Your message dated Thu, 31 Aug 2006 10:21:49 +0200
with message-id <[EMAIL PROTECTED]>
and subject line Bug#349815: s-c-gtk2 exposes private messages to third party
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: sylpheed-claws-gtk2
Version: 1.9.100-2
Severity: critical
When composing a message in s-c-gtk2, it adds the full contents of the
last message read when sending it.
Steps to reproduce:
1. Start sylpheed-claws-gtk2
2. Read a message
3. Compose a message
Now, the message at the receiving end contains both the message sent and
the last mail read by the sending user. Since that can very likely be
revealing information for unintended eyes, that is of course NOT
acceptable.
I understand that there probably is something in my environment that
triggers this bug, otherwise it would have already been reported.
However, the fact that a critical bug is hard to trigger does not lower
its severity. I'm not spending more time trying to hunt this down,
because I'm not willing to mess in my production environment.
This is not the first time I report an issue like this one. Please look
at #333498, which was closed without finding the actual cause.
I might set up a test environment, with toy servers - if asked to. Until
this bug is properly fixed, I suggest the removal of the package from
testing.
--
/Martin
--- End Message ---
--- Begin Message ---
Hi Martin,
Version 2.4.0 is now in testing which should fix this, so I'm
closing this bug.
Anyway, could you please test if it still happens or not?
In the affirmative case, please reopen.
regards,
--
Ricardo Mones
http://people.debian.org/~mones
«Time to be aggressive. Go after a tattooed Virgo.»
--- End Message ---
