Bug#867717: marked as done (CVE-2017-11110)
Your message dated Sat, 05 Aug 2017 19:49:59 + with message-id and subject line Bug#867717: fixed in catdoc 0.94.4-1.1+deb8u1 has caused the Debian Bug report #867717, regarding CVE-2017-0 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 867717: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867717 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: catdoc Severity: grave Tags: security This was assigned CVE-2017-0: https://bugzilla.redhat.com/show_bug.cgi?id=1468471 Cheers, Moritz --- End Message --- --- Begin Message --- Source: catdoc Source-Version: 0.94.4-1.1+deb8u1 We believe that the bug you reported is fixed in the latest version of catdoc, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 867...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Salvatore Bonaccorso (supplier of updated catdoc package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 21 Jul 2017 12:34:24 +0200 Source: catdoc Binary: catdoc Architecture: source Version: 0.94.4-1.1+deb8u1 Distribution: jessie-security Urgency: high Maintainer: Nick Bane Changed-By: Salvatore Bonaccorso Closes: 867717 Description: catdoc - MS-Word to TeX or plain text converter Changes: catdoc (0.94.4-1.1+deb8u1) jessie-security; urgency=high . * Non-maintainer upload by the Security Team. * CVE-2017-0: Heap buffer overflow in ole_init (Closes: #867717) Checksums-Sha1: 053041814b050ab5348e58b53515fbe37e210e1a 1845 catdoc_0.94.4-1.1+deb8u1.dsc 26c9addb221543288c013ecadf4f6fb0c9eca13e 679156 catdoc_0.94.4.orig.tar.gz 6a8f019cd401679d35cef555cf10b2f8f39100aa 6984 catdoc_0.94.4-1.1+deb8u1.debian.tar.xz Checksums-Sha256: d78e4d84e9bc6437ebb090e49fdeb8f16b406c10b02bef2bde72de383de1b4f6 1845 catdoc_0.94.4-1.1+deb8u1.dsc c06fd69d2a218fcc2ed1320988cef07a67cfa12f25752766d746e25758ee 679156 catdoc_0.94.4.orig.tar.gz acd91ed2cfc4a539d8713656fa67baf8963c9b355a6e64f03e8d16cc84a5cca5 6984 catdoc_0.94.4-1.1+deb8u1.debian.tar.xz Files: 5b8964cf584d5b5150b470c557ef8272 1845 text optional catdoc_0.94.4-1.1+deb8u1.dsc 4820680e3611392caf2b4dd2413bfae5 679156 text optional catdoc_0.94.4.orig.tar.gz 5616790078d53ef94d42290a3f587be8 6984 text optional catdoc_0.94.4-1.1+deb8u1.debian.tar.xz -BEGIN PGP SIGNATURE- iQKmBAEBCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAllx2UZfFIAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk ZWJpYW4ub3JnAAoJEAVMuPMTQ89EgZwP/0bxSnAiA42e7ZQjhmN2fFysMK1QrhKD Cfg8JNcBolkg6D8MRt83giS1a58gXARWqysBzAyuusiA8zNw840+zQHKsW16xxXT 6GfffCHrSFeDl9pM7Te1Ebd6qYhO3K7cMaf47hE6Y8hXidbU16qeaeTJcY64e8WK RZmLAHOZ4wyfRMnGQxTqE5/xqLjgRm7/3Sx7xhevPBojmvhwVtzoeaaXlzNxC0Ls 5921nZlQPsP9xSvA1JIMwBxOhQvXN0ka0vsKy1KjjS9GL4zm73ysWRXAMzGOmWwW MhlspsG/RAUZ/lmEVCCwCR9pO5qUGT/Zqo0rD8/3TX32b+i8aEZzAXjrThtdryH1 ZDN66icws9lqh7uJ5SLsfKQiTW6vxt01+zrIxXkd7sU7m6L0jBdTMwZEZmqnKQ9Z cgGqSQN1uGXYPxolpqAq+CfZPDSld/Z5nmw5W2ZyJI16bdI3X5kjzScaO2gvQq1P FTshwtjOLznM5fzvhzG+sByzL49NKfCCmji6oVTedOrX0aaV1U5QzUNwoFaMMZfT tWvo+uWgLGJTw6Yr7oYFtbtFldQVIXnTbc6OV8fT6dAHE+y+P7hOt/vXilcXoWYh c8x/1MTHEfOwhloheBoR/IUzCfpxepBUMR7pRSbLp3v9HBoeS2ZFEB8FDVSDPsBT fVNGLEj+w3S0 =gVKV -END PGP SIGNATURE End Message ---
Bug#867717: marked as done (CVE-2017-11110)
Your message dated Sat, 05 Aug 2017 19:47:56 + with message-id and subject line Bug#867717: fixed in catdoc 1:0.94.3~git20160113.dbc9ec6+dfsg-1+deb9u1 has caused the Debian Bug report #867717, regarding CVE-2017-0 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 867717: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867717 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: catdoc Severity: grave Tags: security This was assigned CVE-2017-0: https://bugzilla.redhat.com/show_bug.cgi?id=1468471 Cheers, Moritz --- End Message --- --- Begin Message --- Source: catdoc Source-Version: 1:0.94.3~git20160113.dbc9ec6+dfsg-1+deb9u1 We believe that the bug you reported is fixed in the latest version of catdoc, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 867...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Salvatore Bonaccorso (supplier of updated catdoc package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Fri, 21 Jul 2017 12:38:52 +0200 Source: catdoc Binary: catdoc Architecture: source Version: 1:0.94.3~git20160113.dbc9ec6+dfsg-1+deb9u1 Distribution: stretch-security Urgency: high Maintainer: Martín Ferrari Changed-By: Salvatore Bonaccorso Closes: 867717 Description: catdoc - Convert Word, Excel, and PowerPoint files to plain text Changes: catdoc (1:0.94.3~git20160113.dbc9ec6+dfsg-1+deb9u1) stretch-security; urgency=high . * Non-maintainer upload by the Security Team. * CVE-2017-0: Heap buffer overflow in ole_init (Closes: #867717) Checksums-Sha1: 7dea28839964b0612eee7af135777fb2d0b165a3 2148 catdoc_0.94.3~git20160113.dbc9ec6+dfsg-1+deb9u1.dsc c48049682cb06b398d7ca863b6cce4a6b19e4b3b 141753 catdoc_0.94.3~git20160113.dbc9ec6+dfsg.orig.tar.gz 8e30a7d3274e66d5f437d1824425c1d37bb7175b 52752 catdoc_0.94.3~git20160113.dbc9ec6+dfsg-1+deb9u1.debian.tar.xz Checksums-Sha256: 35c69500d0ead9335789b222304c74c267102916218876a25b26ed275abb5916 2148 catdoc_0.94.3~git20160113.dbc9ec6+dfsg-1+deb9u1.dsc 3f98fb577a45925f853257f2a4b4caeab258f06c1056941335c9fb8d9eb712b6 141753 catdoc_0.94.3~git20160113.dbc9ec6+dfsg.orig.tar.gz f7b5a6bcdaf0ec26d8acc65f73640cdeb00d0cbe7a10df7040cc55cde9bb052a 52752 catdoc_0.94.3~git20160113.dbc9ec6+dfsg-1+deb9u1.debian.tar.xz Files: 99bda9a60f2dbaa66b996170f8c7aac1 2148 text optional catdoc_0.94.3~git20160113.dbc9ec6+dfsg-1+deb9u1.dsc 86d8e0308681817904a3cb68d6b62771 141753 text optional catdoc_0.94.3~git20160113.dbc9ec6+dfsg.orig.tar.gz 6f2c69d79fef810332d90c23e247a382 52752 text optional catdoc_0.94.3~git20160113.dbc9ec6+dfsg-1+deb9u1.debian.tar.xz -BEGIN PGP SIGNATURE- iQKmBAEBCgCQFiEERkRAmAjBceBVMd3uBUy48xNDz0QFAllx2qtfFIAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQSHGNhcm5pbEBk ZWJpYW4ub3JnAAoJEAVMuPMTQ89E2HEQAJb8KF5/Mw/bgcbIlQWSqf4zwcT845c4 7D7Vn0n2Mv1ixbljVVkheOrbmr3Mdh5T5bOiEEXaVaKrTes6RoxsZ4fQ/mywWZyh vfdGVIruUcQ3sfJfzslkjL1/j7sQE6C9ZdpTi3oS+iRowaPMo3PZTywOUzDjGTvU 4bzgGQdoQIo/q+AvLwy5vRDFO/iD7E8E46+kHjkBQTL2J8cWhHlESCZvyCC6CziH mPVXav+7EkU/cnFBzTQ/JEfctKW7l7rLFHbDGqGa9EZY9R7TcZ5zsayc2aKHioA5 ZCamhq8FSMbvir14Tqp2nueLs9+6UQVa/MaJXn0QbSqLsbq90l2/ocAmGqIOiZK4 OZcSfF22668/8XQRjtH+/aTzc86P+JIgHEHSqY4ehEJ868swNh18Avp/nOxLYdtm gtD1HjOhWaD9+0gF0HkLdQf8oIdaJIsqEcKnb4x6CJmIORsE1defAIKTbehhEk1R oXWHceNzP6vFhJ5g9dUj7/Q1+T9kRAnV/HLU6cHmt+7YoWGklfkcL9ldDDzzyqG7 ML2uODpjkT7k6pOHMYSVoJflMU92ftkJngUKNWLlhut45yEwiOhqTARKSnWgxZ8N mZxPiko980bRbxoMMhVNsG8dsNGO69X92TqfYml1ZatwWMWN8M8MuNvTq+IuwBbS KxCTQPTym3Yv =IwiR -END PGP SIGNATURE End Message ---
Bug#867717: marked as done (CVE-2017-11110)
Your message dated Thu, 20 Jul 2017 22:33:58 + with message-id and subject line Bug#867717: fixed in catdoc 1:0.95-3 has caused the Debian Bug report #867717, regarding CVE-2017-0 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 867717: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867717 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: catdoc Severity: grave Tags: security This was assigned CVE-2017-0: https://bugzilla.redhat.com/show_bug.cgi?id=1468471 Cheers, Moritz --- End Message --- --- Begin Message --- Source: catdoc Source-Version: 1:0.95-3 We believe that the bug you reported is fixed in the latest version of catdoc, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 867...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Martín Ferrari (supplier of updated catdoc package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Format: 1.8 Date: Thu, 20 Jul 2017 22:20:04 + Source: catdoc Binary: catdoc Architecture: source amd64 Version: 1:0.95-3 Distribution: unstable Urgency: high Maintainer: Martín Ferrari Changed-By: Martín Ferrari Description: catdoc - text extractor for MS-Office files Closes: 867717 Changes: catdoc (1:0.95-3) unstable; urgency=high . [ Salvatore Bonaccorso ] * CVE-2017-0: Heap buffer overflow in ole_init. Closes: #867717. . [ Martín Ferrari ] * Incorporate NMU patch, with thanks to Salvatore Bonaccorso. Checksums-Sha1: 264056e9c1de03ffe68cf848b3d0d8227d32e2ec 1834 catdoc_0.95-3.dsc 5c3c313f1898e114b34c0e7fd1996f5606db2a33 12516 catdoc_0.95-3.debian.tar.xz a84273df718137e3483c1e47abcf61e23362567a 122792 catdoc-dbgsym_0.95-3_amd64.deb 68475127df065fca22d7cde8d4a9a41634693b4e 6122 catdoc_0.95-3_amd64.buildinfo 28efc8da67e59b29646bb15bb179d5de82c81305 89702 catdoc_0.95-3_amd64.deb Checksums-Sha256: 851e8f48fe87f9e4a9f05a9f78fb17f1866849489c8d51c0de0508ecd32e7aca 1834 catdoc_0.95-3.dsc 691319e4fce83bb874c8c1956e7f5a7b27e87fbf064fddd0fc967b39dbe3d8c4 12516 catdoc_0.95-3.debian.tar.xz a7f414ec530fcbc188cb669fa5cad66cf4324601cd4148e7abba5a204e20123e 122792 catdoc-dbgsym_0.95-3_amd64.deb 58b20e33616540f39b55ba6c7d5f249b24ca632b93a595226c9505389d1c3084 6122 catdoc_0.95-3_amd64.buildinfo 3f00cf910ebe6020713d7ef624679bf716027a7d085dc76c96eb082314098331 89702 catdoc_0.95-3_amd64.deb Files: 9bcf511f017909b914e9c859201c7e7e 1834 text optional catdoc_0.95-3.dsc 34430d0fd1cad52ae323449ee6df8c4e 12516 text optional catdoc_0.95-3.debian.tar.xz dc4cdf2d9b9407cc1914c721469a8ac3 122792 debug extra catdoc-dbgsym_0.95-3_amd64.deb 3ffcfe9ac0e335a8d5b4707eb9e9b758 6122 text optional catdoc_0.95-3_amd64.buildinfo 70250e05a75cbc4e088d64e1eb651c46 89702 text optional catdoc_0.95-3_amd64.deb -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEETe94h3mvRsa9AoOeXdjgv5Gj09oFAllxLO4ACgkQXdjgv5Gj 09oDeRAAw091FvElV3wtCuOOznp0Mzt/t7b9fueOfwLZVFb3qhtHXt42p6uQcIR7 VhHEVtJOg+iVKTdlKaSay4XpUIamv/UYJymOotO8OCIbM5BZYZzyVB22roLoIgfD LxYFiaiNW+btLnbduYvSkcnkCPRg29p9WghOe7YIO+CpcdkQPjfwOfo/DlTjVdKt O+TXP/HUCW02gWowJnJQ76VydSlnzPwcNc9tMtogpniUnYFZNQHHX3x1QtwxS0Ba xdK6uzfIvUt33NympSo+urN8lqgUy0LaALSbTxxQEkw+CrG8xtPgJPsTqM9AUFJ9 4Vy5wZEw7bASFYPbemI8noQpjCcIe1wjjhc4YCaJx3r/8szyX6pJB+ddfTLUyPNm /THnCv6ZCrs8rSZpukqRKF3pxscJb5RfEy3gmVP4+QuFTVBlArtqDTgOPzqioxBL JhDEDZMLZ72+A0JSbLLdqkbn1WSPs/TU9Fc1limC6DHz9RHuWiLtcET3nYucd209 zthQL7SFFJ6w8hhYI1HPbnTVObSU/ozrykB9E9tzeak86VscW9O10bfaKgRLHRIT gzUuub363VMrddx8llwXSC03/kDCT5TTZ7EJM/7uW6nJG/U4ZdCbuoMbceJGo4yS iFdpONgVysPgPdSP4czHGJsA7R3BPn1F9/9yMTtVbSZsoE2G1wE= =Q+xc -END PGP SIGNATURE End Message ---