Your message dated Sat, 07 Sep 2013 19:48:17 +0000 with message-id <e1viout-0000dy...@franck.debian.org> and subject line Bug#669025: fixed in simgear 2.10.0-2 has caused the Debian Bug report #669025, regarding CVE-2012-2090 / CVE-2012-2091 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 669025: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=669025 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: flightgear Severity: important Tags: security CVE-2012-2090: http://sourceforge.net/mailarchive/message.php?msg_id=28957051 CVE-2012-2091: http://sourceforge.net/mailarchive/message.php?msg_id=29011989 Cheers, Moritz
--- End Message ---
--- Begin Message ---Source: simgear Source-Version: 2.10.0-2 We believe that the bug you reported is fixed in the latest version of simgear, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 669...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Markus Wanner <mar...@bluegap.ch> (supplier of updated simgear package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 07 Sep 2013 21:18:10 +0200 Source: simgear Binary: libsimgearcore2.10.0 libsimgearcore2.10.0-dbg libsimgearscene2.10.0 libsimgearscene2.10.0-dbg libsimgear-dev simgear-dev Architecture: source amd64 all Version: 2.10.0-2 Distribution: unstable Urgency: low Maintainer: Debian FlightGear Crew <pkg-fgfs-c...@lists.alioth.debian.org> Changed-By: Markus Wanner <mar...@bluegap.ch> Description: libsimgear-dev - Simulator Construction Gear -- development files libsimgearcore2.10.0 - Simulator Construction Gear -- core library libsimgearcore2.10.0-dbg - debugging symbols for libsimgearcore libsimgearscene2.10.0 - Simulator Construction Gear -- scene library libsimgearscene2.10.0-dbg - debugging symbols for libsimgearscene simgear-dev - transitional dummy package Closes: 669025 Changes: simgear (2.10.0-2) unstable; urgency=low . [ Scott Kitterman ] * Fix for CVE-2012-2091: add checks against buffer overruns in sg_socket_udp.cxx when reading from UDP sockets. . [ Markus Wanner ] * Fix for CVE-2012-2090: prevent %n being passed to format strings. Together with the above fix, this closes: #669025. * Update copyright file. Now in DEP-5 style. Checksums-Sha1: 36685235e4cf31d430d8fc9e127171803e6aa1ec 3302 simgear_2.10.0-2.dsc 023d16f990f222418b6090c5346012c1c59b37f0 12059 simgear_2.10.0-2.debian.tar.gz 384eea71eac13a60ec48b61d000ddc0f828f5cd0 583164 libsimgearcore2.10.0_2.10.0-2_amd64.deb 3458eb42f1342e70d4495644a6664b5735dfe096 2693538 libsimgearcore2.10.0-dbg_2.10.0-2_amd64.deb 36d597f829673d7a6573c8c1137ce702e438bd97 1079348 libsimgearscene2.10.0_2.10.0-2_amd64.deb 8bdb289867d0ad076e0c0d5a98efb1c290d8cf8f 16779406 libsimgearscene2.10.0-dbg_2.10.0-2_amd64.deb 50a7f8ba624200700afb8d0b7cd0000879c691d4 360990 libsimgear-dev_2.10.0-2_amd64.deb 3f8b1b7194199cde9ca4f93a337f00d197b501ca 123902 simgear-dev_2.10.0-2_all.deb Checksums-Sha256: 780951b63ff20902115df6f11d6210e36db232fec55a69da9ea6dc36dadb33bc 3302 simgear_2.10.0-2.dsc 67b6e9e04aa0ea7e3d5cf6b698721332c40076b3b4db51cb7697af90c1548804 12059 simgear_2.10.0-2.debian.tar.gz 464054eb615cabc1d9b8c6d51c92598b57c1d18ef577f23c62ec049177aeac94 583164 libsimgearcore2.10.0_2.10.0-2_amd64.deb f2a1731539b07eea377ad22570e1a54c41ed8fbd04ce2612b3a1898398dd322e 2693538 libsimgearcore2.10.0-dbg_2.10.0-2_amd64.deb 506705ee5dda77d8ced474a1e60881f7bc430e07c9f929f9807ddff2ae262017 1079348 libsimgearscene2.10.0_2.10.0-2_amd64.deb c0cdefdd105b7f73625236cf32491c14ae733b7c4e738a15a802144432a3ccb4 16779406 libsimgearscene2.10.0-dbg_2.10.0-2_amd64.deb 4de62cdc52abc8ec4576f2480371746dd6ec1966bef858444c48dcfb09658ae2 360990 libsimgear-dev_2.10.0-2_amd64.deb decf2bfa78ae92c371b4ac566aa12b3625264c6089e3866eee5b02fa545a15be 123902 simgear-dev_2.10.0-2_all.deb Files: e80013a4515e82788dff09eeb80a77b6 3302 libs extra simgear_2.10.0-2.dsc 16161d8789c7c7df720a071f3fff9960 12059 libs extra simgear_2.10.0-2.debian.tar.gz 96ecfe8d31a549e014b690352e25b11b 583164 libs extra libsimgearcore2.10.0_2.10.0-2_amd64.deb 90aba9b7c8c5a1cd27853a4081089818 2693538 debug extra libsimgearcore2.10.0-dbg_2.10.0-2_amd64.deb aea8281f294ec9c7fa05510714faa695 1079348 libs extra libsimgearscene2.10.0_2.10.0-2_amd64.deb ceefacc25ebac6db81313888333747cd 16779406 debug extra libsimgearscene2.10.0-dbg_2.10.0-2_amd64.deb a074c639c093a3e54df2f79dd87944fa 360990 libdevel extra libsimgear-dev_2.10.0-2_amd64.deb 538576c25609c8b115a41b221c97f789 123902 oldlibs extra simgear-dev_2.10.0-2_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.14 (GNU/Linux) iQQcBAEBCgAGBQJSK319AAoJEOhoLRs/Memzvzof/ibQmlDQH9kEEB2fWFYMXzXm uXtGfWMwte+XBOjLwLoa9J3TbQ9LWFz9+35SVtiWpi4a555g2J7E+ZQq/FQI9wyD cKw4PV+txVRnO8EWL6hWc/fX5yfOP+U2EXZIY3EqgpEXoK7Etowhvg2HOApqFkK0 fDXph1GDbZdmE53jEvSioz/Iw36bV258rx6CeBS/79cDue4eCyNPXJuZgKyN8Izw N41jt52y7LnMDLfYFHzZ15BGKb17a6/fzVphTL2aUmU8XsFeZPRJUkebTvv/L80N lWaDfF4kD1y2SgkvmBfAeJ982i0AumjjyA2gu/h0is02QoqmIfbMsXZNQr7AvfcG qaDnOfeQZ+vVaazcWdMeiHAYJi3Abck1uasbZ4sgz4sT7JbvUt0OBNCK2PQDIcbb WeXSVj3F+ASndg2xMN3eh99oXV71GO29tfrXe/tqhq1MHbuIQoBWk1Lij/71fL/H mNLP2LrrCrN6dXLtw2r4ht5Cf0tfK7hCQ0dPKMmtzRWMfhSVn6JiQEtlV1grYUEA QLdl8MmT0m6DV5r9XO7be23uuLf4Xw+WWSxddIoqn96j00HW1DVLncA0FyRGL63q AgJrymrq2DvBXerUtC/7TMKFC7YovjezfpOdgT0K2kWQYZx/TF1Qm+LKMCihKZcX pZjAm7XcA0MRjqU5fGp+yfhM5aCeeACFrFiLC2Jphg3jlNQK3MX3P9zC1v7Bqtr1 aKC7IxOAYmYzjuleA4UcuSO0m2YOZwjSLwH2DguJQlP3kOcAufxjJ1LqxYU61iY1 FB4PF68gDEEPsn4Gftzq18N7xny7Wkw00UXZzmrH5f6M/KOVw/uV3g6FlHcjd+qY aWQLoG1LhxiCSJxP56h0o1ll4tqOqMzlxaW+B3go0u+y3P3TwPxymxk+wyxJK7+o UNWP9ji2nooYIX5/qRJUA9Eoz1PJXbGdwBB6KioFX/qMqDfT4Wh/2eKCwTWE8Hw1 DE7HoAau7zmxAlH9OwpKZCni1+c0wmszWwTOWx9MlKfhYkWXlQvcjFXM3/EuJ19z PueY4il5DnFteEKGN8egw0tkS6YUzzr/notVdozl8RDqsaJie/05ULatO9wkjZK8 P0IG4GUUgcIy2VtgMhz8beZ7gmoQqrfwRdx5f2MHn6Sn27Nn5J8F/FovkGiljx87 GDGtj8FpHmyqxbjf+vdw3GxCiJmshk6pmIALN3989+O4Xq5+B5TFMGbFLj0hw6ie t3jwARBE/A01hGw3+pTZelxr4RUJQ5vrsxOHTxGN/5gD6eN6hz4nsf73F6GfbVBp miHAcS9QORD1cnWANy+Egog2RFA3dlwh1zbacqjTjtwHmJcPErU9eWi7S2fqaO0= =P5uE -----END PGP SIGNATURE-----
--- End Message ---
