Your message dated Tue, 02 May 2006 14:18:52 -0700
with message-id <[EMAIL PROTECTED]>
and subject line Bug#283049: fixed in unalz 0.55-1
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: unalz
Version: 0.21
Severity: serious
There was an error while trying to autobuild your package:
> Automatic build of unalz_0.21 on sarti by sbuild/hppa 1.170.5
> Build started at 20041125-1449
[...]
> ** Using build dependencies supplied by package:
> Build-Depends: debhelper (>= 4.0.0)
[...]
> gcc -c zlib/zutil.c -o zlib/zutil.o -D_LARGEFILE64_SOURCE
> -D_FILE_OFFSET_BITS=64
> gcc -c bzip2/blocksort.c -o bzip2/blocksort.o -D_LARGEFILE64_SOURCE
> -D_FILE_OFFSET_BITS=64
> gcc -c bzip2/compress.c -o bzip2/compress.o -D_LARGEFILE64_SOURCE
> -D_FILE_OFFSET_BITS=64
> gcc -c bzip2/crctable.c -o bzip2/crctable.o -D_LARGEFILE64_SOURCE
> -D_FILE_OFFSET_BITS=64
> gcc -c bzip2/huffman.c -o bzip2/huffman.o -D_LARGEFILE64_SOURCE
> -D_FILE_OFFSET_BITS=64
> gcc -c bzip2/randtable.c -o bzip2/randtable.o -D_LARGEFILE64_SOURCE
> -D_FILE_OFFSET_BITS=64
> g++ -c UnAlz.cpp -c main.cpp -D_LARGEFILE64_SOURCE -D_FILE_OFFSET_BITS=64
> g++ main.o UnAlz.o UnAlzBz2decompress.o UnAlzBzip2.o UnAlzbzlib.o
> zlib/adler32.o zlib/crc32.o zlib/infblock.o zlib/infcodes.o zlib/inffast.o
> zlib/inflate.o zlib/inftrees.o zlib/infutil.o zlib/zutil.o bzip2/blocksort.o
> bzip2/compress.o bzip2/crctable.o bzip2/huffman.o bzip2/randtable.o -o unalz
> g++ -c UnAlz.cpp -c main.cpp -D_LARGEFILE64_SOURCE -D_FILE_OFFSET_BITS=64
> -D_UNALZ_ICONV
> g++ main.o UnAlz.o UnAlzBz2decompress.o UnAlzBzip2.o UnAlzbzlib.o
> zlib/adler32.o zlib/crc32.o zlib/infblock.o zlib/infcodes.o zlib/inffast.o
> zlib/inflate.o zlib/inftrees.o zlib/infutil.o zlib/zutil.o bzip2/blocksort.o
> bzip2/compress.o bzip2/crctable.o bzip2/huffman.o bzip2/randtable.o -o unalz
> make[1]: `posix-iconv' is up to date.
> make[1]: Leaving directory `/build/buildd/unalz-0.21'
> docbook-to-man debian/unalz.sgml > unalz.1
> /bin/sh: docbook-to-man: command not found
> make: *** [build-stamp] Error 127
A full build log can be found at:
http://buildd.debian.org/build.php?arch=hppa&pkg=unalz&ver=0.21
--- End Message ---
--- Begin Message ---
Source: unalz
Source-Version: 0.55-1
We believe that the bug you reported is fixed in the latest version of
unalz, which is due to be installed in the Debian FTP archive:
unalz_0.55-1.diff.gz
to pool/main/u/unalz/unalz_0.55-1.diff.gz
unalz_0.55-1.dsc
to pool/main/u/unalz/unalz_0.55-1.dsc
unalz_0.55-1_i386.deb
to pool/main/u/unalz/unalz_0.55-1_i386.deb
unalz_0.55.orig.tar.gz
to pool/main/u/unalz/unalz_0.55.orig.tar.gz
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Matej Vela <[EMAIL PROTECTED]> (supplier of updated unalz package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Tue, 2 May 2006 21:41:25 +0200
Source: unalz
Binary: unalz
Architecture: source i386
Version: 0.55-1
Distribution: unstable
Urgency: low
Maintainer: Debian QA Group <[EMAIL PROTECTED]>
Changed-By: Matej Vela <[EMAIL PROTECTED]>
Description:
unalz - Decompress alzip format files
Closes: 283049 356832
Changes:
unalz (0.55-1) unstable; urgency=low
.
* QA upload.
* New upstream release.
- Fixes directory traversal vulnerability [CVE-2006-0950].
Closes: #356832.
* Package is orphaned (#362995); set maintainer to Debian QA Group.
* Acknowledge NMU. Closes: #283049.
* Link against zlib1g instead of a private copy. (The same is not
possible for libbz2, parts of which were modified.)
* Switch to debhelper 5.
* debian/README.Debian: Redundant; remove.
* debian/unalz.xml: debian/unalz.sgml is more recent; remove.
* debian/copyright: Add license for bzip2 and zlib sources.
* debian/rules: Remove generated man page on clean.
* debian/watch: Add.
* Conforms to Standards version 3.7.0.
Files:
803cddd2c48056d5693a20a44a5e5777 581 utils optional unalz_0.55-1.dsc
493e3258ac58be20ed8e179f9e0f01d1 138429 utils optional unalz_0.55.orig.tar.gz
e1d9e067c48751241e194be3fc797903 5281 utils optional unalz_0.55-1.diff.gz
8f6f426fcc86f0796c3fed6185e9cd02 44210 utils optional unalz_0.55-1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)
iD8DBQFEV7X5xBYivKllgY8RAmcrAJ91Ia8cZR/dXOcISSOhtXqAxDLC2ACgk7EE
uI4VJ4+RrUSkubAu/WRrQYo=
=uGL+
-----END PGP SIGNATURE-----
--- End Message ---
