Bug#658907: marked as done (CVE-2012-0834: XSS)

Wed, 22 Feb 2012 00:59:26 -0800 

Your message dated Wed, 22 Feb 2012 08:47:36 +0000
with message-id <e1s07rm-00085q...@franck.debian.org>
and subject line Bug#658907: fixed in phpldapadmin 1.2.2-2
has caused the Debian Bug report #658907,
regarding CVE-2012-0834: XSS
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
658907: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=658907
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message --- 
Package: phpldapadmin
Severity: grave
Tags: security

Hi,
this is CVE-2012-0834:
http://sourceforge.net/tracker/index.php?func=detail&aid=3477910&group_id=61828&atid=498546

Fix:
http://phpldapadmin.git.sourceforge.net/git/gitweb.cgi?p=phpldapadmin/phpldapadmin;a=commit;h=7dc8d57d6952fe681cb9e8818df7f10322+0457bd

Cheers,
        Moritz

--- End Message ---
--- Begin Message --- 
Source: phpldapadmin
Source-Version: 1.2.2-2

We believe that the bug you reported is fixed in the latest version of
phpldapadmin, which is due to be installed in the Debian FTP archive:

phpldapadmin_1.2.2-2.debian.tar.gz
  to main/p/phpldapadmin/phpldapadmin_1.2.2-2.debian.tar.gz
phpldapadmin_1.2.2-2.dsc
  to main/p/phpldapadmin/phpldapadmin_1.2.2-2.dsc
phpldapadmin_1.2.2-2_all.deb
  to main/p/phpldapadmin/phpldapadmin_1.2.2-2_all.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 658...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Fabio Tranchitella <kob...@debian.org> (supplier of updated phpldapadmin 
package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Wed, 22 Feb 2012 08:45:48 +0100
Source: phpldapadmin
Binary: phpldapadmin
Architecture: source all
Version: 1.2.2-2
Distribution: unstable
Urgency: low
Maintainer: Fabio Tranchitella <kob...@debian.org>
Changed-By: Fabio Tranchitella <kob...@debian.org>
Description: 
 phpldapadmin - web based interface for administering LDAP servers
Closes: 561387 652221 658907 659411 659445 659477 659572 660024 660225 660234 
660703 660709
Changes: 
 phpldapadmin (1.2.2-2) unstable; urgency=low
 .
   [ Marcus Osdoba ]
   * Not reproducible (Closes: #561387)
   * Fix pending l10n issues. Debconf translations:
     - French (Christian Perrier). Closes: #659411
     - Danish (Joe Dalton) Closes: #659445
     - Polish (Michał Kułach). Closes: #659477
     - Czech (Miroslav Kure) Closes: #659572
     - Dutch (Jeroen Schot) Closes: #660225
     - Russian (Yuri Kozlov) Closes: #660234
     - Portuguese (Traduz) Closes: #660703
     - German (Matthias Julius) Closes: #660709
   * CVE-2012-0834: XSS (Closes: #658907)
     (already included in last version SF Bug #3477910)
   * it.po with mailing address debian-l10n-italian (Closes: #660024)
   * Line 390 includes the closing comment already (Closes: #652221)
 .
   [ Fabio Tranchitella ]
   * Added Marcus Osdoba as Uploader.
Checksums-Sha1: 
 7906308590313bd91cf4c2d9259dfcbf56e8ecbb 1145 phpldapadmin_1.2.2-2.dsc
 43c08af5a7f36f79ed94f70efe1057c762b310cf 29463 
phpldapadmin_1.2.2-2.debian.tar.gz
 067d7102d059ca21382e7343dec72bb6705999d1 1290854 phpldapadmin_1.2.2-2_all.deb
Checksums-Sha256: 
 b31e25582ad59c1072268a15391c3b7f30d10310b5952f8472019712a0581af8 1145 
phpldapadmin_1.2.2-2.dsc
 ddff2c0fc145412e0ab6a59f3bfab2968e41f75349a1922ac82155c158060fa6 29463 
phpldapadmin_1.2.2-2.debian.tar.gz
 89d0bac2a5bab2a6a629760add325cb68bea0dbd6416619d8948ea2c1df8b496 1290854 
phpldapadmin_1.2.2-2_all.deb
Files: 
 e8f36fcaabfd8e09e5ec5a172702cc1c 1145 admin extra phpldapadmin_1.2.2-2.dsc
 770f2cd0cdbe6493e77cabe1bbc84716 29463 admin extra 
phpldapadmin_1.2.2-2.debian.tar.gz
 270f7a5d54467fbcdf6a215cf517568a 1290854 admin extra 
phpldapadmin_1.2.2-2_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iEYEARECAAYFAk9Ent8ACgkQK/juK3+WFWRBNACfW23bSk7vgOdCN+BSQGwRpkeh
V9IAoJF30zL6/L2Bz3r63TXxt2ZA3vXC
=SUHj
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to