-
0c4d643...
by
Yves-Alexis Perez
on 2017-10-07
-
Import patches-applied version 3.22.3-1+deb9u1 to applied/debian/stretch
Imported using git-ubuntu import.
Changelog parent: 9bf222f4504fe37b099a250e09c57f14da25e358
Unapplied parent: 501114b0e7d5ba148dc430ef85caa7dc1374d517
New changelog entries:
[ Phil Wyett ]
* CVE-2017-14604: desktop_file_trust.patch
+ Spoof a file type by using the .desktop file extension, as demonstrated
by an attack in which a .desktop file's Name field ends in .pdf but
this file's Exec field launches a malicious "sh -c" command.
(Closes: #860268).
- Initial patch by Phil Wyett <email address hidden>
- Translations additions by Donncha O'Cearbhaill <email address hidden>
[ Yves-Alexis Perez ]
* Non-maintainer upload by the Security Team.
-
501114b...
by
Yves-Alexis Perez
on 2017-10-07
-
mime-actions: use file metadata for trusting desktop files
Gbp-Pq: desktop_file_trust.patch.
-
1ea1cd7...
by
Yves-Alexis Perez
on 2017-10-07
-
[PATCH] Load extensions from non-multiarch directory too
Gbp-Pq: multiarch_fallback.patch.
-
31246ea...
by
Yves-Alexis Perez
on 2017-10-07
-
Import patches-unapplied version 3.22.3-1+deb9u1 to debian/stretch
Imported using git-ubuntu import.
Changelog parent: 0bdf751e035979aa818892e9139d3ca448fe8846
New changelog entries:
[ Phil Wyett ]
* CVE-2017-14604: desktop_file_trust.patch
+ Spoof a file type by using the .desktop file extension, as demonstrated
by an attack in which a .desktop file's Name field ends in .pdf but
this file's Exec field launches a malicious "sh -c" command.
(Closes: #860268).
- Initial patch by Phil Wyett <email address hidden>
- Translations additions by Donncha O'Cearbhaill <email address hidden>
[ Yves-Alexis Perez ]
* Non-maintainer upload by the Security Team.
-
9bf222f...
by
Michael Biebl
on 2017-03-09
-
Import patches-applied version 3.22.3-1 to applied/debian/sid
Imported using git-ubuntu import.
Changelog parent: e029eda720af125eaf22d57f320a982f48a6575e
Unapplied parent: 9f8da9a88ea128ce63c70394f6cb65b9f1e4763a
New changelog entries:
* New upstream release.
-
0bdf751...
by
Michael Biebl
on 2017-03-09
-
Import patches-unapplied version 3.22.3-1 to debian/sid
Imported using git-ubuntu import.
Changelog parent: fa95f99eae57d52d4fc8e2d15e22dc9922cea4f8
New changelog entries:
* New upstream release.
-
9f8da9a...
by
Michael Biebl
on 2017-03-09
-
[PATCH] Load extensions from non-multiarch directory too
Gbp-Pq: multiarch_fallback.patch.
-
e029eda...
by
Michael Biebl
on 2016-12-10
-
Import patches-applied version 3.22.2-1 to applied/debian/sid
Imported using git-ubuntu import.
Changelog parent: b7c6c1783883c28daa64072f476b9c81767dd4f3
Unapplied parent: d1bc9ec9d47e94c30b44cb247a1d75e814f39692
New changelog entries:
* New upstream release.
* Enforce strictly versioned dependency between nautilus and
nautilus-data. This is needed to ensure we always have the correct version
of the org.gnome.nautilus GSettings schema installed.
-
fa95f99...
by
Michael Biebl
on 2016-12-10
-
Import patches-unapplied version 3.22.2-1 to debian/sid
Imported using git-ubuntu import.
Changelog parent: 4e3e26cdd70748ad5a7b69bdb795ca8d50448dfb
New changelog entries:
* New upstream release.
* Enforce strictly versioned dependency between nautilus and
nautilus-data. This is needed to ensure we always have the correct version
of the org.gnome.nautilus GSettings schema installed.
-
d1bc9ec...
by
Michael Biebl
on 2016-12-10
-
[PATCH] Load extensions from non-multiarch directory too
Gbp-Pq: multiarch_fallback.patch.