Back to lemonldap-ng PTS page

Accepted lemonldap-ng 2.0.2+ds-7+deb10u9 (source) into oldoldstable

To: dispatch@tracker.debian.org, debian-lts-changes@lists.debian.org
Subject: Accepted lemonldap-ng 2.0.2+ds-7+deb10u9 (source) into oldoldstable
From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
Date: Fri, 14 Jul 2023 09:40:19 +0000
Debian: DAK
Debian-architecture: source
Debian-archive-action: accept
Debian-changes: lemonldap-ng_2.0.2+ds-7+deb10u9_source.changes
Debian-source: lemonldap-ng
Debian-suite: oldoldstable
Debian-version: 2.0.2+ds-7+deb10u9
Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=ftp-master.debian.org; s=smtpauto.seger; h=Date:Message-Id: Content-Transfer-Encoding:Content-Type:Subject:MIME-Version:To:Reply-To:From: Cc:Content-ID:Content-Description:In-Reply-To:References; bh=Bj2DXqdJifHtQTLcZ0mxtLvQaOjlqAA4TW4FiwAcBTQ=; b=gJHtWJeknFXfHaOQfkBaOgNhP8 hfNaR3Q6YVg7v/R/rVd3fReMseaWxGrv0NniUkhcoe05SlkaYQAFagZ5nJpRe0g+KFByrHkATtRq0 ZGhUj1485qo10sDx8X30YZp9Wia9Lef1EOyayWYpQXSjFtPgyQ1v6Ict+SsxaRBJYKgO4SI4N/dLw tL9A80AIZ9k38Uiz19J/tShiqCgAycgKZAyNVGjDcnlicPhZkJwmE2PrD1fMq8bp9bxjk0k8y1Ry6 bT5YrmdiFwukxkb0UVgtv+IvO7zqxpgbrqGdvjIJIDk48jEvRC4vBlOdHlx31G2CGuzgTLXNsb16/ iS8atPIg==;
Mail-followup-to: debian-lts@lists.debian.org
Message-id: <E1qKFHf-0001cI-DP@seger.debian.org>
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 13 Jul 2023 22:15:51 +0200
Source: lemonldap-ng
Architecture: source
Version: 2.0.2+ds-7+deb10u9
Distribution: buster-security
Urgency: high
Maintainer: Debian Perl Group <pkg-perl-maintainers@lists.alioth.debian.org>
Changed-By: Guilhem Moulin <guilhem@debian.org>
Changes:
 lemonldap-ng (2.0.2+ds-7+deb10u9) buster-security; urgency=high
 .
   * Non-maintainer upload by the LTS Security Team.
   * Backport AuthBasic upstream test.
   * Fix incorrect backport of upstream fix for CVE-2021-20874.
   * Fix CVE-2023-28862: Weak session ID generation in the AuthBasic handler
     and incorrect failure handling during a password check allow attackers to
     bypass 2FA verification.  (Any plugin that tries to deny session creation
     after the store step does not deny an AuthBasic session.)
Checksums-Sha1:
 b0f9fa9336b503fef963f04abdebfe1445f695f3 3878 lemonldap-ng_2.0.2+ds-7+deb10u9.dsc
 13e89cf10e936784ab01687fee44646bbb38ea92 90232 lemonldap-ng_2.0.2+ds-7+deb10u9.debian.tar.xz
 ce1d29ca45650ef02560af61278eb6ef972f2974 18025 lemonldap-ng_2.0.2+ds-7+deb10u9_amd64.buildinfo
Checksums-Sha256:
 8cca9244868635af227c525262a7d28e2ad8f9518e91d857456374eaf914d2fd 3878 lemonldap-ng_2.0.2+ds-7+deb10u9.dsc
 b3ecd711f68c0c5317d0d024b7dbb52692c77a142acbea429ecfdaab6596d4fe 90232 lemonldap-ng_2.0.2+ds-7+deb10u9.debian.tar.xz
 f5acf676b2d3cbc1a293f3483b7c20f3cea9a4eb55fe85c2ed3c7d21a4af4968 18025 lemonldap-ng_2.0.2+ds-7+deb10u9_amd64.buildinfo
Files:
 3b144c86619bc6790bbcb48367f18b90 3878 perl optional lemonldap-ng_2.0.2+ds-7+deb10u9.dsc
 c6396b048997d4505dc62d2be4f99007 90232 perl optional lemonldap-ng_2.0.2+ds-7+deb10u9.debian.tar.xz
 879eb17a2f9f9ba8ae00ac5348d79717 18025 perl optional lemonldap-ng_2.0.2+ds-7+deb10u9_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=dJ0q
-----END PGP SIGNATURE-----