[Bug 603868] [NEW] Please sync python-cjson 1.0.5-3 (universe) from Debian unstable (main).
Launchpad Bug Tracker
603868 at bugs.launchpad.net
Sat Jul 10 07:21:27 BST 2010
You have been subscribed to a public bug by Bhavani Shankar (bhavi):
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
affects ubuntu/python-cjson
status new
importance wishlist
subscribe ubuntu-sponsors
Please sync python-cjson 1.0.5-3 (universe) from Debian unstable (main).
Explanation of the Ubuntu delta and why it can be dropped:
We can sync this package as debian has integrated ubuntu patch which
fixes CVE
Changelog since current maverick version 1.0.5-2ubuntu1:
python-cjson (1.0.5-3) unstable; urgency=high
[ Christian Kastner ]
* debian/source/format
- Convert to format 3.0 (quilt)
* debian/patches:
- New patch 0001-fix-for-CVE-2010-1666
Matt Giuca discovered a buffer overflow when encoding wide unicode
characters on UCS4 builds. This fix was taken from Ubuntu LP #585274,
which he provided.
Closes: #587700, Fixes: CVE-2010-1666
-- Debian Python Modules Team <python-modules-
team at lists.alioth.debian.org> Tue, 06 Jul 2010 23:22:56 +0200
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEARECAAYFAkw4Eg4ACgkQUlfC4uPMy3Q2hQCgqjgKw1XT3MCC3em5YhUZV6qj
UQAAoPI1U3nmKZwvoZttXcGsWs7vTsti
=4cL/
-----END PGP SIGNATURE-----
** Affects: python-cjson (Ubuntu)
Importance: Wishlist
Status: New
--
Please sync python-cjson 1.0.5-3 (universe) from Debian unstable (main).
https://bugs.launchpad.net/bugs/603868
You received this bug notification because you are a member of Ubuntu Sponsors Team, which is a direct subscriber.
More information about the Ubuntu-sponsors
mailing list