Your message dated Fri, 21 Jul 2017 22:35:19 +0000 with message-id <e1dygvz-0007jj...@fasolo.debian.org> and subject line Bug#868083: fixed in spice 0.12.8-2.2 has caused the Debian Bug report #868083, regarding CVE-2017-7506 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 868083: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=868083 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: spice Severity: grave Tags: security Please see: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-7506 Cheers, Moritz
--- End Message ---
--- Begin Message ---Source: spice Source-Version: 0.12.8-2.2 We believe that the bug you reported is fixed in the latest version of spice, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 868...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Markus Koschany <a...@debian.org> (supplier of updated spice package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 21 Jul 2017 23:34:38 +0200 Source: spice Binary: libspice-server1 libspice-server-dev Architecture: source Version: 0.12.8-2.2 Distribution: unstable Urgency: medium Maintainer: Liang Guo <guoli...@debian.org> Changed-By: Markus Koschany <a...@debian.org> Description: libspice-server-dev - Header files and development documentation for spice-server libspice-server1 - Implements the server side of the SPICE protocol Closes: 868083 Changes: spice (0.12.8-2.2) unstable; urgency=medium . * Non-maintainer upload. * Fix CVE-2017-7506: (Closes: #868083) Possible buffer overflow via invalid monitor configurations. Checksums-Sha1: 9e3adb702ec341bf74e473eb3ea1e74067d96024 2543 spice_0.12.8-2.2.dsc ddf556bd2048681c8680bfd97814264e69078161 11572 spice_0.12.8-2.2.debian.tar.xz 516fabae54d51f7540126b053035f1e8ca91fd2f 7564 spice_0.12.8-2.2_amd64.buildinfo Checksums-Sha256: 5720fdd3eebd9afd3c1814bff89c55b908d8709c5f9058ab5cfc11f02f962f44 2543 spice_0.12.8-2.2.dsc df6e4849496a4fdab77e5454bfc15052cc01adbcf04c6ddb058d4961081cb2f5 11572 spice_0.12.8-2.2.debian.tar.xz 533e89c0e7ea66adb3e6a0cff3d1943e0ab5edd8295a0d50d06812569789d3ee 7564 spice_0.12.8-2.2_amd64.buildinfo Files: 75666ef961538ff3033be8fd6185e909 2543 misc optional spice_0.12.8-2.2.dsc 89aff010bac313eeeaec77b1ff7a1f8f 11572 misc optional spice_0.12.8-2.2.debian.tar.xz 7587ff3a95dc77c7bf5f3d86eea46574 7564 misc optional spice_0.12.8-2.2_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQKjBAEBCgCNFiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAllydvxfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQPHGFwb0BkZWJp YW4ub3JnAAoJENmtFLlRO1HkDo8P/ReTjEwouWXvBWewDJ4IjSyDzXSggKPPxAaN arf8Rp3d8BseiroC9YGKLMMrn9nHedyJGK93J/tNcRbI8RYFrCl0D9+zahkaJmiM gp1UlQXKyFWutsBnejx3plnEYQkCcZE0mal5E21yw77ZLA5IE9zkiPFvPpmeiVpu zIDQQohEF0MqgSJoIox4uHBgJ/AtmhFg8Bljah5pS7QJuqjoauAteZf2gx3Sg5d8 7SYhJBEmUpQYUFjusLP+uM54RPW9AmUxd0STN6LrMrJT3xilsGMvo0va9aNJ5HqX SsbvhNZPhJcCNuQV7Y+owkIDgc30oQ/yKL7DAxwgLBgecIEBKg605eI2pip2iEju 7A36tnYmPcIhMOVPUaW7gh3CoAKqKhin9xLo6vay81UKYBDJcIVPeRNgl0G4PT+v zkDpNWEi+44o7kyX2dkvxNcglABS9EV4auwwumWqni5zyb5jJbSd3JbPUWvGtn1S BLXxzYgswut+V6mQWUPHggfwRVDomK3Ly/CZZZG+hlt3ttD/qtaWYhQuWwoI7rv+ jVvxrHlSQRyZ28O8YPc/J7y+3HcL6ZN5v/HKddyQ/35t2mLvs5U0XhPx4eN+4SZm 9nDLkombyjvqBjsa+1U/FSR4b2uLUmS0+6Jvl+7x+Xv4c7YhGpN1qaKUpjUfXN7Y 6uZzAVC3 =nBMS -----END PGP SIGNATURE-----
--- End Message ---
