Your message dated Fri, 03 Jan 2014 12:19:41 +0000 with message-id <e1vz3j3-0004hm...@franck.debian.org> and subject line Bug#730104: fixed in moodle 2.5.3-3 has caused the Debian Bug report #730104, regarding yui: CVE-2013-6780 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 730104: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=730104 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: yui Severity: grave Tags: security Justification: user security hole This was assigned CVE-2013-6780: https://yuilibrary.com/support/20131111-vulnerability/ Given that upstream states | YUI 2 is an end-of-lifed project and is no longer supported. All YUI 2 .swf files | have been removed from the Yahoo CDN. If your site was taking advantage of the | presence of these files on the Yahoo CDN they will no longer be available. yui should be removed from unstable. Please file bugs against it's rdeps. Cheers, Moritz
--- End Message ---
--- Begin Message ---Source: moodle Source-Version: 2.5.3-3 We believe that the bug you reported is fixed in the latest version of moodle, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 730...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Thijs Kinkhorst <th...@debian.org> (supplier of updated moodle package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Fri, 03 Jan 2014 11:44:05 +0100 Source: moodle Binary: moodle Architecture: source all Version: 2.5.3-3 Distribution: unstable Urgency: medium Maintainer: Moodle Packaging Team <pkg-moodle-maintain...@lists.alioth.debian.org> Changed-By: Thijs Kinkhorst <th...@debian.org> Description: moodle - course management system for online learning Closes: 730104 732895 Changes: moodle (2.5.3-3) unstable; urgency=medium . * Drop unused libjs-yui dependency (closes: #730104). * Replace bundled yui3 with dependency on packaged libjs-yui3-min. * Add virtual-mysql-{server,client} dependency alternatives (closes: #732895). * Change owner of config.php from www-data to root. * Checked for policy 3.9.5, no changes necessary. Checksums-Sha1: 4a7057eacf3e2e75c6ac21e6728c0cdeff6dd79d 1679 moodle_2.5.3-3.dsc 3a566027b9b5f01bd965231541dc298fd3b9ae89 26538 moodle_2.5.3-3.debian.tar.gz 8ad70894bb0930f09e4585d5bfd3e9ed01382c93 15893164 moodle_2.5.3-3_all.deb Checksums-Sha256: ac5d59049c4e71be7810d2392a6b4c38b7508eab49904b01fff1335746b33687 1679 moodle_2.5.3-3.dsc f0fc61169a3f49582c03c3ccda4d3bc43cb6a400c398b4f13c0a618c0d360a01 26538 moodle_2.5.3-3.debian.tar.gz 666418d23a1fe3dcc674962d7d9069056a1daea8072527853c121d1d98787cd2 15893164 moodle_2.5.3-3_all.deb Files: 286f4831fe6ba048bf1c7794e1a1dc07 1679 web optional moodle_2.5.3-3.dsc 3dca3e1924c6d615d3e354d88b431918 26538 web optional moodle_2.5.3-3.debian.tar.gz d3cd3303c5ed13a2ddd2418eccee3639 15893164 web optional moodle_2.5.3-3_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAEBAgAGBQJSxqjDAAoJEFb2GnlAHawEFYwIAK/tCPQIzmiI/OK79+ZWV4fp MHFll/2+x2nPAPXCOBEZmCSScwxHbEKG1dgK4bYgJLZtjeMt4ZmY21P1SNrO19Fb saKiziaaSJ45Fc3vU9xovnsS3Gth91qADY2jX8O6qqVEPGIAYK/yUVhxPP8jxjxD 3KdtLuxhtq8fYtcrAjHTsU8vPsw3F0zMOTdFK7sCBxz6ia6Bz8uoGKBx7x6W0CiF WjOyNS1L6nF/vEVylWeS+MRRvsmUvD1sUTP+0Cjf22nEjW0ZCVdOcgvl5aLfji3Z F3krg1ImMwSAigGknp3NO0xjMp6JGlrZqV5CutFCRP//jmUMhxoR0U4Uz9nl9jI= =6VQg -----END PGP SIGNATURE-----
--- End Message ---
_______________________________________________ Pkg-javascript-devel mailing list Pkg-javascript-devel@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-javascript-devel
