merge upload 1.0.1ubuntu2.1

author: Michael Vogt <mvo@ubuntu.com> 2014-06-18 10:57:28 +0200
committer: Michael Vogt <mvo@ubuntu.com> 2014-06-18 10:57:36 +0200
commit: ae286f57156e344713ec3a50cb8f358953577ca7 (patch)
tree: 79b3b9a022915c120c69ae674ba117b469f688a9 /debian
parent: d6df4c2c0695cb19f471ba4c10b79edb60d14a12 (diff)
1 files changed, 12 insertions, 2 deletions
diff --git a/debian/changelog b/debian/changelog
index 5bf131080..419e4ba77 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,4 +1,4 @@
-apt (1.0.1ubuntu2.1) UNRELEASED; urgency=medium
+apt (1.0.1ubuntu2.2) UNRELEASED; urgency=medium
 
   * Implement CacheDB for source packages in apt-ftparchive  
     LP: #1329212
@@ -7,7 +7,17 @@ apt (1.0.1ubuntu2.1) UNRELEASED; urgency=medium
   * Add compat mode for old (32bit FileSize) CacheDB (LP: #1274466)
   * fix tests and add db-util to the test dependencies
 
- -- Michael Vogt <michael.vogt@ubuntu.com>  Thu, 12 Jun 2014 09:54:47 +0200
+ -- Michael Vogt <michael.vogt@ubuntu.com>  Wed, 18 Jun 2014 10:56:19 +0200
+
+apt (1.0.1ubuntu2.1) trusty-security; urgency=low
+
+  * SECURITY UPDATE: incorrect apt-get source validation (LP: #1329274)
+    - warn if not authenticated in apt-private/private-download.*,
+      cmdline/apt-get.cc, added regression test to
+      test/integration/test-apt-get-source-authenticated.
+    - CVE-2014-0478
+
+ -- Michael Vogt <michael.vogt@ubuntu.com>  Thu, 12 Jun 2014 13:57:38 +0200
 
 apt (1.0.1ubuntu2) trusty; urgency=low
author	Michael Vogt <mvo@ubuntu.com>	2014-06-18 10:57:28 +0200
committer	Michael Vogt <mvo@ubuntu.com>	2014-06-18 10:57:36 +0200
commit	ae286f57156e344713ec3a50cb8f358953577ca7 (patch)
tree	79b3b9a022915c120c69ae674ba117b469f688a9 /debian
parent	d6df4c2c0695cb19f471ba4c10b79edb60d14a12 (diff)