Accepted libspreadsheet-parsexlsx-perl 0.27-3+deb12u2 (source) into proposed-updates
- To: debian-changes@lists.debian.org
- Subject: Accepted libspreadsheet-parsexlsx-perl 0.27-3+deb12u2 (source) into proposed-updates
- From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
- Date: Mon, 29 Jan 2024 21:47:09 +0000
- Debian: DAK
- Debian-architecture: source
- Debian-archive-action: accept
- Debian-changes: libspreadsheet-parsexlsx-perl_0.27-3+deb12u2_source.changes
- Debian-source: libspreadsheet-parsexlsx-perl
- Debian-suite: proposed-updates
- Debian-version: 0.27-3+deb12u2
- Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=ftp-master.debian.org; s=smtpauto.fasolo; h=Date:Message-Id: Content-Transfer-Encoding:Content-Type:Subject:MIME-Version:To:Reply-To:From: Cc:Content-ID:Content-Description:In-Reply-To:References; bh=iI5CCeQzT4ff3e+BdIu4uksLvgE+vZHC5otqWca1oOE=; b=UXPHMb8h6DL3l/0hskl/noTY4k TqJn7UJ4Mk52EBN8Xf7+sT97QS5/NJ6Vxb1+JhoBl1EKwOnraq2lcECtBvmL47UMYF3OxPN2nKtOw 5QuAvbky5S3001x8mNIpgiDtVJOTn6JWU0leUVke10v9tGBVTMxz20X4HqkrpNwVUUAy2rj6T3Yu9 SB9RpXelVvGs4Cml7s8ermgOK4xWciHGTTs2y+5ashAI4RBGg9wxIb+nfp83BStiAg6u422PQv8SH wbUX8BZGpFOMz3wx58wCYAqChW7ipeKw+1GA0KVq5Il9kuxxEWeVioB4t9NQbc0fbE967zugCTtGW l2yD8ypA==;
- Mail-followup-to: debian-devel@lists.debian.org
- Message-id: <E1rUZTB-007VsO-D7@fasolo.debian.org>
- Reply-to: debian-devel@lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Fri, 26 Jan 2024 20:37:26 +0100
Source: libspreadsheet-parsexlsx-perl
Architecture: source
Version: 0.27-3+deb12u2
Distribution: bookworm
Urgency: medium
Maintainer: Debian Perl Group <pkg-perl-maintainers@lists.alioth.debian.org>
Changed-By: gregor herrmann <gregoa@debian.org>
Closes: 1061098
Changes:
libspreadsheet-parsexlsx-perl (0.27-3+deb12u2) bookworm; urgency=medium
.
* Team upload.
* Add a patch to fix an xml external entity (XEE) injection bug.
[CVE-2024-23525]
Patch taken from an upstream Git commit contained in the 0.30 release.
(Closes: #1061098)
.
libspreadsheet-parsexlsx-perl (0.27-3+deb12u1) bookworm; urgency=medium
.
* Team upload.
* Add a patch to fix a possible memory bomb. [CVE-2024-22368]
Patch taken from two upstream Git commits contained in the 0.28 release.
Checksums-Sha1:
d72a16cfec08a13039c1eab7dbaba9d768c762f9 2689 libspreadsheet-parsexlsx-perl_0.27-3+deb12u2.dsc
a8065da892d76543dc56448168ce546353bbb777 4352 libspreadsheet-parsexlsx-perl_0.27-3+deb12u2.debian.tar.xz
Checksums-Sha256:
2d6bffab2f99b3526fa9f3fba1875e2647fd44c4e259cbcd200311a3413f50ab 2689 libspreadsheet-parsexlsx-perl_0.27-3+deb12u2.dsc
6e75d6153572445c669c1d36746633a6ec1f6b5bf66e052afd327ce39467a728 4352 libspreadsheet-parsexlsx-perl_0.27-3+deb12u2.debian.tar.xz
Files:
66e1feb233466ffed40945530a3b2f9b 2689 perl optional libspreadsheet-parsexlsx-perl_0.27-3+deb12u2.dsc
806513d3154a9acb527157e140e43950 4352 perl optional libspreadsheet-parsexlsx-perl_0.27-3+deb12u2.debian.tar.xz
-----BEGIN PGP SIGNATURE-----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=vkkC
-----END PGP SIGNATURE-----