Your message dated Sun, 01 Mar 2026 19:04:38 +0000
with message-id <[email protected]>
and subject line Bug#1091435: fixed in percona-toolkit 3.7.1-1
has caused the Debian Bug report #1091435,
regarding percona-toolkit: CVE-2024-7701
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1091435: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1091435
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: percona-toolkit
Version: 3.2.1-1
Severity: grave
Tags: security upstream
Forwarded: https://github.com/percona/percona-toolkit/pull/896
X-Debbugs-Cc: [email protected], Debian Security Team <[email protected]>
Hi,
The following vulnerability was published for percona-toolkit.
CVE-2024-7701[0]:
| Use of Password Hash With Insufficient Computational Effort
| vulnerability in percona percona-toolkit allows Encryption Brute
| Forcing.This issue affects percona-toolkit: 3.6.0.
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2024-7701
https://www.cve.org/CVERecord?id=CVE-2024-7701
[1] https://github.com/percona/percona-toolkit/pull/896
Regards,
Salvatore
--- End Message ---
--- Begin Message ---
Source: percona-toolkit
Source-Version: 3.7.1-1
Done: Lena Voytek <[email protected]>
We believe that the bug you reported is fixed in the latest version of
percona-toolkit, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Lena Voytek <[email protected]> (supplier of updated percona-toolkit package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Thu, 19 Feb 2026 12:28:18 -0500
Source: percona-toolkit
Built-For-Profiles: noudeb
Architecture: source
Version: 3.7.1-1
Distribution: unstable
Urgency: medium
Maintainer: Lena Voytek <[email protected]>
Changed-By: Lena Voytek <[email protected]>
Closes: 1091435 1109157
Changes:
percona-toolkit (3.7.1-1) unstable; urgency=medium
.
* Implement package salvaging protocol (Closes: #1109157)
* New upstream release (3.7.1) (Closes: #1091435)
* d/p/01-fix-spelling-errors.diff: drop - fixed upstream.
* d/p/00-fix-perl-shebang.diff: refresh for new version.
* d/watch: Update to use api.github.com.
* d/control: Update standards version and remove priority: optional.
* d/control: Bump debhelper compatibility to 13.
* d/copyright: Fix headers and update copyright entries.
* d/upstream/metadata: Add upstream information.
* Add golang-based tools to install
- d/control: Add XS-Go-Import-Path, include go build dependencies, add
static-built-using and swap package to architecture: any.
- d/rules: Use dh-golang for go tools and skip pt-secure-collect build.
- d/p/skip-go-makefile.patch: Skip running src/go Makefile.
- d/p/use-standard-tabwriter-dependency.patch: Use standard text/tabwriter
dependency instead of Ladicle/tabwriter unavailable in the archive.
Checksums-Sha1:
cbea58f870ab91a8ace965ec4db95c887392a1e3 2918 percona-toolkit_3.7.1-1.dsc
96bc393c885d743a51d5eafa049b70115d48adec 23780599
percona-toolkit_3.7.1.orig.tar.gz
de74d437ad86350bbb3c24f206f6d20a7430846c 49664
percona-toolkit_3.7.1-1.debian.tar.xz
b2989217c076ffccae9e767027c9f3b18ab5b407 9173
percona-toolkit_3.7.1-1_source.buildinfo
Checksums-Sha256:
cb5eb6c3fc581dc972fbb54d513f54e5de7e6f761c67272617c8bd0883b47b04 2918
percona-toolkit_3.7.1-1.dsc
6ba6b31ec437a6bce10df15a4e577f49f605ff8cb886557d0c7176ba7018b0cb 23780599
percona-toolkit_3.7.1.orig.tar.gz
71ee919fd40cb4e0ee61ed53dc07447c22ca8d6eb7e2c2b44b505d3aecc68b5c 49664
percona-toolkit_3.7.1-1.debian.tar.xz
6a70ffe40c0e5c366c39261a863fca8ee17c1e191733d5e500f71a5a2c98d9df 9173
percona-toolkit_3.7.1-1_source.buildinfo
Files:
21248e263d6e2bb4740309a24e92684b 2918 utils optional
percona-toolkit_3.7.1-1.dsc
d3f1b1bde29321706238431e6da88b6a 23780599 utils optional
percona-toolkit_3.7.1.orig.tar.gz
dfca8fa3909ee07f12db5673c0e2075a 49664 utils optional
percona-toolkit_3.7.1-1.debian.tar.xz
374b6d9223bd99030248aa1950a4aa60 9173 utils optional
percona-toolkit_3.7.1-1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=XXON
-----END PGP SIGNATURE-----
pgpvouplamD1q.pgp
Description: PGP signature
--- End Message ---
