From 68e64b1eb65815f552be6a674c464216befdb3a9 Mon Sep 17 00:00:00 2001
From: Simon McVittie <smcv@debian.org>
Date: Sat, 29 Sep 2012 13:39:19 +0100
Subject: New upstream stable release 1.6.6, 1.6.8

* New upstream stable release 1.6.6
  - CVE-2012-3524: avoid arbitrary code execution in setuid or otherwise
    privileged binaries that incorrectly use libdbus without first
    sanitizing the environment variables inherited from their
    less-privileged caller (Closes: #689070)
* New upstream stable release 1.6.8
  - Revert part of 1.6.6 (do not check filesystem capabilities, only
    setuid/setgid), fixing regressions in certain configurations of
    gnome-keyring
---
 debian/changelog | 15 ++++++++++++---
 1 file changed, 12 insertions(+), 3 deletions(-)

diff --git a/debian/changelog b/debian/changelog
index 885718ba..2c6cae69 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,8 +1,17 @@
-dbus (1.6.4-2) UNRELEASED; urgency=low
+dbus (1.6.8-1) unstable; urgency=low
 
   * Merge from experimental
-
- -- Simon McVittie <smcv@debian.org>  Sat, 29 Sep 2012 13:10:43 +0100
+  * New upstream stable release 1.6.6
+    - CVE-2012-3524: avoid arbitrary code execution in setuid or otherwise
+      privileged binaries that incorrectly use libdbus without first
+      sanitizing the environment variables inherited from their
+      less-privileged caller (Closes: #689070)
+  * New upstream stable release 1.6.8
+    - Revert part of 1.6.6 (do not check filesystem capabilities, only
+      setuid/setgid), fixing regressions in certain configurations of
+      gnome-keyring
+
+ -- Simon McVittie <smcv@debian.org>  Sat, 29 Sep 2012 13:25:50 +0100
 
 dbus (1.6.4-1) experimental; urgency=low
 
-- 
cgit v1.2.3