Your message dated Tue, 04 Jul 2017 22:33:58 +0000
with message-id <[email protected]>
and subject line Bug#867223: fixed in libclamunrar 0.99-4
has caused the Debian Bug report #867223,
regarding libclamunrar: CVE-2012-6706: arbitrary memory write
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
867223: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867223
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: libclamunrar
Version: 0.99-0+deb7u1
Severity: grave
Tags: security
Justification: user security hole
CVE-2012-6706 also affects libclamunrar. See #865461 for the original bug
report against
unrar-nonfree.
Upstream fix:
https://github.com/vrtadmin/clamav-devel/commit/d4699442bce76574573dc564e7f2177d679b88bd
Felix
--- End Message ---
--- Begin Message ---
Source: libclamunrar
Source-Version: 0.99-4
We believe that the bug you reported is fixed in the latest version of
libclamunrar, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Sebastian Andrzej Siewior <[email protected]> (supplier of updated
libclamunrar package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Wed, 05 Jul 2017 00:12:51 +0200
Source: libclamunrar
Binary: libclamunrar7
Architecture: source
Version: 0.99-4
Distribution: unstable
Urgency: medium
Maintainer: ClamAV Team <[email protected]>
Changed-By: Sebastian Andrzej Siewior <[email protected]>
Description:
libclamunrar7 - anti-virus utility for Unix - unrar support
Closes: 867223
Changes:
libclamunrar (0.99-4) unstable; urgency=medium
.
* Cherry pick fix for arbitrary memory write. CVE-2012-6706
(Closes: #867223).
Checksums-Sha1:
a98f548d447a5f3b340cd9c38315906d7e0c4e77 2129 libclamunrar_0.99-4.dsc
1f27bcef49f7f74f105e5745e360758b1d05817e 9112 libclamunrar_0.99-4.debian.tar.xz
1c30bf8ebfc05478f7c236ce770d2295b0281897 6132
libclamunrar_0.99-4_source.buildinfo
Checksums-Sha256:
35fc54aa780e0264af490c6e56c9aa5a0eccac8391d39d5fbbe9915665b6dd81 2129
libclamunrar_0.99-4.dsc
e3a392322eea57f275709382456b5dcb2a064479fabef238c6abb965027d7f13 9112
libclamunrar_0.99-4.debian.tar.xz
e56d9447603e5a04ad3688b52d6fc3d698745f1f4b92d0e95ca1d8a8615e4afa 6132
libclamunrar_0.99-4_source.buildinfo
Files:
a336132d91f30af02f763bfc1827db4f 2129 non-free/libs extra
libclamunrar_0.99-4.dsc
24f45f96571890491cf664367714f0f3 9112 non-free/libs extra
libclamunrar_0.99-4.debian.tar.xz
b42f6854fda59436043603ee0a7c7466 6132 non-free/libs extra
libclamunrar_0.99-4_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=C90p
-----END PGP SIGNATURE-----
--- End Message ---
_______________________________________________
Pkg-clamav-devel mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-clamav-devel
