Your message dated Fri, 20 Nov 2020 04:20:04 +0000 with message-id <e1kfxu0-0004ks...@fasolo.debian.org> and subject line Bug#851771: fixed in php-gettext 1.0.12-1 has caused the Debian Bug report #851771, regarding php-gettext: CVE-2016-6175 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 851771: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=851771 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: php-gettext Version: 1.0.11-1 Severity: grave Tags: security upstream Forwarded: https://bugs.launchpad.net/php-gettext/+bug/1606184 Hi, the following vulnerability was published for php-gettext. CVE-2016-6175[0]: Use of eval too unrestrictive If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2016-6175 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6175 [1] https://bugs.launchpad.net/php-gettext/+bug/1606184 Regards, Salvatore
--- End Message ---
--- Begin Message ---Source: php-gettext Source-Version: 1.0.12-1 Done: James Valleroy <jvalle...@mailbox.org> We believe that the bug you reported is fixed in the latest version of php-gettext, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 851...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. James Valleroy <jvalle...@mailbox.org> (supplier of updated php-gettext package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 19 Nov 2020 19:41:37 -0500 Source: php-gettext Architecture: source Version: 1.0.12-1 Distribution: unstable Urgency: low Maintainer: Debian PHP PEAR Maintainers <pkg-php-p...@lists.alioth.debian.org> Changed-By: James Valleroy <jvalle...@mailbox.org> Closes: 851771 Changes: php-gettext (1.0.12-1) unstable; urgency=low . * Team upload. . [ Marcelo Jorge Vieira ] * d/control: Set Vcs-* to salsa.debian.org . [ James Valleroy ] * Drop patch to ignore test results * Apply patch to use custom parser for plural expressions (Closes: #851771) - Thanks to Sunil Mohan Adapa <su...@medhas.org> for the patch * Apply patch to update test cases for recent phpunit - Thanks to Sunil Mohan Adapa <su...@medhas.org> for the patch * Trim trailing whitespace. * Use secure copyright file specification URI. * Update watch file format version to 4. * Bump debhelper from deprecated 9 to 12. * Set debhelper-compat version in Build-Depends. * Change priority extra to priority optional. * Set upstream metadata fields: Repository, Repository-Browse. * Remove Priority on php-gettext that duplicates source. Checksums-Sha1: 221c2ddc7922de9c2b89d2fc74421377c287e7e5 2064 php-gettext_1.0.12-1.dsc 8f591a53c157d2ae0f9fc36bc0107b8927b57905 14392 php-gettext_1.0.12-1.debian.tar.xz 7620e3d56e97eed3ea91aafc6f82c1dcf52a8053 7820 php-gettext_1.0.12-1_amd64.buildinfo Checksums-Sha256: 06114a4cfe289d3e5d67ca1371232ea21924b7bc6c97246f4d402d46b77aa939 2064 php-gettext_1.0.12-1.dsc e1d308e7aea943ed7e21ca0cd214aecb3d160efa6bf1af215dec6cd5f7e9c9ee 14392 php-gettext_1.0.12-1.debian.tar.xz 054e7129f471c513c79585a119c997aed5f43faeac35dc04342cf459d311cb7b 7820 php-gettext_1.0.12-1_amd64.buildinfo Files: 1bab61f080c72557b8f7f2f63b27e630 2064 php optional php-gettext_1.0.12-1.dsc 7a2c7d83f730c9670a97acb39bc9d598 14392 php optional php-gettext_1.0.12-1.debian.tar.xz 349a8e0926d6b5e907bd34cdfe17cdc1 7820 php optional php-gettext_1.0.12-1_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQJKBAEBCgA0FiEEfWrbdQ+RCFWJSEvmd8DHXntlCAgFAl+3PWEWHGp2YWxsZXJv eUBtYWlsYm94Lm9yZwAKCRB3wMdee2UICDtjEADRC64zlAcAVm1HAQZiv+V5sF7f 5hhGEAmNyQdgPcKdsFKkEPGMpX96ZR6E/M76oZunkCP0SVA+mWpFEAt/9yFO6PYC RSgu3zY7vpIjqOv4dZXCuUJPf+HjslnghBBXbWWA3pfoOV5GbHaH2ejBnmwRds0j MWfl1KBhFN0yXlcGPa8uxCjxAWpAv1vCt789k6fvT5VRF+ajPJLVH5IVOiVC0MEB jfEBtHo15VgJDayc+5g6Glw3p45VqqgyPxtf1jIe4T4xyi/cLZTx6XV9J+m46qnX Jfnr+ltXieVpIWWol8YdeOoJ7KCV6iITWZlQr603KP0HCVzAovXgjweeKnf0GWh/ P/8RKE5z0WX8DtOjvlbBBG7hmT2LJJsI+OA2zJV102hhOM9E70UFgAwsYHjixqU9 HPxe0KO4sjicgAqlyyKUcqX2gj4ATB2id2zUwFpEfq4pQmC9B5Et1J73klAfE6jv E+3Um0HN3GfcKKGuLxFZwNoLWH1f4DwLp653LNlhMMZsIRRlckP1hZdq7hU8WAa0 ZqFoXpIzB/a7olDukC9rG9NSRtKOc6Z86ihqbQu/oTdr67MRw8EXt0mCJGMK3o+9 zKxX+fHur+6vXLCq53HA6szBgu20WVlxn5m0ICH+LyNpOJvVOqSsqF7hnOjL5EJ0 xM1If/sIlFlVnP9ggw== =NQYM -----END PGP SIGNATURE-----
--- End Message ---
