Your message dated Fri, 31 Aug 2007 15:47:06 +0000
with message-id <[EMAIL PROTECTED]>
and subject line Bug#438511: fixed in centerim 4.22.1-2lenny1
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: centerim
Version: 4.22.1-2
Severity: grave
Tags: security
CVE-2007-3713[0]:
Multiple buffer overflows in Konst CenterICQ 4.9.11 through
4.21 allow remote attackers to execute arbitrary code via
unspecified vectors. NOTE: the provenance of this
information is unknown; the details are obtained solely from
third party information. NOTE: this might overlap
CVE-2007-0160.
If you fix this bug please include a CVE id in the
changelog.
Kind regards
Nico
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3713
--
Nico Golde - http://ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.
pgpIDSFwUkztD.pgp
Description: PGP signature
--- End Message ---
--- Begin Message ---
Source: centerim
Source-Version: 4.22.1-2lenny1
We believe that the bug you reported is fixed in the latest version of
centerim, which is due to be installed in the Debian FTP archive:
centericq-fribidi_4.22.1-2lenny1_all.deb
to pool/main/c/centerim/centericq-fribidi_4.22.1-2lenny1_all.deb
centericq-utf8_4.22.1-2lenny1_all.deb
to pool/main/c/centerim/centericq-utf8_4.22.1-2lenny1_all.deb
centericq_4.22.1-2lenny1_all.deb
to pool/main/c/centerim/centericq_4.22.1-2lenny1_all.deb
centerim-common_4.22.1-2lenny1_i386.deb
to pool/main/c/centerim/centerim-common_4.22.1-2lenny1_i386.deb
centerim-fribidi_4.22.1-2lenny1_i386.deb
to pool/main/c/centerim/centerim-fribidi_4.22.1-2lenny1_i386.deb
centerim-utf8_4.22.1-2lenny1_i386.deb
to pool/main/c/centerim/centerim-utf8_4.22.1-2lenny1_i386.deb
centerim_4.22.1-2lenny1.diff.gz
to pool/main/c/centerim/centerim_4.22.1-2lenny1.diff.gz
centerim_4.22.1-2lenny1.dsc
to pool/main/c/centerim/centerim_4.22.1-2lenny1.dsc
centerim_4.22.1-2lenny1_i386.deb
to pool/main/c/centerim/centerim_4.22.1-2lenny1_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Steffen Joeris <[EMAIL PROTECTED]> (supplier of updated centerim package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Thu, 30 Aug 2007 10:22:22 +0000
Source: centerim
Binary: centerim-utf8 centericq-utf8 centericq-fribidi centerim centericq
centerim-fribidi centerim-common
Architecture: source all i386
Version: 4.22.1-2lenny1
Distribution: testing-security
Urgency: high
Maintainer: Anibal Avelar (Fixxxer) <[EMAIL PROTECTED]>
Changed-By: Steffen Joeris <[EMAIL PROTECTED]>
Description:
centericq - transitional package for centerim
centericq-fribidi - transitional package for centerim-fribidi
centericq-utf8 - transitional package for centerim-utf8
centerim - A text-mode multi-protocol instant messenger client
centerim-common - A text-mode multi-protocol instant messenger client (data
files)
centerim-fribidi - A text-mode multi-protocol instant messenger client (Hebrew)
centerim-utf8 - A text-mode multi-protocol instant messenger client
Closes: 438511
Changes:
centerim (4.22.1-2lenny1) testing-security; urgency=high
.
* Non-maintainer upload by testing security team
* Included fedora-security-patch (Thanks to Tristan Seligmann)
to fix CVE-2007-3713 (Closes: #438511)
Files:
af9aeed04028edb6ad5bc30bd4464b5a 958 net optional centerim_4.22.1-2lenny1.dsc
d128b54e3cc04a6ee651c51682a497a9 2606696 net optional
centerim_4.22.1.orig.tar.gz
e80f19aad463c474c48dd7f4e3d70491 2504978 net optional
centerim_4.22.1-2lenny1.diff.gz
544198c2c4481d63264a8374aaa5a8ad 371580 net optional
centerim-common_4.22.1-2lenny1_i386.deb
90114cf78966f3445b92644be6f406b0 1292628 net optional
centerim_4.22.1-2lenny1_i386.deb
fd8760fb91d7226d4602359830001c22 1292686 net optional
centerim-utf8_4.22.1-2lenny1_i386.deb
15902d6b00f5d13d71e0358011c6aa5a 1293264 net optional
centerim-fribidi_4.22.1-2lenny1_i386.deb
ca2c1061c336fd67f395a67b35188109 40112 net optional
centericq_4.22.1-2lenny1_all.deb
591b75c19a79006078be48ccb91bcda4 40124 net optional
centericq-utf8_4.22.1-2lenny1_all.deb
d7f43b0426a701dd2edb59c96c36fb29 40134 net optional
centericq-fribidi_4.22.1-2lenny1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFG1qVU62zWxYk/rQcRAqMFAKDN7ZmpQykeDkADB6c2Ykjflwc/dACePUkX
qQkmTbIwLlhgVzlpuv1YBao=
=B62Y
-----END PGP SIGNATURE-----
--- End Message ---
