Your message dated Wed, 04 Jun 2014 06:50:11 +0000
with message-id <[email protected]>
and subject line Bug#747432: fixed in openssl 1.0.1e-2+deb7u9
has caused the Debian Bug report #747432,
regarding openssl: CVE-2014-0198 Null pointer dereference bug in OpenSSL 1.0.1g
and earlier
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
747432: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=747432
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: openssl
Version: 1.0.1e-2+deb7u7
Severity: important
Hello,
Please see this link:http://advisories.mageia.org/MGASA-2014-0204.html
Does this affect the version included in wheezy?
Thank you
-- System Information:
Debian Release: 7.5
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 3.2.0-4-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages openssl depends on:
ii libc6 2.13-38+deb7u1
ii libssl1.0.0 1.0.1e-2+deb7u7
ii zlib1g 1:1.2.7.dfsg-13
openssl recommends no packages.
Versions of packages openssl suggests:
ii ca-certificates 20130119
-- no debconf information
--- End Message ---
--- Begin Message ---
Source: openssl
Source-Version: 1.0.1e-2+deb7u9
We believe that the bug you reported is fixed in the latest version of
openssl, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Kurt Roeckx <[email protected]> (supplier of updated openssl package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Mon, 12 May 2014 22:10:41 +0200
Source: openssl
Binary: openssl libssl1.0.0 libcrypto1.0.0-udeb libssl-dev libssl-doc
libssl1.0.0-dbg
Architecture: source all amd64
Version: 1.0.1e-2+deb7u9
Distribution: wheezy-security
Urgency: medium
Maintainer: Debian OpenSSL Team <[email protected]>
Changed-By: Kurt Roeckx <[email protected]>
Description:
libcrypto1.0.0-udeb - crypto shared library - udeb (udeb)
libssl-dev - SSL development libraries, header files and documentation
libssl-doc - SSL development documentation documentation
libssl1.0.0 - SSL shared libraries
libssl1.0.0-dbg - Symbol tables for libssl and libcrypto
openssl - Secure Socket Layer (SSL) binary and related cryptographic tools
Closes: 747432
Changes:
openssl (1.0.1e-2+deb7u9) wheezy-security; urgency=medium
.
* Fix CVE-2014-0198 (Closes: #747432)
Checksums-Sha1:
7b2786cda25b0f46eef61e5674d1f632ce757f97 2214 openssl_1.0.1e-2+deb7u9.dsc
7dbf22f512e3aebb984a4fdf0df1d4d2b311b840 103950
openssl_1.0.1e-2+deb7u9.debian.tar.gz
ad3884c3658b66c5ad60ebd25b9725254545e228 1197974
libssl-doc_1.0.1e-2+deb7u9_all.deb
b4c6bd2f934cf35e9601e971927c0a9293887002 700280
openssl_1.0.1e-2+deb7u9_amd64.deb
acc7c51d48495614e082642b65aa48b7bd297f38 1257882
libssl1.0.0_1.0.1e-2+deb7u9_amd64.deb
6d165af4fd4436827c75e9cd16cdc739a8115181 635696
libcrypto1.0.0-udeb_1.0.1e-2+deb7u9_amd64.udeb
79d1ddfc2a0311bff0974a0e883eae8129cffcf7 1752510
libssl-dev_1.0.1e-2+deb7u9_amd64.deb
750dbd6abc09ab1201f77d68769c131fa0ec59a6 3078244
libssl1.0.0-dbg_1.0.1e-2+deb7u9_amd64.deb
Checksums-Sha256:
3f6f86a3ee39fb529c907e760b52b8eff81fadb26ca4fe4516e8422a1cdcceae 2214
openssl_1.0.1e-2+deb7u9.dsc
c605b61bdb2f49234f42a43f3600b46771448198947c908489613e44c35e0134 103950
openssl_1.0.1e-2+deb7u9.debian.tar.gz
ba063854e3b868c7efadd8dd2785291d40fecc6619b81a56b5a6b543240e86fe 1197974
libssl-doc_1.0.1e-2+deb7u9_all.deb
7d26d0c414ae5557ec989c119997e0d0471c2b35897f3dc1bc85d7fc7fb9642b 700280
openssl_1.0.1e-2+deb7u9_amd64.deb
2b7a62bfd8918682d92e4311fd844200e7fd1061374e0c71e5ddc83269ebb77e 1257882
libssl1.0.0_1.0.1e-2+deb7u9_amd64.deb
eff0cbd5e2a725a8868aa9dbfec238836bba7326247d7ef11bdbe8e5e2b241f8 635696
libcrypto1.0.0-udeb_1.0.1e-2+deb7u9_amd64.udeb
a556d5693dc5fa80d68352256ac193d85674a721e1e75f0945a1e7aedc3d1886 1752510
libssl-dev_1.0.1e-2+deb7u9_amd64.deb
6381e11bb90896a870e210e61f5305656d07945d2755659095e4b1ee6be89ddc 3078244
libssl1.0.0-dbg_1.0.1e-2+deb7u9_amd64.deb
Files:
92364a9835dca57b2a9e62434030b3c0 2214 utils optional
openssl_1.0.1e-2+deb7u9.dsc
92496cfe2c6cd9efae196ad446d733dc 103950 utils optional
openssl_1.0.1e-2+deb7u9.debian.tar.gz
517fd54b82dc2a6343909651e31596f9 1197974 doc optional
libssl-doc_1.0.1e-2+deb7u9_all.deb
53699f0ded6b96a665a4feb67b5526af 700280 utils optional
openssl_1.0.1e-2+deb7u9_amd64.deb
9219b78e3af03b5a2dca7d7b0f833735 1257882 libs important
libssl1.0.0_1.0.1e-2+deb7u9_amd64.deb
b122959233ed6ea7e37ba43471e93018 635696 debian-installer optional
libcrypto1.0.0-udeb_1.0.1e-2+deb7u9_amd64.udeb
70c1c5e7eda1cf48f4699b77fee12092 1752510 libdevel optional
libssl-dev_1.0.1e-2+deb7u9_amd64.deb
43e571d7f33f96bdd312117692074e62 3078244 debug extra
libssl1.0.0-dbg_1.0.1e-2+deb7u9_amd64.deb
Package-Type: udeb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=3xx4
-----END PGP SIGNATURE-----
--- End Message ---
