Your message dated Thu, 17 Jan 2008 19:52:13 +0000 with message-id <[EMAIL PROTECTED]> and subject line Bug#451875: fixed in ngircd 0.10.0-2etch1 has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database)
--- Begin Message ---Package: ngircd Version: 0.10.0-2 Severity: important Tags: security Hi, according to the ngircd homepage there's an issue in ngircd before 0.10.3: | ngIRCd-versions previous to 0.10.3 comprise an error which can be used | (also by remote) to crash the daemon. All installations should be | updated to version 0.10.3 or subsequent versions. Can you please check whether the etch version of ngircd is affected (I'd be really surprised if not) and prepare an according update? The diff between 0.10.2 and 0.10.3 is quite short and seems to apply. Christoph -- System Information: Debian Release: 4.0 APT prefers stable APT policy: (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.23.8 Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Versions of packages ngircd depends on: ii libc6 2.3.6.ds1-13etch2 GNU C Library: Shared libraries ii libssp0 4.1.1-21 GCC stack smashing protection libr ngircd recommends no packages. -- no debconf information
signature.asc
Description: Digital signature
--- End Message ---
--- Begin Message ---Source: ngircd Source-Version: 0.10.0-2etch1 We believe that the bug you reported is fixed in the latest version of ngircd, which is due to be installed in the Debian FTP archive: ngircd_0.10.0-2etch1.diff.gz to pool/main/n/ngircd/ngircd_0.10.0-2etch1.diff.gz ngircd_0.10.0-2etch1.dsc to pool/main/n/ngircd/ngircd_0.10.0-2etch1.dsc ngircd_0.10.0-2etch1_ia64.deb to pool/main/n/ngircd/ngircd_0.10.0-2etch1_ia64.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Andreas Barth <[EMAIL PROTECTED]> (supplier of updated ngircd package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Sat, 5 Jan 2008 13:18:38 +0000 Source: ngircd Binary: ngircd Architecture: source ia64 Version: 0.10.0-2etch1 Distribution: stable Urgency: medium Maintainer: Mario Iseli <[EMAIL PROTECTED]> Changed-By: Andreas Barth <[EMAIL PROTECTED]> Description: ngircd - Next generation IRC Server Closes: 451875 Changes: ngircd (0.10.0-2etch1) stable; urgency=medium . * Security upload fixing CVE-2007-6062: Remote vulnerability in ngircd before 0.10.3. Closes: #451875 * Thanks to Sebastian Vesper for finding the issue. * Thanks to Christoph Biedl for noticing, the patch and reminding. Files: 5facd147f7f2066620f1525fd468c1e8 594 net optional ngircd_0.10.0-2etch1.dsc ddbf7cb848354b62d46df5f633b39f17 9043 net optional ngircd_0.10.0-2etch1.diff.gz 80cab697d97ac450a5b7192bb4afa43a 113692 net optional ngircd_0.10.0-2etch1_ia64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (GNU/Linux) iD8DBQFHf4kQmdOZoew2oYURAlNdAJ47cxio0pWV8/nKtDB6vcTlj3b1kgCfYBos RPj3emXBCBzcuFhc4LT7hWg= =jfJy -----END PGP SIGNATURE-----
--- End Message ---
