Your message dated Mon, 04 Nov 2013 23:47:05 +0000 with message-id <e1vdtrn-0001n5...@franck.debian.org> and subject line Bug#726473: fixed in nss 2:3.14.4-1 has caused the Debian Bug report #726473, regarding nss: CVE-2013-1739 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 726473: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=726473 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---package: nss version: 3.12.8-1 severity: grave tag: security Hi, A security issue was recently fixed in nss 3.15.2: [0] https://security-tracker.debian.org/tracker/CVE-2013-1739 For unstable, its probably easiest to just update directly to the latest upstream version to fix this. Actual patch is still behind a restricted bug report, so I was not able to fully check affected versions. Best wishes, Mike
--- End Message ---
--- Begin Message ---Source: nss Source-Version: 2:3.14.4-1 We believe that the bug you reported is fixed in the latest version of nss, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 726...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Mike Hommey <gland...@debian.org> (supplier of updated nss package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Thu, 31 Oct 2013 13:51:57 +0900 Source: nss Binary: libnss3 libnss3-1d libnss3-tools libnss3-dev libnss3-dbg Architecture: source amd64 Version: 2:3.14.4-1 Distribution: stable-security Urgency: low Maintainer: Maintainers of Mozilla-related packages <pkg-mozilla-maintain...@lists.alioth.debian.org> Changed-By: Mike Hommey <gland...@debian.org> Description: libnss3 - Network Security Service libraries libnss3-1d - Network Security Service libraries - transitional package libnss3-dbg - Debugging symbols for the Network Security Service libraries libnss3-dev - Development files for the Network Security Service libraries libnss3-tools - Network Security Service tools Closes: 726473 Changes: nss (2:3.14.4-1) stable-security; urgency=low . * New upstream release. - Fixes CVE-2013-1739. Closes: #726473. Checksums-Sha1: 4a112627f1cc29cad00f14824e817d676485bee2 2174 nss_3.14.4-1.dsc 0fcd62bc4dc2449d3a49809beab17009d92348d6 6190110 nss_3.14.4.orig.tar.gz d168cfcf9e8c8bc661752c5ea8a79b282525a9da 39377 nss_3.14.4-1.debian.tar.gz 30f5f1e2ccbf3107a3a969be3fde6c680c81b4be 1062856 libnss3_3.14.4-1_amd64.deb 2046e632517797304927c2b70493c7300a67ed66 20000 libnss3-1d_3.14.4-1_amd64.deb 15c233dd33b610a650bd77c1e00c05f3ee11047f 228168 libnss3-tools_3.14.4-1_amd64.deb adbe416d628dbc7309ac94b3260784c42443700b 219380 libnss3-dev_3.14.4-1_amd64.deb c63fa42605e9753b43c74a5205790b1d55088132 4835432 libnss3-dbg_3.14.4-1_amd64.deb Checksums-Sha256: 7de1716244d9ab5b365dab289e49a7c6011cd971c8d17006adfcd2e94d0daa32 2174 nss_3.14.4-1.dsc 47332282d748d732f4c652fc62b9134aca2a8f15a0c21267d2e008f7154ab04d 6190110 nss_3.14.4.orig.tar.gz 16d2e20d671a7c98cfd04d327c7a4900d15c7c74ca01e9b4e14b8cba17a7de83 39377 nss_3.14.4-1.debian.tar.gz 07be1b3b573a7143af41576fe3afb687fcea8212162b7cd948d3a30fb630817c 1062856 libnss3_3.14.4-1_amd64.deb 876cb92b202c0b2f72703c4ac7e400cf1d006236057063b46af5642c6641e528 20000 libnss3-1d_3.14.4-1_amd64.deb 459f064db9e7dbd25a76c07aa235ef23d9d32a1e6b5258db3c3044c88495463a 228168 libnss3-tools_3.14.4-1_amd64.deb b73ef384794c1ad151d09c759f71b3b83a892e7840971535b293f444e812db00 219380 libnss3-dev_3.14.4-1_amd64.deb 772606162ccf37b97344b4fb5b5ef4c8b12bb6fea7ab3f2d92a177aa8ad1454d 4835432 libnss3-dbg_3.14.4-1_amd64.deb Files: b1a3cbf4067039e9ed0990f6a4e1b0e8 2174 libs optional nss_3.14.4-1.dsc 9042e4447ae690cf6f83c34c25385588 6190110 libs optional nss_3.14.4.orig.tar.gz 29e3cfd859fc998a6f92942d18a46e45 39377 libs optional nss_3.14.4-1.debian.tar.gz 64a8865f9cfb528086704bb8518ad0cd 1062856 libs optional libnss3_3.14.4-1_amd64.deb 58ac2e0f963158c09da18c1c68133a16 20000 oldlibs extra libnss3-1d_3.14.4-1_amd64.deb 507c1cf61d611ca188681a7ade03fa27 228168 admin optional libnss3-tools_3.14.4-1_amd64.deb 6241097e2066bc73aa5f82f5c96cbe2a 219380 libdevel optional libnss3-dev_3.14.4-1_amd64.deb 85f14ed61d7a72e2544603e2141417ac 4835432 debug extra libnss3-dbg_3.14.4-1_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.15 (GNU/Linux) iQIVAwUBUnHlveQqoE+mqoxyAQiOvRAAsLIiBVpQZAIfzXRnGfEzndMboJGRN2/0 lsmKisOk1x+ueB1vlHaQ+cQphvrIN9AWSQLiqdirIpMuZNEWVBnTQDYTdDrkhw5J 8IPV39JBMAk6wdZI4CqI6Kllf2rINq+fotXiKEouyvE+t89IR7xRSwfRMqyH2e7x WksKMHY/2OrduDeSL1BKUVAFiiJO01TaKA6EsoF3/3DvcV9/sMz4Ispkh2UbIV8c RrM38BUO0Gr2LnVozcP4n84I/4gihVlpcXa0ScA/SalYjhO8x2EbjbcNNv+J+4wx 0rftFJOZ4ImXGqZiw1AoGtRtn6oDx1BIjNTLFrUDpt0VsU90jbfKvAqkwdzJT9yg FdmTfaNA7dmpzIqsVfft06bz58sLUTTK6WXpB+35WGS+RHiFaz/hUVH/whmXgdxP vJfnwZTORm30/cDAKDsFG/aguB6pxsgd1STplbERt/emgtp4omu4CHZGln6NwFi1 YgxPQ3rxCeAizbFM2bgm5PZ5cvYaXvgHQSpsvi5+VNhG8/ilRKzXvo6Ojru/dZtq o9UC7sWjNXLntary9YUAkLsHu3Dc4Dqo3S3QFYRG4rGGjEnUQVsEC+sOfkrtSp/8 73N2ptqpTQJwuxOjJpgYXuU4tX8xao0h5nwMD/9/sP9rSJLKqxKwwjz0hF/5g8AZ HkE02xr2DuU= =MOGe -----END PGP SIGNATURE-----
--- End Message ---
