Your message dated Fri, 12 Oct 2012 14:47:07 +0000 with message-id <e1tmgw3-0004zx...@franck.debian.org> and subject line Bug#687923: fixed in bacula 5.0.2-2.2+squeeze1 has caused the Debian Bug report #687923, regarding bacula: CVE-2012-4430 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 687923: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=687923 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: bacula Severity: grave Tags: security Justification: user security hole This was assigned CVE-2012-4430: https://secunia.com/advisories/50535/ Upstream fix: http://www.bacula.org/git/cgit.cgi/bacula/commit/?id=67debcecd3d530c429e817e1d778e79dcd1db905 Cheers, Moritz
--- End Message ---
--- Begin Message ---Source: bacula Source-Version: 5.0.2-2.2+squeeze1 We believe that the bug you reported is fixed in the latest version of bacula, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 687...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Alexander Golovko <alexan...@ankalagon.ru> (supplier of updated bacula package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sat, 06 Oct 2012 00:43:59 +0400 Source: bacula Binary: bacula bacula-common bacula-common-sqlite3 bacula-common-pgsql bacula-common-mysql bacula-director-common bacula-director-sqlite bacula-director-sqlite3 bacula-director-mysql bacula-director-pgsql bacula-client bacula-fd bacula-server bacula-sd bacula-sd-sqlite3 bacula-sd-sqlite bacula-sd-mysql bacula-sd-pgsql bacula-console bacula-console-qt bacula-traymonitor Architecture: source all amd64 Version: 5.0.2-2.2+squeeze1 Distribution: stable-security Urgency: high Maintainer: John Goerzen <jgoer...@complete.org> Changed-By: Alexander Golovko <alexan...@ankalagon.ru> Description: bacula - network backup, recovery and verification - meta-package bacula-client - network backup, recovery and verification - client meta-package bacula-common - network backup, recovery and verification - common support files bacula-common-mysql - network backup, recovery and verification - MySQL common files bacula-common-pgsql - network backup, recovery and verification - PostgreSQL common fil bacula-common-sqlite3 - network backup, recovery and verification - SQLite v3 common file bacula-console - network backup, recovery and verification - text console bacula-console-qt - Bacula Administration Tool Console bacula-director-common - network backup, recovery and verification - Director common files bacula-director-mysql - network backup, recovery and verification - MySQL storage for Dir bacula-director-pgsql - network backup, recovery and verification - PostgreSQL storage fo bacula-director-sqlite - network backup, recovery and verification - SQLite 2 director tra bacula-director-sqlite3 - network backup, recovery and verification - SQLite 3 storage for bacula-fd - network backup, recovery and verification - file daemon bacula-sd - network backup, recovery and verification - storage daemon bacula-sd-mysql - network backup, recovery and verification - MySQL SD tools bacula-sd-pgsql - network backup, recovery and verification - PostgreSQL SD tools bacula-sd-sqlite - network backup, recovery and verification - SQLite SD tools bacula-sd-sqlite3 - network backup, recovery and verification - SQLite 3 SD tools bacula-server - network backup, recovery and verification - server meta-package bacula-traymonitor - network backup, recovery and verification - tray monitor Closes: 687923 Changes: bacula (5.0.2-2.2+squeeze1) stable-security; urgency=high . * debian/patches/fix_dump_resources_acl.patch, debian/rules: + Fix console ACL's bypass with dump_resource, SA CVE-2012-4430 (Closes: #687923). Checksums-Sha1: 03c403b67c2ffd241dc296d59517b5fefddad918 1953 bacula_5.0.2-2.2+squeeze1.dsc fe5b8d682fe73d2458f0b2965ea88386ba40f0d5 4189272 bacula_5.0.2.orig.tar.gz 8acad2a4e9cb0ee7c9e7b0e98d63b6405498d2d0 47278 bacula_5.0.2-2.2+squeeze1.diff.gz 72e9be2ce69b954f8a3951e4c5825e7ccb0afe3b 1030 bacula_5.0.2-2.2+squeeze1_all.deb ea1a71caa37fe4ab2883722c2784f2d21eb625e5 48514 bacula-director-sqlite_5.0.2-2.2+squeeze1_all.deb e743a60cb031e0f1f8711b179e0167c29b59d66c 48548 bacula-client_5.0.2-2.2+squeeze1_all.deb f55168e416a2690b88292ffa12f463fa332a62e1 48474 bacula-server_5.0.2-2.2+squeeze1_all.deb 1bbf801cc8a31dc078016838f8a3fff3733b6f5f 637236 bacula-common_5.0.2-2.2+squeeze1_amd64.deb a22a3df4df420f92c5d329362a00b88196358765 101996 bacula-common-sqlite3_5.0.2-2.2+squeeze1_amd64.deb aed375670cf77cea18c0715a8100467a3c7e0314 106172 bacula-common-pgsql_5.0.2-2.2+squeeze1_amd64.deb 4e7b74b4b55fc56f089119ef97513d1be3bd123b 102026 bacula-common-mysql_5.0.2-2.2+squeeze1_amd64.deb 0de567db7ad6f7774a44b63814278f2a1f150db8 56552 bacula-director-common_5.0.2-2.2+squeeze1_amd64.deb b19dea2c33216fbf189df0f037a0c86b418f1d2d 308184 bacula-director-sqlite3_5.0.2-2.2+squeeze1_amd64.deb 687caa54619e50c5ec526f9d477301311d00d28c 308524 bacula-director-mysql_5.0.2-2.2+squeeze1_amd64.deb 1711e128d7f0ba47164ffce5e4181642d3b345d6 308238 bacula-director-pgsql_5.0.2-2.2+squeeze1_amd64.deb 695676e350fcfc111aac0db1c26c9b832895840b 124040 bacula-fd_5.0.2-2.2+squeeze1_amd64.deb e20576e5ac6846645023a9f9e59e700b9420802d 459142 bacula-sd_5.0.2-2.2+squeeze1_amd64.deb 495281a1ee262db5a93dd618e7cb64fb2b60468e 435486 bacula-sd-sqlite3_5.0.2-2.2+squeeze1_amd64.deb 21775873e9774614e10bdc40344c442968f97d5c 48456 bacula-sd-sqlite_5.0.2-2.2+squeeze1_amd64.deb 56c1f94be4167816b5ff7ac1d81f00234e4808e6 435500 bacula-sd-mysql_5.0.2-2.2+squeeze1_amd64.deb 3a77438817b3974c5f1f63a8ddf727a98dfcef2c 435494 bacula-sd-pgsql_5.0.2-2.2+squeeze1_amd64.deb 8223b6255ff04b250db3ea15211fab7827ebc4ad 67616 bacula-console_5.0.2-2.2+squeeze1_amd64.deb dfa4df9d634674f045d94a949a0b7aa33ac973bf 649190 bacula-console-qt_5.0.2-2.2+squeeze1_amd64.deb 6330ab61ee2ed2e2b9193dd31672f4d810d89bd0 70038 bacula-traymonitor_5.0.2-2.2+squeeze1_amd64.deb Checksums-Sha256: 550be9738735d17805576a19dfc6852dc323652efbb9b9f750a183529b1c54a5 1953 bacula_5.0.2-2.2+squeeze1.dsc c465d00dd968832d129ba68eea59714357605a461d745cef7e802978c453c3fb 4189272 bacula_5.0.2.orig.tar.gz 4321137a713edcd2bfddb26825f614f24cc12aa6f769a54042a2296b5e2d338e 47278 bacula_5.0.2-2.2+squeeze1.diff.gz a7d17008299baa632a50954cac71ece8731e30ed605c5419a9a4d21c292e4417 1030 bacula_5.0.2-2.2+squeeze1_all.deb daf4e64fb118ddfbac3299bbd03c9308a5c8bdb73f6dc40bd74f6b81d88f898a 48514 bacula-director-sqlite_5.0.2-2.2+squeeze1_all.deb fea470283200db733c0ce114d5b2a89929e338523cbed57e9e7ac1b60e1b95e3 48548 bacula-client_5.0.2-2.2+squeeze1_all.deb 75499d195a15274a1ebf0205eb17d9350b62478e3de32d8541aa1f5e052275e2 48474 bacula-server_5.0.2-2.2+squeeze1_all.deb 466b22a19878df172f9c521d4d1c151a93618cfe35dab9468e529485e7542a78 637236 bacula-common_5.0.2-2.2+squeeze1_amd64.deb 20cb9d02aaee89a2caf0028272bd34258a9f9171732159fd68377e9b93795c6b 101996 bacula-common-sqlite3_5.0.2-2.2+squeeze1_amd64.deb d5a61da1300f78e870bd87f2fcf7559118bae02824cf6a9818a7f05f148c74bb 106172 bacula-common-pgsql_5.0.2-2.2+squeeze1_amd64.deb 7564cafdd193435cd152e3de927fd03a48d6fab9259633148e3ecff311879b2a 102026 bacula-common-mysql_5.0.2-2.2+squeeze1_amd64.deb b05d21678698e7c69e51c7bcae812c6ea23daa9c28ef9606065d1be4279c039e 56552 bacula-director-common_5.0.2-2.2+squeeze1_amd64.deb 84be2aceaf6a23c5744e8adfe6b46baf5dd683bf55b890a05851f80ceda6a397 308184 bacula-director-sqlite3_5.0.2-2.2+squeeze1_amd64.deb 5f90beb4dec169af3ef6692f10c6438f61b7ba80a45ce8965d33dcc2c1e2bad3 308524 bacula-director-mysql_5.0.2-2.2+squeeze1_amd64.deb b0fc39cd04e932823e4293ab0dc27d4b9d3f41160b563e8d96c2fca4c1523cbe 308238 bacula-director-pgsql_5.0.2-2.2+squeeze1_amd64.deb 0553749a54323ae216e09633e27d0ce5507acaa827b12eb76543551dcb768d11 124040 bacula-fd_5.0.2-2.2+squeeze1_amd64.deb 5071ab0ac7d12ed47ff4a0ee78e31e1203d54083b556735d6196900373d2c493 459142 bacula-sd_5.0.2-2.2+squeeze1_amd64.deb 50687b60f1cc5a9d7891b9c8499563eecb54bbc939457a73bd432e6f3c5377b1 435486 bacula-sd-sqlite3_5.0.2-2.2+squeeze1_amd64.deb 214570efcdf24744d9c5654c507228504bf45deaadfe5dcc281283ffec7b0e5a 48456 bacula-sd-sqlite_5.0.2-2.2+squeeze1_amd64.deb e4a03fb6fdaa2d36cbbfc8f698756442ec6ca2225d25d94d91736ec52103d6bf 435500 bacula-sd-mysql_5.0.2-2.2+squeeze1_amd64.deb 9ee8fe30d357ab2371e17a3a59508b51723a7ac3db73586f1585e68de405dd99 435494 bacula-sd-pgsql_5.0.2-2.2+squeeze1_amd64.deb a85e39e6d1493a3b4121a26b0d87b671aa718b1dde86e723e7e49b58ecda8164 67616 bacula-console_5.0.2-2.2+squeeze1_amd64.deb 7cd83962192bf9c4830960a38183e5b91ed3b7e02c3aea80d951ad51f43cf82a 649190 bacula-console-qt_5.0.2-2.2+squeeze1_amd64.deb 8ecacdec350c747bff9a048894508d130973f3dcb371e55b43e264dfecf3acd7 70038 bacula-traymonitor_5.0.2-2.2+squeeze1_amd64.deb Files: ecc868a259558d33b7c72c04cf84855c 1953 admin optional bacula_5.0.2-2.2+squeeze1.dsc e9204d2e772f12662de28da3327853de 4189272 admin optional bacula_5.0.2.orig.tar.gz 5b61fcb7896e330f62863915d22f74b1 47278 admin optional bacula_5.0.2-2.2+squeeze1.diff.gz b91b74fc6dabaa307d251ca17bb3a11a 1030 admin optional bacula_5.0.2-2.2+squeeze1_all.deb 18a2a916c5e0eac9c584bec994f88166 48514 admin optional bacula-director-sqlite_5.0.2-2.2+squeeze1_all.deb 1de685306eda0fd81fd9b65b0dbd9354 48548 admin optional bacula-client_5.0.2-2.2+squeeze1_all.deb 80bce54fd5cd96365b164a36874fb3f7 48474 admin optional bacula-server_5.0.2-2.2+squeeze1_all.deb bbbcd6c17770c365ec0ba0d5125d158a 637236 admin optional bacula-common_5.0.2-2.2+squeeze1_amd64.deb b5f7000d6a673bcd342bd4ca5c212898 101996 admin optional bacula-common-sqlite3_5.0.2-2.2+squeeze1_amd64.deb 149af55f15bd8aee53b07e0c1c5f83c5 106172 admin optional bacula-common-pgsql_5.0.2-2.2+squeeze1_amd64.deb 61c414638cb7150467fe0b83228699f9 102026 admin optional bacula-common-mysql_5.0.2-2.2+squeeze1_amd64.deb a4888da5f4b6c0d412c4a61d2957db70 56552 admin optional bacula-director-common_5.0.2-2.2+squeeze1_amd64.deb 6748a4cce388c30eb6394c9bf9643b7b 308184 admin optional bacula-director-sqlite3_5.0.2-2.2+squeeze1_amd64.deb 92a64592939764b7155688e7b842cf42 308524 admin optional bacula-director-mysql_5.0.2-2.2+squeeze1_amd64.deb d8a7d15c66cd3a59b6cb830bc76698ad 308238 admin optional bacula-director-pgsql_5.0.2-2.2+squeeze1_amd64.deb 4a79d20d0a81fb8263a0e68d47f8e0f8 124040 admin optional bacula-fd_5.0.2-2.2+squeeze1_amd64.deb b45d0579ec509b8fd67d780a1c766638 459142 admin optional bacula-sd_5.0.2-2.2+squeeze1_amd64.deb 4576fe5105b87cc5d741a257c3bab2b1 435486 admin optional bacula-sd-sqlite3_5.0.2-2.2+squeeze1_amd64.deb f892227808c07bbd0599a87e6f1eec72 48456 admin optional bacula-sd-sqlite_5.0.2-2.2+squeeze1_amd64.deb 4c84f124826eee62e3c4afbcd7b7efcf 435500 admin optional bacula-sd-mysql_5.0.2-2.2+squeeze1_amd64.deb a99208fa5c8b56f4f908d512c4311ab7 435494 admin optional bacula-sd-pgsql_5.0.2-2.2+squeeze1_amd64.deb 8d4cf57a9f2d2bfd96220fe37f60aec2 67616 admin optional bacula-console_5.0.2-2.2+squeeze1_amd64.deb df0d0fd491ae61e90f21ba5df8486d37 649190 utils optional bacula-console-qt_5.0.2-2.2+squeeze1_amd64.deb 61b61aa25f7a446c0fbd1c05d0a7e0fd 70038 admin optional bacula-traymonitor_5.0.2-2.2+squeeze1_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iEYEARECAAYFAlBvdHgACgkQYy49rUbZzlpmsgCgkiLurcDlrV7CAvsN9GeFyRwL tnYAn1GZEWSbU+ljfdNsTiy37EMLzwv+ =sGLn -----END PGP SIGNATURE-----
--- End Message ---
