Your message dated Mon, 24 Jun 2019 20:48:43 +0000
with message-id <[email protected]>
and subject line Bug#930886: fixed in bzip2 1.0.6-9.1
has caused the Debian Bug report #930886,
regarding CVE-2019-12900
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
930886: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=930886
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: bzip2
Version: 1.0.6-9
Severity: important
Tags: security
Please see http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12900
Cheers,
Moritz
--- End Message ---
--- Begin Message ---
Source: bzip2
Source-Version: 1.0.6-9.1
We believe that the bug you reported is fixed in the latest version of
bzip2, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Salvatore Bonaccorso <[email protected]> (supplier of updated bzip2 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Mon, 24 Jun 2019 22:15:37 +0200
Source: bzip2
Architecture: source
Version: 1.0.6-9.1
Distribution: unstable
Urgency: high
Maintainer: Anibal Monsalve Salazar <[email protected]>
Changed-By: Salvatore Bonaccorso <[email protected]>
Closes: 930886
Changes:
bzip2 (1.0.6-9.1) unstable; urgency=high
.
* Non-maintainer upload.
* Make sure nSelectors is not out of range (CVE-2019-12900)
(Closes: #930886)
Checksums-Sha1:
5fef97ea3bcb33d65ef4ab840211df879fd6dbe9 2348 bzip2_1.0.6-9.1.dsc
243626f623a4f25bf224651383c8559cb7f1f0e8 26512 bzip2_1.0.6-9.1.debian.tar.bz2
e9b1d41f5347f374434172c5f5bd5514336e2183 6090 bzip2_1.0.6-9.1_source.buildinfo
Checksums-Sha256:
21cab309681e335132b61a2f17910dcb0538697ce1ac4868ec45630fb5e0ca43 2348
bzip2_1.0.6-9.1.dsc
0642536bb5fb5e6b224d3852f72d5401f31e75cb1ac76a2e5daeb6b8780c13b5 26512
bzip2_1.0.6-9.1.debian.tar.bz2
a4faf27666f6e18f24a6f7418cb4b1c9392092adc3d59feb124c4107ec13bed7 6090
bzip2_1.0.6-9.1_source.buildinfo
Files:
e1b1a73de8db0210ba39b68999256c10 2348 utils important bzip2_1.0.6-9.1.dsc
a432d1edfb06b97769b20b404015ff7b 26512 utils important
bzip2_1.0.6-9.1.debian.tar.bz2
8ff790395852e6b83bb77e88540ad582 6090 utils important
bzip2_1.0.6-9.1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=f2/O
-----END PGP SIGNATURE-----
--- End Message ---
