Your message dated Tue, 17 Jan 2012 19:49:16 +0000
with message-id <e1rnf1w-00087h...@franck.debian.org>
and subject line Bug#654785: fixed in plib 1.8.5-5.1
has caused the Debian Bug report #654785,
regarding CVE-2011-4620: Buffer overflow
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
654785: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=654785
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Source: plib
Severity: grave
Tags: security
Please see http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4620
for references.
Cheers,
Moritz
--- End Message ---
--- Begin Message ---
Source: plib
Source-Version: 1.8.5-5.1
We believe that the bug you reported is fixed in the latest version of
plib, which is due to be installed in the Debian FTP archive:
libplib-dev_1.8.5-5.1_i386.deb
to main/p/plib/libplib-dev_1.8.5-5.1_i386.deb
libplib1_1.8.5-5.1_i386.deb
to main/p/plib/libplib1_1.8.5-5.1_i386.deb
plib_1.8.5-5.1.diff.gz
to main/p/plib/plib_1.8.5-5.1.diff.gz
plib_1.8.5-5.1.dsc
to main/p/plib/plib_1.8.5-5.1.dsc
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 654...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Luk Claes <l...@debian.org> (supplier of updated plib package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Sun, 15 Jan 2012 20:13:07 +0100
Source: plib
Binary: libplib1 libplib-dev
Architecture: source i386
Version: 1.8.5-5.1
Distribution: unstable
Urgency: high
Maintainer: Bradley Smith <bradsm...@debian.org>
Changed-By: Luk Claes <l...@debian.org>
Description:
libplib-dev - Portability Libraries: Development package
libplib1 - Portability Libraries: Run-time package
Closes: 633178 654785
Changes:
plib (1.8.5-5.1) unstable; urgency=high
.
* Non-maintainer upload.
* Use vsnprintf to fix buffer overflow CVE-2011-4620 (Closes: #654785).
* Don't install .la file anymore (Closes: #633178).
Checksums-Sha1:
9ea096a2000ad951a9791c1025d3f802d81ba645 1297 plib_1.8.5-5.1.dsc
952a3ecd049ec7e1aa021f5d726ea61281eb9b94 9855 plib_1.8.5-5.1.diff.gz
dc3fc234ee21a29f683eb24b402d530713bd8ae5 645804 libplib1_1.8.5-5.1_i386.deb
63bc5eca85da452934896a25055fc43828c350d2 857360 libplib-dev_1.8.5-5.1_i386.deb
Checksums-Sha256:
c8b8199d4dedb03326f2c7c0ab8c659bf9f475aaea0f6c4c447e93edef43ead3 1297
plib_1.8.5-5.1.dsc
ad93f34e86b8dd02be59a7105b77d7262a970b766e65b83b808c5f559189f0a0 9855
plib_1.8.5-5.1.diff.gz
7d2ff84baf78518720040c7ca8a2818775bbe6cd92cfc8bdee5db1dbad99859b 645804
libplib1_1.8.5-5.1_i386.deb
4b764bc560cf82ae6d3df7d1e897730ce9a32f62cc2b5c8b62de10471d67af6d 857360
libplib-dev_1.8.5-5.1_i386.deb
Files:
bcf9575cc57083216f698469bc750169 1297 devel extra plib_1.8.5-5.1.dsc
348d9d4163b23efb1ef0e229bfb6b12d 9855 devel extra plib_1.8.5-5.1.diff.gz
90fd46c7b0a0340f0aae6fca07aff64c 645804 libs extra libplib1_1.8.5-5.1_i386.deb
03b08ecef3e41e29454ced24a967af3b 857360 libdevel extra
libplib-dev_1.8.5-5.1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
iEYEARECAAYFAk8TJ+IACgkQ5UTeB5t8Mo1B6gCeLGC89+yca1WpudNs8+W/0OL1
H6oAn2ngBp7UaODPDc9KNyZuLBWh+TDF
=xkrE
-----END PGP SIGNATURE-----
--- End Message ---
