Your message dated Sun, 08 Sep 2013 13:03:10 +0000
with message-id <e1viedy-0008dz...@franck.debian.org>
and subject line Bug#669025: fixed in flightgear 2.10.0-2
has caused the Debian Bug report #669025,
regarding CVE-2012-2090 / CVE-2012-2091
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
669025: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=669025
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: flightgear
Severity: important
Tags: security
CVE-2012-2090:
http://sourceforge.net/mailarchive/message.php?msg_id=28957051
CVE-2012-2091:
http://sourceforge.net/mailarchive/message.php?msg_id=29011989
Cheers,
Moritz
--- End Message ---
--- Begin Message ---
Source: flightgear
Source-Version: 2.10.0-2
We believe that the bug you reported is fixed in the latest version of
flightgear, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 669...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Markus Wanner <mar...@bluegap.ch> (supplier of updated flightgear package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sun, 08 Sep 2013 10:25:06 +0200
Source: flightgear
Binary: flightgear
Architecture: source amd64
Version: 2.10.0-2
Distribution: unstable
Urgency: low
Maintainer: Debian FlightGear Crew <pkg-fgfs-c...@lists.alioth.debian.org>
Changed-By: Markus Wanner <mar...@bluegap.ch>
Description:
flightgear - Flight Gear Flight Simulator
Closes: 669025
Changes:
flightgear (2.10.0-2) unstable; urgency=low
.
* Fix for CVE-2012-2090: prevent %n from being passed to format strings.
* Fix for CVE-2012-2091: use snprintf() rather than sprintf().
* Fix upstream issue #1117 similar to CVE-2012-2091. Closes: #669025.
* Upload to unstable.
Checksums-Sha1:
2d6a7b00ac79be2651c33b506133ad5a0a0dd21a 3131 flightgear_2.10.0-2.dsc
c87e9d1a0267809137503d66a3abccaa049072a8 27393
flightgear_2.10.0-2.debian.tar.gz
8e99c4c71812f227092422af389bf4713b9db954 3754636 flightgear_2.10.0-2_amd64.deb
Checksums-Sha256:
24287f30a912f1779029ca5ac310abe13fa1a1d711ce5bb79070d2b6baa8038c 3131
flightgear_2.10.0-2.dsc
343807971d478900279c817de75994749e650443d6e6737ac7e2899d5e0dac99 27393
flightgear_2.10.0-2.debian.tar.gz
460249d8c0e8b0e6a3f27cec3d0e18388dc104ca6985bb0de11e595952af3d3e 3754636
flightgear_2.10.0-2_amd64.deb
Files:
758e38a9c3cf741827533aef54ad7d60 3131 games extra flightgear_2.10.0-2.dsc
07034d377eacefbf453c6815576a8323 27393 games extra
flightgear_2.10.0-2.debian.tar.gz
d851080dff71719d62e4b85ec4243a02 3754636 games extra
flightgear_2.10.0-2_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (GNU/Linux)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=
=ITQ0
-----END PGP SIGNATURE-----
--- End Message ---
