Your message dated Sat, 05 Nov 2011 16:33:11 +0000
with message-id <[email protected]>
and subject line Bug#647614: fixed in nss 3.13.1.with.ckbi.1.88-1
has caused the Debian Bug report #647614,
regarding CVE-2011-3640
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
647614: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=647614
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: nss
Severity: normal
Tags: security

Hi,
the following bug has been reported for NSS:
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3640

While this doesn't warrant a DSA on it's own, we could fix it
along with the next NSS DSA (probably for the CA compromise
of the day?:
http://blog.mozilla.com/security/2011/11/03/revoking-trust-in-digicert-sdn-bhd-intermediate-certificate-authority/
 )

Cheers,
        Moritz



--- End Message ---
--- Begin Message ---
Source: nss
Source-Version: 3.13.1.with.ckbi.1.88-1

We believe that the bug you reported is fixed in the latest version of
nss, which is due to be installed in the Debian FTP archive:

libnss3-1d-dbg_3.13.1.with.ckbi.1.88-1_amd64.deb
  to main/n/nss/libnss3-1d-dbg_3.13.1.with.ckbi.1.88-1_amd64.deb
libnss3-1d_3.13.1.with.ckbi.1.88-1_amd64.deb
  to main/n/nss/libnss3-1d_3.13.1.with.ckbi.1.88-1_amd64.deb
libnss3-dev_3.13.1.with.ckbi.1.88-1_amd64.deb
  to main/n/nss/libnss3-dev_3.13.1.with.ckbi.1.88-1_amd64.deb
libnss3-tools_3.13.1.with.ckbi.1.88-1_amd64.deb
  to main/n/nss/libnss3-tools_3.13.1.with.ckbi.1.88-1_amd64.deb
nss_3.13.1.with.ckbi.1.88-1.debian.tar.gz
  to main/n/nss/nss_3.13.1.with.ckbi.1.88-1.debian.tar.gz
nss_3.13.1.with.ckbi.1.88-1.dsc
  to main/n/nss/nss_3.13.1.with.ckbi.1.88-1.dsc
nss_3.13.1.with.ckbi.1.88.orig.tar.gz
  to main/n/nss/nss_3.13.1.with.ckbi.1.88.orig.tar.gz



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Mike Hommey <[email protected]> (supplier of updated nss package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sat, 05 Nov 2011 17:05:26 +0100
Source: nss
Binary: libnss3-1d libnss3-tools libnss3-dev libnss3-1d-dbg
Architecture: source amd64
Version: 3.13.1.with.ckbi.1.88-1
Distribution: unstable
Urgency: low
Maintainer: Maintainers of Mozilla-related packages 
<[email protected]>
Changed-By: Mike Hommey <[email protected]>
Description: 
 libnss3-1d - Network Security Service libraries
 libnss3-1d-dbg - Debugging symbols for the Network Security Service libraries
 libnss3-dev - Development files for the Network Security Service libraries
 libnss3-tools - Network Security Service tools
Closes: 647614
Changes: 
 nss (3.13.1.with.ckbi.1.88-1) unstable; urgency=low
 .
   * New upstream release.
     - Distrusts malaysian Digicert Sdn. Bhd CA certificate.
     - Addresses CVE-2011-3640 (Untrusted search path vulnerability).
       Closes: #647614.
   * debian/patches/*: Refreshed patches.
   * debian/libnss3-1d.symbols: Add NSS 3.13 symbols.
Checksums-Sha1: 
 97bbcacd9c46f8353e3ffcdb3334ad5e4766f41a 2249 nss_3.13.1.with.ckbi.1.88-1.dsc
 ebc0258c8d1a3c2fe80941bd991b766552464fc6 6065634 
nss_3.13.1.with.ckbi.1.88.orig.tar.gz
 c9f95d29af44ac458b62cf80ed56adfd6b2f2238 74896 
nss_3.13.1.with.ckbi.1.88-1.debian.tar.gz
 222f54e3c60eac0af9726dfe95887d825228683d 1160324 
libnss3-1d_3.13.1.with.ckbi.1.88-1_amd64.deb
 29000e23b84e3416e0230fb68cc96be317daa9ad 387216 
libnss3-tools_3.13.1.with.ckbi.1.88-1_amd64.deb
 9032a16edcb0a8ed7dd8b35f75dd9a24b743b26b 273832 
libnss3-dev_3.13.1.with.ckbi.1.88-1_amd64.deb
 5c23e6a58f4e6ce9299ebabbf5dcec02f6623588 3493244 
libnss3-1d-dbg_3.13.1.with.ckbi.1.88-1_amd64.deb
Checksums-Sha256: 
 b86f18864b9bac1ad55423cc0b55d1d40d97bff20a76c49cffcd3befea460407 2249 
nss_3.13.1.with.ckbi.1.88-1.dsc
 456fd2ad036976660ae7e4e24edddc49f2f47e7ca490c1c5372771bbb5207879 6065634 
nss_3.13.1.with.ckbi.1.88.orig.tar.gz
 2b48657b97a8ee1ee4dc88755a02554d9905d880e2a56fbff9a4c09b74fe5871 74896 
nss_3.13.1.with.ckbi.1.88-1.debian.tar.gz
 e431bbd2215d41aee1f94b4d9ec95cb0a7c7bf9fd5ff593caba413ace51396fb 1160324 
libnss3-1d_3.13.1.with.ckbi.1.88-1_amd64.deb
 49af9d46bca69ea4c0832180da76f438dadf1651d18bdc7f87a94d0996e4b3d0 387216 
libnss3-tools_3.13.1.with.ckbi.1.88-1_amd64.deb
 6c97bb5066faf4cc8cf6137bc3622d2238f20cc12e4eeca9eaf7c7dbcf67bc4b 273832 
libnss3-dev_3.13.1.with.ckbi.1.88-1_amd64.deb
 30222777a6e535b13237682e74968b25ae15455af9f9308737070a8743d4fe65 3493244 
libnss3-1d-dbg_3.13.1.with.ckbi.1.88-1_amd64.deb
Files: 
 184b1b196f81829bde3eb4555da46dc1 2249 libs optional 
nss_3.13.1.with.ckbi.1.88-1.dsc
 ba972578f439d6efe12ef686079a98dd 6065634 libs optional 
nss_3.13.1.with.ckbi.1.88.orig.tar.gz
 a0aa694ad174faeb41598389d7298180 74896 libs optional 
nss_3.13.1.with.ckbi.1.88-1.debian.tar.gz
 0e9ddfb2c82326c696762c9560d4edf7 1160324 libs optional 
libnss3-1d_3.13.1.with.ckbi.1.88-1_amd64.deb
 357a8b4f9af540edfaef7f2be9904b1e 387216 admin optional 
libnss3-tools_3.13.1.with.ckbi.1.88-1_amd64.deb
 b3fa03ecaca67b1b8d150e79be71bd72 273832 libdevel optional 
libnss3-dev_3.13.1.with.ckbi.1.88-1_amd64.deb
 8e026822511b9c486418e97a4845edca 3493244 debug extra 
libnss3-1d-dbg_3.13.1.with.ckbi.1.88-1_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
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=9JC0
-----END PGP SIGNATURE-----



--- End Message ---

Reply via email to