Your message dated Tue, 24 Nov 2015 22:22:00 +0000 with message-id <e1a1lyk-0002ye...@franck.debian.org> and subject line Bug#800471: fixed in lxc 1:1.0.8-1 has caused the Debian Bug report #800471, regarding lxc: CVE-2015-1335 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 800471: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=800471 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: lxc Version: 1:1.0.7-10 Severity: important Tags: security upstream patch fixed-upstream Hi Daniel, LXC upstream announced CVE-2015-1335 today [1] and patch for 1.0 branch at [2]. [1] https://lists.linuxcontainers.org/pipermail/lxc-devel/2015-September/012434.html [2] https://github.com/lxc/lxc/commit/6bbb8100c4dec4b1c71758c27104985a694a4eac [3] https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/1476662 Regards, Salvatore
--- End Message ---
--- Begin Message ---Source: lxc Source-Version: 1:1.0.8-1 We believe that the bug you reported is fixed in the latest version of lxc, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 800...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Antonio Terceiro <terce...@debian.org> (supplier of updated lxc package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Tue, 24 Nov 2015 19:10:28 -0200 Source: lxc Binary: lxc lxc-dbg lxc-dev liblxc1 Architecture: source Version: 1:1.0.8-1 Distribution: unstable Urgency: medium Maintainer: Antonio Terceiro <terce...@debian.org> Changed-By: Antonio Terceiro <terce...@debian.org> Description: liblxc1 - Linux Containers userspace tools (library) lxc - Linux Containers userspace tools lxc-dbg - Linux Containers userspace tools (debug) lxc-dev - Linux Containers userspace tools (development) Closes: 800471 Changes: lxc (1:1.0.8-1) unstable; urgency=medium . * New upstream release - Includes fixes for CVE-2015-1335 (Closes: #800471) - Patches dropped for being already applied upstream: - CVE-2015-1331.patch - CVE-2015-1334.patch - lxc-clone-rsync-hardlinks.patch - lxc-clone-rsync-capabilities.patch - big-big-login-delays-in-CentOS-7-systemd.patch - lxc-debian-skip-security-updates-for-unstable-sid.patch - lxc-debian-support-stretch-Debian-9-images.patch - CVE-2015-1335.patch - Renumbered patches - Add cgmanager do Recommends:. Without it, lxc will always print a warning, which seems to be harmless but for example will break autopkgtest because of the unexpected output to stderr. * debian/watch: added * debian/upstream/signing-key.asc: added upstream signing key. Checksums-Sha1: 9e4204037e59146a836f9acc37e4f01e04853df7 2056 lxc_1.0.8-1.dsc 5ceec2289d2f25f8b6a13f8ec8731025294ef4da 807754 lxc_1.0.8.orig.tar.gz b33c483c50a7ec3e0a36c4a91083461b392d4b2c 82552 lxc_1.0.8-1.debian.tar.xz Checksums-Sha256: 289d1fc618a4eb91b8a70d07c9585f8741af8817289dd33fb8e7a1e6c49e740d 2056 lxc_1.0.8-1.dsc afce5d85e5d79fcc940fa372e40adc26f7c5fe538b4d7c4a371dc8995cef9083 807754 lxc_1.0.8.orig.tar.gz 1c37f30b74e2c284917aa6d9e61384d5cdce9d60c05ac759b9a6edfc2ef7f55d 82552 lxc_1.0.8-1.debian.tar.xz Files: 028671687c08c2573d60112115d7eb35 2056 admin optional lxc_1.0.8-1.dsc b6e6bf578dc1133c76d853ef00fdfcf4 807754 admin optional lxc_1.0.8.orig.tar.gz 45c9679ea3cd9f76d6e3b0f86341ee3b 82552 admin optional lxc_1.0.8-1.debian.tar.xz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJWVN1PAAoJEPwNsbvNRgvePs0QAIix3cTmvDS6EHA6ekz+7/TK M69IfVIjYcQp0OWJo0XHAVT6FexTAOo/Oya6aaWj7uK+ZMMkJkEdDDHITDfNF1AQ HANdmmVuLcZTvzEcTEkdOviZR//y91nkmDbtlsEjIh6jzfv98r68UnpHMhfzEORY 18VE9d38hfRdQQwjQwbQqECZKkI7ZLEtfE9Xx06SC9uyy6afYn0PBrxO4pM3jn9F 2HjOOoHctK+vxCLc7zLax7IYgo/dRvpQ+E6jvRbx+gNtweb2UrLemohX/rh9qmAv 945yGmbP9Tgjh73/8Fy0xQaqXwzGq3F+1GfIfMNSG3gRuYLexA5+kzmUCAQdE8bz +wr136MHnCuorZo7kVP60nGKrkDM3VDvFn1rOIGIXSt8S1YPhOYQYIClUJDgne6P GoVnMR/QZypZOEx1+a+BYhH1y1N67xIIOC+Y1hJVSBjqjroDxpHzEqEZw78wCZLR lUb+cgjn+raOt8UJe/vOOaM1sqwbcORJfxxhbsBfa2X8g23u5wJueqZjnqCxdE6d YrHWD355KXDW5G2dk4x07wK32f8ttl80qfy/V1rxLhDPqhm89bJixlXsE1Dxy0Bt Ao5thalaasCAATCenm4vgLpzeWnpySj9/rrhnQv9LY/rY1mn4PkGRhX+0ADRLw2k QP84jE+rf5Oz5j6rF5rG =87rh -----END PGP SIGNATURE-----
--- End Message ---
