-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Tue, 19 Jul 2011 22:21:04 +1000 Source: opie Binary: opie-client opie-server libopie-dev Architecture: source amd64 Version: 2.32.dfsg.1-0.2+squeeze1 Distribution: stable-security Urgency: high Maintainer: Michael Stone Changed-By: Steffen Joeris Description: libopie-dev - OPIE library development files. opie-client - OPIE programs for generating OTPs on client machines opie-server - OPIE programs for maintaining an OTP key file Closes: 631344 631345 Changes: opie (2.32.dfsg.1-0.2+squeeze1) stable-security; urgency=high . * Non-maintainer upload by the security team * Fix off-by-one and privilege escalation via missing check for setuid() (Closes: #631344, #631345) Fixes: CVE-2011-2489 CVE-2011-2490 Checksums-Sha1: 536316d93cd23eb3b508b11aeaeb689fe7cfe834 1060 opie_2.32.dfsg.1-0.2+squeeze1.dsc 111e543d61c94c005b41283adbf3789053d98fce 158349 opie_2.32.dfsg.1.orig.tar.gz 675cded4faa1136ec8ae6a1a9e7906d47de11cf3 14774 opie_2.32.dfsg.1-0.2+squeeze1.diff.gz 6234370a18d1c6835b1de560cf423a14e7494dbe 43824 opie-client_2.32.dfsg.1-0.2+squeeze1_amd64.deb 83a2bdd11c2cabaab59d618e2af6b3cb9f3c4137 46838 opie-server_2.32.dfsg.1-0.2+squeeze1_amd64.deb eea9aba861766325a2dfec78fc149218daf95782 31972 libopie-dev_2.32.dfsg.1-0.2+squeeze1_amd64.deb Checksums-Sha256: b8e48e63704c2e640748739373ed26365c5f727ffc23b82d5db3c9821bd9e93c 1060 opie_2.32.dfsg.1-0.2+squeeze1.dsc 6472b5214a031330b933a2b2ffbdab08054093eb4ca283f97284b04319d1060b 158349 opie_2.32.dfsg.1.orig.tar.gz cd2816e294c666ea51f3b2a914916164c50cbaf4e4ec33c4c5aae1326f919e07 14774 opie_2.32.dfsg.1-0.2+squeeze1.diff.gz 07f2f03cde1c8fe10f9a567c4a540d5cf81205b47a1b2beb02745437dcc5f59e 43824 opie-client_2.32.dfsg.1-0.2+squeeze1_amd64.deb acf66e0402b4fac480ead3fc02660881b548e392fde01c50d3f8703b2a576d53 46838 opie-server_2.32.dfsg.1-0.2+squeeze1_amd64.deb 5143e7ea7550d2931d4827f4b9bff4e0b67141856b717bba301362534c2f9c7a 31972 libopie-dev_2.32.dfsg.1-0.2+squeeze1_amd64.deb Files: 654a8c11fecc0bacbf75305b51acf5c2 1060 admin optional opie_2.32.dfsg.1-0.2+squeeze1.dsc fc269281acbb567839589aa46bce3335 158349 admin optional opie_2.32.dfsg.1.orig.tar.gz fcb7224dc128e1e08073e19d12f878b2 14774 admin optional opie_2.32.dfsg.1-0.2+squeeze1.diff.gz 3378dd8a9ebfeedf5884bf0ecb337013 43824 admin optional opie-client_2.32.dfsg.1-0.2+squeeze1_amd64.deb 240843f4be99218e6b19c7061c60430c 46838 admin optional opie-server_2.32.dfsg.1-0.2+squeeze1_amd64.deb a970f8fa69eab2ea6501c82b7348d52f 31972 devel optional libopie-dev_2.32.dfsg.1-0.2+squeeze1_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iEYEARECAAYFAk4lfcQACgkQ62zWxYk/rQeifwCgrLlsUfl/r6LrEF1s4tdraBsY InUAn3ET73PP5G9XZJ56Y21lSY5SHZ0q =wFUc -----END PGP SIGNATURE-----