Your message dated Thu, 07 Jan 2016 03:50:08 +0000 with message-id <e1ah1as-0001fu...@franck.debian.org> and subject line Bug#783298: fixed in cryptsetup 2:1.7.0-1 has caused the Debian Bug report #783298, regarding crpytsetup: sends private information without confirmation to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 783298: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=783298 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: systemd Version: 204-8 Severity: grave Tags: security Justification: user security hole Sending /etc/fstab without asking the user is not acceptable, as there might be passwords saved in there. Please stop this. Norbert -- Package-specific info: -- System Information: Debian Release: jessie/sid APT prefers unstable APT policy: (500, 'unstable'), (200, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 3.14.0-rc8+ (SMP w/4 CPU cores; PREEMPT) Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages systemd depends on: ii acl 2.2.52-1 ii adduser 3.113+nmu3 ii initscripts 2.88dsf-51 ii libacl1 2.2.52-1 ii libaudit1 1:2.3.4-1 ii libc6 2.18-4 ii libcap2 1:2.22-1.2 ii libcap2-bin 1:2.22-1.2 ii libcryptsetup4 2:1.6.4-4 ii libdbus-1-3 1.8.0-3 ii libgcrypt11 1.5.3-4 ii libkmod2 16-2 ii liblzma5 5.1.1alpha+20120614-2 ii libpam0g 1.1.8-2 ii libselinux1 2.2.2-1 ii libsystemd-daemon0 204-8 ii libsystemd-journal0 204-8 ii libsystemd-login0 204-8 ii libudev1 204-8 ii libwrap0 7.6.q-25 ii sysv-rc 2.88dsf-51 ii udev 204-8 ii util-linux 2.20.1-5.7 Versions of packages systemd recommends: ii libpam-systemd 204-8 Versions of packages systemd suggests: pn systemd-ui <none> -- no debconf information
--- End Message ---
--- Begin Message ---Source: cryptsetup Source-Version: 2:1.7.0-1 We believe that the bug you reported is fixed in the latest version of cryptsetup, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 783...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Jonas Meurer <m...@debian.org> (supplier of updated cryptsetup package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Thu, 07 Jan 2016 02:22:33 +0100 Source: cryptsetup Binary: cryptsetup cryptsetup-bin libcryptsetup4 libcryptsetup-dev cryptsetup-udeb libcryptsetup4-udeb Architecture: source amd64 Version: 2:1.7.0-1 Distribution: unstable Urgency: medium Maintainer: Debian Cryptsetup Team <pkg-cryptsetup-de...@lists.alioth.debian.org> Changed-By: Jonas Meurer <m...@debian.org> Description: cryptsetup - disk encryption support - startup scripts cryptsetup-bin - disk encryption support - command line tools cryptsetup-udeb - disk encryption support - commandline tools (udeb) (udeb) libcryptsetup-dev - disk encryption support - development files libcryptsetup4 - disk encryption support - shared library libcryptsetup4-udeb - disk encryption support - shared library (udeb) (udeb) Closes: 697156 720515 767921 772943 780864 781674 781955 782024 783298 784129 784435 786578 792552 794106 801471 801479 805353 806290 Changes: cryptsetup (2:1.7.0-1) unstable; urgency=medium . [ Jonas Meurer ] * new upstream release 1.7.0. Highlights include: - cryptsetup TCRYPT mode now supports VeraCrypt devices (in 1.6.7) - fix activation using (UNSECURE) ECB mode (in 1.6.7) (closes: #784129) - properly support stdin "-" handling for luksAddKey for both new and old keyfile parameters. (in 1.6.8) - default hash function is now SHA256 (used in key derivation function and anti-forensic splitter) (in 1.7.0) * debian/cryptsetup.functions, debian/initramfs/cryptroot.{hook,script}: add support for veracrypt option to cryptdisks initscript and cryptroot initramfs script. (closes: #806290) * debian/cryptdisks.functions: don't use '--key-file=-' with the tcrypt extension. This fixes the tcrypt implementation in the initscript and provides a workaround for upstream issue #269. * debian/cryptsetup.bug-script: do not send potentially private information without prior user confirmation in reportbug script. (Closes: #783298) * debian/cryptsetup.apport: do not send potentially private information without prior user confirmation in apport hook. * debian/control, debian/NEWS: fix links to cryptsetup homepage/FAQ. Homepage (and FAQ) moved from code.google.com to gitlab.com. (closes: #781674) * debian/*: update hyperlinks to use https instead of http where appropriate. * debian/rules, debian/post{inst,rm}: don't install cryptdisks_st{art,op} symlinks to /usr/sbin if everything-in-usr directories scheme is used. Thanks to Marco d'Itri for the patch. (closes: #767921) * debian/scripts/luksformat: search for mkfs binaries in /usr/sbin, /usr/bin, /sbin and /bin (default order in $PATH). This fixes luksformat for btrfs filesystems. (closes: #805353) * debian/dirs, debian/rules: install cryptdisks bash-completion script into /usr/share/bash-completion/completions. * debian/cryptdisks.functions: iterate over remaining open crypttab devices in do_stop() in order to close dependent devices and don't freeze the shutdown process. Thanks to Avatar for the patch. (closes: #792552) * debian/rules: set V=1 in order to make build logs usable for blhc. * debian/rules: set DEB_VERSION and DEB_DATE in a way to make cryptsetup build reproducible. Thanks to Dhole and Valentin Lorentz for patches. (closes: #780864, #794106) * debian/cryptdisks.functions: bring the passphrase prompt in line with the one from initramfs script in order to make the user experience more consistent. (closes: #772943) * debian/initramfs/cryptroot-script: move sanity checks of $cryptkeyscript and potential expansion to '/lib/cryptsetup/askpass' to the beginning of setup_mapping(). . [ Guilhem Moulin ] * debian/README.{Debian,remote}: remove dropbear-specific configuration and point to dropbear-initramfs instead. Since version 2015.70-1, dropbear ships dropbear-specific initramfs configuration and documentation in an own binary package dropbear-initramfs. (closes: #801471) * debian/initramfs/cryptroot-{hook,script}: add support for 'keyslot' option to cryptroot initramfs script. (closes: #801479) * debian/README.initramfs, debian/initramfs/cryptroot-hook: add support for storing keyfiles directly in the initrd. (closes: #786578) * debian/initramfs/cryptroot-hook: display a warning for invalid source devices. (closes: #720515, #781955, #784435) * debian/askpass.c: add plymouth support to the askpass helper command. * debian/cryptdisks.functions, debian/initramfs/cryptroot-script: remove special treatment of plymouth installations now that askpass supports plymouth natively. * debian/initramfs/cryptroot-unlock(-hook): add initramfs hook and script to remotely unlock cryptroot devices. (closes: #782024, #697156) Checksums-Sha1: f75ccf60620ed2c5bbc9db33bb4bcfd8e1a64d19 2629 cryptsetup_1.7.0-1.dsc d2afa5b9d974404f9f5ca15cf6b4f018dde65169 1224616 cryptsetup_1.7.0.orig.tar.xz 6091303d68fda430f6c5a903a8be37d4c6807314 84592 cryptsetup_1.7.0-1.debian.tar.xz 28b0f26a906127c069c6ec6566545486a51a5322 107680 cryptsetup-bin-dbgsym_1.7.0-1_amd64.deb a3bb9b4be89ce472ac7d386d4c482f45e07e57ba 200552 cryptsetup-bin_1.7.0-1_amd64.deb e12b303cd89353100dacd3708706946a05344089 16354 cryptsetup-dbgsym_1.7.0-1_amd64.deb 53acb9e3c5cbced3bd5b7c80910b1a131298e2ea 37366 cryptsetup-udeb_1.7.0-1_amd64.udeb 94a2004b411058400c8ac7e0766c5242558d13d7 164220 cryptsetup_1.7.0-1_amd64.deb 45038c373dc220e47055037ff17aa2bc8b888a78 50872 libcryptsetup-dev_1.7.0-1_amd64.deb dd54f128f7597d9779b4548f2d7023dd481d4901 169502 libcryptsetup4-dbgsym_1.7.0-1_amd64.deb 3686881b7c25e3525717a7751a18846c669fcd06 66162 libcryptsetup4-udeb_1.7.0-1_amd64.udeb 3392f65bf146857c33475192a13e6bfdd1f267b9 105090 libcryptsetup4_1.7.0-1_amd64.deb Checksums-Sha256: 0e98402b75f4a8294fbec39a8d45867b836574ff9e957ad250e445c6236e09fc 2629 cryptsetup_1.7.0-1.dsc 075524a7cc0db36d12119fa79116750accb1c6c8825d5faa2534b74b8ce3d148 1224616 cryptsetup_1.7.0.orig.tar.xz da833f8cfe94bcefc3350d5ce468bbbeda23a081aa9ebd13b29f9c1c348e4083 84592 cryptsetup_1.7.0-1.debian.tar.xz 6f02aea5abc662d7b10926fb323ac2d6d57cfc77b1f0870b03688bddff64b7a1 107680 cryptsetup-bin-dbgsym_1.7.0-1_amd64.deb ae6e92820f5e01641ecafebe91a8cb1161bb1af217828a9a4702aca8c81cc524 200552 cryptsetup-bin_1.7.0-1_amd64.deb 7b84434213827e04b43ba50080cd35e9feb22a24e95978b1efae61761dcd0da5 16354 cryptsetup-dbgsym_1.7.0-1_amd64.deb 799c7168b50efec354d02519ce41d8218a44c3fa50a8016daaf042e7065b289f 37366 cryptsetup-udeb_1.7.0-1_amd64.udeb b9444da4a6fea3827fc444f3dd00a455d1acfb0ce3c9941219e078ef0399945e 164220 cryptsetup_1.7.0-1_amd64.deb ba557dd536070dc01243477022c47add0e412d331d3bb68620819a8468317b59 50872 libcryptsetup-dev_1.7.0-1_amd64.deb b20975f7de7439fdea5f8fffb6982e8629d88e19826494595d48278b0b15347d 169502 libcryptsetup4-dbgsym_1.7.0-1_amd64.deb f296b8f4437caf29e99db540904664ef97ddca8b336641a5699ad0298a24f699 66162 libcryptsetup4-udeb_1.7.0-1_amd64.udeb 18496ea7a65df2879229bd42df009abc67f48a8bf39e24f3f66d96c6c8a1714d 105090 libcryptsetup4_1.7.0-1_amd64.deb Files: 7c7ae049b58a6370294f939afc44b10f 2629 admin optional cryptsetup_1.7.0-1.dsc 56c385fe87fc2b6873df4b7f89202d0f 1224616 admin optional cryptsetup_1.7.0.orig.tar.xz 2bb6fd0024729c9270f6e5bc01d847d9 84592 admin optional cryptsetup_1.7.0-1.debian.tar.xz fb52192e6fa4009e0a7c5082dd9927f4 107680 debug extra cryptsetup-bin-dbgsym_1.7.0-1_amd64.deb 19033671d253a07b606d88613e7a5246 200552 admin optional cryptsetup-bin_1.7.0-1_amd64.deb 216c02f83aedd48ae46c6bc5a527f5e6 16354 debug extra cryptsetup-dbgsym_1.7.0-1_amd64.deb 5bd4d3a615c276a4f84923fd6fa3d1e7 37366 debian-installer optional cryptsetup-udeb_1.7.0-1_amd64.udeb a1acd621079c114221e7e4aa0d6271ca 164220 admin optional cryptsetup_1.7.0-1_amd64.deb c508799d018bb22c02ab8ed5dd802ed8 50872 libdevel optional libcryptsetup-dev_1.7.0-1_amd64.deb 4dde01ca1106d801aed0e3dfb556368d 169502 debug extra libcryptsetup4-dbgsym_1.7.0-1_amd64.deb eebd35b2eee3b61abbb5e42a71fc9100 66162 debian-installer optional libcryptsetup4-udeb_1.7.0-1_amd64.udeb c2f51b564edd3f175ba0b7fceb984d15 105090 libs optional libcryptsetup4_1.7.0-1_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBAgAGBQJWjcDRAAoJEBvzc5c7ZRqn1sQQALczRmFuBH+KPB+7Lctzbl+Y 9c1uummqjuXwn6dFZc2Q6wYy31dFQnzFQTorOse4ZzicYoSGY1SEWwU0OhK610zs H1ZDGLs572CZp0Gjlp4pqDLOCpPBUOE5VDA++xnwEShRLlq1dFYKJbzkFxKEP8zS 7TQ45+fHEF3i5XjaezCU087SrAxf5tJm6HkyK0/kB4SutvfsYE1FfBeKq3sBRAuq d4TXUP7zZoOEirIpNSFPHVaNfQgmpmXsGWm8lvUGqxD02tPbSUp/CY+HtGQBCnLp BMRqn1J1KcHwm7n8xG/0hmaloK4WUtupFjVKK7JwxK/hnbb3zPezngmRK005G3hu croXPUBTOXeBhNDdqHkMrEBVKE2etAF2IQ5LdMc6JJBHM3PISwMO4+/5uqJw8YIm N92Zrw8iQwm03EHhaZ2CZ3qVeZVfLNviy0tieT11tOfCNdNEL6Ml0sF++BHAFJ6J iYRz70Zz7YQJr4My5u+pSHSVWlk986a2RC1k4Ce7B0iK6h+vsLitVbWCqV9jxSjX TVeU+cnQfmXB4TbHpfXQfl8XMWgAB4n8zjHSlSRXffnvWQiybuPcZTybmvPqGXIT pH+6BPlfbsM9siGbnPg8GQe60I0mxCKIVLHipZtF3n9CpIiS1QP3iB6CMzmH0tzZ 7pIfmOrujraiRA9b/UHw =yUwG -----END PGP SIGNATURE-----
--- End Message ---
