Your message dated Thu, 29 Dec 2022 20:37:39 +0000
with message-id <e1pazel-006y3m...@fasolo.debian.org>
and subject line Bug#1025120: fixed in libetpan 1.9.4-3.1
has caused the Debian Bug report #1025120,
regarding libetpan: CVE-2022-4121: Null Pointer Dereference STATUS Response
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
1025120: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025120
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Source: libetpan
Version: 1.9.4-3
Severity: important
Tags: security upstream
Forwarded: https://github.com/dinhvh/libetpan/issues/420
X-Debbugs-Cc: car...@debian.org, Debian Security Team <t...@security.debian.org>
Hi,
The following vulnerability was published for libetpan.
CVE-2022-4121[0]:
| Null pointer dereference in mailimap_mailbox_data_status_free in
| low-level/imap/mailimap_types.c
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2022-4121
https://www.cve.org/CVERecord?id=CVE-2022-4121
[1] https://github.com/dinhvh/libetpan/issues/420
Regards,
Salvatore
--- End Message ---
--- Begin Message ---
Source: libetpan
Source-Version: 1.9.4-3.1
Done: Salvatore Bonaccorso <car...@debian.org>
We believe that the bug you reported is fixed in the latest version of
libetpan, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 1025...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Salvatore Bonaccorso <car...@debian.org> (supplier of updated libetpan package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Thu, 29 Dec 2022 09:42:05 +0100
Source: libetpan
Architecture: source
Version: 1.9.4-3.1
Distribution: unstable
Urgency: medium
Maintainer: Ricardo Mones <mo...@debian.org>
Changed-By: Salvatore Bonaccorso <car...@debian.org>
Closes: 1025120
Changes:
libetpan (1.9.4-3.1) unstable; urgency=medium
.
* Non-maintainer upload.
* Fixed crash when st_info_list is NULL (CVE-2022-4121) (Closes: #1025120)
Checksums-Sha1:
625839786164562f117ac3a6945d471d5c9a1a66 2301 libetpan_1.9.4-3.1.dsc
01ea35cde6ad753acc1a6e70ee9a2b755b091a9a 23660 libetpan_1.9.4-3.1.debian.tar.xz
Checksums-Sha256:
8438d20022a2daa3d178dea5fe21a2bdbbf45c69ed7fe0406b5cba37d3b1ef46 2301
libetpan_1.9.4-3.1.dsc
bdcb88d649bd4bdc47474163bd4eec9a40f8cc2c32ae4d12626627f3fda415b1 23660
libetpan_1.9.4-3.1.debian.tar.xz
Files:
fc5e8b7684ac152b0c39d8a282abc10f 2301 mail optional libetpan_1.9.4-3.1.dsc
35bf4f91877dcadc6ecebd230af4d3d7 23660 mail optional
libetpan_1.9.4-3.1.debian.tar.xz
-----BEGIN PGP SIGNATURE-----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=9W3j
-----END PGP SIGNATURE-----
--- End Message ---
