Your message dated Thu, 12 Jan 2023 19:35:20 +0000 with message-id <e1pg3m8-00cr7s...@fasolo.debian.org> and subject line Bug#1014957: fixed in dogtag-pki 11.0.6-1 has caused the Debian Bug report #1014957, regarding dogtag-pki: CVE-2022-2414 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 1014957: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014957 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: dogtag-pki X-Debbugs-CC: t...@security.debian.org Severity: grave Tags: security Hi, The following vulnerability was published for dogtag-pki. CVE-2022-2414[0]: https://bugzilla.redhat.com/show_bug.cgi?id=2104676 https://github.com/dogtagpki/pki/pull/4021 https://github.com/dogtagpki/pki/commit/4e893243d72ad766558c10c907841f5f9c047055 If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2022-2414 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2414 Please adjust the affected versions in the BTS as needed.
--- End Message ---
--- Begin Message ---Source: dogtag-pki Source-Version: 11.0.6-1 Done: Timo Aaltonen <tjaal...@debian.org> We believe that the bug you reported is fixed in the latest version of dogtag-pki, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 1014...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Timo Aaltonen <tjaal...@debian.org> (supplier of updated dogtag-pki package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 12 Jan 2023 20:49:28 +0200 Source: dogtag-pki Built-For-Profiles: noudeb Architecture: source Version: 11.0.6-1 Distribution: unstable Urgency: medium Maintainer: Debian FreeIPA Team <pkg-freeipa-de...@alioth-lists.debian.net> Changed-By: Timo Aaltonen <tjaal...@debian.org> Closes: 1014957 1024462 Changes: dogtag-pki (11.0.6-1) unstable; urgency=medium . * New upstream release. - CVE-2022-2414 (Closes: #1014957) * control: Fix pki-base-java to depend on default-jre-headless instead of a versioned one, it shouldn't be necessary to hardcode it anymore. (Closes: #1024462) * control: Bump dependency on jss, ldapjdk, tomcatjss. * dont-use-deprecated-python-ldap-options.diff: Drop constants removed in python-ldap 3.4. * rules: Bump JAVA_HOME to match java 17. Checksums-Sha1: f9c6c7ef6abc020664ef967a2609ef07c3712ea7 3786 dogtag-pki_11.0.6-1.dsc 1d5acd7acceb2fc8e6655e2b31d386c749444f6a 6846728 dogtag-pki_11.0.6.orig.tar.xz 88b10c46aa4b02c2ad172dea1ff6c9dcc6c469b9 43464 dogtag-pki_11.0.6-1.debian.tar.xz cac1ce2a08b8b8d11cf8c4a662a420dd99531763 16054 dogtag-pki_11.0.6-1_source.buildinfo Checksums-Sha256: a0de1237c7f74431209cdbffb5f90d5cb21353e51c8f72d3f705c636af35f1c5 3786 dogtag-pki_11.0.6-1.dsc d1dad801fcd20d91a2914af55fcdd9e6665ff679812ad0bf76109dca9588da7d 6846728 dogtag-pki_11.0.6.orig.tar.xz ecee6888299af32b9826cb66936d719c7bb2c80171609c91e0045294a4e246e5 43464 dogtag-pki_11.0.6-1.debian.tar.xz 0440c1a8a150a687738684079f5670480db75c51fba94708fcce08d3d7b8fa76 16054 dogtag-pki_11.0.6-1_source.buildinfo Files: 76c4bf876cdf84fc90f7567ad61d68ff 3786 java optional dogtag-pki_11.0.6-1.dsc cd19f620d38c8fc931b98f10f3c61332 6846728 java optional dogtag-pki_11.0.6.orig.tar.xz 5361c2546b16f39c19684d876cc2c967 43464 java optional dogtag-pki_11.0.6-1.debian.tar.xz fbd74e24d28ef7919ac80eeb5b923b9a 16054 java optional dogtag-pki_11.0.6-1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEdS3ifE3rFwGbS2Yjy3AxZaiJhNwFAmPAVk8ACgkQy3AxZaiJ hNwiQQ/9GN3vqrG0zL9szBQXufjG7Abbof5d2mLreiSsZTO93jWEwvgan3sb2A9H L/8BhenrtEcY2UNKbGRKsJUcrvu1o6PI8PI4yl3CHjCrR8Pyn2fFoqUqIJ7knHgf Kh5GMLl228A4nPdtchlwj3d7TGnCYM58TLBJQheyJRKbaUI745CjhyyPW1lJ54Pw aHBD4F0GRdhBVTgWPAHvmhhZhw8fa2ocE5Uas3EFrP0izOxRz29TJkhQnk0ui9cy d5hkKsxb6KmBrMO66RPpmxbcFHKtlTCl5qsWljJb56N9ihbiz2rEfvlLx4VQJE0H 3ShqgR9tOuIgQ41DDM06n3bYzWp24z3zYkJEKMbK7XZA3HOJk6JfODhjzqn8/mmN F4TiA/85Ceba6GoPFDVVTOWfNMLXSOaw0LQqY2YVFNSt+WOEBV82h+tbttpqUDr4 u26aOu1iq2NRB128/oc0PDAltPbm6R6x8McHboTA9eKV2LQti97jnqw/8uU/r/HO pO/G18i4PGDPXQVFlLRayp51kBJq5mpi92lz+oe0e1wRKfeiqThSfsEFsu7ppuKp DWRsF/qh+KlZ72S6LNsztG8sixLBwUVvObco5A7ens+dgjtEkLaF9nFwZko0kCpW c7oMYlYZV2+EWa4d4Y3gHHilmy/QJTmAT1RkCJHwZKFCX8iLKoU= =tuNd -----END PGP SIGNATURE-----
--- End Message ---
