Your message dated Wed, 15 Feb 2023 21:19:53 +0100
with message-id <[email protected]>
and subject line Accepted nss 2:3.87-1 (source) into unstable
has caused the Debian Bug report #1021786,
regarding nss: CVE-2022-3479
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1021786: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1021786
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: nss
X-Debbugs-CC: [email protected]
Severity: important
Tags: security
Hi,
The following vulnerability was published for nss.
CVE-2022-3479[0]:
| A vulnerability found in nss. By this security vulnerability, nss
| client auth crash without a user certificate in the database and this
| can lead us to a segmentation fault or crash.
https://bugzilla.mozilla.org/show_bug.cgi?id=1774654
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2022-3479
https://www.cve.org/CVERecord?id=CVE-2022-3479
Please adjust the affected versions in the BTS as needed.
--- End Message ---
--- Begin Message ---
Source: nss
Source-Version: 2:3.87-1
This upload fixed as well CVE-2022-3479, #1021786
----- Forwarded message from Debian FTP Masters
<[email protected]> -----
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Wed, 18 Jan 2023 07:02:20 +0900
Source: nss
Architecture: source
Version: 2:3.87-1
Distribution: unstable
Urgency: medium
Maintainer: Maintainers of Mozilla-related packages
<[email protected]>
Changed-By: Mike Hommey <[email protected]>
Changes:
nss (2:3.87-1) unstable; urgency=medium
.
* New upstream release.
Checksums-Sha1:
895991af93459b8014df81d7922a504c19ad80dc 2185 nss_3.87-1.dsc
c6a2f51016a7057687d4e60beba027ce17b36de6 71435408 nss_3.87.orig.tar.gz
fe1da63ff1776671b9d6c0e6cd8f76bc5e071ee2 19148 nss_3.87-1.debian.tar.xz
de4eb5aa4995e4fa2491c795a5b9ceed32e59900 6419 nss_3.87-1_source.buildinfo
Checksums-Sha256:
b46d26c206a2fc4ac240155ec9cdc2dba9d580d51f8609c2d33a3a4ebfd0ff97 2185
nss_3.87-1.dsc
68a1894496d3d158babc75f8a5dda3f55b7c1560573936e3b101a10fa4ac152d 71435408
nss_3.87.orig.tar.gz
b44039405293bee759fc740f863e1620fc06a1ce6bb21de6559bd3f5befce023 19148
nss_3.87-1.debian.tar.xz
2e9d81fe1bc6665f692e2686ca04ac7ae064a11b7b545e5e1f989334c1c76074 6419
nss_3.87-1_source.buildinfo
Files:
2ee22754705d465dd91f546e58de1ffc 2185 libs optional nss_3.87-1.dsc
9bfacbd8a080b0aa0a7672ca643c440b 71435408 libs optional nss_3.87.orig.tar.gz
a3dd37e6618d7490751f1fb75e1486e2 19148 libs optional nss_3.87-1.debian.tar.xz
6d52f4fcc7c0e255e2f7b0d726a946a5 6419 libs optional nss_3.87-1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=Au6V
-----END PGP SIGNATURE-----
----- End forwarded message -----
--- End Message ---
