod-perl2: FTBFS: the CVE-2013-1667 fix breaks t/perl/hash_attack.t

  Helped in testbuild package with proposed patches.

Categories

• bugs (74)
• debconf (2)
• debconf12 (1)
• debconf13 (1)
• debian (76)
• rc (74)

Archive

• December 2013 (1)
• November 2013 (3)
• October 2013 (4)
• September 2013 (2)
• August 2013 (3)
• July 2013 (3)
• June 2013 (4)
• May 2013 (5)
• April 2013 (3)
• March 2013 (3)
• February 2013 (4)
• January 2013 (5)
• December 2012 (4)
• November 2012 (4)
• October 2012 (4)
• September 2012 (4)
• August 2012 (2)
• July 2012 (5)
• June 2012 (4)
• May 2012 (5)
• April 2012 (4)
• March 2012 (1)

Links

• My Debian QA Page
• Bug Counts
• Full lintian reports
• Bugstats
• Buildd Overview
• http://portfolio.debian.net

Copyright © 2013 Salvatore Bonaccorso. Powered by BlazeBlogger.