Add changelog for upstream security fixes

author Russ Allbery <rra@debian.org>

Sun, 24 Feb 2013 23:02:38 +0000 (15:02 -0800)

committer Russ Allbery <rra@debian.org>

Sun, 24 Feb 2013 23:02:38 +0000 (15:02 -0800)
author Russ Allbery <rra@debian.org>
Sun, 24 Feb 2013 23:02:38 +0000 (15:02 -0800)
committer Russ Allbery <rra@debian.org>
Sun, 24 Feb 2013 23:02:38 +0000 (15:02 -0800)
diff --git a/debian/changelog b/debian/changelog

index 64c496bbea185d757d47178bf4d05304cc136615..eb81d0a8c89d191fe81053c37e54738ebce6c586 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,14 @@
+openafs (1.6.1-3) UNRELEASED; urgency=high
+
+  * Apply upstream security patches:
+    - OPENAFS-SA-2013-001: Fix fileserver buffer overflow when parsing
+      client-supplied ACL entries and protect against client parsing of
+      bad ACL entries.
+    - OPENAFS-SA-2013-002: Fix ptserver buffer overflow via integer
+      overflow in the IdToName RPC.
+
+ -- Russ Allbery <rra@debian.org>  Sun, 24 Feb 2013 15:01:49 -0800
+
  openafs (1.6.1-2) unstable; urgency=low
  
    * Translation updates:
author	Russ Allbery <rra@debian.org>
	Sun, 24 Feb 2013 23:02:38 +0000 (15:02 -0800)
committer	Russ Allbery <rra@debian.org>
	Sun, 24 Feb 2013 23:02:38 +0000 (15:02 -0800)