-
rpm (4.4.1-5ubuntu2.1) dapper-security; urgency=low
* SECURITY UPDATE: heap overflow in query report could lead to arbitrary
code execution.
* Add 'debian/patches/99_query_heap_protection.diff': validate message
length. Patch from upstream CVS, applied inline.
* References
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=212833
CVE-2006-5466
-- Kees Cook <email address hidden> Fri, 3 Nov 2006 13:29:35 -0800
-
rpm (4.4.1-5ubuntu2) dapper; urgency=low
* debian/control:
- Build against libneon25, 24 does not exist any more.
- Add build dependency libsepol1-dev.
* debian/rules: Link lsb-rpm against -lsepol to fix unresolved references
and FTBFS.
-- Martin Pitt <email address hidden> Tue, 17 Jan 2006 12:20:31 +0100
-
rpm (4.4.1-5) unstable; urgency=low
* Don't generate dependancies on linux-gate.so, it is a virtual library
and only exists on linux 2.6 anyway. Thanks for the patch Ken Schalk.
(Closes: #338515)
-- Anand Kumria <email address hidden> Tue, 27 Dec 2005 03:27:41 +1100
-
rpm (4.4.1-4) unstable; urgency=low
* Remove postinst which deals with ancient (prior to woody) rpm upgrades
* Reset the RPMCANONVENDOR to always be 'rpm' when compiling on a Debian
System (make /usr/src/rpm/BUILD reappear)
-- Anand Kumria <email address hidden> Tue, 18 Oct 2005 19:35:09 +1000
