Your message dated Fri, 18 Dec 2020 15:48:30 +0000
with message-id <[email protected]>
and subject line Bug#973770: fixed in cimg 2.9.4+dfsg-2
has caused the Debian Bug report #973770,
regarding cimg: CVE-2020-25693
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
973770: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973770
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: cimg
Version: 2.8.4+dfsg-1
Severity: important
Tags: security upstream
Forwarded: https://github.com/dtschump/CImg/pull/295
X-Debbugs-Cc: [email protected], Debian Security Team <[email protected]>
Hi,
The following vulnerability was published for cimg.
CVE-2020-25693[0]
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2020-25693
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25693
[1] https://github.com/dtschump/CImg/pull/295
[2] https://bugs.launchpad.net/ubuntu/+source/cimg/+bug/1900983
[3]
https://github.com/dtschump/CImg/commit/4f184f89f9ab6785a6c90fd238dbaa6d901d3505
Please adjust the affected versions in the BTS as needed.
Regards,
Salvatore
--- End Message ---
--- Begin Message ---
Source: cimg
Source-Version: 2.9.4+dfsg-2
Done: Andreas Tille <[email protected]>
We believe that the bug you reported is fixed in the latest version of
cimg, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Andreas Tille <[email protected]> (supplier of updated cimg package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Fri, 18 Dec 2020 15:46:15 +0100
Source: cimg
Architecture: source
Version: 2.9.4+dfsg-2
Distribution: unstable
Urgency: medium
Maintainer: Debian Science Team
<[email protected]>
Changed-By: Andreas Tille <[email protected]>
Closes: 973770 976927
Changes:
cimg (2.9.4+dfsg-2) unstable; urgency=medium
.
* New upstream version
Closes: #973770
* Adapt Files-Excluded to new upstream version
* Standards-Version: 4.5.1 (routine-update)
* debhelper-compat 13 (routine-update)
* Rules-Requires-Root: no (routine-update)
* Set upstream metadata fields: Bug-Database, Bug-Submit.
* Fix installation of docs
* Avoid baseline violation
Closes: #976927
* Do not submit any user data to keep privacy
Checksums-Sha1:
33a3c9a599aeaf0a136ca4ca7a1a43904a80dc5c 2330 cimg_2.9.4+dfsg-2.dsc
e23f5a800c0c228abe830c8eb9d3d917e7a14e6d 9254532 cimg_2.9.4+dfsg.orig.tar.xz
dde45b61a38191bb453ee7c02ab969ba2992000b 17584 cimg_2.9.4+dfsg-2.debian.tar.xz
a6f876a711ec61443d0afd21dd6d1ce0632726e5 17295
cimg_2.9.4+dfsg-2_source.buildinfo
Checksums-Sha256:
0b26d270efd0687a6853725dcfd7fc27bf8ec6f50541bb9ae65b6afea18f7cb3 2330
cimg_2.9.4+dfsg-2.dsc
2dda1ccad6f813ca3f97f093fcaf47cf883322b96d3a4476e72772404a2c12e0 9254532
cimg_2.9.4+dfsg.orig.tar.xz
38fb2be278f2526e663d66ffd4ac2931540b02d5222cf417911f7409c5492f92 17584
cimg_2.9.4+dfsg-2.debian.tar.xz
b6c1204622895c6279c49eda98f518ebd428e11f160cda54f419e364dd8a5809 17295
cimg_2.9.4+dfsg-2_source.buildinfo
Files:
6bd958e64db4a708d40ffc999a873aba 2330 math optional cimg_2.9.4+dfsg-2.dsc
15c0eea0b2881f8cc7741022d92e68bf 9254532 math optional
cimg_2.9.4+dfsg.orig.tar.xz
0fa11f1543a80dbff27611c810ac3527 17584 math optional
cimg_2.9.4+dfsg-2.debian.tar.xz
c08de48505383715a2a99776201915e2 17295 math optional
cimg_2.9.4+dfsg-2_source.buildinfo
-----BEGIN PGP SIGNATURE-----
iQJCBAEBCAAsFiEE8fAHMgoDVUHwpmPKV4oElNHGRtEFAl/cyTQOHHRpbGxlYUBy
a2kuZGUACgkQV4oElNHGRtEySA/8DABCXcrJXv0hF5TFCnoR7gxsjA7kG2Z1Kj8m
70n1DItUc1gOxxdHqurtePL7ykIUQjDonSjeehzSEihVFKorHzC210qerrjRYktX
yRC0eEO02Z7KEm+9Mb8LUPxrkcLla+41lJWODVTvsUYQZgayqDjccXM7Ert0vdrH
+xoRG2dyijrf6p2CRQ2TlINDPUp3GRceLCCtxu2ICmgfr6Aqq5/04EXk3NRplWGA
U2u6Yvd/yycM9po4z4i+5jsEOIk1rPYSXdVNz8M6MF6kcimgesbulhI/DpGGQiVD
Sx1quqGNGTK5L+4GHNnYNQ7nkcB+tN7SzDCfmzfj0FVK0RsMw2Qqt8yUtZ8+ZWuV
beCP6Ctatyn6X4GDJ7f7BOiS5UWEPXPFmwepcJfA1J1o6GoRTySxQ5I6HakcXfIh
16ZGMwmrpjOomzdCrqixnlDIlXqok7FVYSlvf60NFukKP8CaKU2xDGL51Qmb6aio
ZR/6mqb6WZNSKgaipy4QRhqIuYWhrQhOA+Jj+g8R+B3pQkaKAFy6yG17s50ZsOM5
3H0OMivoNMapidWNebB+DcAGxiuyaRUlY73aHBVktF1oxK/h33yVSWCDsNLirpNW
DSQu+cBY/L6+TS10ZzDZ9NuVilD/sGBosbb0Wupx/8evjVXoXx9MyzFyBlzwb0VY
mK4exSU=
=omyl
-----END PGP SIGNATURE-----
--- End Message ---
