Your message dated Sat, 05 Nov 2016 03:07:03 +0000 with message-id <e1c2rjv-000dlz...@fasolo.debian.org> and subject line Bug#843041: fixed in pacemaker 1.1.15-3 has caused the Debian Bug report #843041, regarding pacemaker: CVE-2016-7035 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 843041: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=843041 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: pacemaker Version: 1.1.15-2 Severity: grave Tags: security upstream patch Hi, the following vulnerability was published for pacemaker. Setting RC severity since I do not know how frequent such configrations are, but should be fixed for stretch. Patch is at [1]. CVE-2016-7035[0]: improper IPC guarding If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2016-7035 [1] https://github.com/ClusterLabs/pacemaker/pull/1166/commits/5a20855d6054ebaae590c09262b328d957cc1fc2 Please adjust the affected versions in the BTS as needed. Regards, Salvatore -- System Information: Debian Release: stretch/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Kernel: Linux 3.16.0-4-amd64 (SMP w/8 CPU cores) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init)
--- End Message ---
--- Begin Message ---Source: pacemaker Source-Version: 1.1.15-3 We believe that the bug you reported is fixed in the latest version of pacemaker, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 843...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Ferenc Wágner <wf...@debian.org> (supplier of updated pacemaker package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 05 Nov 2016 03:43:44 +0100 Source: pacemaker Binary: pacemaker-common pacemaker-resource-agents pacemaker pacemaker-cli-utils pacemaker-remote pacemaker-doc libcib4 libcib-dev libcrmcluster4 libcrmcluster-dev libcrmcommon3 libcrmcommon-dev libcrmservice3 libcrmservice-dev liblrmd1 liblrmd-dev libpe-rules2 libpe-status10 libpengine10 libpengine-dev libstonithd2 libstonithd-dev libtransitioner2 Architecture: source Version: 1.1.15-3 Distribution: unstable Urgency: high Maintainer: Debian HA Maintainers <debian-ha-maintain...@lists.alioth.debian.org> Changed-By: Ferenc Wágner <wf...@debian.org> Description: libcib-dev - cluster resource manager CIB library development libcib4 - cluster resource manager CIB library libcrmcluster-dev - cluster resource manager cluster library development libcrmcluster4 - cluster resource manager cluster library libcrmcommon-dev - cluster resource manager common library development libcrmcommon3 - cluster resource manager common library libcrmservice-dev - cluster resource manager service library development libcrmservice3 - cluster resource manager service library liblrmd-dev - cluster resource manager LRMD library development liblrmd1 - cluster resource manager LRMD library libpe-rules2 - cluster resource manager Policy Engine rules library libpe-status10 - cluster resource manager Policy Engine status library libpengine-dev - cluster resource manager Policy Engine library development libpengine10 - cluster resource manager Policy Engine library libstonithd-dev - cluster resource manager STONITH daemon library development libstonithd2 - cluster resource manager STONITH daemon library libtransitioner2 - cluster resource manager transitioner library pacemaker - cluster resource manager pacemaker-cli-utils - cluster resource manager command line utilities pacemaker-common - cluster resource manager common files pacemaker-doc - cluster resource manager HTML documentation pacemaker-remote - cluster resource manager proxy daemon for remote nodes pacemaker-resource-agents - cluster resource manager general resource agents Closes: 843041 Changes: pacemaker (1.1.15-3) unstable; urgency=high . * [1a878c9] Mark pacemaker-doc Multi-Arch: foreign. The Multi-Arch hinter is right here, even if I don't expect packages to depend on the Pacemaker documentation. * [3086e0c] /lib/lsb/init-functions is in package lsb-base (>= 3.0-6) * [9f90697] New patch High-libcrmcommon-fix-CVE-2016-7035-improper-IPC- gua.patch. High: libcrmcommon: fix CVE-2016-7035 (improper IPC guarding) Thanks to Jan Pokorný (Closes: #843041) * [196057c] New patch Fix-spelling-Negligable-Negligible.patch. Fix spelling: Negligable -> Negligible Checksums-Sha1: 9f329b0170da4f4cf86bf378771da3a868a8d889 3936 pacemaker_1.1.15-3.dsc 78546a21c1c413429c41caaa2a6835f5703d5c56 43980 pacemaker_1.1.15-3.debian.tar.xz Checksums-Sha256: 53af8cb48a99395fa0993a27eb3561521e280e9be0a79266d6c6742c8be54b78 3936 pacemaker_1.1.15-3.dsc 395569ca39f88cbdc8d638c4288a01eb07af3a755548867fdd0d464749275b7d 43980 pacemaker_1.1.15-3.debian.tar.xz Files: 8a2189271c3e4bcf3f308472ace55de3 3936 admin optional pacemaker_1.1.15-3.dsc 6129004ad3826ffeb604f7c6b2ded2f8 43980 admin optional pacemaker_1.1.15-3.debian.tar.xz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCgAGBQJYHUiGAAoJEDrI9xZHftsjnPcQAKx1pXIZi7Z0/wUHhxAzN1BN qMuPhrUQ3uv+nA3wLT302J5WOqK7vIoO+aK41dOkSIyN0JY6EKsaK8NEbauEMt6P NP3Y6BlSFvkaquf3RGe4JiKI23igeD0Td/vUUpzU8x7izoRiB288MoK1MDsEiqo9 66fyOHScPp8Yi6JUQzf4nwW639jt0WlH2UpQzV9JGLVLoypsK+lMfromhGWjxgCb 8HD85O/kLAVLj94X7t50Nx2UwZA41gtJVlW5k5VlkbBOnzjNXhZCBR3G1sVIUvMM ZPxchI1bfzc3pT2KA1S8uufr03OUKBm19f0qhl/+nKzDUAMbycS9lgzP30PIPvqt Nlp/EJpHos0KbZpnIuKnawVR6cHiQ4IfAI7/fEzeWFV/CgCyoBOGJ/1icNTK2a/4 IiyfhqimMHgPwQGy0H0scvGkwpveEMlP4C68WeEGBer3C/n0YmJnOwJt7ZXkj+i0 ee0QFPeXk0sOm3f5D8UzbVqGItS+Re8IFH/Mf7endX+80EzUHx4sIQxEInwE/nPb bH4i15JOIWglV4DcyGzHehvM8CwOMFjSMEa1tYqnOux57P3niE8id6aX2MCfhVLT USAYSe4YUfncR6uC2cjPC6Nxc/JPPKtpSOHp4U3kW4A+nTQavKSsSHLgRQcZ1dUH CacizhuMtU/Q7o9WEU/N =4xbJ -----END PGP SIGNATURE-----
--- End Message ---
