* Run the tests as part of the build process
- debian/patches/FTBFS-tests.patch: Fix issues when running make check.
Based on upstream patches.
- debian/rules: Run make check after building
* Fix dependencies of xmlrpc-api-utils
- debian/control: xml-rcp-api2cpp needs libxmlrpc_cpp.so.4, so depend on
libxmlrpc-c++4
* SECURITY UPDATE: Denial of service via hash collisions (LP: #1048835)
- debian/patches/CVE-2012-0876.patch: Add random salt value to
hash inputs. Based on upstream patch.
- CVE-2012-0876
* SECURITY UPDATE: Denial of service via memory leak (LP: #1048835)
- debian/patches/CVE-2012-1148.patch: Properly reallocate memory.
Based on upstream patch.
- CVE-2012-1148
-- Tyler Hicks <email address hidden> Mon, 10 Sep 2012 14:57:29 -0700
This bug was fixed in the package xmlrpc-c - 1.16.33-3.1ubuntu6
--------------- 3.1ubuntu6) quantal; urgency=low
xmlrpc-c (1.16.33-
* Run the tests as part of the build process patches/ FTBFS-tests. patch: Fix issues when running make check. -c++4 patches/ CVE-2012- 0876.patch: Add random salt value to patches/ CVE-2012- 1148.patch: Properly reallocate memory.
- debian/
Based on upstream patches.
- debian/rules: Run make check after building
* Fix dependencies of xmlrpc-api-utils
- debian/control: xml-rcp-api2cpp needs libxmlrpc_cpp.so.4, so depend on
libxmlrpc
* SECURITY UPDATE: Denial of service via hash collisions (LP: #1048835)
- debian/
hash inputs. Based on upstream patch.
- CVE-2012-0876
* SECURITY UPDATE: Denial of service via memory leak (LP: #1048835)
- debian/
Based on upstream patch.
- CVE-2012-1148
-- Tyler Hicks <email address hidden> Mon, 10 Sep 2012 14:57:29 -0700