summaryrefslogtreecommitdiff
path: root/debian/changelog
diff options
context:
space:
mode:
authorGravatar Joey Hess <joey@kitenet.net>2014-09-19 01:38:51 -0400
committerGravatar Joey Hess <joey@kitenet.net>2014-09-19 01:38:51 -0400
commiteed362c9b960c22050439869c84770baa33182c7 (patch)
tree32b34a6a10881ee22fbde6f9d6cd1113874a87ca /debian/changelog
parent7bdc1436585178be5ee5e6ad06ef73186a88a63d (diff)
CVE id assigned
Diffstat (limited to 'debian/changelog')
-rw-r--r--debian/changelog2
1 files changed, 1 insertions, 1 deletions
diff --git a/debian/changelog b/debian/changelog
index 5bfba77ed..107d8bf89 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,7 +1,7 @@
git-annex (5.20140916) UNRELEASED; urgency=medium
* Security fix for S3 and glacier when using embedcreds=yes with
- encryption=pubkey or encryption=hybrid.
+ encryption=pubkey or encryption=hybrid. CVE-2014-6274
The creds embedded in the git repo were *not* encrypted.
git-annex enableremote will warn when used on a remote that has
this problem. For details, see: