Please merge 1.1.3-1 from Debian Sid
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
xdg-utils (Ubuntu) |
Fix Released
|
Wishlist
|
Simon Quigley |
Bug Description
There's a new upstream release available in Debian. Let's merge it.
Changelog entries since the last merge:
xdg-utils (1.1.3-1) unstable; urgency=medium
* New upstream release.
- Avoid argument injection vulnerability in open_envvar.
Fixes CVE-2017-18266, closes: #898317.
* Remove 01-open-lxqt.patch applied by upstream.
* Fix word expansion on KDE in xdg-email. Closes: #898999.
* Bump debhelper and standards version, no modifications for this.
-- Nicholas Guriev <email address hidden> Sun, 20 May 2018 01:18:48 +0300
xdg-utils (1.1.2-2) unstable; urgency=medium
* Update Vcs for salsa.debian.org.
* 01-open-lxqt.patch: Fix support in LXQt, which isn't the same as LXDE.
Closes: #884436.
-- Emilio Pozuelo Monfort <email address hidden> Tue, 27 Feb 2018 10:25:43 +0100
Here's a debdiff which, when applied, builds fine on my system.
It's applicable to 1.1.3-1.