From 55971004215609a02ca19c59bd058da20729ba11 Mon Sep 17 00:00:00 2001
From: Michael Vogt <egon@debian-devbox>
Date: Thu, 14 Mar 2013 14:26:43 +0100
Subject: * SECURITY UPDATE: InRelease verification bypass   - CVE-2013-1051

* apt-pkg/deb/debmetaindex.cc,
  test/integration/test-bug-595691-empty-and-broken-archive-files,
  test/integration/test-releasefile-verification:
  - disable InRelease downloading until the verification issue is
    fixed, thanks to Ansgar Burchardt for finding the flaw
---
 configure.in | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'configure.in')

diff --git a/configure.in b/configure.in
index be3634abe..84b6d1b24 100644
--- a/configure.in
+++ b/configure.in
@@ -18,7 +18,7 @@ AC_CONFIG_AUX_DIR(buildlib)
 AC_CONFIG_HEADER(include/config.h:buildlib/config.h.in include/apti18n.h:buildlib/apti18n.h.in)
 
 PACKAGE="apt"
-PACKAGE_VERSION="0.9.7.7"
+PACKAGE_VERSION="0.9.7.8"
 PACKAGE_MAIL="APT Development Team <deity@lists.debian.org>"
 AC_DEFINE_UNQUOTED(PACKAGE,"$PACKAGE")
 AC_DEFINE_UNQUOTED(PACKAGE_VERSION,"$PACKAGE_VERSION")
-- 
cgit v1.2.3