Your message dated Mon, 13 Feb 2012 20:48:00 -0600
with message-id <20120214024626.GA8687@burratino>
and subject line Re: policykit-1 local root exploit CVE-2011-1485
has caused the Debian Bug report #644500,
regarding policykit-1 local root exploit CVE-2011-1485
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
644500: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=644500
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: policykit-1
Version: 0.96-4
Severity: grave
Tags: security patch
Hi,
A local root exploit in Policykit has been published a while ago. I has
been resolved in unstable/testing already, but squeeze is still affected.
Please see:
http://security-tracker.debian.org/tracker/CVE-2011-1485
https://bugzilla.redhat.com/show_bug.cgi?id=692922
Can you please see if updated packages can be built for stable-security?
The process is detailed here:
http://www.debian.org/doc/manuals/developers-reference/pkgs.html#bug-security
Also let us know if you're not available for this.
thanks,
Thijs
--- End Message ---
--- Begin Message ---
Version: 0.96-4+squeeze2
Hi,
Thijs Kinkhorst wrote:
> A local root exploit in Policykit has been published a while ago. I has
> been resolved in unstable/testing already, but squeeze is still affected.
> Please see:
>
> http://security-tracker.debian.org/tracker/CVE-2011-1485
> https://bugzilla.redhat.com/show_bug.cgi?id=692922
Fixed by 0.96-4+squeeze1, but the bug closure didn't reach the BTS (see
bug #657758).
Thanks,
Jonathan
--- End Message ---
