Your message dated Sun, 25 Oct 2009 19:57:38 +0000
with message-id <[email protected]>
and subject line Bug#504328: fixed in smarty 2.6.20-1.2
has caused the Debian Bug report #504328,
regarding Smarty "_expand_quoted_text()" Security Bypass
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
504328: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=504328
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: smarty
Severity: important
Version: 2.6.14-1
Tags: security patch
Hi,
The following SA (Secunia Advisory) id was published for Smarty.
SA32329[1]:
> A vulnerability has been reported in Smarty, which can be exploited by
> malicious people to bypass certain security restrictions.
>
> The vulnerability is caused due to an error when processing data with
> embedded variables. This can be exploited to potentially execute arbitrary
> PHP code.
The patch for Smarty_Compiler.class.php can be found at [2].
If you fix the vulnerability please also make sure to include the SA id in the
changelog entry.
[1]http://secunia.com/Advisories/32329/
[2]http://code.google.com/p/smarty-php/source/diff?spec=svn2797&r=2797&format=side&path=/trunk/libs/Smarty_Compiler.class.php
Cheers,
--
Raphael Geissert - Debian Maintainer
www.debian.org - get.debian.net
signature.asc
Description: This is a digitally signed message part.
--- End Message ---
--- Begin Message ---
Source: smarty
Source-Version: 2.6.20-1.2
We believe that the bug you reported is fixed in the latest version of
smarty, which is due to be installed in the Debian FTP archive:
smarty_2.6.20-1.2.diff.gz
to pool/main/s/smarty/smarty_2.6.20-1.2.diff.gz
smarty_2.6.20-1.2.dsc
to pool/main/s/smarty/smarty_2.6.20-1.2.dsc
smarty_2.6.20-1.2_all.deb
to pool/main/s/smarty/smarty_2.6.20-1.2_all.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Thijs Kinkhorst <[email protected]> (supplier of updated smarty package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Sun, 25 Oct 2009 16:11:04 +0100
Source: smarty
Binary: smarty
Architecture: source all
Version: 2.6.20-1.2
Distribution: stable-security
Urgency: high
Maintainer: Dimitri Fontaine <[email protected]>
Changed-By: Thijs Kinkhorst <[email protected]>
Description:
smarty - Template engine for PHP
Closes: 504328 529810
Changes:
smarty (2.6.20-1.2) stable-security; urgency=high
.
* Non-maintainer upload for security issues.
* CVE-2008-4810: Expand_quoted_text security bypass (closes: #504328).
* CVE-2009-1669: Shell execution via math function (closes: #529810).
Checksums-Sha1:
317727381fffeb2ed8aedd8a922091f581cba7ee 1409 smarty_2.6.20-1.2.dsc
aa6102342ec55c1fa90893929bdf2b8212224744 158091 smarty_2.6.20.orig.tar.gz
872989015830419ce4f82cbdaeeebe93251ff799 4876 smarty_2.6.20-1.2.diff.gz
ce08222373cb552b7489018d104a935a1be2a05b 204412 smarty_2.6.20-1.2_all.deb
Checksums-Sha256:
a988b396967c067428b22a8853aa26f048b8e382e015cd09b35e2a263cdfea5d 1409
smarty_2.6.20-1.2.dsc
8be2cea977ae095198b26fe63ca239f74bc388d9f025723d988c8e011bb98519 158091
smarty_2.6.20.orig.tar.gz
ac902d94ae3c7d13e0fbeeca3bcba0e5d3cde589945179cbc60ecb067be3efbf 4876
smarty_2.6.20-1.2.diff.gz
4fbaa3a41d9afd9631ddb0f3dbecdad7b8dbe3aebee3cf1022f168430336a1d7 204412
smarty_2.6.20-1.2_all.deb
Files:
f280e2733ef52ff621891f99b26386f3 1409 web optional smarty_2.6.20-1.2.dsc
35f405b2418a26a895302a2ce5bf89d2 158091 web optional smarty_2.6.20.orig.tar.gz
4d729d18d7efe68e1ce3023149436c01 4876 web optional smarty_2.6.20-1.2.diff.gz
1e8e85b298b97176359dd15731e0dc88 204412 web optional smarty_2.6.20-1.2_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iQEcBAEBAgAGBQJK5GxyAAoJECIIoQCMVaAcH8kIAJKUpNB0/fgzSwPoLQ7YZREh
FXS3mwpsjWme50fGVgcQnVBg/Gg2GZhSKhAaSI/cKtMrUR8K/8292JYOTWq2jbXB
U8ttlm9oo9KA1tQGRz/ma5/zam4LHj4xO84V18k25i+r1BMFzrGRxcwF93wr1luu
Wzs965mAdFoXK47ES6wbpi8g2KJQnsMNhUqYhB3KJzMXWc1gs3AYbqvRdfAdzXGF
+1Ce1Wd9H3qVGthYi67phv4C5XKhHITi8+rWYCYG7N/dTWqYFZMp00Sm0VeJj2Qd
e0VnjAn75v+/mZc4y7hr3DobtbGr07o0yhbi6225kWouDEQa1UJm6o8BAyLsclc=
=CIn+
-----END PGP SIGNATURE-----
--- End Message ---
