Your message dated Fri, 14 Sep 2012 05:17:48 +0000 with message-id <e1tcohk-0005hr...@franck.debian.org> and subject line Bug#686174: fixed in isc-dhcp 4.2.4-2 has caused the Debian Bug report #686174, regarding isc-dhcp: CVE-2012-3570 CVE-2012-3571 CVE-2012-3954 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 686174: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=686174 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: isc-dhcp Severity: grave Tags: security Justification: user security hole The following security issues are still open in Wheezy and sid: CVE-2012-3954: https://kb.isc.org/article/AA-00737 CVE-2012-3571: https://kb.isc.org/article/AA-00712 CVE-2012-3570: https://kb.isc.org/article/AA-00714 Cheers, Moritz
--- End Message ---
--- Begin Message ---Source: isc-dhcp Source-Version: 4.2.4-2 We believe that the bug you reported is fixed in the latest version of isc-dhcp, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 686...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Michael Gilbert <mgilb...@debian.org> (supplier of updated isc-dhcp package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Fri, 14 Sep 2012 00:46:11 -0400 Source: isc-dhcp Binary: isc-dhcp-server isc-dhcp-server-dbg isc-dhcp-server-ldap isc-dhcp-common isc-dhcp-dev isc-dhcp-client isc-dhcp-client-dbg isc-dhcp-client-udeb isc-dhcp-relay isc-dhcp-relay-dbg Architecture: source amd64 Version: 4.2.4-2 Distribution: unstable Urgency: low Maintainer: Debian ISC DHCP maintainers <pkg-dhcp-de...@lists.alioth.debian.org> Changed-By: Michael Gilbert <mgilb...@debian.org> Description: isc-dhcp-client - ISC DHCP client isc-dhcp-client-dbg - ISC DHCP client (debugging symbols) isc-dhcp-client-udeb - ISC DHCP Client for debian-installer (udeb) isc-dhcp-common - common files used by all the isc-dhcp* packages isc-dhcp-dev - API for accessing and modifying the DHCP server and client state isc-dhcp-relay - ISC DHCP relay daemon isc-dhcp-relay-dbg - DHCP relay daemon (debugging symbols) isc-dhcp-server - ISC DHCP server for automatic IP address assignment isc-dhcp-server-dbg - ISC DHCP server for automatic IP address assignment (debug) isc-dhcp-server-ldap - DHCP server able to use LDAP as backend Closes: 686174 Changes: isc-dhcp (4.2.4-2) unstable; urgency=low . * Fix multiple security issues (closes: #686174) - cve-2012-3570: buffer overflow via lanrge hardware address length. - cve-2012-3571: denial-of-service via zero-length packets. - cve-2012-3954: two potential memory leaks. - cve-2012-3955: server abort due to certain lease time changes. Checksums-Sha1: f4edef99cb054c138b755b6ef340039282295f73 3239 isc-dhcp_4.2.4-2.dsc 5e630abeece19c4c6346a22454404df3d1951ad9 93020 isc-dhcp_4.2.4-2.debian.tar.gz 8f32bcbb31545b932f85a8ee25affb76769c7686 933756 isc-dhcp-server_4.2.4-2_amd64.deb 0a02c9ab7220b434039ca07f6cd6c3857e133016 2580564 isc-dhcp-server-dbg_4.2.4-2_amd64.deb 1cd7c58ea499725b71343c2958394f2ee2dd4873 880238 isc-dhcp-server-ldap_4.2.4-2_amd64.deb df2ddc579b68dcad5bb87bace72cf5173a2fec36 854690 isc-dhcp-common_4.2.4-2_amd64.deb cbb6cbe1cba7324de8c36c6551af770c1aaf959f 774154 isc-dhcp-dev_4.2.4-2_amd64.deb 9b79e8dc3c70558807b841e9bf275e76ef47881d 793454 isc-dhcp-client_4.2.4-2_amd64.deb a13a1c1115613e1b5cb58f0c8e29d41b5abb282d 2252716 isc-dhcp-client-dbg_4.2.4-2_amd64.deb d32b6c6410dde433fce60f5a1906dfe5f5c5ca84 599632 isc-dhcp-client-udeb_4.2.4-2_amd64.udeb 2ee0978b0083b06ebaf8c2a9ccd23447d2e2697f 733930 isc-dhcp-relay_4.2.4-2_amd64.deb d21298069b509e0d5c9ee23ec9ae642ed8eec37b 2154920 isc-dhcp-relay-dbg_4.2.4-2_amd64.deb Checksums-Sha256: 5749879b18ed3942709888a96fe43101cd7400f30033824c786ae7263f01d53c 3239 isc-dhcp_4.2.4-2.dsc cee2b3568fa2cc659c52f2c1446806e0aee31146b95903a379c07cf50b0e05b7 93020 isc-dhcp_4.2.4-2.debian.tar.gz da08fbcc88861457e79e86405e866d2c3ab69d1198a1ed13c26a185b4988aa05 933756 isc-dhcp-server_4.2.4-2_amd64.deb 246787771e724f45f26034d935de8a6344eb9a2fc509fb748c1ceb0da20f9683 2580564 isc-dhcp-server-dbg_4.2.4-2_amd64.deb 3250d8f2ee03af9ecbd1579173866ad1b0d1393289fcb7991fb984dcefb4fc79 880238 isc-dhcp-server-ldap_4.2.4-2_amd64.deb d137e7de0a7e646016e5cb8cda4280c4e078ef560dfe581195942cef93b2f745 854690 isc-dhcp-common_4.2.4-2_amd64.deb 3f0ab8b482006127f8dac3e531115f093c42d899af2d749ed90e5ab865250e4b 774154 isc-dhcp-dev_4.2.4-2_amd64.deb dee9e437b8ffb9929a4234d34811c06d0b63dc3ca7a86c541c07bf794d3f7d41 793454 isc-dhcp-client_4.2.4-2_amd64.deb 45c61223c5cd0acb037b7b871568668cc9ab003dc506babbeb0e42f2d205ff3c 2252716 isc-dhcp-client-dbg_4.2.4-2_amd64.deb fd0ff1d98b3a0509637805cb01c97eec88c8b0b17b222d6e01836685fba7d998 599632 isc-dhcp-client-udeb_4.2.4-2_amd64.udeb 209189bf89abbf688567fb4251ecc5a7af78663cadae025b422346d45c6e0155 733930 isc-dhcp-relay_4.2.4-2_amd64.deb e4ada508e4c043d0b7e98e034d2839f970870af24794a79f2d0fd35813c63d62 2154920 isc-dhcp-relay-dbg_4.2.4-2_amd64.deb Files: edaedcd1bbb751056dae890709e1ee68 3239 net important isc-dhcp_4.2.4-2.dsc 30acdd4fb56edf11d21427ee9f23ce7e 93020 net important isc-dhcp_4.2.4-2.debian.tar.gz 34706bb7e665761ee04688b7618c185d 933756 net optional isc-dhcp-server_4.2.4-2_amd64.deb 496213392917f3e8db6f6f9d530eab2f 2580564 debug extra isc-dhcp-server-dbg_4.2.4-2_amd64.deb 3a565c85b4a49898a69cc4e3664caf6d 880238 net optional isc-dhcp-server-ldap_4.2.4-2_amd64.deb 6bcfd8f5d673a722c53775503ea413f0 854690 net important isc-dhcp-common_4.2.4-2_amd64.deb b91fe6326fe2dd7ef999132044e3dbd7 774154 devel optional isc-dhcp-dev_4.2.4-2_amd64.deb 5d32ff7008c87a0fbe7c675cb54e1d7d 793454 net important isc-dhcp-client_4.2.4-2_amd64.deb c3530d570af7746caed03d7fb8b31d31 2252716 debug extra isc-dhcp-client-dbg_4.2.4-2_amd64.deb 989fa3ae979fbf54081e0090b1bc2d9e 599632 debian-installer extra isc-dhcp-client-udeb_4.2.4-2_amd64.udeb 2816f2a57d78488acb1614bf11b22aa6 733930 net optional isc-dhcp-relay_4.2.4-2_amd64.deb 522aca10a82ca5d377173f7adde6b38a 2154920 debug extra isc-dhcp-relay-dbg_4.2.4-2_amd64.deb Package-Type: udeb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQQcBAEBCAAGBQJQUrgJAAoJELjWss0C1vRzesYgAJnrkXdW/HP8RGG8BzsD1f34 /SQKizBsEatV233nz/EFfH27mrloncQoAnlLPycoOGfUXrhhPEssemXfXGrburYW bj5PqgxGnCjhJYnwtGxL3YGa3TPN00DbsUjR8MHz5n/wMMlVScjuyYsO7xFOFdOd DeXLsJpiH28nbUN1EFAEt0A2a0bGwUlNUWNPUViVkByJfRICnihYpDD2OIOkxm+c 5Bxcj4O3x5za7tGljHxikC2KcUHxzml9VixW29MkqODscpcFN/YyhS36VCbzuQR1 MAHt1KcTYgKcTuzErYqgi+pm3ODjs44DG+xol924VjwJyg7KyXHhucTb+PjzKjrJ +FgNtzX1TZ325zrmgARmaPgcQhMyGxjC7cTBIIATx6MpthQ97pxMx+w4u0tga/6Y roayyY51weCHhhqP2wiDQX008r1CnzQqtPjSB7hax47ppFePTBP6XipOvYgP07Ib KMJUc/tcOngHkF1Xt6Jyg5DqOydPYpDlpUHUE5y4iOU4c8iyJzGtJAtyxz+oT1Zz QZsjKfL64xnu8Ca63UIVqVRgI9zNjFl4Kvt50iJy2HiGu+U745S+aqXICSQV+BWt +LjJLzlB5CShHjkZyUFsEohB5RXfyrY2N/E5V/ocLpxifuSvVLhJkBw61N/wUkbu XJ3nE0vsnz4e0I6IVozyghcFahOCV0ry6USja0Q77t57HhVLFU14JWilkSZaZfOL S56C8gaW1D8fMi/15hpYP23aUa8s7YlnyzuQSq4iAiyl+5oMp/RqRbdBGMyedQS0 xvbajtVKHs3ekwGO/bVvOWLp39eA5s1fiiJVcF4pCxTTF2VXX76HpvhvXs/kkrWP B8zm+R3u+AGmNV1HySqumSN5ATUld8iGEZxwqDx8+Jn6wLyp/EnCE6s47p9Hj2YX PmW8vB5nRhDlHLnYnS7Haaq4E/y9ZrlnoF1twel9dyzw/Nklpqf9di4YMUSij5x+ ZLNmSstlvRO1Pn43k+Ft0EdsasNBBUFkfXaXMj7CCxGxPzvdzOnxnQ5fqefVXj8z bHvDMb7fM0ZTEkZc7cCZffY21MrW9QKdhpfQyLQ4v511iA0XP1qUIXnucC1o4HeS ciBjxHxQR0cyR/vKjAtFeUqnEsCcLwh7Ht+S15qlHMb6yXdob2XJa4rHG5wHfrty JZCvkYpxQt3x/5tLnwAbv0TSd1h26nxEVxNeAE91/b/LxiOdOFy/E4EX7+igILA4 zNA7dz60hzHUyG1VBG2KYogqbcBDCHTGaozWOhHfsf9aRQMSOL0dueaDWIV8Tc6s Xv5HKFVqVOuy0irLe97WNcrJ96cvQ6iQhGYlhuWNU64xWaV85BclrexnREopqTA= =7172 -----END PGP SIGNATURE-----
--- End Message ---
