Your message dated Mon, 13 Feb 2017 03:08:41 +0300
with message-id <4028411486944...@web16o.yandex.ru>
and subject line Re: Bug#854736: CVE-2017-5593
has caused the Debian Bug report #854736,
regarding CVE-2017-5593
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
854736: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=854736
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Source: psi-plus
Severity: grave
Tags: security
Please see http://seclists.org/oss-sec/2017/q1/373
Cheers,
Moritz
--- End Message ---
--- Begin Message ---
Hi,
> Please see http://seclists.org/oss-sec/2017/q1/373
Please see https://tracker.debian.org/pkg/psi-plus
Current version of Psi+ in Debian is 0.16.330.
It does not have support of XEP-0280 (Message Carbons) at all.
Next version of Psi+ which I'll upload in future will definitely
be more than 0.16.571.635.
So Psi+ packages in official Debian and Ubuntu repositories are not
affected by this vulnerability now and will not be affected in the
future.
Best regards,
Boris
--- End Message ---
