Your message dated Fri, 31 Aug 2012 19:17:04 +0000
with message-id <[email protected]>
and subject line Bug#682765: fixed in rtfm 2.4.2-4+squeeze1
has caused the Debian Bug report #682765,
regarding rt3.8-rtfm: Unable to delete articles / CurrentUserCanSee
Unimplemented
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
682765: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=682765
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: rt3.8-rtfm
Version: 2.4.2-4
Severity: normal
Justification: renders package unusable
After trying to delete an article in RTFM I encountered an RT error reading "An
internal RT error has occurred".
The error log shows this entry: [error]: RT::FM::Article::CurrentUserCanSee
Unimplemented in RT::Transaction.
(/usr/share/request-tracker3.8/lib/RT/Transaction_Overlay.pm line 1035)
(/usr/share/request-tracker3.8/lib/RT/Interface/Web/Handler.pm:233)
I suspect that some of the security updates to the request-tracker3.8 package
were not transferred to the rtfm-package. Since no articles were deleted since
at least April it could be one of these security fixes:
3.8.8-7+squeeze2, 3.8.8-7+squeeze3, 3.8.8-7+squeeze4
I tried to fix this problem by copying the "CurrentUserCanSee" function to the
rtfm module RT::FM::Article. This allows me to delete articles again. I did not
test any further but RTFM seems to function normally again.
-- System Information:
Debian Release: 6.0.5
APT prefers stable
APT policy: (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.32-5-amd64 (SMP w/2 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/bash
Versions of packages rt3.8-rtfm depends on:
ii debconf [debconf-2.0] 1.5.36.1 Debian configuration management sy
ii libhtml-tree-perl 3.23-2 Perl module to represent and creat
ii libtime-modules-perl 2006.0814-2 Various Perl modules for time/date
ii libtree-simple-perl 1.18-1 A simple tree object
ii libyaml-perl 0.71-1 YAML Ain't Markup Language
ii perl 5.10.1-17squeeze3 Larry Wall's Practical Extraction
ii request-tracker3.8 3.8.8-7+squeeze4 extensible trouble-ticket tracking
ii ucf 3.0025+nmu1 Update Configuration File: preserv
rt3.8-rtfm recommends no packages.
rt3.8-rtfm suggests no packages.
-- debconf information:
rt3.8-rtfm/upgrade-database-prompt: true
rt3.8-rtfm/setup-database-prompt: true
rt3.8-rtfm/modify-database-error: abort
* rt3.8-rtfm/modify-database-permission: allow
--- End Message ---
--- Begin Message ---
Source: rtfm
Source-Version: 2.4.2-4+squeeze1
We believe that the bug you reported is fixed in the latest version of
rtfm, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Dominic Hargreaves <[email protected]> (supplier of updated rtfm package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Tue, 07 Aug 2012 19:43:13 +0100
Source: rtfm
Binary: rt3.8-rtfm
Architecture: source all
Version: 2.4.2-4+squeeze1
Distribution: stable-security
Urgency: high
Maintainer: Debian Request Tracker Group
<[email protected]>
Changed-By: Dominic Hargreaves <[email protected]>
Description:
rt3.8-rtfm - FAQ Manager for Request Tracker 3.8
Closes: 682765 683290
Changes:
rtfm (2.4.2-4+squeeze1) stable-security; urgency=high
.
* [CVE-2012-2768] Fix multiple XSS vulnerabilities (Closes: #682765,
#683290)
Checksums-Sha1:
f1c4433a8e5f014e1a0a772061d1428592276329 1281 rtfm_2.4.2-4+squeeze1.dsc
a2d3a7f6c2f086488e8c8af849bdda398252849e 144389 rtfm_2.4.2.orig.tar.gz
27df497b889f5be5746bcb7fc696eccd64124286 28387 rtfm_2.4.2-4+squeeze1.diff.gz
bcd04c0898a2b83cd4c110bda96b343d4ab83e39 120678
rt3.8-rtfm_2.4.2-4+squeeze1_all.deb
Checksums-Sha256:
660d1958b5d81bdbd546277526dd41ee226639e59895bfae2341e0cea61eb449 1281
rtfm_2.4.2-4+squeeze1.dsc
2a96912e5fffd01762acd84004eff54e71c6ca3a37bfe4fd71ed7e7184257600 144389
rtfm_2.4.2.orig.tar.gz
e73712348e7ff1e77fe766feae36193eec76b85320353ba27762afa85795bf3d 28387
rtfm_2.4.2-4+squeeze1.diff.gz
9a080cac6ff06d6d26654abc2a077f94799606d52a150ecf2f124f0fd725bc91 120678
rt3.8-rtfm_2.4.2-4+squeeze1_all.deb
Files:
975e6924eb510175faeb73de77584956 1281 misc optional rtfm_2.4.2-4+squeeze1.dsc
d4a8af8591f09e739d0a14c669b444f0 144389 misc optional rtfm_2.4.2.orig.tar.gz
b62bb7202a2525e953b00b3a1e9cfc67 28387 misc optional
rtfm_2.4.2-4+squeeze1.diff.gz
9e75afdadfbe80c50bf060e7b0981791 120678 misc optional
rt3.8-rtfm_2.4.2-4+squeeze1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iD8DBQFQIWIhYzuFKFF44qURAgQGAJ9MRyMTgwkZHy7ZzjAU4nzRY7xLxQCfTwfW
WOs1tMDXUZZnkYKItNYLve4=
=JiIE
-----END PGP SIGNATURE-----
--- End Message ---
