[ubuntu/zesty-proposed] diffoscope 76+build1 (Accepted)

[Mattia Rizzolo]

diffoscope (76+build1) zesty; urgency=medium

  * Correct logic of module_exists, ensuring we correctly skip the
    debian.deb822 tests when python3-debian is not installed.  Closes: #854745
    Should fix autopkgtest failures.
  * d/rules: add code to ignore this version mismatch

diffoscope (76) unstable; urgency=medium

  [ Chris Lamb ]
  * Extract archive members using an auto-incrementing integer, avoiding the
    need to sanitise filenames and avoiding writes to arbitrary locations.
    (Closes: #854723 - CVE-2017-0359)

  [ Ximin Luo ]
  * Simplify call to subprocess.Popen

Date: Mon, 13 Feb 2017 12:54:45 +0100
Changed-By: Mattia Rizzolo <mapreri at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/diffoscope/76+build1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 13 Feb 2017 12:54:45 +0100
Source: diffoscope
Binary: diffoscope
Architecture: source
Version: 76+build1
Distribution: zesty
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Mattia Rizzolo <mapreri at ubuntu.com>
Description:
 diffoscope - in-depth comparison of files, archives, and directories
Closes: 854723 854745
Changes:
 diffoscope (76+build1) zesty; urgency=medium
 .
   * Correct logic of module_exists, ensuring we correctly skip the
     debian.deb822 tests when python3-debian is not installed.  Closes: #854745
     Should fix autopkgtest failures.
   * d/rules: add code to ignore this version mismatch
 .
 diffoscope (76) unstable; urgency=medium
 .
   [ Chris Lamb ]
   * Extract archive members using an auto-incrementing integer, avoiding the
     need to sanitise filenames and avoiding writes to arbitrary locations.
     (Closes: #854723 - CVE-2017-0359)
 .
   [ Ximin Luo ]
   * Simplify call to subprocess.Popen
Checksums-Sha1:
 c7f46a75d6da181f0af0d849f5c6289e51bd212f 3079 diffoscope_76+build1.dsc
 1b4c01bbdf21ab3e6b68327451bbe36d27688f62 340968 diffoscope_76+build1.tar.xz
Checksums-Sha256:
 f4f262ad73881d3ca74b70962289fa40ffda14c647f33baad60499d1a56d8847 3079 diffoscope_76+build1.dsc
 3acb3d5e10c31a9f65eb969e76feb62f14c387cffae7a16d5206e1b770b4aa57 340968 diffoscope_76+build1.tar.xz
Files:
 9484b32efcbf47f9943f6012a5950ba0 3079 devel optional diffoscope_76+build1.dsc
 0530c32909a1d413268a0577630fde5e 340968 devel optional diffoscope_76+build1.tar.xz
Original-Maintainer: Reproducible builds folks <reproducible-builds at lists.alioth.debian.org>

-----BEGIN PGP SIGNATURE-----
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=CXKr
-----END PGP SIGNATURE-----