Bug#799369: jessie-pu: package swift/2.2.0-1
Control: tags -1 + pending
On Sat, 2015-11-21 at 17:32 +0000, Adam D. Barratt wrote:
> Control: tags -1 -moreinfo +confirmed
>
> On Fri, 2015-09-18 at 13:38 +0200, Thomas Goirand wrote:
>
> +swift (2.2.0-1+deb8u1) jessie-proposed-updates; urgency=medium
> +
> + [ Thomas Goirand ]
> + * Fixed swift user creation (standardized on pkgos way).
> + * CVE-2015-1856 & OSSA 2015-006: Unauthorized delete of versioned Swift
> + object. Applied upstream patch: Prevent unauthorized delete in versioned
> + container (Closes: #783163).
> +
> + [ Ondřej Nový ]
> + * Fixed service name of object-expirer.
> + * Added container-sync init script.
> + * CVE-2015-5223: Information leak via Swift tempurls.
> + Applied upstream patch: Disallow unsafe tempurl operations to point
> + to unauthorized data (Closes: #797032).
>
> Please go ahead.
Uploaded and flagged for acceptance.
Regards,
Adam
Reply to: