Your message dated Mon, 31 Oct 2005 03:02:07 -0800
with message-id <[EMAIL PROTECTED]>
and subject line Bug#335931: fixed in chmlib 0.37-1
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--------------------------------------
Received: (at submit) by bugs.debian.org; 26 Oct 2005 19:40:42 +0000
>From [EMAIL PROTECTED] Wed Oct 26 12:40:42 2005
Return-path: <[EMAIL PROTECTED]>
Received: from mail.enyo.de [212.9.189.167]
by spohr.debian.org with esmtp (Exim 3.36 1 (Debian))
id 1EUr8c-0002iU-00; Wed, 26 Oct 2005 12:40:42 -0700
Received: from deneb.vpn.enyo.de ([212.9.189.177] helo=deneb.enyo.de)
by albireo.enyo.de with esmtp id 1EUr8a-0001Vm-CH
for [EMAIL PROTECTED]; Wed, 26 Oct 2005 21:40:40 +0200
Received: from fw by deneb.enyo.de with local (Exim 4.54)
id 1EUr7F-0003yD-1B
for [EMAIL PROTECTED]; Wed, 26 Oct 2005 21:39:17 +0200
From: Florian Weimer <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Subject: chmlib exploitable buffer overflow
Date: Wed, 26 Oct 2005 21:39:17 +0200
Message-ID: <[EMAIL PROTECTED]>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level:
X-Spam-Status: No, hits=-8.0 required=4.0 tests=BAYES_00,HAS_PACKAGE
autolearn=no version=2.60-bugs.debian.org_2005_01_02
Package: chmlib
Version: 0.36-3
Severity: grave
Tags: security
Advisory: chmlib exploitable buffer overflow
Product: chmlib
Affected Version: <=0.36
Immune Version: >0.36
OS: Tested on linux 2.4 probably other OS affected as well
Date: 26.10.2005
Author: Sven Tantau - http://www.sven-tantau.de/
Vendor-URL: http://morte.jedrea.com/%7Ejedwin/projects/chmlib/
Vendor-Status: informed, vendor released a fixed version
Advisory-URL:
http://www.sven-tantau.de/public_files/chmlib/chmlib_20051126.txt
This issue appears to be different from Debian bug #327431.
---------------------------------------
Received: (at 335931-close) by bugs.debian.org; 31 Oct 2005 11:09:13 +0000
>From [EMAIL PROTECTED] Mon Oct 31 03:09:13 2005
Return-path: <[EMAIL PROTECTED]>
Received: from katie by spohr.debian.org with local (Exim 3.36 1 (Debian))
id 1EWXQV-0005Fc-00; Mon, 31 Oct 2005 03:02:07 -0800
From: Julien Lemoine <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
X-Katie: $Revision: 1.56 $
Subject: Bug#335931: fixed in chmlib 0.37-1
Message-Id: <[EMAIL PROTECTED]>
Sender: Archive Administrator <[EMAIL PROTECTED]>
Date: Mon, 31 Oct 2005 03:02:07 -0800
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Level:
X-Spam-Status: No, hits=-6.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER
autolearn=no version=2.60-bugs.debian.org_2005_01_02
Source: chmlib
Source-Version: 0.37-1
We believe that the bug you reported is fixed in the latest version of
chmlib, which is due to be installed in the Debian FTP archive:
chmlib_0.37-1.diff.gz
to pool/main/c/chmlib/chmlib_0.37-1.diff.gz
chmlib_0.37-1.dsc
to pool/main/c/chmlib/chmlib_0.37-1.dsc
chmlib_0.37.orig.tar.gz
to pool/main/c/chmlib/chmlib_0.37.orig.tar.gz
libchm-bin_0.37-1_i386.deb
to pool/main/c/chmlib/libchm-bin_0.37-1_i386.deb
libchm-dev_0.37-1_i386.deb
to pool/main/c/chmlib/libchm-dev_0.37-1_i386.deb
libchm1_0.37-1_i386.deb
to pool/main/c/chmlib/libchm1_0.37-1_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Julien Lemoine <[EMAIL PROTECTED]> (supplier of updated chmlib package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Mon, 31 Oct 2005 11:33:24 +0100
Source: chmlib
Binary: libchm-dev libchm-bin libchm1
Architecture: source i386
Version: 0.37-1
Distribution: unstable
Urgency: high
Maintainer: Julien LEMOINE <[EMAIL PROTECTED]>
Changed-By: Julien Lemoine <[EMAIL PROTECTED]>
Description:
libchm-bin - library for dealing with Microsoft CHM format files
libchm-dev - library for dealing with Microsoft CHM format files
libchm1 - library for dealing with Microsoft CHM format files
Closes: 335931
Changes:
chmlib (0.37-1) unstable; urgency=high
.
* New upstream release (Fixes buffer overflow. Closes: #335931)
Files:
98334e587c732b89401aa90907b89972 607 libs optional chmlib_0.37-1.dsc
458c14c7a38c441263e6984924a05b24 363315 libs optional chmlib_0.37.orig.tar.gz
7778a275c12c1ea946c27dd61400b662 8648 libs optional chmlib_0.37-1.diff.gz
de920d34e9ee3b41d0e07731f500f232 25968 libs optional libchm1_0.37-1_i386.deb
fd7820b79aff1b9c5c9d613ab9c549c8 16074 libdevel optional
libchm-bin_0.37-1_i386.deb
b965ec232df868546a1177609ae700cf 23242 libdevel optional
libchm-dev_0.37-1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
iD8DBQFDZfTlc29c8N2YKnURAoX3AKDMu43JpzodZ0c3Ha1K3Lw8rD13zwCg2zfI
nHpaoDF37CNRyiMGv8CXUbQ=
=VDpi
-----END PGP SIGNATURE-----
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
