Your message dated Fri, 09 May 2008 15:32:05 +0000
with message-id <[EMAIL PROTECTED]>
and subject line Bug#476977: fixed in egroupware 1.4.004-2.dfsg-1
has caused the Debian Bug report #476977,
regarding Security fix in new upstream release
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)
--
476977: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=476977
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: egroupware
Version: 1.4.002.dfsg-2.1
Severity: critical
Tags: security
Hi, there is a new upstream release (1.4.004-2) available which fixes
a quite big security hole.
To quote the anouncement
The fixed security problems are grave, if you have
directories writable by the webserver in you docroot (in most
windows server the complete docroot writable by default, but
many linux servers are also set up that way).
thanks
--lars
-- System Informato:
Debian Release: lenny/sid
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/dash
Kernel: Linux 2.6.18-6-vserver-k7
Locale: LANG=C, [EMAIL PROTECTED] (charmap=ISO-8859-15)
--- End Message ---
--- Begin Message ---
Source: egroupware
Source-Version: 1.4.004-2.dfsg-1
We believe that the bug you reported is fixed in the latest version of
egroupware, which is due to be installed in the Debian FTP archive:
egroupware-addressbook_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-addressbook_1.4.004-2.dfsg-1_all.deb
egroupware-bookmarks_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-bookmarks_1.4.004-2.dfsg-1_all.deb
egroupware-calendar_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-calendar_1.4.004-2.dfsg-1_all.deb
egroupware-core_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-core_1.4.004-2.dfsg-1_all.deb
egroupware-developer-tools_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-developer-tools_1.4.004-2.dfsg-1_all.deb
egroupware-emailadmin_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-emailadmin_1.4.004-2.dfsg-1_all.deb
egroupware-etemplate_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-etemplate_1.4.004-2.dfsg-1_all.deb
egroupware-felamimail_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-felamimail_1.4.004-2.dfsg-1_all.deb
egroupware-filemanager_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-filemanager_1.4.004-2.dfsg-1_all.deb
egroupware-infolog_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-infolog_1.4.004-2.dfsg-1_all.deb
egroupware-manual_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-manual_1.4.004-2.dfsg-1_all.deb
egroupware-mydms_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-mydms_1.4.004-2.dfsg-1_all.deb
egroupware-news-admin_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-news-admin_1.4.004-2.dfsg-1_all.deb
egroupware-phpbrain_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-phpbrain_1.4.004-2.dfsg-1_all.deb
egroupware-phpsysinfo_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-phpsysinfo_1.4.004-2.dfsg-1_all.deb
egroupware-polls_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-polls_1.4.004-2.dfsg-1_all.deb
egroupware-projectmanager_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-projectmanager_1.4.004-2.dfsg-1_all.deb
egroupware-registration_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-registration_1.4.004-2.dfsg-1_all.deb
egroupware-resources_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-resources_1.4.004-2.dfsg-1_all.deb
egroupware-sambaadmin_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-sambaadmin_1.4.004-2.dfsg-1_all.deb
egroupware-sitemgr_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-sitemgr_1.4.004-2.dfsg-1_all.deb
egroupware-timesheet_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-timesheet_1.4.004-2.dfsg-1_all.deb
egroupware-tracker_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-tracker_1.4.004-2.dfsg-1_all.deb
egroupware-wiki_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware-wiki_1.4.004-2.dfsg-1_all.deb
egroupware_1.4.004-2.dfsg-1.diff.gz
to pool/main/e/egroupware/egroupware_1.4.004-2.dfsg-1.diff.gz
egroupware_1.4.004-2.dfsg-1.dsc
to pool/main/e/egroupware/egroupware_1.4.004-2.dfsg-1.dsc
egroupware_1.4.004-2.dfsg-1_all.deb
to pool/main/e/egroupware/egroupware_1.4.004-2.dfsg-1_all.deb
egroupware_1.4.004-2.dfsg.orig.tar.gz
to pool/main/e/egroupware/egroupware_1.4.004-2.dfsg.orig.tar.gz
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Peter Eisentraut <[EMAIL PROTECTED]> (supplier of updated egroupware package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Fri, 09 May 2008 16:57:05 +0200
Source: egroupware
Binary: egroupware egroupware-core egroupware-addressbook egroupware-bookmarks
egroupware-calendar egroupware-developer-tools egroupware-emailadmin
egroupware-etemplate egroupware-felamimail egroupware-filemanager
egroupware-infolog egroupware-manual egroupware-mydms egroupware-news-admin
egroupware-phpbrain egroupware-phpsysinfo egroupware-polls
egroupware-projectmanager egroupware-registration egroupware-resources
egroupware-sambaadmin egroupware-sitemgr egroupware-timesheet
egroupware-tracker egroupware-wiki
Architecture: source all
Version: 1.4.004-2.dfsg-1
Distribution: unstable
Urgency: low
Maintainer: Peter Eisentraut <[EMAIL PROTECTED]>
Changed-By: Peter Eisentraut <[EMAIL PROTECTED]>
Description:
egroupware - web-based groupware suite - metapackage
egroupware-addressbook - web-based groupware suite - addressbook management
application
egroupware-bookmarks - web-based groupware suite - bookmark management
application
egroupware-calendar - web-based groupware suite - calendar management
application
egroupware-core - web-based groupware suite - core modules
egroupware-developer-tools - web-based groupware suite - developer tools
egroupware-emailadmin - web-based groupware suite - e-mail user administration
applicatio
egroupware-etemplate - web-based groupware suite - widget-based template system
egroupware-felamimail - web-based groupware suite - e-mail application
egroupware-filemanager - web-based groupware suite - file manager application
egroupware-infolog - web-based groupware suite - infolog application
egroupware-manual - web-based groupware suite - manual
egroupware-mydms - web-based groupware suite - document management system
egroupware-news-admin - web-based groupware suite - news administration
interface
egroupware-phpbrain - web-based groupware suite - phpbrain application
egroupware-phpsysinfo - web-based groupware suite - phpSysInfo application
egroupware-polls - web-based groupware suite - polling application
egroupware-projectmanager - web-based groupware suite - project management
application
egroupware-registration - web-based groupware suite - registration application
egroupware-resources - web-based groupware suite - resource manager application
egroupware-sambaadmin - web-based groupware suite - Samba administration
application
egroupware-sitemgr - web-based groupware suite - site manager application
egroupware-timesheet - web-based groupware suite - timesheet application
egroupware-tracker - web-based groupware suite - tracker application
egroupware-wiki - web-based groupware suite - wiki application
Closes: 472064 475252 476977
Changes:
egroupware (1.4.004-2.dfsg-1) unstable; urgency=low
.
* New upstream release (closes: #476977)
- Obsoletes 01-kses-security.dpatch
* Added Vcs-* control fields for move to collab-maint
* Made egw-sanitize-tarball compatible with uscan and updated watch file to
use it
* Debconf translation updates (closes: #472064, #475252)
Checksums-Sha1:
fb4d7f6065d8032234c24903ff69c09858d9fd68 1792 egroupware_1.4.004-2.dfsg-1.dsc
e63f580001ae454721f7387cf469d9c6e7eaed0f 11597406
egroupware_1.4.004-2.dfsg.orig.tar.gz
c96ed3d24deb4a12723190fd2f084c0815e14e22 32217
egroupware_1.4.004-2.dfsg-1.diff.gz
054059013756a1fb746bfa76861e9f83f2b01f54 7318
egroupware_1.4.004-2.dfsg-1_all.deb
cecdb5973ef22064d4d7378ebb00252800ca3b9d 4462200
egroupware-core_1.4.004-2.dfsg-1_all.deb
847a3739c6041e415c07702a6e602f8276d250f6 319294
egroupware-addressbook_1.4.004-2.dfsg-1_all.deb
5e4c12b89d56c2661185293eba0f3dae3b2ee5fa 105472
egroupware-bookmarks_1.4.004-2.dfsg-1_all.deb
bd666569e46d7b1d4146e4bafecebed079e69eb2 450276
egroupware-calendar_1.4.004-2.dfsg-1_all.deb
af93ab6789fe77f52321576f92ceca4651c1bab0 59390
egroupware-developer-tools_1.4.004-2.dfsg-1_all.deb
f0a07883115728aaa76f96a58425333e076468cf 91460
egroupware-emailadmin_1.4.004-2.dfsg-1_all.deb
8cc6de6194ee9b4022e3385ce1f332ac89ffdc92 644250
egroupware-etemplate_1.4.004-2.dfsg-1_all.deb
cacf7759eab911d407ec29cb72916c67e2127542 335400
egroupware-felamimail_1.4.004-2.dfsg-1_all.deb
cc25642328a325339552fd91609061e60644ee92 169890
egroupware-filemanager_1.4.004-2.dfsg-1_all.deb
955f04af258d65f208509e2d85447636710f9982 278064
egroupware-infolog_1.4.004-2.dfsg-1_all.deb
6c62f38c5ce6c1ecd907a87a1fb2b2eb9e720e01 33774
egroupware-manual_1.4.004-2.dfsg-1_all.deb
2cc5be808c687adf3b99caa830441a81b2051579 571020
egroupware-mydms_1.4.004-2.dfsg-1_all.deb
d3e558fdf66185f54b1e01252d1051a5ec0584f9 70200
egroupware-news-admin_1.4.004-2.dfsg-1_all.deb
e213e2f8af244a23ec926bd2e8eb85ad50c65370 148182
egroupware-phpbrain_1.4.004-2.dfsg-1_all.deb
f46c71357a4a79e9db1ce6fdc84e2924126578e6 205868
egroupware-phpsysinfo_1.4.004-2.dfsg-1_all.deb
b4ae5051881312fabdcbbf352cbed934d91648c1 40974
egroupware-polls_1.4.004-2.dfsg-1_all.deb
4f72817a05b872bb56c11a6855366b71173c323e 589768
egroupware-projectmanager_1.4.004-2.dfsg-1_all.deb
1666a8682aeafb541130bcdef680b161c9baf4a6 136800
egroupware-registration_1.4.004-2.dfsg-1_all.deb
1696fae88147d7a62ca94133f0acc40dcecbdf1e 80202
egroupware-resources_1.4.004-2.dfsg-1_all.deb
b2be6fcd2eb2b73f8370b60ed6cc69f2a237ff4c 26866
egroupware-sambaadmin_1.4.004-2.dfsg-1_all.deb
93bff283b3a6744f5b9e66b574eb151954cd34ce 631574
egroupware-sitemgr_1.4.004-2.dfsg-1_all.deb
c4317f680d4ba4d36c03433fafcf2f5acea495c6 65834
egroupware-timesheet_1.4.004-2.dfsg-1_all.deb
4394de956e421f0fd1c6964d57c131d66c4c061d 91134
egroupware-tracker_1.4.004-2.dfsg-1_all.deb
a9fa6c117b7bb816801e82b5b8426391e3d599d3 119570
egroupware-wiki_1.4.004-2.dfsg-1_all.deb
Checksums-Sha256:
08003a720c240906d8db6628e4368fb28fe0c44352345ba806626e73d6e1b2f1 1792
egroupware_1.4.004-2.dfsg-1.dsc
8a5e6468cd4812cfb01ce202c0cb010a7b1bb8bb78041ee6024a2ca1402ab61b 11597406
egroupware_1.4.004-2.dfsg.orig.tar.gz
3b32be241c6dbc65f8136365a05326f327c3f77f567148bf2501a135a1c8419a 32217
egroupware_1.4.004-2.dfsg-1.diff.gz
276bb629f1554f3451440ad7fd2e20e327d685cdf2852f8cceec8550e9743786 7318
egroupware_1.4.004-2.dfsg-1_all.deb
e2fec959e84769da0fe98eb3076509700e79c61f8ffdd2c231f8e1dbd317aa3f 4462200
egroupware-core_1.4.004-2.dfsg-1_all.deb
be22ce4de24e22fd34c23c2956822a62d5c9b06aa80b6dbe587c9b4fc3ab3fb5 319294
egroupware-addressbook_1.4.004-2.dfsg-1_all.deb
943fe216d763e0b933d574df3221216fa3448faa9429dd0816f2fcf34d91d358 105472
egroupware-bookmarks_1.4.004-2.dfsg-1_all.deb
06ba10d63dc3f951d99693e13803cbf5322644dfc18d9d9a7aabc6a08193bfde 450276
egroupware-calendar_1.4.004-2.dfsg-1_all.deb
5c212c45d5713c1a2294c94cf950602f055bed27c36ea178f96d1e195b3b439e 59390
egroupware-developer-tools_1.4.004-2.dfsg-1_all.deb
4f45ada8db43b0f56620df49dadb8ae5c2fff90837ef85a6314e0d382a6950e6 91460
egroupware-emailadmin_1.4.004-2.dfsg-1_all.deb
32512aa8f604441095755d6f5136d9b34e07270adf1543c47cf37fdd4389c64c 644250
egroupware-etemplate_1.4.004-2.dfsg-1_all.deb
2b81171cb92eb4415cc93fec4266bf36dcca438e48954b3ff8eed959b3f796aa 335400
egroupware-felamimail_1.4.004-2.dfsg-1_all.deb
0d00368276d7f7df3dfccb6036f99866bc10ce439fb38a412a702e39094ac7e2 169890
egroupware-filemanager_1.4.004-2.dfsg-1_all.deb
53a9b21fea2313a08b7bd8004f6923ad366cb789fa9f2acb118e027a13171a0e 278064
egroupware-infolog_1.4.004-2.dfsg-1_all.deb
ff488409e79b22be4cf6bbdab5cf70ff05630c1f5bd41faa865205a3e50b2a47 33774
egroupware-manual_1.4.004-2.dfsg-1_all.deb
a63aa37e5c4650f89ba6566c671b8bf1add2016ea3c36a7ec79f9e13a20e5c12 571020
egroupware-mydms_1.4.004-2.dfsg-1_all.deb
fce2fc437d27c2bc76be8a309cb9e8d4f775518c894ff90c84990c629d93af0f 70200
egroupware-news-admin_1.4.004-2.dfsg-1_all.deb
b016b26057d8c9c447807169854cf185e58bb23d83474ea774b43354c2edec3d 148182
egroupware-phpbrain_1.4.004-2.dfsg-1_all.deb
a5fb4108b6371fc617bf08762ba8c43a3a08091ae374006041435e8f2deee769 205868
egroupware-phpsysinfo_1.4.004-2.dfsg-1_all.deb
2abf613e513478c1c8b569144e5b6d0d6d5e25c3f13249afb6f6548553647f1f 40974
egroupware-polls_1.4.004-2.dfsg-1_all.deb
392a547eec6f87f54cf7806bd3fd0172d0c734c1ca7906d244fe3d387cc18ae4 589768
egroupware-projectmanager_1.4.004-2.dfsg-1_all.deb
7197438cde335fff62758ac2ba3792ee302d37731b6bf9f16744e28a628370a1 136800
egroupware-registration_1.4.004-2.dfsg-1_all.deb
654503575d42ee37a993010c7f2d602a855ad15bcc84a2f73e8050706ab1e969 80202
egroupware-resources_1.4.004-2.dfsg-1_all.deb
27446c447f516a098c404f51cc5caea88b7d9b9f1bf3c180ae30a2347eade05d 26866
egroupware-sambaadmin_1.4.004-2.dfsg-1_all.deb
40e97d3210837fcb5f49b63173eef9cc91f399952afac8644c3a689fc5c7f889 631574
egroupware-sitemgr_1.4.004-2.dfsg-1_all.deb
48a2440e7c06e05ba121daeb33185dbfc01ab70cc7334600daa118e8b97d1368 65834
egroupware-timesheet_1.4.004-2.dfsg-1_all.deb
2c4e95686947cd656303c6e624289b18b3160fbb2b6057b17ed80f4caf00c7c2 91134
egroupware-tracker_1.4.004-2.dfsg-1_all.deb
a496539bb46f42710b4c550ca4c7f1e6a0d9b767954cd13ee40882a4c64e7b95 119570
egroupware-wiki_1.4.004-2.dfsg-1_all.deb
Files:
3113b7209f9eaf756155faee3349844e 1792 web optional
egroupware_1.4.004-2.dfsg-1.dsc
26012ca8c976dbf4137f5f5c7abcfdaf 11597406 web optional
egroupware_1.4.004-2.dfsg.orig.tar.gz
5264694b25668e46c3c51c78f21f98f1 32217 web optional
egroupware_1.4.004-2.dfsg-1.diff.gz
754b4c6678fbb5c2535a53a305d84a37 7318 web optional
egroupware_1.4.004-2.dfsg-1_all.deb
838384e1c09cc9ce70797ad978767055 4462200 web optional
egroupware-core_1.4.004-2.dfsg-1_all.deb
8416a785c61f8fd3656e37e96d030390 319294 web optional
egroupware-addressbook_1.4.004-2.dfsg-1_all.deb
cbd2910618af40413134e0fc6db473dc 105472 web optional
egroupware-bookmarks_1.4.004-2.dfsg-1_all.deb
52ee030f2b069a4b93408f42a67d5dcc 450276 web optional
egroupware-calendar_1.4.004-2.dfsg-1_all.deb
c1b1817d5bb02c1cfe6a42ae67a97418 59390 web optional
egroupware-developer-tools_1.4.004-2.dfsg-1_all.deb
6aa2968a2c6becf7c2ea58da2ecd189e 91460 web optional
egroupware-emailadmin_1.4.004-2.dfsg-1_all.deb
6afc5fe4cddf05fddca48a195b56a5ff 644250 web optional
egroupware-etemplate_1.4.004-2.dfsg-1_all.deb
1285479c4d8a1ac529c236bd0dd5af6d 335400 web optional
egroupware-felamimail_1.4.004-2.dfsg-1_all.deb
98ada2aa2a4ed11f5de9c62062b4d2eb 169890 web optional
egroupware-filemanager_1.4.004-2.dfsg-1_all.deb
0fdd0cbce09667af6acd8e309bad854f 278064 web optional
egroupware-infolog_1.4.004-2.dfsg-1_all.deb
8b51ecdcb883e5a4858dfa83b979a5b5 33774 web optional
egroupware-manual_1.4.004-2.dfsg-1_all.deb
ebdcf853e74c5789063a9b687ec6149a 571020 web optional
egroupware-mydms_1.4.004-2.dfsg-1_all.deb
a5fde1f41ed1438dc79c83e705c7f713 70200 web optional
egroupware-news-admin_1.4.004-2.dfsg-1_all.deb
85397a4b1899017c4acd61de309de7dc 148182 web optional
egroupware-phpbrain_1.4.004-2.dfsg-1_all.deb
4e65ba36643606523466ab901adc0f81 205868 web optional
egroupware-phpsysinfo_1.4.004-2.dfsg-1_all.deb
e6ddcaf4164120dd796b9d3471dbb451 40974 web optional
egroupware-polls_1.4.004-2.dfsg-1_all.deb
738cb3820e8a5e81178d00bc781c14ff 589768 web optional
egroupware-projectmanager_1.4.004-2.dfsg-1_all.deb
74b0aac5a743047dd1cf1d76d7689dfb 136800 web optional
egroupware-registration_1.4.004-2.dfsg-1_all.deb
f56d334ff422b7a41a1a0070c35bbfa2 80202 web optional
egroupware-resources_1.4.004-2.dfsg-1_all.deb
764ac804f2f4bb48922d0f8ead3afad4 26866 web optional
egroupware-sambaadmin_1.4.004-2.dfsg-1_all.deb
835bd3341980cc9e2bd32d5dfb83411e 631574 web optional
egroupware-sitemgr_1.4.004-2.dfsg-1_all.deb
cfd165365f63da06c87c0e17b52e730d 65834 web optional
egroupware-timesheet_1.4.004-2.dfsg-1_all.deb
c8ec1251119b0c2ee8ac1e9a1768a1f7 91134 web optional
egroupware-tracker_1.4.004-2.dfsg-1_all.deb
534bfa9a4dcf4fc497e49828fe52435a 119570 web optional
egroupware-wiki_1.4.004-2.dfsg-1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFIJGbATTx8oVVPtMYRAgwnAJ0SaZm0rRYBlSyUSMcpvfyGf9ekFQCgqmGl
fomQUePpIFjn8iK/m0ndPZE=
=TmO7
-----END PGP SIGNATURE-----
--- End Message ---
