Your message dated Sat, 28 Feb 2015 19:18:50 +0000 with message-id <e1yrmuy-00016n...@franck.debian.org> and subject line Bug#778948: fixed in e2fsprogs 1.41.12-4+deb6u2 has caused the Debian Bug report #778948, regarding e2fsprogs: CVE-2015-1572 buffer overflow to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 778948: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=778948 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---package: src:e2fsprogs severity: important tags: security A buffer overflow issue was recently fixed for e2fsprogs: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-1572 Best wishes, Mike
--- End Message ---
--- Begin Message ---Source: e2fsprogs Source-Version: 1.41.12-4+deb6u2 We believe that the bug you reported is fixed in the latest version of e2fsprogs, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 778...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Thorsten Alteholz <deb...@alteholz.de> (supplier of updated e2fsprogs package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 28 Feb 2015 19:00:40 +0100 Source: e2fsprogs Binary: e2fsck-static libcomerr2 comerr-dev libss2 ss-dev e2fsprogs-udeb e2fslibs e2fslibs-dev e2fsprogs e2fsprogs-dbg e2fslibs-dbg libcomerr2-dbg libss2-dbg Architecture: source i386 Version: 1.41.12-4+deb6u2 Distribution: squeeze-lts Urgency: high Maintainer: Theodore Y. Ts'o <ty...@mit.edu> Changed-By: Thorsten Alteholz <deb...@alteholz.de> Description: comerr-dev - common error description library - headers and static libraries e2fsck-static - statically-linked version of the ext2/ext3/ext4 filesystem checke e2fslibs - ext2/ext3/ext4 file system libraries e2fslibs-dbg - debugging information for e2fslibs e2fslibs-dev - ext2/ext3/ext4 file system libraries - headers and static librari e2fsprogs - ext2/ext3/ext4 file system utilities e2fsprogs-dbg - debugging information for e2fsprogs e2fsprogs-udeb - stripped-down versions of e2fsprogs, for debian-installer (udeb) libcomerr2 - common error description library libcomerr2-dbg - debugging information for libcomerr2 libss2 - command-line interface parsing library libss2-dbg - debugging information for libss2 ss-dev - command-line interface parsing library - headers and static libra Closes: 778948 Changes: e2fsprogs (1.41.12-4+deb6u2) squeeze-lts; urgency=high . * Non-maintainer upload by the Debian LTS team. * Fix CVE-2015-1572: incomplete fix for CVE-2015-0247. (closes: #778948) Checksums-Sha1: f6f9aea37985fcea7d9456773a6d487cb07f4718 1887 e2fsprogs_1.41.12-4+deb6u2.dsc f2504142cb805ce4b0fd98e97e40d7f6d39d805a 4795216 e2fsprogs_1.41.12-4+deb6u2.tar.gz 561cc9f187e0e5288136c3faa84c90c68ff82b27 454384 e2fsck-static_1.41.12-4+deb6u2_i386.deb 4c9c550010e79284d901e119c3edc0b85f165b28 49364 libcomerr2_1.41.12-4+deb6u2_i386.deb dd808969b25ab3bbf031aea1aae079dc69500f30 54084 libss2_1.41.12-4+deb6u2_i386.deb 7c3bad839baa26e91d04373a6d340954adb437ed 140802 e2fslibs_1.41.12-4+deb6u2_i386.deb c01c235dcd001cbc1f91e7a72551e8ecab64603a 174908 e2fslibs-dev_1.41.12-4+deb6u2_i386.deb 3a81794800b01a59e31017279c136d6f78b9ae17 804494 e2fsprogs_1.41.12-4+deb6u2_i386.deb c7b4896c4cdc41a3b019794892f214595d047e64 832472 e2fsprogs-dbg_1.41.12-4+deb6u2_i386.deb 24069da47db74cbbd42f1e70d2699a81c294c717 238830 e2fslibs-dbg_1.41.12-4+deb6u2_i386.deb 5c775c04ec19e484f047a0414e42e6e79e4603e9 51812 libcomerr2-dbg_1.41.12-4+deb6u2_i386.deb 2e3d33361916a90518ebe940a91ab2c286381eae 60424 libss2-dbg_1.41.12-4+deb6u2_i386.deb 1b022bb8d93d5aef9ac3c10b6059781cb919b6d7 41930 comerr-dev_2.1-1.41.12-4+deb6u2_i386.deb 3d0bb41d19531d5f54d2f8c2417f8aae36ac4ce5 17024 ss-dev_2.0-1.41.12-4+deb6u2_i386.deb 37e500a522eec76536e7d04b2c7b290e79cf781d 213748 e2fsprogs-udeb_1.41.12-4+deb6u2_i386.udeb Checksums-Sha256: 52fe155b51ca543eb2f1aaabe2ba90bf14e3af198f5c163a4b36217e670baa65 1887 e2fsprogs_1.41.12-4+deb6u2.dsc 2acf988bb8f30b52069eba97a21b46555751a4b1a03f7cf77b955e343dfd3f0f 4795216 e2fsprogs_1.41.12-4+deb6u2.tar.gz d804b38aec95c160351eea3001d276ff1e1d7380b75749a0ec544bc371761f91 454384 e2fsck-static_1.41.12-4+deb6u2_i386.deb 7f51c40af7f8f917d002412b671b7bf4d54b36b8aab67e521fa93d1aab0e53f9 49364 libcomerr2_1.41.12-4+deb6u2_i386.deb 153815fc9dc8cae4c14b38839b537dfba98f485125361b191ec2a57885754a57 54084 libss2_1.41.12-4+deb6u2_i386.deb 33bc216bf50c199ad855b92d7a3329c47c436ba60fefd92fdd15aace3e42d01d 140802 e2fslibs_1.41.12-4+deb6u2_i386.deb 8828c2ab045ba8c1698faed129065c3b9f688cf9662e743010892a62307fcbab 174908 e2fslibs-dev_1.41.12-4+deb6u2_i386.deb 7ddc98ced31a213f38ef1d35b380412643c19203b180dce3eb9d346cf0c43cd4 804494 e2fsprogs_1.41.12-4+deb6u2_i386.deb c4c9d6e522b006b411a82115946067cc2de782ccee52975d9695815be0c8652b 832472 e2fsprogs-dbg_1.41.12-4+deb6u2_i386.deb 4508a07eb967a2ab15574e06800ae94ddc4379f8a36ca6f7a29d6dc4705eac70 238830 e2fslibs-dbg_1.41.12-4+deb6u2_i386.deb b937a7dc9f606e6006025916841dc9c3549b2b06b6c48ec3352615a5f26f3402 51812 libcomerr2-dbg_1.41.12-4+deb6u2_i386.deb eb4c744ea06fbee28403fdd8199043c7d1792a68ce065ff2cd294377118e73a3 60424 libss2-dbg_1.41.12-4+deb6u2_i386.deb 79b290cafa71416ce59a6e633a3f46509ddb2e997ceb75b1bba611db88a7f3e3 41930 comerr-dev_2.1-1.41.12-4+deb6u2_i386.deb 81fa794e7a56df2279c64a3eeffd216e95665c47a1ad23eccbc7fd25b50fe185 17024 ss-dev_2.0-1.41.12-4+deb6u2_i386.deb 5596e6baff01cec203138e8839460751eef3712ae52ee145bdcb6d3866bc6ac2 213748 e2fsprogs-udeb_1.41.12-4+deb6u2_i386.udeb Files: 0ce2054356b0898337ad21265aa64ff9 1887 admin required e2fsprogs_1.41.12-4+deb6u2.dsc 4666b7d199011cb378c67e88ef459b63 4795216 admin required e2fsprogs_1.41.12-4+deb6u2.tar.gz 8657c5468dcf92d3dc5405ecbb4ee806 454384 admin optional e2fsck-static_1.41.12-4+deb6u2_i386.deb 29d6ca5ce3eaa6ee2701c20a8796b04c 49364 libs required libcomerr2_1.41.12-4+deb6u2_i386.deb a6071dec93f757a2289092c0d5cfd68c 54084 libs required libss2_1.41.12-4+deb6u2_i386.deb 86cf6ae1b3cdf5c37f677679e023a501 140802 libs required e2fslibs_1.41.12-4+deb6u2_i386.deb 3af9a4bb1c33a670833b2382ed103dc5 174908 libdevel extra e2fslibs-dev_1.41.12-4+deb6u2_i386.deb 55a1d29dd861d80231377a7b5f21817c 804494 admin required e2fsprogs_1.41.12-4+deb6u2_i386.deb a3bdaf1951ee1f4760467a37d6248e16 832472 debug extra e2fsprogs-dbg_1.41.12-4+deb6u2_i386.deb be4d1f39174d1fbbb83c0c28f3d5da71 238830 debug extra e2fslibs-dbg_1.41.12-4+deb6u2_i386.deb 4b8e06db8388db7d8ea398b24b2c2202 51812 debug extra libcomerr2-dbg_1.41.12-4+deb6u2_i386.deb 325d1f0883d8c30676d96403145766a7 60424 debug extra libss2-dbg_1.41.12-4+deb6u2_i386.deb 6f1152e765b0ab25843d01dafc484f0b 41930 libdevel extra comerr-dev_2.1-1.41.12-4+deb6u2_i386.deb 87f4b0ee519a1d0166f11f342bdee1fd 17024 libdevel extra ss-dev_2.0-1.41.12-4+deb6u2_i386.deb 7ce0c0d2414aff8e8346f22f5bedf662 213748 debian-installer optional e2fsprogs-udeb_1.41.12-4+deb6u2_i386.udeb Package-Type: udeb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQJ8BAEBCgBmBQJU8hORXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQ2MjAxRkJGRkRCQkRFMDc4MjJFQUJCOTY5 NkZDQUMwRDM4N0I1ODQ3AAoJEJb8rA04e1hHtnwQAJ7mbWJt7pbb9qOe7228WSAM JFS+lCmu8EamG8RAKDlIbroaTb1Kin57rovY8JR8SQZTb2qLwPajsAvBqHkF51qQ KF7KKA01VkGG+LdqsCuOq8LATIeRGCRzSBq8nJ/EP388SRYBR28FkHl8EHQWPsXG USZLJfXaID/1rL9Iyd/Nkv9+TWflJykQJspOIIaMFIqrbkGXO1waFMsMNPdubLx5 MnjSUJAIHOhEt0yvDsaOS9xcje/8GNZ7lR4/t2yWWJdGI5mxnoxxD2WkR1DOR1ST vObBf6zwxodmT3+8qXudcmI342hjsvWvmBR+ezQ8kthny74CArUru+TgFht1iZjs BtgzoSx5KvWk+sOTyoV3ejrqzSmuRKwvbNIzPiNP9SiUrmjRjQb11nP8lE4psCqW r+gKT2eIRBdbmPB5iOSzT0Pn1E2kQ+Ygk9pvqlvrMonDc5ZdMFAEr7c8lgOSJ/af T0eKdsOGRqw3QiG2PY8PNo8RVXQnqhTpzwdoDmfbZVl6q2oBeQKXLVaV8A7OaZ6v k/4+iAK98Kyuxatx7m+uZEQUo+HMETaqksom/yk4pyuiJWKpQ4rRYEj0rGRd/Zen WLuvfdNYJMkYMYueeaFiS0yvdBKjn73L4EPSLnoGESq9E7/CI1Q7Fx6dXponaUzJ 8lKxIUyQOf2hJPhViZGK =BfXH -----END PGP SIGNATURE-----
--- End Message ---
