Your message dated Fri, 17 Jun 2011 01:55:01 +0000
with message-id <e1qxogz-0007xs...@franck.debian.org>
and subject line Bug#629937: fixed in movabletype-opensource
4.3.5+dfsg-2+squeeze2
has caused the Debian Bug report #629937,
regarding Unspecified security vulnerabilities fixed in 4.361
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
629937: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=629937
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: movabletype-opensource
Version: 4.3.6+dfsg-1
Severity: grave
Tags: security
Justification: user security hole
As reported in
<http://www.movabletype.org/2011/06/movable_type_511_and_5051_4361_security_updates.html>
Quote:
"Movable Type 5.11, 5.051, 4.361 were released as mandatory security updates.
These updates resolve multiple vulnerabilities discovered in Movable Type 5.x
and Movable Type 4.x. All users must upgrade to this latest release
immediately."
"A remote attacker could create, read or modify the contents in the system
under certain circumstances."
--
Dominic Hargreaves | http://www.larted.org.uk/~dom/
PGP key 5178E2A5 from the.earth.li (keyserver,web,email)
--- End Message ---
--- Begin Message ---
Source: movabletype-opensource
Source-Version: 4.3.5+dfsg-2+squeeze2
We believe that the bug you reported is fixed in the latest version of
movabletype-opensource, which is due to be installed in the Debian FTP archive:
movabletype-opensource_4.3.5+dfsg-2+squeeze2.diff.gz
to
main/m/movabletype-opensource/movabletype-opensource_4.3.5+dfsg-2+squeeze2.diff.gz
movabletype-opensource_4.3.5+dfsg-2+squeeze2.dsc
to
main/m/movabletype-opensource/movabletype-opensource_4.3.5+dfsg-2+squeeze2.dsc
movabletype-opensource_4.3.5+dfsg-2+squeeze2_all.deb
to
main/m/movabletype-opensource/movabletype-opensource_4.3.5+dfsg-2+squeeze2_all.deb
movabletype-plugin-core_4.3.5+dfsg-2+squeeze2_all.deb
to
main/m/movabletype-opensource/movabletype-plugin-core_4.3.5+dfsg-2+squeeze2_all.deb
movabletype-plugin-zemanta_4.3.5+dfsg-2+squeeze2_all.deb
to
main/m/movabletype-opensource/movabletype-plugin-zemanta_4.3.5+dfsg-2+squeeze2_all.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 629...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Dominic Hargreaves <d...@earth.li> (supplier of updated movabletype-opensource
package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Sun, 12 Jun 2011 16:59:44 +0100
Source: movabletype-opensource
Binary: movabletype-opensource movabletype-plugin-core
movabletype-plugin-zemanta
Architecture: source all
Version: 4.3.5+dfsg-2+squeeze2
Distribution: stable-security
Urgency: low
Maintainer: Dominic Hargreaves <d...@earth.li>
Changed-By: Dominic Hargreaves <d...@earth.li>
Description:
movabletype-opensource - A well-known blogging engine
movabletype-plugin-core - Core Movable Type plugins
movabletype-plugin-zemanta - Zemanta Movable Type plugin
Closes: 629937
Changes:
movabletype-opensource (4.3.5+dfsg-2+squeeze2) stable-security; urgency=low
.
* Apply patch from 4.361 fixing various security vulnerabilities
(closes: #629937)
Checksums-Sha1:
0edf2fe4648296d57f9bd67b7118e5b6b8f68dfb 1289
movabletype-opensource_4.3.5+dfsg-2+squeeze2.dsc
6cb0059312c7fa0323142ff0fffad5c62cc9db46 56933
movabletype-opensource_4.3.5+dfsg-2+squeeze2.diff.gz
5221cfb9591e04c84b61bdef32a838ab79eae3c7 2898242
movabletype-opensource_4.3.5+dfsg-2+squeeze2_all.deb
aad52b4c9a9eebf292695be3630416b8c25608d9 170768
movabletype-plugin-core_4.3.5+dfsg-2+squeeze2_all.deb
8b1641b0b587781205aa2a22a69c9bb07ea9ca48 14598
movabletype-plugin-zemanta_4.3.5+dfsg-2+squeeze2_all.deb
Checksums-Sha256:
00ea8bf08ca59346696b6c1333c3aa35e04f44b4c09e9f35c2ecddec6063e15e 1289
movabletype-opensource_4.3.5+dfsg-2+squeeze2.dsc
cb7696215126590b85a5bf284c9cab63b4dd13dc3657d7c2570bc413b564d490 56933
movabletype-opensource_4.3.5+dfsg-2+squeeze2.diff.gz
308e1c74a16292dbfc1b8b615dd7c6fd706df709baa71c75fd5ae6d0d83fc0e9 2898242
movabletype-opensource_4.3.5+dfsg-2+squeeze2_all.deb
1b0b7b7011854c3ccecb466e2007dbb7cafb54adc8faf7b5f4c942c01287e475 170768
movabletype-plugin-core_4.3.5+dfsg-2+squeeze2_all.deb
25138c34b8553afa0dca466e73864566a3b24baabcdace6e92f49ebed7d0c117 14598
movabletype-plugin-zemanta_4.3.5+dfsg-2+squeeze2_all.deb
Files:
12c3ab14fe156c681049c7593a00ef0e 1289 web optional
movabletype-opensource_4.3.5+dfsg-2+squeeze2.dsc
18b47ea978ab0c73021707909b8de4e1 56933 web optional
movabletype-opensource_4.3.5+dfsg-2+squeeze2.diff.gz
1e3322b15a3d1b731260579a005ac60d 2898242 web optional
movabletype-opensource_4.3.5+dfsg-2+squeeze2_all.deb
8c0808ea9399a84cbaaf949dd31a29f7 170768 web optional
movabletype-plugin-core_4.3.5+dfsg-2+squeeze2_all.deb
697aac25c7d7ea9a5aa0ef1451b4775b 14598 web optional
movabletype-plugin-zemanta_4.3.5+dfsg-2+squeeze2_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iD8DBQFN+O29YzuFKFF44qURAh2VAJsHVGvXTnJrrwOL1p9jpfZn7Q5BJACfQR02
mPJatokvyyJX+cN9K6fvd7o=
=nFAd
-----END PGP SIGNATURE-----
--- End Message ---
