-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 28 Apr 2023 06:28:07 +0200
Source: odoo
Architecture: source
Version: 14.0.0+dfsg.2-7+deb11u1
Distribution: bullseye
Urgency: high
Maintainer: Freexian Packaging Team <team+freexian@tracker.debian.org>
Changed-By: Sebastien Delafond <seb@debian.org>
Changes:
 odoo (14.0.0+dfsg.2-7+deb11u1) stable-security; urgency=high
 .
   * debian/patches: fix recent CVEs
     CVE-2021-44775, CVE-2021-26947, CVE-2021-45071, CVE-2021-26263:
       XSS allowing remote attacker to inject arbitrary commands.
     CVE-2021-45111:
       Incorrect access control allowing authenticated remote user to
       create user accounts and access restricted data.
     CVE-2021-44476, CVE-2021-23166:
       Incorrect access control allowing authenticated remote administrator
       to access local files on the server.
     CVE-2021-23186:
       Incorrect access control allowing authenticated remote administrator
       to modify database contents of other tenants.
     CVE-2021-23178:
       Incorrect access control allowing authenticated remote user to
       use another user's payment method.
     CVE-2021-23176:
       Incorrect access control allowing authenticated remote user to
       access accounting information.
     CVE-2021-23203:
       Incorrect access control allowing authenticated remote user to
       access arbitrary documents via PDF exports.
Checksums-Sha1:
 fe1df6f2efbbc60eaca40ca2e42f677f4fcf31c8 1653 odoo_14.0.0+dfsg.2-7+deb11u1.dsc
 718e473f20d32527804ffcf3ccf0effe3a75c4c5 74405440 odoo_14.0.0+dfsg.2.orig.tar.xz
 86f6d14813c1aa9ea2018f40e0507f4512674c01 34652 odoo_14.0.0+dfsg.2-7+deb11u1.debian.tar.xz
 53321fe3ac3374549d5599905115d25f64c7bb1a 6421 odoo_14.0.0+dfsg.2-7+deb11u1_amd64.buildinfo
Checksums-Sha256:
 3a9d405ea610d2014d27b84d0ace7b8442db0939e2c85319e006a80c3a103467 1653 odoo_14.0.0+dfsg.2-7+deb11u1.dsc
 eabc4af42889dc6151a790efc34a4a0da574b2aa6830679a4536dd94c137f152 74405440 odoo_14.0.0+dfsg.2.orig.tar.xz
 875f4ecd17204b23f022c74ce183f14ac7b02d8b45f0f0cfe68ad7dd7dc0bdca 34652 odoo_14.0.0+dfsg.2-7+deb11u1.debian.tar.xz
 8d7d3a6c91576b6c378a0e3ed87efa3eec37c9c7e5171c7783621f3a06b9be8b 6421 odoo_14.0.0+dfsg.2-7+deb11u1_amd64.buildinfo
Files:
 03d1ef8e216b493e8b8ca3a56f2164b7 1653 net optional odoo_14.0.0+dfsg.2-7+deb11u1.dsc
 fb8db80fed033b42a30eff7ada75f635 74405440 net optional odoo_14.0.0+dfsg.2.orig.tar.xz
 611ec47e283b953ddaa05bde18f1a0b8 34652 net optional odoo_14.0.0+dfsg.2-7+deb11u1.debian.tar.xz
 cfd02d63cb7a4a67e95022dc0b637643 6421 net optional odoo_14.0.0+dfsg.2-7+deb11u1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----

iQEzBAEBCgAdFiEEAqSkbVtrXP4xJMh3EL6Jg/PVnWQFAmRUvtcACgkQEL6Jg/PV
nWRurAf/chKU9w0iumpn5gVOYJmJlVsiDLlcpWd8B5zofDI8YRgCV8r6MQcPUPhf
Or2VpcDtlJ1axVuL/QXDYBdNww+vH1TmY/sgbjs7RVTd77tu0GnF8s7Pp+jxOlg1
sGxZnpiHTeDpv6zzeS2FkIjNnlZrEl0j6xxRWVmqcScQeB2AiJHRUsH+mndabJwA
oq8kYw74MnF0pJbIiSw0VQc6HV5X6Ga12NWzuLDhnNN6FrWvam2EwPfPf+c2DqG9
tiAU6xNY8ZfSMNxbEKuwq86ZZ8B6i0vW1o5qpodYnUpgKLqd5pqYti5qxqEwE1cZ
9f/Jt/JRT8bmMXwGtMFrfXFKtRtoCg==
=Pg72
-----END PGP SIGNATURE-----