Your message dated Sat, 13 Feb 2021 23:19:00 +0000
with message-id <[email protected]>
and subject line Bug#982596: fixed in libytnef 1.9.3-3
has caused the Debian Bug report #982596,
regarding libytnef: CVE-2021-3404
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
982596: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=982596
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: libytnef
Version: 1.9.3-1
Severity: important
Tags: security upstream
Forwarded: https://github.com/Yeraze/ytnef/issues/86
X-Debbugs-Cc: [email protected], Debian Security Team <[email protected]>
Hi,
The following vulnerability was published for libytnef.
CVE-2021-3404[0].
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2021-3404
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3404
[1] https://github.com/Yeraze/ytnef/issues/86
Regards,
Salvatore
--- End Message ---
--- Begin Message ---
Source: libytnef
Source-Version: 1.9.3-3
Done: Ricardo Mones <[email protected]>
We believe that the bug you reported is fixed in the latest version of
libytnef, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Ricardo Mones <[email protected]> (supplier of updated libytnef package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Sun, 14 Feb 2021 00:02:20 +0100
Source: libytnef
Architecture: source
Version: 1.9.3-3
Distribution: unstable
Urgency: medium
Maintainer: Ricardo Mones <[email protected]>
Changed-By: Ricardo Mones <[email protected]>
Closes: 982594 982596
Changes:
libytnef (1.9.3-3) unstable; urgency=medium
.
* Add patch fixing CVE-2021-3403.
Thanks to Oliver Giles, Salvatore Bonaccorso (Closes: #982594)
* Add patch fixing CVE-2021-3404.
Thanks to Oliver Giles, Salvatore Bonaccorso (Closes: #982596)
* Raise Standards-Version to 4.5.1, no other changes
* Add upstream metadata
Checksums-Sha1:
d0531721736c7e0ade2b609d28821c721f8b5de3 1972 libytnef_1.9.3-3.dsc
c6dc4f53c2faf3b7b90ced39a6afbb2cc0224482 6964 libytnef_1.9.3-3.debian.tar.xz
28d024a3112d67f2717c0ec844acc214c451f93d 6966 libytnef_1.9.3-3_amd64.buildinfo
Checksums-Sha256:
b5233f23db4dfe75e9f4ec1cf76904a8273c43f14e396261af6d3b9cfd54c675 1972
libytnef_1.9.3-3.dsc
4ee1c00696f504029d821ac17cbda59eb7363db76c6cb81736ed0346bbd4140d 6964
libytnef_1.9.3-3.debian.tar.xz
c97eb8afe5686eb2c69da3175dfd34995a34b652588fc6966ca61f5661d4cbaa 6966
libytnef_1.9.3-3_amd64.buildinfo
Files:
5edb105112f56ebf1b5a9ac9a3138a7a 1972 utils optional libytnef_1.9.3-3.dsc
fff42e6b1dcfe56cc1c056dffe1a1689 6964 utils optional
libytnef_1.9.3-3.debian.tar.xz
2df4e6d9f14074d38e82598cebec2c8e 6966 utils optional
libytnef_1.9.3-3_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=lhd6
-----END PGP SIGNATURE-----
--- End Message ---