Your message dated Tue, 27 May 2014 21:32:50 +0000 with message-id <e1wpozk-0006pw...@franck.debian.org> and subject line Bug#749073: fixed in suds 0.3.9-1+deb6u2 has caused the Debian Bug report #749073, regarding python-suds: does not delete directories in /tmp, causing DoS to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 749073: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=749073 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: python-suds Version: 0.3.9-1+deb6u1 Severity: serious Justification: breaks unrelated software The deb6u1 update to python-suds fixed insecure temporary directory creation (/tmp/suds) by creating directories with random names in /tmp. However, these directories are never deleted, causing /tmp to reach subdirectory limit (~32000 on ext3), breaking various other programs that want to create a temporary directory in /tmp (they get "Too many links" error). -- System Information: Debian Release: 6.0.9 APT prefers oldstable-updates APT policy: (500, 'oldstable-updates'), (500, 'oldstable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.32-5-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages python-suds depends on: ii python 2.6.6-3+squeeze7 interactive high-level object-orie ii python-pkg-resources 0.6.14-4 Package Discovery and Resource Acc ii python-support 1.0.10 automated rebuilding support for P python-suds recommends no packages. python-suds suggests no packages. -- no debconf information
--- End Message ---
--- Begin Message ---Source: suds Source-Version: 0.3.9-1+deb6u2 We believe that the bug you reported is fixed in the latest version of suds, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 749...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Mathias Behrle <mathi...@m9s.biz> (supplier of updated suds package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Mon, 26 May 2014 17:25:21 +0200 Source: suds Binary: python-suds Architecture: source all Version: 0.3.9-1+deb6u2 Distribution: oldstable Urgency: low Maintainer: Debian Tryton Maintainers <try...@lists.debian-maintainers.org> Changed-By: Mathias Behrle <mathi...@m9s.biz> Description: python-suds - Lightweight SOAP client for Python Closes: 749073 Changes: suds (0.3.9-1+deb6u2) oldstable; urgency=low . * Improving fix for CVE-2013-2217 to also remove cache directories from tmp after program execution (Closes: #749073). Checksums-Sha1: d74c9e18eb0c48134da2082221eacc95daaac282 1653 suds_0.3.9-1+deb6u2.dsc a9986989177eca33dfdb9f2c3e23e3b7f6bc5f11 2958 suds_0.3.9-1+deb6u2.diff.gz 2386c11187f6e988a6f3c48cc332a1ae9a16e2c7 105986 python-suds_0.3.9-1+deb6u2_all.deb Checksums-Sha256: 3343ffe5f0d93b75298fe051a8cbb71d3c7e2e1031c474c99bfd39be2b6ae9df 1653 suds_0.3.9-1+deb6u2.dsc 6d61be8bcbc1f5f5adc1e76fa24e00c13f70761fb37f399ed141b7e79109ed78 2958 suds_0.3.9-1+deb6u2.diff.gz 46fc42772b15e97ce51f41476a86b369a1c7377b2976aca4e2f823bacd80c33d 105986 python-suds_0.3.9-1+deb6u2_all.deb Files: f3cc2dfe0ec77a1fbb0374ca22bfd575 1653 python optional suds_0.3.9-1+deb6u2.dsc e04883cd470233950f076ff5e7c2f6db 2958 python optional suds_0.3.9-1+deb6u2.diff.gz d9c61538a09de3dbc7cba08f5d4bbf04 105986 python optional python-suds_0.3.9-1+deb6u2_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) Comment: Signed by Raphael Hertzog iQEcBAEBCAAGBQJThDrqAAoJEAOIHavrwpq5zEIIAKkrZXd9LRh9Ai/BTb2PLSco W/LZRKJQ5ZhHuEgw98ytRy+I3sV/NzDgCnpm7YjGuEEt6viiyNN/4HBAqd9aAkXs Kr5oyh7Rcm2BoUm2WiM5alj9wMdmCg+ZXLeTGgAuNNGMOENfINAbLof7QOXLwttr 1xSxBVZYzLQBXvoJPhs3o7MyxYoDP++YZqpLGJoUrZ+YWHVhEBCJ1P4kxTbHYUOu prjdW91e7ExrS7du5LQnlGOdIx8mpu1YbnhZzx8M8lkbfj5nHyARhuYA1qde4Hv3 sx3173kkMUc695vctZkqDIo98Wj3QJoMb1Oizjp7UbwVYM/YXbi/StswpdMNruo= =zzW8 -----END PGP SIGNATURE-----
--- End Message ---
