Your message dated Thu, 17 Dec 2015 23:04:27 +0000
with message-id <[email protected]>
and subject line Bug#807931: fixed in foomatic-filters 4.0.5-6+squeeze2+deb6u12
has caused the Debian Bug report #807931,
regarding foomatic-filters: CVE-2015-8560: code execution via improper escaping
of ; in foomatic-rip
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
807931: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=807931
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: foomatic-filters
Version: 4.0.5-6
Severity: important
Tags: security upstream patch
Hi,
the following vulnerability was published for foomatic-filters, this
is in addition to CVE-2015-8327.
CVE-2015-8560[0]:
code execution via improper escaping of ; in foomatic-rip
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2015-8560
Regards,
Salvatore
--- End Message ---
--- Begin Message ---
Source: foomatic-filters
Source-Version: 4.0.5-6+squeeze2+deb6u12
We believe that the bug you reported is fixed in the latest version of
foomatic-filters, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Yann Soubeyrand <[email protected]> (supplier of updated
foomatic-filters package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Tue, 15 Dec 2015 11:53:24 +0100
Source: foomatic-filters
Binary: foomatic-filters
Architecture: source amd64
Version: 4.0.5-6+squeeze2+deb6u12
Distribution: squeeze-lts
Urgency: high
Maintainer: Debian Printing Group <[email protected]>
Changed-By: Yann Soubeyrand <[email protected]>
Description:
foomatic-filters - OpenPrinting printer support - filters
Closes: 807931
Changes:
foomatic-filters (4.0.5-6+squeeze2+deb6u12) squeeze-lts; urgency=high
.
* CVE-2015-8560: Fix insufficient script injection prevention
(Closes: #807931)
Checksums-Sha1:
fa03007bf97ecdf9bf3832b96a553763836d149a 1744
foomatic-filters_4.0.5-6+squeeze2+deb6u12.dsc
4cc4a0b7a5159b80980c2eb4e7341e2970f32230 53122
foomatic-filters_4.0.5-6+squeeze2+deb6u12.debian.tar.gz
0dbd56ca7bb466ae9e4064da30f7daa56df00176 151244
foomatic-filters_4.0.5-6+squeeze2+deb6u12_amd64.deb
Checksums-Sha256:
1a11164ece3e4ccd61bff63dd049a4b74a32c4200aae39fda66024f3d29c7864 1744
foomatic-filters_4.0.5-6+squeeze2+deb6u12.dsc
b6b9c7a17539a59d47e6b71c50cd9f711babd16aed2cc64d2e24e2f7bab966dd 53122
foomatic-filters_4.0.5-6+squeeze2+deb6u12.debian.tar.gz
1ed362f439ce6547a233ddf23bd3926249d8bf8f9291650f1719690974e09ca3 151244
foomatic-filters_4.0.5-6+squeeze2+deb6u12_amd64.deb
Files:
60045036acca79564677d53e7c93fddb 1744 text optional
foomatic-filters_4.0.5-6+squeeze2+deb6u12.dsc
7f0d965b9fe42c51146fe0f77c910164 53122 text optional
foomatic-filters_4.0.5-6+squeeze2+deb6u12.debian.tar.gz
d6b8d7f1590394fdd79f766c94c5cec6 151244 text optional
foomatic-filters_4.0.5-6+squeeze2+deb6u12_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
Comment: Signed by Raphael Hertzog
iQEcBAEBCAAGBQJWcyL+AAoJEAOIHavrwpq5d+gIAKHRoYsFzOarGOxRzvvOgSbo
EoRukaOwhXGWw/QIneK+PsEEVtAoloFYT33/pXtfydp+rHDveo9/tj7NFWsSoRtY
pjCZI+jAntAxLben2+wLHsCoqo/efSFKuN/D0CNVqDS5RnA8d721J85dWEJynZpf
G4BMwcUL4hD4dadBNw09cHhjjwBvdI8OpkzXaPZd0tNOqIC9TfWCemAfDA8job+k
9qL0bt5eTILREOUqfrIwhErFgZlvERZIjqwcAcxFcgJZGphgEyKbl3TxJkk+6TGF
b+3DW+l1Pu/8xFDbgTaaPoUsGOQC4gdUEm3USPYvV41LBSVUGJk+8ejP1eyjugo=
=F4OV
-----END PGP SIGNATURE-----
--- End Message ---
