Your message dated Tue, 25 Apr 2017 19:47:15 +0000
with message-id <e1d36qd-0009dp...@fasolo.debian.org>
and subject line Bug#860940: fixed in minicom 2.7-1+deb8u1
has caused the Debian Bug report #860940,
regarding minicom: CVE-2017-7467: Out of bounds write in vt100.c
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
860940: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=860940
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Source: minicom
Version: 2.7-1
Severity: grave
Tags: upstream security fixed-upstream
Hi,
the following vulnerability was published for minicom.
CVE-2017-7467[0]:
Out of bounds write in vt100.c
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2017-7467
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7467
[1] https://anonscm.debian.org/hg/minicom/rev/c33d24938f3e
Regards,
Salvatore
--- End Message ---
--- Begin Message ---
Source: minicom
Source-Version: 2.7-1+deb8u1
We believe that the bug you reported is fixed in the latest version of
minicom, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 860...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Salvatore Bonaccorso <car...@debian.org> (supplier of updated minicom package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Mon, 24 Apr 2017 09:03:48 +0200
Source: minicom
Binary: minicom
Architecture: source
Version: 2.7-1+deb8u1
Distribution: jessie
Urgency: high
Maintainer: Martin A. Godisch <godi...@debian.org>
Changed-By: Salvatore Bonaccorso <car...@debian.org>
Closes: 860940
Description:
minicom - friendly menu driven serial communication program
Changes:
minicom (2.7-1+deb8u1) jessie; urgency=high
.
* Non-maintainer upload.
* Add ARRAY_SIZE macro
* CVE-2017-7467: Out of bounds write in vt100.c (Closes: #860940)
Checksums-Sha1:
0861e7b8b8610abee31f0931fb2194b647c78d5b 1950 minicom_2.7-1+deb8u1.dsc
20faa37e51fc1efdc3fda4be9e2c5fbf7e9319e3 14124
minicom_2.7-1+deb8u1.debian.tar.xz
Checksums-Sha256:
1197a24461f3946ed574bf58dc71098929b5a324e1d0153c800c2f87756fd579 1950
minicom_2.7-1+deb8u1.dsc
ea05a65790644effeed40f187144e82a0e82c05955b2502310f88c40de8c2c6f 14124
minicom_2.7-1+deb8u1.debian.tar.xz
Files:
035e11daade4d1be5c3202e22152fdb1 1950 comm optional minicom_2.7-1+deb8u1.dsc
d754821fc2afd86079aab33e07838f47 14124 comm optional
minicom_2.7-1+deb8u1.debian.tar.xz
-----BEGIN PGP SIGNATURE-----
iQKmBAEBCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAlj9pkhfFIAAAAAALgAo
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2
NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk
ZWJpYW4ub3JnAAoJEAVMuPMTQ89ESX4P/jG2FrNBwlSLd+Ngo8GhDK6r/UV9oOhx
dLt9CYQ4KOFzhlzHuFgMVrbhB7fQ2BgxbuDvOyHksaA1jugfw5WqWWeyNEVJH+nE
rwb66dSR2/0hGQ+KdHBXl3KsrigDNDym1JWu2taVMSgei+a1Fv3KqJEfrczJ2rut
y6xX/MEewIW23zlO09HM3MTBQxWD8/kLqHt8Lftt0JgNidQA47IaGES2vBhFOKY4
9h/66gGvqvpt0oPRgcN49CCczkTSUcLiX5Q0AuPNWtsprlSzBVZekRmubyqlNNKf
2G2fDi3ZDJCK9ih4xfHowIfNuC+XVaPKmHCO5yEdLLZn17pLGmVvS8pti9JHJKpv
PSkL655RULerEh92ujLJ45T5w/sPTzE8FGRARz5WOg4os4Rv6ehOXcu1CqBXH/vT
+9FYBfmrOp1uLA/JnFLMFCGFUPOzH+9L8Q+4TAsT3AX31UZ91oVVW+tSwryTHAaD
D9cAGoH6pOPUEWiPG8AM2Q4ntrujANU/LajfEy4dw3StLj5EEhkrRtFPQdQURNWK
4KT0cZwCuQi5oRqTU/FAaxUtniHuxVJJbKfSwxR0BwQXds8BqkBjMBIfojnX2VO2
TwA9MpKcaympx9Eo27++kmNdzoC2mx2xa9NyVo0PwHwjf6m26WOB6qDPZSSYzlVL
Nksj5MbnavDb
=MY7l
-----END PGP SIGNATURE-----
--- End Message ---
