Your message dated Fri, 14 Jun 2013 22:18:33 +0000 with message-id <e1unckh-00051s...@franck.debian.org> and subject line Bug#711316: fixed in darktable 1.2.1-2 has caused the Debian Bug report #711316, regarding darktable: CVE-2013-2126: double free to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 711316: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=711316 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: darktable Severity: grave Tags: security patch Hi, There's a double free in the embedded copy of libraw included in your package. If possible, please use the system copy instead. For more info: http://www.openwall.com/lists/oss-security/2013/05/29/7 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=710353#17 Could you please prepare fixed packages for stable, to be included in point releases? Thanks. Cheers, -- Raphael Geissert - Debian Developer www.debian.org - get.debian.net
--- End Message ---
--- Begin Message ---Source: darktable Source-Version: 1.2.1-2 We believe that the bug you reported is fixed in the latest version of darktable, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 711...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. David Bremner <brem...@debian.org> (supplier of updated darktable package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sat, 15 Jun 2013 06:50:53 +0900 Source: darktable Binary: darktable darktable-dbg Architecture: source amd64 Version: 1.2.1-2 Distribution: unstable Urgency: medium Maintainer: Debian PhotoTools Maintainers <pkg-phototools-de...@lists.alioth.debian.org> Changed-By: David Bremner <brem...@debian.org> Description: darktable - virtual lighttable and darkroom for photographers darktable-dbg - virtual lighttable and darkroom for photographers Closes: 711316 Changes: darktable (1.2.1-2) unstable; urgency=medium . * Bug fix: "CVE-2013-2126: double free", thanks to Raphael Geissert (Closes: #711316). Checksums-Sha1: 46aee6225da75ba33d53ee64dc392ecbe360f9f4 1943 darktable_1.2.1-2.dsc a9a62df0af1edcb784256781a0e932b4da7d5e86 12382 darktable_1.2.1-2.debian.tar.gz b49c5a98a100ce9283efa73829df294ac1821402 2773650 darktable_1.2.1-2_amd64.deb 5902e813914eb2373949f4036de5da3a87bd07d4 7303100 darktable-dbg_1.2.1-2_amd64.deb Checksums-Sha256: 348356255a73e529cd667132428a22592e1d79a8ac13b203448cf0b8a594c581 1943 darktable_1.2.1-2.dsc a0d1ed10a0e220cb6b53c17ff849d5668c54d66152454caa1de1643b7bd37d53 12382 darktable_1.2.1-2.debian.tar.gz dfd238911212e2eabb8b433d778dc47c14a061f8857205e80a56688daad103ee 2773650 darktable_1.2.1-2_amd64.deb e6708e56d85a78527b720f47724b7d733b3f5e2493b52854b1565b72cab87501 7303100 darktable-dbg_1.2.1-2_amd64.deb Files: 45dbc11c31c822dae73fca0d573b05e4 1943 graphics optional darktable_1.2.1-2.dsc 07c7d8ccf93ff0b69e6bfa153772031d 12382 graphics optional darktable_1.2.1-2.debian.tar.gz 501accc3b79811c2f0445a9730a69bd4 2773650 graphics optional darktable_1.2.1-2_amd64.deb e988631bd552296727ed0d6ef1fd1f22 7303100 debug extra darktable-dbg_1.2.1-2_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iJwEAQECAAYFAlG7k2AACgkQTiiN/0Um85mpAAQAohHk4Bc4KdpzRgnjtxnNUGDp v4znZ4V0P7NShCn/IrF981dEego9ChG4HqqLTtCSsqSyxlVjRNpfnlXTHDP9TmSg HbSkykJ1ZQLicSNcheym5fiuVVRbpSpLVvdYXf4JyUOR5GHDlHhZcgsmRwUwhFhN XLuQM5CMP0EzVVN8x20= =8zKa -----END PGP SIGNATURE-----
--- End Message ---
