Commit 55a22e00 authored by Salvatore Bonaccorso's avatar Salvatore Bonaccorso

Retrospectively add now assigned CVE for shell injection vulnerability

Gbp-Dch: Ignore
parent 18edd535
devscripts (2.15.7) unstable; urgency=medium
* licensecheck:
+ Use Dpkg::IPC to run file to avoid shell injection. (Closes: #794260)
+ Use Dpkg::IPC to run file to avoid shell injection.
(Closes: #794260, CVE-2015-5704)
+ Change whitelist of mime types to greylist of encodings. Restores
ability to check files with mime types like text/x-c++ and
application/postscript. Thanks to Jonas Smedegaard for the patch.
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment