-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 3.0 (quilt) Source: mercurial Binary: mercurial-common, mercurial Architecture: any all Version: 3.1.2-2 Maintainer: Python Applications Packaging Team <[email protected]> Uploaders: Vincent Danjean <[email protected]>, Javi Merino <[email protected]>, Tristan Seligmann <[email protected]> Homepage: http://mercurial.selenic.com/ Standards-Version: 3.9.5 Vcs-Browser: http://anonscm.debian.org/viewvc/python-apps/packages/mercurial/trunk/ Vcs-Svn: svn://anonscm.debian.org/python-apps/packages/mercurial/trunk/ Testsuite: autopkgtest Build-Depends: debhelper (>= 9), patchutils (>= 0.2.25), gettext, python-all-dev (>= 2.6.6-3~), python-docutils, python-roman, zip, unzip, bash-completion, netbase Package-List: mercurial deb vcs optional arch=any mercurial-common deb vcs optional arch=all Checksums-Sha1: ae7e16454cee505da895c2497f09711f35287459 3983825 mercurial_3.1.2.orig.tar.gz 87136a9c966ac71be476fca9f79d357d3b12f975 46644 mercurial_3.1.2-2.debian.tar.xz Checksums-Sha256: 5dbe5ceb3707e378528dc9346af280919760aa1a8bcc27be12c1fe2bafa78d3a 3983825 mercurial_3.1.2.orig.tar.gz 5bcf0f922e1f52ab95a6b10e943879fb0652b27ab1f5c108b20fddc23873dfb1 46644 mercurial_3.1.2-2.debian.tar.xz Files: 72a79798de828d6d6fb055273f91201a 3983825 mercurial_3.1.2.orig.tar.gz f606643dadd74cb4067bd26c6dfd4722 46644 mercurial_3.1.2-2.debian.tar.xz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJUmZG0AAoJEAe0hFJ2jTgkUB0P/0r1xVSlH90IDXkGSwyjwp8y eBS7mZC6HueWmSmNQuyWLLVN+qOAcfxSkER4QubPnGPafIuG7JhJHc6p8VbhVF7O kFTPBq7j0z5++4TdXNMK4d9hvi3avUTHsAxftdxKztin6xrIlwfHNiv8sb/rnBnU m5z2lWDERFy0d9yUMcp+D2fFtfn/a6uEsoWq681PK7ejblKnUEiUFi1H1NyPrJUr AcqjFtTv8mhd6mhu/zC8GavV5ewE1SNLFfG0bsuqgIEHTnDF3pkM6ZYN5ExqXL0f lCUzJFbTuXEJWGYyLxz7azZJMKV5oUyiMoUQdmHrtGxowf92iMCaNPu2QsuJ1SDw U81qkBxaMF6lXnWP5hsntKdmcwwSlZkJo4PQkUoaARVAjv0DXNxN6KsfY82g4HTc Td6YTa+zZQsHGNoq6tNR8J/PJbGo4LBF9QnMCRdR67YlkAQ63iK2IpncbYnc4tBf VT8G0/j3NuoSWkgxOHZ6PqjxTZQkSW1lYNSqx4KV2Mi3IxNjVuuaY97EqJqyCeo5 LWVhvPahC+ldup7Bs9oCS0tVUZ1jpEUNnqEQ6ssA40TEVqhd8qY01UGwWQOTcEIt AMoVawNelO4+4it8H827AjvrxwIbje7paheKKbM/P4KJ1abLbcqsUBFSHpQPm4zl WfbEkT+NLGPVSeelSO59 =8RUb -----END PGP SIGNATURE----- Changes: mercurial (3.1.2-2) unstable; urgency=high * Fix "CVE-2014-9390: Errors in handling case-sensitive directories allow for remote code execution on pull" by adding patches from_upstream__encoding_add_hfsignoreclean_to_clean_out_HFS-ignored_characters.patch, from_upstream__pathauditor_check_for_codepoints_ignored_on_OS_X.patch, and from_upstream__pathauditor_check_for_Windows_shortname_aliases.patch (Closes: #773640) -- Javi Merino <[email protected]> Tue, 23 Dec 2014 16:01:50 +0100
