Your message dated Sun, 3 Feb 2013 23:49:07 -0600
with message-id <20130204054907.ga28...@sumost.ca>
and subject line Re: Boost 1.42 is not affected
has caused the Debian Bug report #699719,
regarding Boost.Locale library security flaw
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
699719: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699719
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: libboost-locale1.49-dev
Version: 1.49.0-3.1
Severity: grave
Tags: security
Boost has issued a security notice:
http://www.boost.org/users/news/boost_locale_security_notice.html
Boost versions from 1.48.0 to 1.52.0 are affected. A patch is provided:
http://cppcms.com/files/locale/boost_locale_utf.patch
Please incorporate the patch.
-- System Information:
Debian Release: 7.0
APT prefers testing
APT policy: (500, 'testing')
Architecture: mipsel (mips64)
Kernel: Linux 3.2.0-4-loongson-2f
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages libboost-locale1.49-dev depends on:
ii libboost-locale1.49.0 1.49.0-3.1
ii libboost1.49-dev 1.49.0-3.1
libboost-locale1.49-dev recommends no packages.
libboost-locale1.49-dev suggests no packages.
-- no debconf information
--- End Message ---
--- Begin Message ---
On Sun, Feb 03, 2013 at 05:44:26PM -0800, Deng Xiyue wrote:
> As Boost.Locale was not part of boost until 1.48.0, so 1.42 is not affected.
Indeed. Closing.
-Steve
--- End Message ---
