Your message dated Sat, 11 Aug 2018 12:19:09 +0000 with message-id <e1fosrn-000267...@fasolo.debian.org> and subject line Bug#901912: fixed in discount 2.2.4-1 has caused the Debian Bug report #901912, regarding CVE-2018-11468 CVE-2018-11503 CVE-2018-11504 CVE-2018-12495 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 901912: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=901912 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: discount Severity: grave Tags: security Hi, please see https://security-tracker.debian.org/tracker/CVE-2018-11468 https://security-tracker.debian.org/tracker/CVE-2018-11503 https://security-tracker.debian.org/tracker/CVE-2018-11504 https://security-tracker.debian.org/tracker/CVE-2018-12495 Cheers, Moritz
--- End Message ---
--- Begin Message ---Source: discount Source-Version: 2.2.4-1 We believe that the bug you reported is fixed in the latest version of discount, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 901...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Alessandro Ghedini <gh...@debian.org> (supplier of updated discount package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 11 Aug 2018 12:46:55 +0100 Source: discount Binary: discount libmarkdown2 libmarkdown2-dev Architecture: source Version: 2.2.4-1 Distribution: unstable Urgency: medium Maintainer: Alessandro Ghedini <gh...@debian.org> Changed-By: Alessandro Ghedini <gh...@debian.org> Description: discount - implementation of the Markdown markup language in C libmarkdown2 - implementation of the Markdown markup language in C (library) libmarkdown2-dev - implementation of the Markdown markup language in C (dev files) Closes: 901912 Changes: discount (2.2.4-1) unstable; urgency=medium . * New upstream release - Fix several heap buffer overflows as per CVE-2018-11468, CVE-2018-11503, CVE-2018-11504 and CVE-2018-12495 (Closes: #901912) * Update symbols file * Bump Standards-Version to 4.2.0 (no changes needed) * Drop 01_honour-build-flags.patch (not needed anymore) * Enable github-style checkboxes in lists Checksums-Sha1: fe0ba6e1e2a26da6e696e36aff98d010a5111e2e 1957 discount_2.2.4-1.dsc faa1b528ab4473c77ece33010f0b07ee00dbc838 125186 discount_2.2.4.orig.tar.gz 23423f6b626ac4e363a3b6532fa2323bd8d0b121 5140 discount_2.2.4-1.debian.tar.xz 9f763042deb334b29e8dad8ca2e7c61bd4f3e324 6603 discount_2.2.4-1_amd64.buildinfo Checksums-Sha256: 1f6e9cbb28989876e7fc0be232a0f952dd40bbeda94c26d537248b2e1c2f2103 1957 discount_2.2.4-1.dsc 918905377e6ed3d0a7158cac0a4a18ed3c4cc0cad8ee95dddd82cb86ba9dd044 125186 discount_2.2.4.orig.tar.gz 370104a0ff001f0f8d484a843bf048f27a9ae62ecb8227ad8951fce398f86588 5140 discount_2.2.4-1.debian.tar.xz a9a9697101c09b9a46ad29e2621f0fd22851d8f942413ed171735f2f2df01c28 6603 discount_2.2.4-1_amd64.buildinfo Files: d3383c1cd0c51cc087b3e62d2481eb98 1957 text optional discount_2.2.4-1.dsc cba97b47b3ec8cc52f4b6b1f09b966f8 125186 text optional discount_2.2.4.orig.tar.gz f2b0602b7b027084379d9fe560468de6 5140 text optional discount_2.2.4-1.debian.tar.xz 4e1d6ba80e37215a65a70bae6e1c1950 6603 text optional discount_2.2.4-1_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEBsId305pBx+F583DbwzL4CFiRygFAltuzWkACgkQbwzL4CFi RyhcBhAAmjm+YyuFg7njQ0yGZAEzGbv5t9/ZErnghHcUkcZzsQlwT7aTRXK9SI2V hxG9s49TQ/0LNoFH3+Px4BBCdDNkEF1LIhLOmMBkI14Iv10YIAIareVWwuHVbFrW 8Ue1BnO50OEE/7PxrOD8nJ5isn0un4P+Uk5w51wqVOVcRRamLYgn6i++idLn6k7E BsZ7F/w2wUA0QyDkpXE5vGp3/shCD5lUdoWVZlEQZjox/zUkPaxXSdUbLvnXbBXc eNLO4yzZPgaUOZAI/vxSqbVovTawmJJhaJFu2b4EYo8e6Q97igJUVYVlxeH/xhnR kS9zOWiP56eafR8tzqrKPRe5omj2+Pc5M2fM/xKDwVreXRD5Xk3ViLaOfLbI7ebt aP0MG1s8mjna0+ePXtOnPmctiJECvWjMcJsJAZkP952rNGQ4mc9muW7qF9btha1y Ew6HaHDveYDyRgW3CHAeYYNWFgAFi+WvEWm8lUiWXSHBY0bgUN63257P13xFsaoE qJI38xTTY52xJdsPkd1Sy/WS8DpxPZtdoIPThBEC548NjkhX7kWqYPaf3CL4gFmY kcOGXLzYOeQqtZZAwS6Eu04JDwGU4S+PCb2g3juugFTa7TTNOthG4hxKEwyvnaTQ CL/qWc8k+ofo/pGir9LkvsR0tam7j2n5af0arOCz/8Lk7bOOIx0= =3OO2 -----END PGP SIGNATURE-----
--- End Message ---
