Your message dated Fri, 27 Nov 2009 21:32:23 +0000
with message-id <e1ne8qr-0004uw...@ries.debian.org>
and subject line Bug#552235: fixed in acidbase 1.4.4-1
has caused the Debian Bug report #552235,
regarding acidbase: multiple security flaws, needs maintenance or removal?
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
552235: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=552235
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: acidbase
Version: 1.3.9-1
Severity: grave
Tags: security
Justification: user security hole
From <http://base.secureideas.net/>:
> BASE 1.4.4 (dawn) released!
> ...
> This release fixes a number of flaws as well as ome security flaws
> All users must upgrade as these flaws have existed through numerous releases
> of BASE.
and
> BASE 1.4.3 (gabi) released!
> ...
> This release fixes a number of XSS flaws as well as a potential SQL
> injection flaw.
-- System Information:
Debian Release: squeeze/sid
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (101,
'experimental')
Architecture: i386 (x86_64)
Kernel: Linux 2.6.31-trunk-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
signature.asc
Description: Digital signature
--- End Message ---
--- Begin Message ---
Source: acidbase
Source-Version: 1.4.4-1
We believe that the bug you reported is fixed in the latest version of
acidbase, which is due to be installed in the Debian FTP archive:
acidbase_1.4.4-1.diff.gz
to main/a/acidbase/acidbase_1.4.4-1.diff.gz
acidbase_1.4.4-1.dsc
to main/a/acidbase/acidbase_1.4.4-1.dsc
acidbase_1.4.4-1_all.deb
to main/a/acidbase/acidbase_1.4.4-1_all.deb
acidbase_1.4.4.orig.tar.gz
to main/a/acidbase/acidbase_1.4.4.orig.tar.gz
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 552...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Jeremy T. Bouse <jbo...@debian.org> (supplier of updated acidbase package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Fri, 27 Nov 2009 15:26:00 -0500
Source: acidbase
Binary: acidbase
Architecture: source all
Version: 1.4.4-1
Distribution: unstable
Urgency: low
Maintainer: Jeremy T. Bouse <jbo...@debian.org>
Changed-By: Jeremy T. Bouse <jbo...@debian.org>
Description:
acidbase - Basic Analysis and Security Engine
Closes: 501644 535118 542770 551636 552235 556612
Changes:
acidbase (1.4.4-1) unstable; urgency=low
.
* Imported Upstream version 1.4.4 (Closes: #501644, #552235)
* debian/control: Remove David Gil as maintainer (Closes: #551636)
* debian/control: Bump Standards-Version to 3.8.3 and change
Maintainer/Uploaders.
* debian/rules: Change to build in binary-indep to close lintian
warnings.
* debian/README.source: Added README.source to clear lintian warning.
* debian/patches/02_update_external_links.dpatch: Snort ID webdatabase
changed (Closes: #542770) - thanks to Robert Sander
<robert.san...@epigenomics.com>
* debian/patches/08_update_whois_servers.dpatch: Removed as no longer
needed
* debian/patches/11_use_trim_to_avoid_signature_problems.dpatch: fix
patch against new version
* debian/po/fi.po: Initial Finnish debconf translation (Closes:
#535118) - thanks to Esko Arajärvi <e...@iki.fi>
* debian/po/ja.po: Initial Japanese debconf translation (Closes:
#556612) - thanks to Hideki Yamane (Debian-JP)
<henr...@debian.or.jp>
* Updated debconf translations to change Report-Msgid-Bugs-To to
jbo...@debian.org
* debian/patches/12_remove_php_image_graph.dpatch: Update patch for
new version
* debian/patches/CVE-2007-6156.dpatch: Removed patch accepted by
upstream
Checksums-Sha1:
6c48fa22cb622132ed5d77368dacc926ffc696d4 1215 acidbase_1.4.4-1.dsc
a4d23e96d8efb2b539b238fb52d81744e7b5b04e 966138 acidbase_1.4.4.orig.tar.gz
914450d2f1c08113ebbe6a7cad373cfe2f231d86 23120 acidbase_1.4.4-1.diff.gz
8b57ac965ecc046c5624c9fc490d0161b86a1cfe 401138 acidbase_1.4.4-1_all.deb
Checksums-Sha256:
aedf721a8c184f96c500a636b10ff519a3f1c37daff2a3d510839a4cf09b248f 1215
acidbase_1.4.4-1.dsc
5a5e5a1b2b20efca2fe7f57edfacf78a92aeea60f4f5c4f3b49af7dcdb37639d 966138
acidbase_1.4.4.orig.tar.gz
ad2503feccf539efbaa022be5202b134c1caf9e8554c9553f5ac01877819dd51 23120
acidbase_1.4.4-1.diff.gz
7b803b7f34e21b217fdf29fa1ad3401a8a56dce770ba1ba7f0aae293e043ac63 401138
acidbase_1.4.4-1_all.deb
Files:
33334558485c9cd404c46939b8bd48da 1215 web optional acidbase_1.4.4-1.dsc
bb8c10cf033113585155c6fa4c77c9cb 966138 web optional acidbase_1.4.4.orig.tar.gz
a05d0a9feb392618dd8d622d7c848b03 23120 web optional acidbase_1.4.4-1.diff.gz
49e1fa7cff0bbe6c830e4b3f425d872f 401138 web optional acidbase_1.4.4-1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAksQOxUACgkQQC3kTXT35kBeQwCeIrBgeElwGOMfHlb2U8ii6lr8
auEAoO3GrSkvSKhGFfSIcEUrq1BOVCGE
=BuX/
-----END PGP SIGNATURE-----
--- End Message ---
