Back to remctl PTS page

Accepted remctl 3.14-1 (source) into unstable

To: debian-devel-changes@lists.debian.org
Subject: Accepted remctl 3.14-1 (source) into unstable
From: Russ Allbery <rra@debian.org>
Date: Sun, 01 Apr 2018 22:36:26 +0000
Mail-followup-to: debian-devel@lists.debian.org
Message-id: <E1f2laM-000FMm-Hg@fasolo.debian.org>
Reply-to: debian-devel@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sun, 01 Apr 2018 15:07:40 -0700
Source: remctl
Binary: libremctl1 libremctl-dev remctl-client remctl-server libnet-remctl-perl php-remctl python-remctl ruby-remctl
Architecture: source
Version: 3.14-1
Distribution: unstable
Urgency: high
Maintainer: Russ Allbery <rra@debian.org>
Changed-By: Russ Allbery <rra@debian.org>
Description:
 libnet-remctl-perl - Perl client for Kerberos-authenticated command execution
 libremctl-dev - Development files for Kerberos-authenticated command execution
 libremctl1 - Library for Kerberos-authenticated command execution
 php-remctl - PECL module for Kerberos-authenticated command execution
 python-remctl - Python extension for Kerberos-authenticated command execution
 remctl-client - Client for Kerberos-authenticated command execution
 remctl-server - Server for Kerberos-authenticated command execution
 ruby-remctl - Ruby extension for Kerberos-authenticated command execution
Changes:
 remctl (3.14-1) unstable; urgency=high
 .
   * New upstream release.
     - SECURITY: Fix use-after-free and double-free when handling the sudo
       option in remctld.  This may allow (with some difficulty) arbitrary
       command execution on the server by streaming clients if the sudo
       option was used in the server configuration.  Thanks, Santosh
       Ananthakrishnan.  (CVE-2018-0493)
   * Add upstream-vcs-tag pattern to debian/gbp.conf.
   * Use an https URL in debian/watch.
   * Update debhelper comptibility level to V11.
     - Drop dependency and explicit configuration of dh-autoreconf.
     - Drop explicit --parallel option, since this is now the default.
   * Update standards version to 4.1.3.
     - Change libremctl-dev priority to optional.
     - Use https URLs in debian/copyright.
   * Refresh upstream signing key.
Checksums-Sha1:
 0cf2d08cd6c1685ceaf4515f84b44e14d2b388fb 2624 remctl_3.14-1.dsc
 fcf107b7e60dd8f7a5d97d7156d93a13db60adb4 575380 remctl_3.14.orig.tar.xz
 b6f249b734643173106ea6645e0a29a90621ecac 488 remctl_3.14.orig.tar.xz.asc
 d0ed39782e70675e498e0306e1ede8d6b8030ec5 25884 remctl_3.14-1.debian.tar.xz
Checksums-Sha256:
 a335f655aeff1d76d72f88c827487edafd8594da4e8db8a6406ad32327b04c57 2624 remctl_3.14-1.dsc
 23dd32c5723b7fd30957e67be7cef74b809c2e73c4613bd643248642507782b9 575380 remctl_3.14.orig.tar.xz
 2849da00083b747bc5e94bfc25e5d6e8cc70e82acbf861b3031de0e0b75e5a4d 488 remctl_3.14.orig.tar.xz.asc
 2bb9c40d2acae980687ff36518ef6bd31731ae4e0562eb8fe7d1669501817389 25884 remctl_3.14-1.debian.tar.xz
Files:
 fa20b3089f6faf0f279baa8b2e270901 2624 net optional remctl_3.14-1.dsc
 256225be3a677751721230c57517a989 575380 net optional remctl_3.14.orig.tar.xz
 520e1147930e0335ebafa6f5b9918f62 488 net optional remctl_3.14.orig.tar.xz.asc
 b71537dfeea97aac8c4ae19d1ed1713c 25884 net optional remctl_3.14-1.debian.tar.xz

-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEE1zk0tJZ0z1zNmsJ4fYAxXFc23nUFAlrBWGYACgkQfYAxXFc2
3nVgmAf/dZi34CEv2d2ZshOiO1f/B157W4bhFCiwQWFjrulIUOKdo6/PIuCIO6m0
EWmJTo2wiVBWBtTPuazOl8tWS3AQxAOYtC96tOPgRXbABI60JaR6Z4RBqwCwfyO3
9qdts2bo+pW60j9r2ZhYTSiB+TXm85D3tQ+W8nnjzsDq778RwKlz8qZ8iiAptahP
AqhyZTCjGm2vWAL3BMbbNMXIDexycVhUOkvkGO9PptvCbvCAllBq0vJ2Cg3E+hFm
KvAQCVud3MaE9UFtM9k0LIwf9xC1bqZV47/ju0xx4Qacz9vaeTJ7F1Zveg+ZD1hz
YTUMIYQbeDWcswvH9sscYdkv/ZsDNA==
=Ar7c
-----END PGP SIGNATURE-----