|
@@ -1,3 +1,14 @@
|
|
|
|
+tang (8-3+deb11u2) bullseye; urgency=high
|
|
|
|
+
|
|
|
|
+ * Fix CVE-2023-1672:
|
|
|
|
+ - Cherry-pick "Fix race condition when creating/rotating keys"
|
|
|
|
+ - Assert restrictive permissions on tang's key directory
|
|
|
|
+ In existing multi-user bullseye installations, rotating the keys
|
|
|
|
+ is suggested.
|
|
|
|
+ * Make the tangd-rotate-keys program executable
|
|
|
|
+
|
|
|
|
+ -- Christoph Biedl <debian.axhn@manchmal.in-ulm.de> Sat, 08 Jul 2023 12:41:29 +0200
|
|
|
|
+
|
|
tang (8-3+deb11u1) bullseye-security; urgency=high
|
|
tang (8-3+deb11u1) bullseye-security; urgency=high
|
|
|
|
|
|
* Fix data leak [CVE-2021-4076]
|
|
* Fix data leak [CVE-2021-4076]
|