Bug#692650: marked as done (axis: CVE-2012-5784)
Your message dated Tue, 05 Feb 2013 06:47:35 + with message-id e1u2cjb-yn...@franck.debian.org and subject line Bug#692650: fixed in axis 1.4-17 has caused the Debian Bug report #692650, regarding axis: CVE-2012-5784 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 692650: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692650 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: axis Severity: grave Tags: security Justification: user security hole CVE-2012-5784 has been assigned to Axis being affected by the issues described in this paper: http://www.cs.utexas.edu/~shmat/shmat_ccs12.pdf (See Section 8.1) Cheers, Moritz ---End Message--- ---BeginMessage--- Source: axis Source-Version: 1.4-17 We believe that the bug you reported is fixed in the latest version of axis, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 692...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. tony mancill tmanc...@debian.org (supplier of updated axis package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Mon, 04 Feb 2013 22:14:27 -0800 Source: axis Binary: libaxis-java libaxis-java-doc Architecture: source all Version: 1.4-17 Distribution: experimental Urgency: low Maintainer: Debian Java Maintainers pkg-java-maintain...@lists.alioth.debian.org Changed-By: tony mancill tmanc...@debian.org Description: libaxis-java - SOAP implementation in Java libaxis-java-doc - SOAP implementation in Java (documentation) Closes: 653992 692650 Changes: axis (1.4-17) experimental; urgency=low . * Team upload. . [ Jakub Adam ] * Use bnd to generate OSGi metadata. * Remove Michael Koch from Uploaders (Closes: #653992). - Thanks for your contribution to this package. * Bump Standards-Version to 3.9.4. . [ tony mancill ] * Acknowledge NMU: Thank you to Alberto Fernández Martínez. - Fix CVE-2012-5784 (Closes: #692650) * Update d/copyright to add lintian warnings. Checksums-Sha1: ed0ae7c356250cfad55bb2c2506ade8724719fd6 2204 axis_1.4-17.dsc cccbc630ed05487fb0c0a589d1f42b7e99aa20b4 11634 axis_1.4-17.debian.tar.gz ec8e43299f4d85649cf112189fc034f323050a84 1496628 libaxis-java_1.4-17_all.deb fbdf6c3f956b904a6101c84ec2a90f71768da890 2037044 libaxis-java-doc_1.4-17_all.deb Checksums-Sha256: c1bf9af70c7fdcd2002c3f12c9cef1ec96ade17ea1e9bb330f5d9cef55d99430 2204 axis_1.4-17.dsc 9ef8159e3b25499629e0bee100b33ea1b69579dc61fe9a43dda78c1c906ce805 11634 axis_1.4-17.debian.tar.gz a0135db55fdf75f3d81f6dd879622bc9e9cbd0256bdc70a7eb2f542a357c82b5 1496628 libaxis-java_1.4-17_all.deb a7edc77983df8314c5f70367eef51af72f820b892f41ac335fe66ba6bf4e2238 2037044 libaxis-java-doc_1.4-17_all.deb Files: 4059016df119efb53d335963b963c726 2204 java optional axis_1.4-17.dsc e2aa34f05e9dde72dd4685d1eed595f3 11634 java optional axis_1.4-17.debian.tar.gz b9bc5d65fe85bedf992ea91ce7f4b18e 1496628 java optional libaxis-java_1.4-17_all.deb 59566de4241473a8db3f4eff0d524330 2037044 doc optional libaxis-java-doc_1.4-17_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.12 (GNU/Linux) iQIcBAEBAgAGBQJREKdIAAoJECHSBYmXSz6WDUIP+wXb2SJPD+3qtRJnAuvqT8fw AQAHeDjxNwRIRkXmizmGBH9+BCJMPHXoPSRk1wIF4NDS6bsLXo+LJ+ryPPRewfjA 7vs+lxORBb11CAUhi+IQ6qms2oYIzkpJGWal+9TsBJSA/i0BquGWy8auX4Mn5MFb x9iVVVoBMe1+5KxgbopoptW5daoGFV/rrHt7ZgjFqMdT6LMWDJ1KeWyP6kJUcw6H ZJhD5ICQ/EbYBHIERIy1dDsp6GUlHsO0vbRGm+XUsAJtTgkFG+QA0bZyvf9BrIbh skanQb0mf/aRvxUkq7dwHNnJ4QSVdtw+pmpbnsVtEQ6oFvWJ3CGuQ0tRaSmVCTEX 3BYq4wm0+tAbcUZ3PBxOHPVthHaV4XGXVMXpO8FNENQXBq5Kt6shPN7cdmobvrtw zvs5OuxPhdUcMGNXywKHZRRtRJmlfCeg9Pp3MYju0HlLZhFOcbnc9vxLPLNTrS2p biC19fvUk4ovJV0zg6hr+4XxqviuT0wP2z0apuDvFZYH1vtM4DgkVgw+ztVuN2Nt zRctOC6W8gqdtb98aBPl/4cnLj4xwpiQ9llryZjrY3aIj0XvzVIDqBmJHcOgTJ/q H4SAflRrIJNhSQQrxFWwCYmMKdHODI5e/UUObMgbFhRYexX+MJYAARavT0AU3xUm /127F8yrz7WQjn7vd1J7 =CH1e -END PGP SIGNATUREEnd Message---
Bug#692650: marked as done (axis: CVE-2012-5784)
Your message dated Fri, 07 Dec 2012 09:32:45 + with message-id e1tguix-0006ae...@franck.debian.org and subject line Bug#692650: fixed in axis 1.4-16.2 has caused the Debian Bug report #692650, regarding axis: CVE-2012-5784 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 692650: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692650 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: axis Severity: grave Tags: security Justification: user security hole CVE-2012-5784 has been assigned to Axis being affected by the issues described in this paper: http://www.cs.utexas.edu/~shmat/shmat_ccs12.pdf (See Section 8.1) Cheers, Moritz ---End Message--- ---BeginMessage--- Source: axis Source-Version: 1.4-16.2 We believe that the bug you reported is fixed in the latest version of axis, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 692...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Alberto Fernández Martínez inf...@gmail.com (supplier of updated axis package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Thu, 6 Dec 2012 14:28:00 +0100 Source: axis Binary: libaxis-java libaxis-java-doc Architecture: source all Version: 1.4-16.2 Distribution: unstable Urgency: low Maintainer: Debian Java Maintainers pkg-java-maintain...@lists.alioth.debian.org Changed-By: Alberto Fernández Martínez inf...@gmail.com Description: libaxis-java - SOAP implementation in Java libaxis-java-doc - SOAP implementation in Java (documentation) Closes: 692650 Changes: axis (1.4-16.2) unstable; urgency=low . * Non-maintainer upload. * Fix CVE-2012-5784 (Closes: #692650) * Fix CN extraction from DN of X500 principal. * Fix wildcard validation on ssl connections Checksums-Sha1: 48f38fa463e1c0897a9e52c04ac691ffb195d7ae 1602 axis_1.4-16.2.dsc 8f578501c50e7d1a342ba40da7ada21f0508d896 11868 axis_1.4-16.2.debian.tar.gz 5bd1b2d03f2c53f044edc451ac6d171f05b6fd43 1494606 libaxis-java_1.4-16.2_all.deb c9d5ceacfb918dd6f7feab2b8b287426dabbb04f 2036068 libaxis-java-doc_1.4-16.2_all.deb Checksums-Sha256: 88dce098ba6314366bc365cd04897ae057e8b9d863b3a991d37a6c044fc6967a 1602 axis_1.4-16.2.dsc a844225b1c10b50e59ff9ed295e9d01db4546451400eb611780e77e94878b227 11868 axis_1.4-16.2.debian.tar.gz 032d34c27629460224bed4ab314c4e1475af22633bb2e00bdfdbe56100f7d194 1494606 libaxis-java_1.4-16.2_all.deb d7def35539b836ab97e408eb1a20058789a519cc02ac4cfb73d4d2bc82188781 2036068 libaxis-java-doc_1.4-16.2_all.deb Files: e4970d88f7ffbeca4944d92d15ab15f4 1602 java optional axis_1.4-16.2.dsc 16b495a03148b42d2ceec1e2a351b2e5 11868 java optional axis_1.4-16.2.debian.tar.gz 9602c21a20bea96e5d901f1a4e0afccc 1494606 java optional libaxis-java_1.4-16.2_all.deb cabf67754524fa146cb1803efbc59987 2036068 doc optional libaxis-java-doc_1.4-16.2_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.12 (GNU/Linux) iEYEARECAAYFAlDBtzAACgkQYDBbMcCf01rmegCeO+D1kGu17NdOSNWaD8CeJH1u uRsAoJ9c8DzzWXirqDaVFvrJ43fENEUq =oY9m -END PGP SIGNATUREEnd Message---
Bug#692650: marked as done (axis: CVE-2012-5784)
Your message dated Thu, 06 Dec 2012 11:47:56 + with message-id e1tgzvo-0001rk...@franck.debian.org and subject line Bug#692650: fixed in axis 1.4-16.1 has caused the Debian Bug report #692650, regarding axis: CVE-2012-5784 to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 692650: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692650 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems ---BeginMessage--- Package: axis Severity: grave Tags: security Justification: user security hole CVE-2012-5784 has been assigned to Axis being affected by the issues described in this paper: http://www.cs.utexas.edu/~shmat/shmat_ccs12.pdf (See Section 8.1) Cheers, Moritz ---End Message--- ---BeginMessage--- Source: axis Source-Version: 1.4-16.1 We believe that the bug you reported is fixed in the latest version of axis, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 692...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Alberto Fernández Martínez inf...@gmail.com (supplier of updated axis package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.8 Date: Wed, 5 Dec 2012 17:28:00 +0100 Source: axis Binary: libaxis-java libaxis-java-doc Architecture: source all Version: 1.4-16.1 Distribution: unstable Urgency: low Maintainer: Debian Java Maintainers pkg-java-maintain...@lists.alioth.debian.org Changed-By: Alberto Fernández Martínez inf...@gmail.com Description: libaxis-java - SOAP implementation in Java libaxis-java-doc - SOAP implementation in Java (documentation) Closes: 692650 Changes: axis (1.4-16.1) unstable; urgency=low . * Non-maintainer upload. * Fix CVE-2012-5784 (Closes: #692650) Checksums-Sha1: 8e159512abc01815c3d20ddb431e294cc1986fb8 1602 axis_1.4-16.1.dsc f3206e0fb139fbf7e28662633f1ccb60417a2746 11894 axis_1.4-16.1.debian.tar.gz 6f22a687b8782e711d81971b67e39093237ed89f 1493966 libaxis-java_1.4-16.1_all.deb 659c7f3824cdec752d3b19c4388d2ce8477b79dc 2020892 libaxis-java-doc_1.4-16.1_all.deb Checksums-Sha256: 5b56fa34e478320dbe527a24c364f82389fe7a0fb0f2b23cf3a879a25363d453 1602 axis_1.4-16.1.dsc 85ad8499b327d4eb750b35e1461a71faf521e6bfdb5fd675fcc5230fd5fb1a25 11894 axis_1.4-16.1.debian.tar.gz 4aa9a2e546210d0b68a17e3bd86f5a2ce4a31c6db4fac5d9572a37d3c975be15 1493966 libaxis-java_1.4-16.1_all.deb 6519e20551c61458be7b8ed1e8b9bf728635ca87416b21cf15efa29225d6303b 2020892 libaxis-java-doc_1.4-16.1_all.deb Files: 69efbb01ca56ad9981e8598365f7bdb2 1602 java optional axis_1.4-16.1.dsc a2410ffc509dab87d8aef631ac07c110 11894 java optional axis_1.4-16.1.debian.tar.gz 17c015988107b2ab9cc0effde0156f65 1493966 java optional libaxis-java_1.4-16.1_all.deb 96d8325094d1c6f2ad4605bfcf3c98c5 2020892 doc optional libaxis-java-doc_1.4-16.1_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.12 (GNU/Linux) iEYEARECAAYFAlC/xQ0ACgkQYDBbMcCf01q0CACgiU2g86vDAXeE/DbMMUq7eApu OOwAn2lOnfPtI26rzxzV7lFBF/XFwAjL =pgND -END PGP SIGNATUREEnd Message---
