-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 25 Nov 2025 12:32:14 +0100
Source: tryton-server
Binary: tryton-server tryton-server-all-in-one tryton-server-doc tryton-server-nginx tryton-server-postgresql tryton-server-uwsgi
Architecture: all
Version: 7.0.30-1+deb13u1
Distribution: trixie-security
Urgency: high
Maintainer: all Build Daemon (x86-grnet-02) <buildd_all-x86-grnet-02@buildd.debian.org>
Changed-By: Mathias Behrle <mathiasb@m9s.biz>
Description:
 tryton-server - Tryton application platform - server
 tryton-server-all-in-one - Tryton application platform - full installation
 tryton-server-doc - Tryton application platform - server documentation
 tryton-server-nginx - Tryton application platform - Nginx integration
 tryton-server-postgresql - Tryton application platform - PostgreSQL integration
 tryton-server-uwsgi - Tryton application platform - uWSGI integration
Changes:
 tryton-server (7.0.30-1+deb13u1) trixie-security; urgency=high
 .
   * Add 03_traceback_in_RPC.patch,
     04_enforce_access_check_html_editor.patch,
     05_enforce_access_check_export_data.patch
 .
     Fixes for security issues:
 .
      Enforce access check in HTML editor route
      https://bugs.debian.org/1121241 (s.a. #1121241)
      -> https://foss.heptapod.net/tryton/tryton/-/issues/14364
 .
      Include the traceback only in RPC responses in development mode
      https://bugs.debian.org/1121242 (s.a. #1121242)
      -> https://foss.heptapod.net/tryton/tryton/-/issues/14354
 .
      Enforce access check in export_data
      https://bugs.debian.org/1121243 (s.a. #1121243)
      -> https://foss.heptapod.net/tryton/tryton/-/issues/14366
Checksums-Sha1:
 3046f252ee8d7497e0ec9ebf56034d38f18066c8 26444 tryton-server-all-in-one_7.0.30-1+deb13u1_all.deb
 c355c586686c27d48acfeaf4f9da1c81a8902f2f 239408 tryton-server-doc_7.0.30-1+deb13u1_all.deb
 24ba905d6e2fe40948b1e443fda5e2d833b227e4 29788 tryton-server-nginx_7.0.30-1+deb13u1_all.deb
 2871e7db88451b1ff1fe9bdac6448eccc30b2fa0 27000 tryton-server-postgresql_7.0.30-1+deb13u1_all.deb
 a611885a447e4fecf0853938f2f4d665ac16084f 27932 tryton-server-uwsgi_7.0.30-1+deb13u1_all.deb
 0c3a2f1a31254e07909d2b5d7dc7f7ad8b9f171b 10125 tryton-server_7.0.30-1+deb13u1_all-buildd.buildinfo
 c69e9730f01642e51be17e990cd0c40f6e0b84f2 574772 tryton-server_7.0.30-1+deb13u1_all.deb
Checksums-Sha256:
 fd8ac872eba1577457923f8b2a319efbf262435540e3d6a572a96de6d1c94fd5 26444 tryton-server-all-in-one_7.0.30-1+deb13u1_all.deb
 00bd5ef47b305ba2d9663cc65218aae2db4bcb6a6271ccfe7408908db035c786 239408 tryton-server-doc_7.0.30-1+deb13u1_all.deb
 dfd950e81276cd6da779d6434dbb1cd84091dcb59daace95a7d9a19198878ac0 29788 tryton-server-nginx_7.0.30-1+deb13u1_all.deb
 7eefd1def1370f80f2f95013d4f2012d180db6b8bc16f6c2653ad35c558f3797 27000 tryton-server-postgresql_7.0.30-1+deb13u1_all.deb
 5bfb101624f84c249d39e83debd117c6617d5aab23e8af156600e6b0bf8d4abc 27932 tryton-server-uwsgi_7.0.30-1+deb13u1_all.deb
 9811782a104d4ff97edcbd77057a2fb9b4886262dbf30a31e51bd176277b9655 10125 tryton-server_7.0.30-1+deb13u1_all-buildd.buildinfo
 577100803ba7550d344b5d10004583dbdf9d43491bfd6fd37217269f1223d958 574772 tryton-server_7.0.30-1+deb13u1_all.deb
Files:
 0c7d4f0f201d1a1043c372d17e21d57f 26444 python optional tryton-server-all-in-one_7.0.30-1+deb13u1_all.deb
 3bd1d9379c7bbf0e51af582df412416a 239408 doc optional tryton-server-doc_7.0.30-1+deb13u1_all.deb
 702ed69d7eee6bc187ad4dbbda0b34d2 29788 python optional tryton-server-nginx_7.0.30-1+deb13u1_all.deb
 7af5b54806e0bf7630389d5fc66c08e6 27000 python optional tryton-server-postgresql_7.0.30-1+deb13u1_all.deb
 6585cd47abfdb4d3862c0eecc85ea172 27932 python optional tryton-server-uwsgi_7.0.30-1+deb13u1_all.deb
 cfbcf4b108e8d33f4a7e5c5d8c9414c8 10125 python optional tryton-server_7.0.30-1+deb13u1_all-buildd.buildinfo
 17d7eff4786ca22be261d339d6c6766f 574772 python optional tryton-server_7.0.30-1+deb13u1_all.deb

-----BEGIN PGP SIGNATURE-----
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=WF40
-----END PGP SIGNATURE-----