Bug#988732: marked as done (CVE-2020-36326)

[Debian Bug Tracking System]

Your message dated Tue, 18 May 2021 21:18:34 +0000
with message-id <e1lj76o-000faf...@fasolo.debian.org>
and subject line Bug#988732: fixed in libphp-phpmailer 6.2.0-2
has caused the Debian Bug report #988732,
regarding CVE-2020-36326
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
988732: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988732
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Package: libphp-phpmailer
Severity: grave
Tags: security
X-Debbugs-Cc: Debian Security Team <t...@security.debian.org>

Please see
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36326

Patches:
https://github.com/PHPMailer/PHPMailer/commit/26f2848d3bbb57add5f34a467a1e3b2f9ce5cd2a
 (v6.4.1)
https://github.com/PHPMailer/PHPMailer/commit/7f267fb4aadfcf62e3ddc50494c469c6b9c4405a
 (v6.4.1)

Cheers,
         Moritz
                        

--- End Message ---

--- Begin Message ---

Source: libphp-phpmailer
Source-Version: 6.2.0-2
Done: Paul Gevers <elb...@debian.org>

We believe that the bug you reported is fixed in the latest version of
libphp-phpmailer, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 988...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Paul Gevers <elb...@debian.org> (supplier of updated libphp-phpmailer package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Tue, 18 May 2021 21:29:05 +0200
Source: libphp-phpmailer
Architecture: source
Version: 6.2.0-2
Distribution: unstable
Urgency: medium
Maintainer: Debian PHP PEAR Maintainers <pkg-php-p...@lists.alioth.debian.org>
Changed-By: Paul Gevers <elb...@debian.org>
Closes: 988732
Changes:
 libphp-phpmailer (6.2.0-2) unstable; urgency=medium
 .
   * Add upstream patches to fix CVE-2020-36326 (Closes: #988732)
Checksums-Sha1:
 f2d75be096ab105cc292df5f33aabd6e6ab00198 1809 libphp-phpmailer_6.2.0-2.dsc
 cfc4fa72c64f457b1ebb37162fcfd6ec3d6329b3 5172 
libphp-phpmailer_6.2.0-2.debian.tar.xz
Checksums-Sha256:
 2f27dc7daaf7b4d62f62e1635aafe913549e66f7f7f4ea201e28dfcd3c9b746b 1809 
libphp-phpmailer_6.2.0-2.dsc
 2f1712976aed9530ca4960e681bdae0029bda108ffd41df981b0357214342bfa 5172 
libphp-phpmailer_6.2.0-2.debian.tar.xz
Files:
 03d0b567bba8672a3fc9048199225a33 1809 php optional libphp-phpmailer_6.2.0-2.dsc
 9949e9d8a1bf32cafdfd85b43639d75b 5172 php optional 
libphp-phpmailer_6.2.0-2.debian.tar.xz

-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEEWLZtSHNr6TsFLeZynFyZ6wW9dQoFAmCkKoUACgkQnFyZ6wW9
dQr50gf8C5sieL8wzewc+1+Qrzy1PvK5aCT2Qh4Ry+J/s0gVpErozauUTxw+dG0e
ViMJJwxiZHpxJuhipvAeYztJCRaSXpoKol+Fykd2vrSEwYItxdp3If+X87T5P86m
IpPjYuhS9Fy0YdAJdXIL1D2Asvwn47Y/zGWJmAOwn7HwkjfpiPJtFcENDEKSCCvh
3gHWvvd2236JxS8Uul2bJknj6dO/AnWUDe/9Z8WIIxAF43w5cF8jaV39AksJidQL
Op0C58Q47W/9EmdFRUSCVRXx6PormIK3TyEEq1UTvhxLmo3PE00Zocczq/dm0V3x
x64RipFBt3pbsk7WfBgLap69NeMd5g==
=Wu2u
-----END PGP SIGNATURE-----

--- End Message ---