Your message dated Tue, 26 Jun 2007 17:02:12 +0000
with message-id <[EMAIL PROTECTED]>
and subject line Bug#429209: fixed in ktorrent 2.2~rc1.dfsg.1-1
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: ktorrent
Severity: grave
Tags: security
Your package seems to embed a copy of wz_tooltip, for which a security
bug has been reported:
| Unspecified vulnerability in Walter Zorn wz_tooltip.js (aka
| wz_tooltips) before 4.01, as used by eGroupWare before 1.2.107-2 and
| other packages, has unknown impact and remote attack vectors.
<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3154>
Please upgrade the included copy, and backport the changes to stable
(if necessary).
--- End Message ---
--- Begin Message ---
Source: ktorrent
Source-Version: 2.2~rc1.dfsg.1-1
We believe that the bug you reported is fixed in the latest version of
ktorrent, which is due to be installed in the Debian FTP archive:
ktorrent-dbg_2.2~rc1.dfsg.1-1_i386.deb
to pool/main/k/ktorrent/ktorrent-dbg_2.2~rc1.dfsg.1-1_i386.deb
ktorrent_2.2~rc1.dfsg.1-1.diff.gz
to pool/main/k/ktorrent/ktorrent_2.2~rc1.dfsg.1-1.diff.gz
ktorrent_2.2~rc1.dfsg.1-1.dsc
to pool/main/k/ktorrent/ktorrent_2.2~rc1.dfsg.1-1.dsc
ktorrent_2.2~rc1.dfsg.1-1_i386.deb
to pool/main/k/ktorrent/ktorrent_2.2~rc1.dfsg.1-1_i386.deb
ktorrent_2.2~rc1.dfsg.1.orig.tar.gz
to pool/main/k/ktorrent/ktorrent_2.2~rc1.dfsg.1.orig.tar.gz
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Debian KDE Extras Team <[EMAIL PROTECTED]> (supplier of updated ktorrent
package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Tue, 26 Jun 2007 11:17:02 +0300
Source: ktorrent
Binary: ktorrent-dbg ktorrent
Architecture: source i386
Version: 2.2~rc1.dfsg.1-1
Distribution: experimental
Urgency: low
Maintainer: Debian KDE Extras Team <[EMAIL PROTECTED]>
Changed-By: Debian KDE Extras Team <[EMAIL PROTECTED]>
Description:
ktorrent - BitTorrent client for KDE
ktorrent-dbg - KTorrent debugging symbols
Closes: 429209
Changes:
ktorrent (2.2~rc1.dfsg.1-1) experimental; urgency=low
.
[Modestas Vainius]
* New upstream development release.
* Update patches:
- 10_use_system_geoip.diff - fix offsets.
- 11_flagdb-alternative-source.diff - fix offsets.
- 98_buildprep.diff - regenerate.
* Add patch 14_wz_tooltip_CVE-2007-3154.diff - fixes CVE-2007-3154.
The patch is based on wz_tooltip.js from eGroupWare 1.4.001
(Closes: #429209).
* Fix "debian-rules-ignores-make-clean-error" lintian warning.
* Use ${binary:Version} instead of ${Source-Version} for ktorrent-dbg
dependency on ktorrent.
Files:
db80b79743d088420c40d25c4a61e27a 855 kde optional ktorrent_2.2~rc1.dfsg.1-1.dsc
a09b0964fa38f1eace45490689e69c50 3092360 kde optional
ktorrent_2.2~rc1.dfsg.1.orig.tar.gz
4d7f8bf59fa8339d17ba152d046e7480 270033 kde optional
ktorrent_2.2~rc1.dfsg.1-1.diff.gz
ad6f5a28b2deb7e11943d0174b648d9f 2562854 kde optional
ktorrent_2.2~rc1.dfsg.1-1_i386.deb
9a528a75ff7b773c4178c1be1e6843de 4334022 kde optional
ktorrent-dbg_2.2~rc1.dfsg.1-1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Signed by Ana Guerrero
iD8DBQFGgUL0n3j4POjENGERArMyAJwMFh6FPJK6BQBF+ZW7T3UNosl0egCdGq8t
GI696ksIcQlZQdLgz7Ik8xQ=
=mA6z
-----END PGP SIGNATURE-----
--- End Message ---
