Your message dated Sun, 06 Jan 2013 18:18:57 +0000 with message-id <e1truod-0005ay...@franck.debian.org> and subject line Bug#696736: fixed in python-keyring 0.9.2-1.1 has caused the Debian Bug report #696736, regarding Insecure permissions on database files to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 696736: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696736 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: python-keyring Severity: grave Tags: security Please see http://www.openwall.com/lists/oss-security/2012/11/16/2 http://people.canonical.com/~ubuntu-security/cve/2012/CVE-2012-5577.html http://people.canonical.com/~ubuntu-security/cve/2012/CVE-2012-5578.html Cheers, Moritz -- System Information: Debian Release: 7.0 APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash
--- End Message ---
--- Begin Message ---Source: python-keyring Source-Version: 0.9.2-1.1 We believe that the bug you reported is fixed in the latest version of python-keyring, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 696...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Salvatore Bonaccorso <car...@debian.org> (supplier of updated python-keyring package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 29 Dec 2012 08:46:59 +0100 Source: python-keyring Binary: python-keyring python3-keyring Architecture: source all Version: 0.9.2-1.1 Distribution: unstable Urgency: low Maintainer: Carl Chenet <cha...@debian.org> Changed-By: Salvatore Bonaccorso <car...@debian.org> Description: python-keyring - store and access your passwords safely python3-keyring - store and access your passwords safely - Python 3 version of the Closes: 696736 Changes: python-keyring (0.9.2-1.1) unstable; urgency=low . * Non-maintainer upload. * Add 696736-Fix-insecure-permissions-on-database-files.patch [SECURITY]: Fix insecure permissions on database files. Fix CVE-2012-5577 and CVE-2012-5578. (Closes: #696736) (LP: #1031465) Checksums-Sha1: b10c380c8c6870c3972a7f0b5c4af899b0ae85c6 2154 python-keyring_0.9.2-1.1.dsc e869b90a3dcf387343482b7de016e7f3476b4427 7508 python-keyring_0.9.2-1.1.debian.tar.gz 16d83759aff4cf8c6cc37ad8b36211f9ba41bb5a 41664 python-keyring_0.9.2-1.1_all.deb ed88526513e3beda1538183d1ad370ee16ad93ac 35126 python3-keyring_0.9.2-1.1_all.deb Checksums-Sha256: dc1e285cf7fdc339a3b974da0aecef7879d92e618cc51b86f4fc85679f263a8a 2154 python-keyring_0.9.2-1.1.dsc d1bb0e19fead9d7b28384f2496bdd3c2b39631b6477b0e5b26e552f055239e01 7508 python-keyring_0.9.2-1.1.debian.tar.gz bbde653fb18e2e24f8fa6c950dc0bccf120fa5b4006867f6c13197bb82aa38e6 41664 python-keyring_0.9.2-1.1_all.deb 699b33b75ffd3dccd6e82d3ea9d287353fedf2985648c33cacaab5bde624efa1 35126 python3-keyring_0.9.2-1.1_all.deb Files: e7afb132cf7726caf1e7da09035e2b05 2154 python optional python-keyring_0.9.2-1.1.dsc f4fb920efc50bfc87c0e17f33b5d28d7 7508 python optional python-keyring_0.9.2-1.1.debian.tar.gz 26fc94f633a73c2a75beabcff8001451 41664 python optional python-keyring_0.9.2-1.1_all.deb b7bd87bb66bbed63dc9b0f62be4a4639 35126 python optional python3-keyring_0.9.2-1.1_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQIcBAEBCgAGBQJQ4HyRAAoJEHidbwV/2GP+lrkP/Rnn0AwUpSsr7f2VdOMtSKH7 3/mOgNtRpok2kixEiodg0/wPJ3QzChtII5gGqppcdgCRTAETm2utUYwLwhRw0QMP yN6OngBA5UaphgdXr28iMzEJ6/w8bECHcedJEaXCKcoDLwgEIw7wIAAC5hfqXFoW wvvYg5oTgg8/jKWYWakJQNZhQOECM38lV0lckRbOMSXf4bYMwwUIJut8MViyCg9M 2bJuyKt8xuPHvHbQ/mFzCc+8hFvfMzpGpTPtLM5l5IKZnzca1kdtk9an5NkTbGMj pLCESKPh+RPCIpFr0cL9EEZEPZIA0amsw1tQQNyrr++6Wntgjuwipg5BSvnk7MVS vNyHl+6kcA7FwcHyl+UFYrPhp7YiUbcGkM8jXfmRm1UZzjK+Ex5ICTbqUoX4hhQZ 9rereRSCfoAZlN/3yAlZhWfvjh9k75hSpmuuq3OWpy3TBjzRi8KyL0YM/vEirOFf HqefE77CstHr+ZRAoo8fbuVVJqrOsT1x3C+S2+XqeoXJiYj3eZLPfcA1LWCQSgD4 Vs//SX9bwv7H44Cw9/dXCvr/4l8yyQK5+DRI+WT7Q50ctUVQ27CH+kYbaMpHC3qq OGHp7cmHBPEKY0/LdfaxbIhm/LWBEcPpCJmaMv/73cdN7LzdlwTfQ7tSLoAcbn8T tAukvAUvkZnYig9VeJq0 =SKxu -----END PGP SIGNATURE-----
--- End Message ---
