Bug#733938: marked as done (libxml-security-java: CVE-2013-4517)

[Debian Bug Tracking System]

Your message dated Sun, 02 Feb 2014 19:18:59 +0000
with message-id <e1wa2zh-0002rw...@franck.debian.org>
and subject line Bug#733938: fixed in libxml-security-java 1.5.6-1
has caused the Debian Bug report #733938,
regarding libxml-security-java: CVE-2013-4517
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
733938: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=733938
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Package: libxml-security-java
Severity: grave
Tags: security
Justification: user security hole

Please see http://santuario.apache.org/secadv.data/cve-2013-4517.txt.asc

Please prepare updated oldstable-security/stable-securitypackages for this issue
and CVE-2013-2172 (as fixed in 1.5.5-2) and contact t...@security.debian.org
http://www.debian.org/doc/manuals/developers-reference/pkgs.html#bug-security

Cheers,
        Moritz

--- End Message ---

--- Begin Message ---

Source: libxml-security-java
Source-Version: 1.5.6-1

We believe that the bug you reported is fixed in the latest version of
libxml-security-java, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 733...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
tony mancill <tmanc...@debian.org> (supplier of updated libxml-security-java 
package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 02 Feb 2014 10:14:47 -0800
Source: libxml-security-java
Binary: libxml-security-java libxml-security-java-doc
Architecture: source all
Version: 1.5.6-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Java Maintainers 
<pkg-java-maintain...@lists.alioth.debian.org>
Changed-By: tony mancill <tmanc...@debian.org>
Description: 
 libxml-security-java - Apache Santuario
 libxml-security-java-doc - Documentation for Apache Santuario
Closes: 733938
Changes: 
 libxml-security-java (1.5.6-1) unstable; urgency=medium
 .
   * Team upload.
   * New upstream release.
     - Addresses CVE-2013-4517 (Closes: #733938)
   * Freshen pom.xml patch for new version.
Checksums-Sha1: 
 951f8ee41c0c2d511afef3927ba8dc5dd8732c14 2511 libxml-security-java_1.5.6-1.dsc
 31098e1477017735fa75b37e827f306d43283faa 1281978 
libxml-security-java_1.5.6.orig.tar.gz
 30d987630b98e3bf40e00c823dc57ff41c050375 5016 
libxml-security-java_1.5.6-1.debian.tar.xz
 8a99692e87bf8a08a3bd3a2c981d958afe305953 558412 
libxml-security-java_1.5.6-1_all.deb
 4c03a212d72a329e545f2afec5e8a273f9305f81 2255970 
libxml-security-java-doc_1.5.6-1_all.deb
Checksums-Sha256: 
 c860ec77c8038213a10028bf87252bdabc5607cd199891a2fc85b4b388cf4cb1 2511 
libxml-security-java_1.5.6-1.dsc
 b83be20a6d49d95039ea5aa001288e73181b412021fda3b3f0c2e4dd64607816 1281978 
libxml-security-java_1.5.6.orig.tar.gz
 a11ee7dcee4319af0d132accc050014d53710cd9e0a5e8acea5648e702bcc6aa 5016 
libxml-security-java_1.5.6-1.debian.tar.xz
 e8e1c55b98fc9ec5181e33f7618a3cbc9beaace57ef1edaac38b43a44e8b96a2 558412 
libxml-security-java_1.5.6-1_all.deb
 c37d6c06772bc9efc1d88f8c43f1d955109a2916c0c0b42c51cc0a01bfa10409 2255970 
libxml-security-java-doc_1.5.6-1_all.deb
Files: 
 320d94aed325c1a6dedcdd12b95cdd6e 2511 java optional 
libxml-security-java_1.5.6-1.dsc
 311cd7b3d17eb99aa6bf46ba2e760190 1281978 java optional 
libxml-security-java_1.5.6.orig.tar.gz
 940a5ad29fbba0e9c6ef2edede2c02a4 5016 java optional 
libxml-security-java_1.5.6-1.debian.tar.xz
 23e70f8c3580256100cb76417f501bb8 558412 java optional 
libxml-security-java_1.5.6-1_all.deb
 850e5db6f0e739898a67635a636527c2 2255970 doc optional 
libxml-security-java-doc_1.5.6-1_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=2BAl
-----END PGP SIGNATURE-----

--- End Message ---