-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Wed, 22 Nov 2006 20:21:52 -0800
Source: tar
Binary: tar
Architecture: amd64_translations amd64
Version: 1.15.1-2ubuntu2.1
Distribution: dapper-security
Urgency: low
Maintainer: Ubuntu/amd64 Build Daemon <buildd@king.buildd>
Changed-By: Kees Cook <kees@ubuntu.com>
Description: 
 tar        - GNU tar
Changes: 
 tar (1.15.1-2ubuntu2.1) dapper-security; urgency=low
 .
   * SECURITY UPDATE: files can be overwritten/renamed in any writable location
     in the filesystem via GNUTYPE_NAMES type.
   * src/extract.c: disable GNUTYPE_NAMES type processing by default since it
     allows for immediate symlink creation and renames.
   * src/common.h, src/tar.c: add --allow-name-mangling option to restore
     default behavior.
   * References
     http://archives.neohapsis.com/archives/fulldisclosure/2006-11/0344.html
Files: 
 ddcb1e2e8770645f683b462b095ff851 532022 base required tar_1.15.1-2ubuntu2.1_amd64.deb
 2df261f5f3f5fe79ddae08398bc48daa 745570 raw-translations - tar_1.15.1-2ubuntu2.1_amd64_translations.tar.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)

iD8DBQFFZTKO0N0xjzyQZEIRArERAKCJwgdEHRmM2Me1e99cfxH8d3emawCfa2vJ
MwgRo6+Bnd1MpeXajQYcWBg=
=mWfh
-----END PGP SIGNATURE-----