Bug#697584: marked as done (cups: CVE-2012-6094)

Mon, 07 Jan 2013 09:30:17 -0800 

Your message dated Mon, 7 Jan 2013 18:28:39 +0100
with message-id <[email protected]>
and subject line Re: Bug#697584: cups: CVE-2012-6094
has caused the Debian Bug report #697584,
regarding cups: CVE-2012-6094
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
697584: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=697584
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Package: cups
Severity: important
Tags: security

I'm not sure if this affects Cups in Debian:
http://www.openwall.com/lists/oss-security/2013/01/04/1

Stable isn't affected in any case, since systemd isn't present yet.

Cheers,
        Moritz

-- System Information:
Debian Release: 5.0.7
  APT prefers oldstable
  APT policy: (500, 'oldstable')
Architecture: i386 (i686)

Kernel: Linux 2.6.18 (SMP w/1 CPU core)
Locale: LANG=de_DE.UTF-8@euro, LC_CTYPE=de_DE.UTF-8@euro (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

--- End Message ---
--- Begin Message --- 
Hi Moritz, and thanks for your heads'up,

Le lundi, 7 janvier 2013 10.25:40, Moritz Muehlenhoff a écrit :
> Package: cups
> Severity: important
> Tags: security
> 
> I'm not sure if this affects Cups in Debian:
> http://www.openwall.com/lists/oss-security/2013/01/04/1
> 
> Stable isn't affected in any case, since systemd isn't present yet.

as far as I read the various reports linked from this CVE attribution mail, 
this vulnerability affects a patch [0] to cups shipped by RedHat and 
derivatives which isn't merged upstream and that we don't ship in any Debian 
release; it also isn't in our git repository.

I'm then hereby closing this bugreport; thanks again!

Cheers,

OdyX

[0] http://pkgs.fedoraproject.org/cgit/cups.git/tree/cups-systemd-socket.patch

Attachment: signature.asc
Description: This is a digitally signed message part.


--- End Message ---

Reply via email to