Format: 1.8
Date: Tue, 29 Jan 2013 13:31:57 -0500
Source: inkscape
Binary: inkscape
Architecture: amd64 amd64_translations
Version: 0.48.3.1-1ubuntu6.1
Distribution: quantal
Urgency: low
Maintainer: Ubuntu/amd64 Build Daemon <buildd@akateko.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description: 
 inkscape   - vector-based drawing program
Changes: 
 inkscape (0.48.3.1-1ubuntu6.1) quantal-security; urgency=low
 .
   * SECURITY UPDATE: arbitrary file disclosure via XML external entity
     - debian/patches/CVE-2012-5656.patch: disable loading external entities
       in src/preferences-skeleton.h, src/ui/dialog/ocaldialogs.cpp,
       src/xml/repr-io.cpp.
     - CVE-2012-5656
   * SECURITY UPDATE: possible file loading from /tmp
     - debian/patches/CVE-2012-6076.patch: make sure filename is absolute
       in src/extension/implementation/script.cpp.
     - CVE-2012-6076
Checksums-Sha1: 
 029b30c308e18009528bca01f755e501b5c6f41f 18095198 inkscape_0.48.3.1-1ubuntu6.1_amd64.deb
 1fcaf61a54c526257fad3df6eb4e3ca444d448a9 16823860 inkscape_0.48.3.1-1ubuntu6.1_amd64_translations.tar.gz
Checksums-Sha256: 
 a481a7cb9a07a89673e5483fcc074d011a755482155f10c8f9f750165e692d14 18095198 inkscape_0.48.3.1-1ubuntu6.1_amd64.deb
 9382380c35b12adf3918c2bc94e69eb40712069719d66c43ff6c74c3d07e7e6f 16823860 inkscape_0.48.3.1-1ubuntu6.1_amd64_translations.tar.gz
Files: 
 479000730bb1ca050cbd4bb9f79c0610 18095198 graphics optional inkscape_0.48.3.1-1ubuntu6.1_amd64.deb
 f36dd79f09726bb8c7ef404977e0a91e 16823860 raw-translations - inkscape_0.48.3.1-1ubuntu6.1_amd64_translations.tar.gz
Original-Maintainer: Wolfram Quester <wolfi@sigxcpu.org>