Your message dated Tue, 29 Oct 2013 21:23:44 +0000
with message-id <[email protected]>
and subject line Bug#727669: fixed in php-horde-ingo 3.1.3-1
has caused the Debian Bug report #727669,
regarding Protect against CSRF attacks by using tokens on destructive actions
(CVE-2013-6275)
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
727669: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=727669
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: php-ingo
Severity: important
Version: 3.1.2-1
Upstream fixed a CSRF issue (CVE-2013-6275) in Ingo.
The upstream bug is found here:
http://bugs.horde.org/ticket/12796
The upstream patch is this:
http://bugs.horde.org/h/services/download/?app=whups&actionID=download_file&file=bug_12796.patch&ticket=12796&fn=%2Fbug_12796.patch
Greets,
Mike
--
DAS-NETZWERKTEAM
mike gabriel, herweg 7, 24357 fleckeby
fon: +49 (1520) 1976 148
GnuPG Key ID 0x25771B31
mail: [email protected], http://das-netzwerkteam.de
freeBusy:
https://mail.das-netzwerkteam.de/freebusy/m.gabriel%40das-netzwerkteam.de.xfb
binEzO4TLp5Zm.bin
Description: Öffentlicher PGP-Schlüssel
pgpJVdjbpHHvF.pgp
Description: Digitale PGP-Signatur
--- End Message ---
--- Begin Message ---
Source: php-horde-ingo
Source-Version: 3.1.3-1
We believe that the bug you reported is fixed in the latest version of
php-horde-ingo, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Mathieu Parent <[email protected]> (supplier of updated php-horde-ingo package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Tue, 29 Oct 2013 21:48:20 +0100
Source: php-horde-ingo
Binary: php-horde-ingo
Architecture: source all
Version: 3.1.3-1
Distribution: unstable
Urgency: low
Maintainer: Horde Maintainers <[email protected]>
Changed-By: Mathieu Parent <[email protected]>
Description:
php-horde-ingo - ${phppear:summary}
Closes: 727669
Changes:
php-horde-ingo (3.1.3-1) unstable; urgency=low
.
* New upstream version 3.1.3
- Fix CSRF attacks by using tokens on destructive actions (CVE-2013-6275)
(Closes: #727669)
Checksums-Sha1:
575217adc684d58f4fa13ef6df20f09b92394db6 1385 php-horde-ingo_3.1.3-1.dsc
291e60cd7b2dfb8368b1973f7cb382e4ff43f78d 1495659
php-horde-ingo_3.1.3.orig.tar.gz
873b4051f0dc632c13477153364424dcf453acd6 3602
php-horde-ingo_3.1.3-1.debian.tar.gz
06943c6dcd78e4c477b060cd2c5f778739502507 1541006 php-horde-ingo_3.1.3-1_all.deb
Checksums-Sha256:
156ef8d562bd20121bc61cbcd7b8b81d6d0db3e0115cea91f2c9a04946f72cb5 1385
php-horde-ingo_3.1.3-1.dsc
7b11684725e53853a70775446239589d7e9bb4e0597583e8145a72c23d040671 1495659
php-horde-ingo_3.1.3.orig.tar.gz
f85c93df6d5179f69b81ac5c8a05b243ea24bf7cbeb96686c61d749bdc1b144d 3602
php-horde-ingo_3.1.3-1.debian.tar.gz
0d84ea762a25a3ca1741e041058785015560b25c2cd92a487770472fce8af172 1541006
php-horde-ingo_3.1.3-1_all.deb
Files:
a031050dd5c4da22e49690fdbbb0b87b 1385 php extra php-horde-ingo_3.1.3-1.dsc
bd42a798a64f9c298b337285e97707ff 1495659 php extra
php-horde-ingo_3.1.3.orig.tar.gz
6cdea21c2aa848bc1bc6a363cbbd6b76 3602 php extra
php-horde-ingo_3.1.3-1.debian.tar.gz
2294ec9681db98874b8de5794aa1e048 1541006 php extra
php-horde-ingo_3.1.3-1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (GNU/Linux)
iEYEARECAAYFAlJwH0wACgkQOW2jYf5fHX+1NgCfW7zm82Qat6tUpLfnmdqoIpnJ
ShIAn1VQ/7nc01GwoIrN7GMlKztLIxO3
=9GZJ
-----END PGP SIGNATURE-----
--- End Message ---
