Your message dated Mon, 28 Apr 2008 10:32:02 +0000
with message-id <[EMAIL PROTECTED]>
and subject line Bug#478121: fixed in kronolith2 2.1.8-1
has caused the Debian Bug report #478121,
regarding kronolith2: XSS vulnerability
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
478121: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=478121
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: kronolith2
Version: 2.1.4-1
Severity: important
Tags: security

The package kronolith2 has XSS vulnerability. See:
http://forum.aria-security.com/showthread.php?t=49
https://bugs.gentoo.org/show_bug.cgi?id=219304

Regards,
-- 
Gregory Colpart <[EMAIL PROTECTED]>  GnuPG:1024D/C1027A0E
Evolix - Informatique et Logiciels Libres http://www.evolix.fr/



--- End Message ---
--- Begin Message ---
Source: kronolith2
Source-Version: 2.1.8-1

We believe that the bug you reported is fixed in the latest version of
kronolith2, which is due to be installed in the Debian FTP archive:

kronolith2_2.1.8-1.diff.gz
  to pool/main/k/kronolith2/kronolith2_2.1.8-1.diff.gz
kronolith2_2.1.8-1.dsc
  to pool/main/k/kronolith2/kronolith2_2.1.8-1.dsc
kronolith2_2.1.8-1_all.deb
  to pool/main/k/kronolith2/kronolith2_2.1.8-1_all.deb
kronolith2_2.1.8.orig.tar.gz
  to pool/main/k/kronolith2/kronolith2_2.1.8.orig.tar.gz



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Gregory Colpart (evolix) <[EMAIL PROTECTED]> (supplier of updated kronolith2 
package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Mon, 28 Apr 2008 01:39:49 +0200
Source: kronolith2
Binary: kronolith2
Architecture: source all
Version: 2.1.8-1
Distribution: unstable
Urgency: high
Maintainer: Horde Maintainers <[EMAIL PROTECTED]>
Changed-By: Gregory Colpart (evolix) <[EMAIL PROTECTED]>
Description: 
 kronolith2 - calendar component for Horde Framework
Closes: 478121
Changes: 
 kronolith2 (2.1.8-1) unstable; urgency=high
 .
   * New upstream release.
   * Fix XSS vulnerability in the add event screen. (Closes: #478121)
   * debian/copyright file improvements.
Checksums-Sha1: 
 0356f5e370ee907846e5852dbcfadd879d6f20f8 1351 kronolith2_2.1.8-1.dsc
 e60bdd72ab6576503a8adeb41921584fe297bf7b 1920783 kronolith2_2.1.8.orig.tar.gz
 66107d2904f8671d4dffab94eaca6c6bca8e50f9 5952 kronolith2_2.1.8-1.diff.gz
 0a8f03a1f31f9439a08dbcd2548cfb9b2ceb5d66 1925362 kronolith2_2.1.8-1_all.deb
Checksums-Sha256: 
 8df3ea23550bd7f6ed3f97f9e494d28cad5792193a395872c45918ed09d1b095 1351 
kronolith2_2.1.8-1.dsc
 0d5c8cfb7ea5ef15b3f1fe4408ad668bdb9deaacdcefc186214954e452af2c9a 1920783 
kronolith2_2.1.8.orig.tar.gz
 a0e6b2fb9a2c82958d663ed0e6258f60d264093926270655346f113e5b38cdbb 5952 
kronolith2_2.1.8-1.diff.gz
 6d23f9caea07d11f3e5c47c17fade23a38c18e45cbafc706177d9bdce202d950 1925362 
kronolith2_2.1.8-1_all.deb
Files: 
 15fafdf71ad41ad70ffc88d98fdd6763 1351 web optional kronolith2_2.1.8-1.dsc
 8970697f2eb41ce31b204d71f9c424e5 1920783 web optional 
kronolith2_2.1.8.orig.tar.gz
 1b4440fce111888fdb601c94c9da678e 5952 web optional kronolith2_2.1.8-1.diff.gz
 c2344ddb78600b40672495e2f9289ded 1925362 web optional 
kronolith2_2.1.8-1_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFIFaXaHYflSXNkfP8RAiKdAJsHTKI9/0DT5tMuUNbKcFFJjLDm0gCeKNNv
/7DnqC8KOLoPuxb9c9RfCtU=
=bwiv
-----END PGP SIGNATURE-----



--- End Message ---

Reply via email to