Accepted rdflib 4.2.1-2+deb9u1 (source) into oldoldstable
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 28 Dec 2021 10:11:17 +0200
Source: rdflib
Binary: python-rdflib python3-rdflib python-rdflib-doc python-rdflib-tools
Architecture: source
Version: 4.2.1-2+deb9u1
Distribution: stretch-security
Urgency: medium
Maintainer: Christian M. Amsüss <chrysn@fsfe.org>
Changed-By: Adrian Bunk <bunk@debian.org>
Description:
python-rdflib - Python library containing an RDF triple store and RDF parsers/ser
python-rdflib-doc - Python library containing an RDF triple store [...] (documentatio
python-rdflib-tools - Python tools for converting to and from RDF
python3-rdflib - Python 3 library containing an RDF triple store and RDF parsers/s
Changes:
rdflib (4.2.1-2+deb9u1) stretch-security; urgency=medium
.
* Non-maintainer upload by the LTS team.
* CVE-2019-7653: The python-rdflib-tools package had custom wrappers
that could load Python modules from the current working directory,
allowing code injection.
Checksums-Sha1:
96b93c6458c38451abd921abd87f4667282064f7 2914 rdflib_4.2.1-2+deb9u1.dsc
f3137514b60d45f0f66f815718f86b0fae0325b1 1108526 rdflib_4.2.1.orig.tar.gz
f680b289187d6e16c5662278e6ecbec5af4854fd 28848 rdflib_4.2.1-2+deb9u1.debian.tar.xz
Checksums-Sha256:
ee6421e65e1ede7770d92841a17d6c374a1987777d03b415dd67297b74593bd1 2914 rdflib_4.2.1-2+deb9u1.dsc
c942f1dcd5a96d29ac6b8aad2f6ad1663c3fd2ed3586d567d0eb9208d05bd323 1108526 rdflib_4.2.1.orig.tar.gz
3f25d23f69f5b49f707fd3ddcfd4b245fc0285fb79b486ea47790e0a3c4c0c5b 28848 rdflib_4.2.1-2+deb9u1.debian.tar.xz
Files:
aa9d75aa59f7d6758d9696edaf544869 2914 python optional rdflib_4.2.1-2+deb9u1.dsc
ce76cb39a5737aeb99f557cff3826a5f 1108526 python optional rdflib_4.2.1.orig.tar.gz
e5eaf35f0d6bae1297920beaa3531efd 28848 python optional rdflib_4.2.1-2+deb9u1.debian.tar.xz
-----BEGIN PGP SIGNATURE-----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=mw9s
-----END PGP SIGNATURE-----