Bug#942165: marked as done (CVE-2019-14857)

[Debian Bug Tracking System]

Your message dated Wed, 16 Oct 2019 08:38:39 +0000
with message-id <e1ikepl-0006zz...@fasolo.debian.org>
and subject line Bug#942165: fixed in libapache2-mod-auth-openidc 2.4.0.3-1
has caused the Debian Bug report #942165,
regarding CVE-2019-14857
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
942165: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=942165
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Package: libapache2-mod-auth-openidc
Severity: grave
Tags: security

Please see: https://groups.google.com/forum/#!topic/mod_auth_openidc/boy1Ba3Gdk4

https://github.com/zmartzone/mod_auth_openidc/commit/5c15dfb08106c2451c2c44ce7ace6813c216ba75
https://github.com/zmartzone/mod_auth_openidc/commit/ce37080c6aea30aabae8b4a9b4eea7808445cc8e
https://github.com/zmartzone/mod_auth_openidc/pull/451

Cheers,
        Moritz
    

--- End Message ---

--- Begin Message ---

Source: libapache2-mod-auth-openidc
Source-Version: 2.4.0.3-1

We believe that the bug you reported is fixed in the latest version of
libapache2-mod-auth-openidc, which is due to be installed in the Debian FTP 
archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 942...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Moritz Schlarb <schla...@uni-mainz.de> (supplier of updated 
libapache2-mod-auth-openidc package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 16 Oct 2019 10:13:44 +0200
Source: libapache2-mod-auth-openidc
Architecture: source
Version: 2.4.0.3-1
Distribution: unstable
Urgency: high
Maintainer: Moritz Schlarb <schla...@uni-mainz.de>
Changed-By: Moritz Schlarb <schla...@uni-mainz.de>
Closes: 942165
Changes:
 libapache2-mod-auth-openidc (2.4.0.3-1) unstable; urgency=high
 .
   * Update watch file to use Github tag archives
   * New upstream version 2.4.0.3
     (Closes: #942165)
Checksums-Sha1:
 fca106f98d34b3e9f16eb42e4df519b0b153184e 2525 
libapache2-mod-auth-openidc_2.4.0.3-1.dsc
 d8df9aa4e085b7d230ada7a3ef8328c2b49830af 237869 
libapache2-mod-auth-openidc_2.4.0.3.orig.tar.gz
 5a3f79b68769cdb0327063ee40b727d0ec5f5d80 5044 
libapache2-mod-auth-openidc_2.4.0.3-1.debian.tar.xz
 904037fc4ae4d117e63953ce2ebcbef06a1ffa5f 7565 
libapache2-mod-auth-openidc_2.4.0.3-1_amd64.buildinfo
Checksums-Sha256:
 2c439c8408a6e13a2a2efc318f51be0f3fcd9e5b85278e76d2841f6011c8bb67 2525 
libapache2-mod-auth-openidc_2.4.0.3-1.dsc
 65dadbc19c4d5837b1cb52e080c7404d6435ddf66298ad8693ad2ed0ad4d1fbd 237869 
libapache2-mod-auth-openidc_2.4.0.3.orig.tar.gz
 819c5fb1b52be5d3a60090cac1d879ed5f3d54a90fc494243b80009c25710951 5044 
libapache2-mod-auth-openidc_2.4.0.3-1.debian.tar.xz
 b4c6ee709dc684d72fd0ca45aef4ea80dd89c94dae4901733382b00b6ce0ad50 7565 
libapache2-mod-auth-openidc_2.4.0.3-1_amd64.buildinfo
Files:
 8ba702880e8063b73ce7a07f169c2cb1 2525 httpd optional 
libapache2-mod-auth-openidc_2.4.0.3-1.dsc
 8929b6c8fea069bd445125b8e3113807 237869 httpd optional 
libapache2-mod-auth-openidc_2.4.0.3.orig.tar.gz
 9cc5745aac8fe58160bd9f73eecdf376 5044 httpd optional 
libapache2-mod-auth-openidc_2.4.0.3-1.debian.tar.xz
 27955009cbd36c9e5b2d78ca0d772c8c 7565 httpd optional 
libapache2-mod-auth-openidc_2.4.0.3-1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=NwOt
-----END PGP SIGNATURE-----

--- End Message ---