Your message dated Wed, 05 Oct 2022 18:50:56 +0000 with message-id <e1og9ts-00en7w...@fasolo.debian.org> and subject line Bug#1021271: fixed in strongswan 5.9.8-1 has caused the Debian Bug report #1021271, regarding strongswan: CVE-2022-40617 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 1021271: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1021271 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: strongswan X-Debbugs-CC: t...@security.debian.org Severity: grave Tags: security Hi, The following vulnerability was published for strongswan. CVE-2022-40617[0]: https://www.strongswan.org/blog/2022/10/03/strongswan-vulnerability-(cve-2022-40617).html Patch: https://download.strongswan.org/security/CVE-2022-40617/ If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2022-40617 https://www.cve.org/CVERecord?id=CVE-2022-40617 Please adjust the affected versions in the BTS as needed.
--- End Message ---
--- Begin Message ---Source: strongswan Source-Version: 5.9.8-1 Done: Yves-Alexis Perez <cor...@debian.org> We believe that the bug you reported is fixed in the latest version of strongswan, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 1021...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Yves-Alexis Perez <cor...@debian.org> (supplier of updated strongswan package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 05 Oct 2022 15:25:18 +0200 Source: strongswan Architecture: source Version: 5.9.8-1 Distribution: unstable Urgency: medium Maintainer: strongSwan Maintainers <pkg-swan-de...@lists.alioth.debian.org> Changed-By: Yves-Alexis Perez <cor...@debian.org> Closes: 1021271 Changes: strongswan (5.9.8-1) unstable; urgency=medium . * New upstream version 5.9.8 - Includes fix for CVE-2022-40617, denial of service due to the revocation plugin potentially using untrusted OCSP URIs and CRL distribution points in CRLs. (closes: #1021271) * Remove strongswan-scepclient package, replaced by a pki(1) command * d/p/0006-fix-format-string-issue-in-enum_flags_to_string dropped, included upstream * remove dropped _copyright utility * d/strongswan-pki.install: install est/estca manpages (RFC 7070) * d/s-{started,swanctl}.lintian-overrides updated for new lintian * d/copyright updated for new upstream release Checksums-Sha1: 8399db837f4e3862be685b0676d3b8c985f0407a 3220 strongswan_5.9.8-1.dsc 897843f9cd4ccefe4317218ecccb4cba32d2dc41 4747096 strongswan_5.9.8.orig.tar.bz2 c67ef343ed5b12aecddf2b872462fba38050b5d3 659 strongswan_5.9.8.orig.tar.bz2.asc 1f8babd9d91935efa761749bb070fc85e0aa96b2 117068 strongswan_5.9.8-1.debian.tar.xz 63fb4a22e356af2ce095ef0b4fccfa8e57c3a014 17180 strongswan_5.9.8-1_amd64.buildinfo Checksums-Sha256: 23aaa161ff07a47e6a2b9c4e9d5c8dfe8c870e9a720311b291e01a56cddfe4db 3220 strongswan_5.9.8-1.dsc d3303a43c0bd7b75a12b64855e8edcb53696f06190364f26d1533bde1f2e453c 4747096 strongswan_5.9.8.orig.tar.bz2 0338545be1d68675e874fd3792a336e2a27ac3dae65c4e96c13592f710a0dbc9 659 strongswan_5.9.8.orig.tar.bz2.asc 2a35d4fa4e06cd274ee5ff87e08712ed92c4d6390db03bd6fce5fa3c9c6235bc 117068 strongswan_5.9.8-1.debian.tar.xz 120eaf2c99c900efb51a6fb62d16db0c3d317a5ec127c3f8d48300b08bcb9464 17180 strongswan_5.9.8-1_amd64.buildinfo Files: 5817700843b50ac7f2195bbb9b7502ed 3220 net optional strongswan_5.9.8-1.dsc f46b0d3e7aed88824650d0721c887443 4747096 net optional strongswan_5.9.8.orig.tar.bz2 49e612097053bb8b6cc4eb8bd6f8455f 659 net optional strongswan_5.9.8.orig.tar.bz2.asc 63fb2457393dd882ec8b4a7aa727e32b 117068 net optional strongswan_5.9.8-1.debian.tar.xz 21fc321c1c60e5cb6492bf578d0d220f 17180 net optional strongswan_5.9.8-1_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQEzBAEBCgAdFiEE8vi34Qgfo83x35gF3rYcyPpXRFsFAmM9ztMACgkQ3rYcyPpX RFs7Lgf8DVkjFNfxtzvbm0t+uVwc0Q4JdLYCaaWl2NN5PnImDtgb01PuJqvZkc/n Adkq4mBUTc+nyRoIPKdeGTRH2SJHSaO/ArOuYh5+PhNvBVZm2iWrjqsawUr1sr/g pUe1Ey7gWK4phrdWknmE0NGKnfO11Ikp/OTPkzgDdrR8Vm+np4opD3Qs0GuNQ+fH nb3zV19z8NbxpO41jjIBHEf5UKrRHd89aC9o245J/yL3AeJg1fDlsHsUFzNEdcuo JpGfkishHSmDW1ak5FyRG4HimMtIucCqf1gqD0U10g2k9NYx4sVlt713R422V05L q6xDhZeMilSKizSXkj6HLSPK0jQ+hA== =GUNp -----END PGP SIGNATURE-----
--- End Message ---
