Your message dated Thu, 16 Aug 2007 19:56:33 +0000
with message-id <[EMAIL PROTECTED]>
and subject line Bug#429876: fixed in evolution-data-server 1.6.3-5etch1
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: evolution-data-server
Version: 1.10.2-1
Severity: grave
Tags: security
E-D-S 2.11.4 has just been released with a fix for
http://bugs.gnome.org/447414 , which is a remotely-exploitable negative
array index. I found this out by reading Philip Van Hoof's blog[0]. A
backport to GNOME's 2.18 branch is either present or in progress; I
can't tell from the bug report.
[0] http://pvanhoof.be/blog/index.php/2007/06/19/todays-new-evolution-release
-- System Information:
Debian Release: lenny/sid
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.22-rc5-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL
set to en_US.UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages evolution-data-server depends on:
ii evolutio 1.10.2-1 architecture independent files for
ii libbonob 2.18.0-2 Bonobo CORBA interfaces library
ii libc6 2.5-11 GNU C Library: Shared libraries
ii libcamel 1.10.2-1 The Evolution MIME message handlin
ii libcomer 1.39+1.40-WIP-2007.04.07+dfsg-2 common error description library
ii libdb4.4 4.4.20-8 Berkeley v4.4 Database Libraries [
ii libebook 1.10.2-1 Client library for evolution addre
ii libecal1 1.10.2-1 Client library for evolution calen
ii libedata 1.10.2-1 Backend library for evolution addr
ii libedata 1.10.2-1 Backend library for evolution cale
ii libedata 1.10.2-1 Utility library for evolution data
ii libegrou 1.10.2-1 Client library for accessing group
ii libgconf 2.18.0.1-3 GNOME configuration database syste
ii libglib2 2.12.12-1 The GLib library of C routines
ii libgnome 2.18.0-4 The GNOME 2 library - runtime file
ii libgnome 1:2.18.1-2 GNOME Virtual File System (runtime
ii libgnutl 1.6.3-1 the GNU TLS library - runtime libr
ii libkrb53 1.6.dfsg.1-4 MIT Kerberos runtime libraries
ii libldap2 2.1.30-13.4 OpenLDAP libraries
ii libnspr4 4.6.6-3 NetScape Portable Runtime Library
ii libnss3- 3.11.5-3+b1 Network Security Service libraries
ii liborbit 1:2.14.7-0.1 libraries for ORBit2 - a CORBA ORB
ii libpopt0 1.10-3 lib for parsing cmdline parameters
ii libsoup2 2.2.100-1 an HTTP library implementation in
ii libxml2 2.6.29.dfsg-1 GNOME XML library
ii zlib1g 1:1.2.3-15 compression library - runtime
evolution-data-server recommends no packages.
-- no debconf information
--
brian m. carlson / brian with sandals: Houston, Texas, US
+1 713 440 7475 | http://crustytoothpaste.ath.cx/~bmc | My opinion only
Screw you, AACS LA: 09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0
OpenPGP: RSA v4 4096b 88AC E9B2 9196 305B A994 7552 F1BA 225C 0223 B187
signature.asc
Description: Digital signature
--- End Message ---
--- Begin Message ---
Source: evolution-data-server
Source-Version: 1.6.3-5etch1
We believe that the bug you reported is fixed in the latest version of
evolution-data-server, which is due to be installed in the Debian FTP archive:
evolution-data-server-common_1.6.3-5etch1_all.deb
to
pool/main/e/evolution-data-server/evolution-data-server-common_1.6.3-5etch1_all.deb
evolution-data-server-dbg_1.6.3-5etch1_i386.deb
to
pool/main/e/evolution-data-server/evolution-data-server-dbg_1.6.3-5etch1_i386.deb
evolution-data-server-dev_1.6.3-5etch1_i386.deb
to
pool/main/e/evolution-data-server/evolution-data-server-dev_1.6.3-5etch1_i386.deb
evolution-data-server_1.6.3-5etch1.diff.gz
to
pool/main/e/evolution-data-server/evolution-data-server_1.6.3-5etch1.diff.gz
evolution-data-server_1.6.3-5etch1.dsc
to pool/main/e/evolution-data-server/evolution-data-server_1.6.3-5etch1.dsc
evolution-data-server_1.6.3-5etch1_i386.deb
to
pool/main/e/evolution-data-server/evolution-data-server_1.6.3-5etch1_i386.deb
libcamel1.2-8_1.6.3-5etch1_i386.deb
to pool/main/e/evolution-data-server/libcamel1.2-8_1.6.3-5etch1_i386.deb
libcamel1.2-dev_1.6.3-5etch1_i386.deb
to pool/main/e/evolution-data-server/libcamel1.2-dev_1.6.3-5etch1_i386.deb
libebook1.2-5_1.6.3-5etch1_i386.deb
to pool/main/e/evolution-data-server/libebook1.2-5_1.6.3-5etch1_i386.deb
libebook1.2-dev_1.6.3-5etch1_i386.deb
to pool/main/e/evolution-data-server/libebook1.2-dev_1.6.3-5etch1_i386.deb
libecal1.2-6_1.6.3-5etch1_i386.deb
to pool/main/e/evolution-data-server/libecal1.2-6_1.6.3-5etch1_i386.deb
libecal1.2-dev_1.6.3-5etch1_i386.deb
to pool/main/e/evolution-data-server/libecal1.2-dev_1.6.3-5etch1_i386.deb
libedata-book1.2-2_1.6.3-5etch1_i386.deb
to pool/main/e/evolution-data-server/libedata-book1.2-2_1.6.3-5etch1_i386.deb
libedata-book1.2-dev_1.6.3-5etch1_i386.deb
to
pool/main/e/evolution-data-server/libedata-book1.2-dev_1.6.3-5etch1_i386.deb
libedata-cal1.2-5_1.6.3-5etch1_i386.deb
to pool/main/e/evolution-data-server/libedata-cal1.2-5_1.6.3-5etch1_i386.deb
libedata-cal1.2-dev_1.6.3-5etch1_i386.deb
to pool/main/e/evolution-data-server/libedata-cal1.2-dev_1.6.3-5etch1_i386.deb
libedataserver1.2-7_1.6.3-5etch1_i386.deb
to pool/main/e/evolution-data-server/libedataserver1.2-7_1.6.3-5etch1_i386.deb
libedataserver1.2-dev_1.6.3-5etch1_i386.deb
to
pool/main/e/evolution-data-server/libedataserver1.2-dev_1.6.3-5etch1_i386.deb
libedataserverui1.2-6_1.6.3-5etch1_i386.deb
to
pool/main/e/evolution-data-server/libedataserverui1.2-6_1.6.3-5etch1_i386.deb
libedataserverui1.2-dev_1.6.3-5etch1_i386.deb
to
pool/main/e/evolution-data-server/libedataserverui1.2-dev_1.6.3-5etch1_i386.deb
libegroupwise1.2-10_1.6.3-5etch1_i386.deb
to pool/main/e/evolution-data-server/libegroupwise1.2-10_1.6.3-5etch1_i386.deb
libegroupwise1.2-dev_1.6.3-5etch1_i386.deb
to
pool/main/e/evolution-data-server/libegroupwise1.2-dev_1.6.3-5etch1_i386.deb
libexchange-storage1.2-1_1.6.3-5etch1_i386.deb
to
pool/main/e/evolution-data-server/libexchange-storage1.2-1_1.6.3-5etch1_i386.deb
libexchange-storage1.2-dev_1.6.3-5etch1_i386.deb
to
pool/main/e/evolution-data-server/libexchange-storage1.2-dev_1.6.3-5etch1_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Loic Minier <[EMAIL PROTECTED]> (supplier of updated evolution-data-server
package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Thu, 21 Jun 2007 13:45:57 +0200
Source: evolution-data-server
Binary: libexchange-storage1.2-dev libebook1.2-5 libcamel1.2-8
libedataserver1.2-7 libedataserver1.2-dev libedata-cal1.2-dev libecal1.2-dev
libecal1.2-6 evolution-data-server-dbg libegroupwise1.2-10 libcamel1.2-dev
evolution-data-server libedata-cal1.2-5 libedataserverui1.2-6
evolution-data-server-common libedata-book1.2-2 libedata-book1.2-dev
evolution-data-server-dev libedataserverui1.2-dev libexchange-storage1.2-1
libegroupwise1.2-dev libebook1.2-dev
Architecture: source i386 all
Version: 1.6.3-5etch1
Distribution: stable-security
Urgency: high
Maintainer: Debian Evolution Maintainers <[EMAIL PROTECTED]>
Changed-By: Loic Minier <[EMAIL PROTECTED]>
Description:
evolution-data-server - evolution database backend server
evolution-data-server-common - architecture independent files for Evolution
Data Server
evolution-data-server-dbg - evolution database backend server with debugging
symbols
evolution-data-server-dev - Development files for evolution-data-server (meta
package)
libcamel1.2-8 - The Evolution MIME message handling library
libcamel1.2-dev - Development files for libcamel
libebook1.2-5 - Client library for evolution address books
libebook1.2-dev - Client library for evolution address books (development
files)
libecal1.2-6 - Client library for evolution calendars
libecal1.2-dev - Client library for evolution calendars (development files)
libedata-book1.2-2 - Backend library for evolution address books
libedata-book1.2-dev - Backend library for evolution address books
(development files)
libedata-cal1.2-5 - Backend library for evolution calendars
libedata-cal1.2-dev - Backend library for evolution calendars (development
files)
libedataserver1.2-7 - Utility library for evolution data servers
libedataserver1.2-dev - Utility library for evolution data servers
(development files)
libedataserverui1.2-6 - GUI utility library for evolution data servers
libedataserverui1.2-dev - GUI utility library for evolution data servers
(development files
libegroupwise1.2-10 - Client library for accessing groupwise POA through SOAP
interface
libegroupwise1.2-dev - Development files for libegroupwise
libexchange-storage1.2-1 - Backend library for evolution calendars
libexchange-storage1.2-dev - Backend library for evolution calendars
(development files)
Closes: 429876
Changes:
evolution-data-server (1.6.3-5etch1) stable-security; urgency=high
.
* SECURITY: New patch, 92_imap-negative-array-index, fixes potential
negative array index usage in IMAP code (remote); FEDORA-2007-0464;
GNOME #447414; closes: #429876.
Files:
c6bba980d10af2b16f1d71759b49ec95 1729 gnome optional
evolution-data-server_1.6.3-5etch1.dsc
b68864722532715d721f32e8a10660a1 9912159 gnome optional
evolution-data-server_1.6.3.orig.tar.gz
9b33f8055b3e5c137db24fe0b8589d5a 53304 gnome optional
evolution-data-server_1.6.3-5etch1.diff.gz
cbb1b41e70aac90317bd5ec2d7b698e5 1924028 gnome optional
evolution-data-server-common_1.6.3-5etch1_all.deb
2dab56843798132accdcfe498f20e1ca 483466 gnome optional
evolution-data-server_1.6.3-5etch1_i386.deb
d344d4381b2dd0bc46313d55f45b45fb 53902 devel optional
evolution-data-server-dev_1.6.3-5etch1_i386.deb
57f5e0da9547cef5b4134ac8b27cae50 3063792 gnome extra
evolution-data-server-dbg_1.6.3-5etch1_i386.deb
a1b6ae0bed72fa343bf1487c25bd3651 116278 libs optional
libedataserver1.2-7_1.6.3-5etch1_i386.deb
8556ea06f43377b612101ae88ae10e45 120004 libdevel optional
libedataserver1.2-dev_1.6.3-5etch1_i386.deb
2a4ac95061b770d2b9e6efed3c954e06 323878 libs optional
libcamel1.2-8_1.6.3-5etch1_i386.deb
387a08d4a54d5bf732ccfe93c2d1ffc7 116520 libdevel optional
libcamel1.2-dev_1.6.3-5etch1_i386.deb
0b6f49b20d7982267d0a46956faf31d1 128308 libs optional
libebook1.2-5_1.6.3-5etch1_i386.deb
e35aa468cfde6c7cfeeb22a1defc62d4 119704 libdevel optional
libebook1.2-dev_1.6.3-5etch1_i386.deb
7200bf0f2b4e6048852b284c2e9180d9 116750 libs optional
libedataserverui1.2-6_1.6.3-5etch1_i386.deb
36a965babac08064343c2d2d921f59d7 60860 libdevel optional
libedataserverui1.2-dev_1.6.3-5etch1_i386.deb
25710b12c103baa8249d9131efa93aad 92442 libs optional
libedata-book1.2-2_1.6.3-5etch1_i386.deb
80b39d0a3d8210e064c805eca23a4599 69044 libdevel optional
libedata-book1.2-dev_1.6.3-5etch1_i386.deb
46748e846c1b5698eb3806a117fa6e5e 279386 libs optional
libecal1.2-6_1.6.3-5etch1_i386.deb
7de704aba9273b0736cab6b0a1a1cb86 168604 libdevel optional
libecal1.2-dev_1.6.3-5etch1_i386.deb
2345e058ac5e96141e48d4cd9b3f4c76 102374 libs optional
libedata-cal1.2-5_1.6.3-5etch1_i386.deb
eddb3382663917b8a8e3c1e5f3eb3a5d 104898 libdevel optional
libedata-cal1.2-dev_1.6.3-5etch1_i386.deb
1cebc257ee8bd1c75018d2cbc1d34ed4 105822 libs optional
libegroupwise1.2-10_1.6.3-5etch1_i386.deb
2cd3c56c45f4d9678d82ab18825d24b5 61658 libdevel optional
libegroupwise1.2-dev_1.6.3-5etch1_i386.deb
15c395eeb73a7c47c6b6b0306651862a 168740 libs optional
libexchange-storage1.2-1_1.6.3-5etch1_i386.deb
4bd0c491d374a4a44153294a0eca2c06 92738 libdevel optional
libexchange-storage1.2-dev_1.6.3-5etch1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFGeoI6Xm3vHE4uyloRAnhOAJsE2h9d9BJ7ovzStfYIpV0XmCBtxACfQMQC
nqfgXmxSN5wIU/f4XQ38cd4=
=Gwxm
-----END PGP SIGNATURE-----
--- End Message ---
