From 55971004215609a02ca19c59bd058da20729ba11 Mon Sep 17 00:00:00 2001
From: Michael Vogt <egon@debian-devbox>
Date: Thu, 14 Mar 2013 14:26:43 +0100
Subject: * SECURITY UPDATE: InRelease verification bypass   - CVE-2013-1051

* apt-pkg/deb/debmetaindex.cc,
  test/integration/test-bug-595691-empty-and-broken-archive-files,
  test/integration/test-releasefile-verification:
  - disable InRelease downloading until the verification issue is
    fixed, thanks to Ansgar Burchardt for finding the flaw
---
 doc/apt-verbatim.ent | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'doc/apt-verbatim.ent')

diff --git a/doc/apt-verbatim.ent b/doc/apt-verbatim.ent
index 98d864818..f3885ef7c 100644
--- a/doc/apt-verbatim.ent
+++ b/doc/apt-verbatim.ent
@@ -213,7 +213,7 @@
 ">
 
 <!-- this will be updated by 'prepare-release' -->
-<!ENTITY apt-product-version "0.9.7.7">
+<!ENTITY apt-product-version "0.9.7.8">
 
 <!-- Codenames for debian releases -->
 <!ENTITY oldstable-codename "squeeze">
-- 
cgit v1.2.3