Your message dated Sat, 10 Sep 2005 22:02:13 -0700
with message-id <[EMAIL PROTECTED]>
and subject line Bug#327452: fixed in mozilla-firefox 1.0.6-5
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--------------------------------------
Received: (at submit) by bugs.debian.org; 10 Sep 2005 08:59:26 +0000
>From [EMAIL PROTECTED] Sat Sep 10 01:59:26 2005
Return-path: <[EMAIL PROTECTED]>
Received: from moutng.kundenserver.de [212.227.126.171]
by spohr.debian.org with esmtp (Exim 3.36 1 (Debian))
id 1EE1Cn-0001hg-00; Sat, 10 Sep 2005 01:59:26 -0700
Received: from c155145.adsl.hansenet.de [213.39.155.145]
(helo=senica.personalfree.com)
by mrelayeu.kundenserver.de with ESMTP (Nemesis),
id 0ML29c-1EE1Cl0AeA-0008Gk; Sat, 10 Sep 2005 10:59:23 +0200
Received: from [10.0.1.2] (helo=hanson ident=Debian-exim)
by senica.personalfree.com with esmtps (TLS-1.0:RSA_AES_256_CBC_SHA:32)
(Exim 4.50)
id 1EE1Cj-00078E-DA; Sat, 10 Sep 2005 10:59:21 +0200
Received: from alex by hanson with local (Exim 4.52)
id 1EE1Ci-0005kl-An; Sat, 10 Sep 2005 10:59:20 +0200
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: Alexander Sack <[EMAIL PROTECTED]>
To: Debian Bug Tracking System <[EMAIL PROTECTED]>
Subject: security issue revealed: CAN-2005-2871
X-Mailer: reportbug 3.15
Date: Sat, 10 Sep 2005 10:59:20 +0200
Message-Id: <[EMAIL PROTECTED]>
X-Provags-ID: kundenserver.de [EMAIL PROTECTED]
login:cbe77bd78e1b43e9d8afa4235a070258
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level:
X-Spam-Status: No, hits=-8.0 required=4.0 tests=BAYES_00,HAS_PACKAGE
autolearn=no version=2.60-bugs.debian.org_2005_01_02
Package: mozilla-firefox
Version: 1.0.4-2sarge3
Severity: critical
Tags: security patch
a security issue has been discovered. A workaround fix is available from
the bug report. This applies to sarge/unstable and experimental version
of firefox.
The issue is named: CAN-2005-2871
MFSA id is still missing.
The upstream bug report is: #307259.
A patch for aviary branch and HEAD is attached to the bugzilla bug.
---------------------------------------
Received: (at 327452-close) by bugs.debian.org; 11 Sep 2005 05:09:12 +0000
>From [EMAIL PROTECTED] Sat Sep 10 22:09:12 2005
Return-path: <[EMAIL PROTECTED]>
Received: from katie by spohr.debian.org with local (Exim 3.36 1 (Debian))
id 1EEJyn-0000Yx-00; Sat, 10 Sep 2005 22:02:13 -0700
From: Eric Dorland <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
X-Katie: $Revision: 1.56 $
Subject: Bug#327452: fixed in mozilla-firefox 1.0.6-5
Message-Id: <[EMAIL PROTECTED]>
Sender: Archive Administrator <[EMAIL PROTECTED]>
Date: Sat, 10 Sep 2005 22:02:13 -0700
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level:
X-Spam-Status: No, hits=-6.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER
autolearn=no version=2.60-bugs.debian.org_2005_01_02
X-CrossAssassin-Score: 2
Source: mozilla-firefox
Source-Version: 1.0.6-5
We believe that the bug you reported is fixed in the latest version of
mozilla-firefox, which is due to be installed in the Debian FTP archive:
mozilla-firefox-dom-inspector_1.0.6-5_i386.deb
to pool/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.6-5_i386.deb
mozilla-firefox-gnome-support_1.0.6-5_i386.deb
to pool/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.6-5_i386.deb
mozilla-firefox_1.0.6-5.diff.gz
to pool/main/m/mozilla-firefox/mozilla-firefox_1.0.6-5.diff.gz
mozilla-firefox_1.0.6-5.dsc
to pool/main/m/mozilla-firefox/mozilla-firefox_1.0.6-5.dsc
mozilla-firefox_1.0.6-5_i386.deb
to pool/main/m/mozilla-firefox/mozilla-firefox_1.0.6-5_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Eric Dorland <[EMAIL PROTECTED]> (supplier of updated mozilla-firefox package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Sat, 10 Sep 2005 23:03:26 -0400
Source: mozilla-firefox
Binary: mozilla-firefox mozilla-firefox-gnome-support
mozilla-firefox-dom-inspector
Architecture: source i386
Version: 1.0.6-5
Distribution: unstable
Urgency: critical
Maintainer: Eric Dorland <[EMAIL PROTECTED]>
Changed-By: Eric Dorland <[EMAIL PROTECTED]>
Description:
mozilla-firefox - lightweight web browser based on Mozilla
mozilla-firefox-dom-inspector - tool for inspecting the DOM of pages in
Mozilla Firefox
mozilla-firefox-gnome-support - Support for Gnome in Mozilla Firefox
Closes: 325535 327452
Changes:
mozilla-firefox (1.0.6-5) unstable; urgency=critical
.
* xpcom/reflect/xptcall/src/md/unix/xptcstubs_arm.cpp: Fix for previous
arm fix. Thanks Steve. (Closes: #325535)
* netwerk/base/src/nsStandardURL.cpp: Patch from bz#307259 to fix
CAN-2005-2871, a buffer overflow vulnerability in IDN
processing. (Closes: #327452)
Files:
56a1477e9f18f99f5a7a62246860b8b8 972 web optional mozilla-firefox_1.0.6-5.dsc
1f52ba9cd95c548771d8d21c28a7f0d3 233388 web optional
mozilla-firefox_1.0.6-5.diff.gz
562b0e559e4cf88bb049882be50157b3 7621334 web optional
mozilla-firefox_1.0.6-5_i386.deb
adccd0ee8960fc29846d7342ca8c72bc 155300 web optional
mozilla-firefox-dom-inspector_1.0.6-5_i386.deb
fee07215fd81b41dbee83b849485e6a8 53148 web optional
mozilla-firefox-gnome-support_1.0.6-5_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
iD8DBQFDI7XQYemOzxbZcMYRAtz+AJ0Uxby8FVyZpfyUlEf/nrZuYhsrTgCgpkZj
E/+JV4frnQbUMHfI7XbKNSQ=
=91jz
-----END PGP SIGNATURE-----
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
