From ca18208fbda302b767c10bb567f90d7c6127db44 Mon Sep 17 00:00:00 2001
From: Michael Vogt <michael.vogt@ubuntu.com>
Date: Thu, 14 Mar 2013 14:28:58 +0100
Subject: * SECURITY UPDATE: InRelease verification bypass   - CVE-2013-1051 *
 apt-pkg/deb/debmetaindex.cc,  
 test/integration/test-bug-595691-empty-and-broken-archive-files,  
 test/integration/test-releasefile-verification:   - disable InRelease
 downloading until the verification issue is     fixed, thanks to Ansgar
 Burchardt for finding the flaw

---
 debian/changelog | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

(limited to 'debian/changelog')

diff --git a/debian/changelog b/debian/changelog
index 42320529f..51a7662db 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,17 @@
+apt (0.9.7.7ubuntu3) raring; urgency=low
+
+  * SECURITY UPDATE: InRelease verification bypass
+    - CVE-2013-1051
+
+  [ David Kalnischk ]
+  * apt-pkg/deb/debmetaindex.cc,
+    test/integration/test-bug-595691-empty-and-broken-archive-files,
+    test/integration/test-releasefile-verification:
+    - disable InRelease downloading until the verification issue is
+      fixed, thanks to Ansgar Burchardt for finding the flaw
+
+ -- Michael Vogt <michael.vogt@ubuntu.com>  Thu, 14 Mar 2013 14:25:56 +0100
+
 apt (0.9.7.7ubuntu2) raring; urgency=low
 
   * Cherry-pick from David's sid branch to fix a multiarch library
-- 
cgit v1.2.3