Your message dated Sat, 10 Dec 2016 17:34:21 +0000 with message-id <[email protected]> and subject line Bug#847330: Removed package(s) from unstable has caused the Debian Bug report #732016, regarding misses fabricated matches due to "smart" squirrelmail entry handling to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact [email protected] immediately.) -- 732016: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=732016 Debian Bug Tracking System Contact [email protected] with problems
--- Begin Message ---Package: squirrelmail-lockout Version: 1.7-2 Severity: important Tags: patch, security, upstream This bug is actively utilised by recent spambots. --- functions.php.orig 2010-11-04 09:02:13.000000000 +0100 +++ functions.php 2013-12-12 14:17:50.000000000 +0100 @@ -458,8 +458,8 @@ // check for match with hostname, redirect if found // - if (preg_match('/^' . str_replace(array('?', '*'), array('\w{1}', '.*?'), - strtoupper($matches[1])) . '$/', strtoupper($usersDomain))) + if (preg_match('/^\s*' . str_replace(array('?', '*'), array('\w{1}', '.*?'), + strtoupper($matches[1])) . '\s*$/', strtoupper($usersDomain))) { fclose($LOCKOUTTABLE); if ($reverseLockout) @@ -481,8 +481,8 @@ // check for match with hostname, redirect if found // - if (preg_match('/^' . str_replace(array('?', '*'), array('\w{1}', '.*?'), - strtoupper($matches[1])) . '$/', strtoupper($host))) + if (preg_match('/^\s*' . str_replace(array('?', '*'), array('\w{1}', '.*?'), + strtoupper($matches[1])) . '\s*$/', strtoupper($host))) { fclose($LOCKOUTTABLE); if ($reverseLockout) @@ -504,8 +504,8 @@ // check for match with username, redirect if found // - if (preg_match('/^' . str_replace(array('?', '*'), array('\w{1}', '.*?'), - strtoupper($matches[1])) . '$/', strtoupper($user))) + if (preg_match('/^\s*' . str_replace(array('?', '*'), array('\w{1}', '.*?'), + strtoupper($matches[1])) . '\s*$/', strtoupper($user))) { fclose($LOCKOUTTABLE); if ($reverseLockout)
--- End Message ---
--- Begin Message ---Version: 1.7-2+rm Dear submitter, as the package squirrelmail-lockout has just been removed from the Debian archive unstable we hereby close the associated bug reports. We are sorry that we couldn't deal with your issue properly. For details on the removal, please see https://bugs.debian.org/847330 The version of this package that was in Debian prior to this removal can still be found using http://snapshot.debian.org/. This message was generated automatically; if you believe that there is a problem with it please contact the archive administrators by mailing [email protected]. Debian distribution maintenance software pp. Scott Kitterman (the ftpmaster behind the curtain)
--- End Message ---
