New changelog entries:
* SECURITY UPDATE: incomplete fix for privilege escalation issue
- debian/patches/CVE-2015-3202.patch: changed another instance of execl
in libfuse-lite/mount_util.c.
- CVE-2015-3202
New changelog entries:
[ Salvatore Bonaccorso <email address hidden> ]
* Change all relevant execl() calls to execle() to fix all possible cases
of CVE-2015-3202 (closes: #786475).
New changelog entries:
* Apply 0002-CVE-2015-3202.patch to fix CVE-2015-3202 in the embedded FUSE
library (closes: #786475).
* Restrict the FUSE version in Build-Depends to the fixed package version
to be extra safe.
New changelog entries:
* SECURITY UPDATE: privilege escalation via insecure environment
- debian/patches/CVE-2015-3202.patch: use execle to run external
helpers in libfuse-lite/mount_util.c.
- CVE-2015-3202