Your message dated Thu, 23 May 2013 01:02:47 +0000
with message-id <[email protected]>
and subject line Bug#709282: fixed in colortest 20110624-2
has caused the Debian Bug report #709282,
regarding colortest: insecure use of temporary files
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
709282: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=709282
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: colortest
Version: 20110624-1
Severity: serious
Tags: security
Justification: Policy 10.4
colortest-8 and colortest-16 create temporary files insecurely:
TMP=/tmp/xterm$$
eval '$CMD $OPT >$TMP || echo fail >$TMP' 2>/dev/null
--
Jakub Wilk
--- End Message ---
--- Begin Message ---
Source: colortest
Source-Version: 20110624-2
We believe that the bug you reported is fixed in the latest version of
colortest, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Jari Aalto <[email protected]> (supplier of updated colortest package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Wed, 22 May 2013 19:12:24 +0300
Source: colortest
Binary: colortest
Architecture: source all
Version: 20110624-2
Distribution: unstable
Urgency: low
Maintainer: Jari Aalto <[email protected]>
Changed-By: Jari Aalto <[email protected]>
Description:
colortest - utilities to test color capabilities of terminal
Closes: 709282
Changes:
colortest (20110624-2) unstable; urgency=low
.
* debian/compat
- Update to 9.
* debian/control
- (Standards-Version): Update to 3.9.4.
- (Buid-Depends): Update to debhelper 9.
* debian/copyright
- Update to Copyright Format 1.0
* debian/patches
- (10): Update both patches to handle temp files securely
(security; Closes: #709282).
* debian/rules
- Adjust comments and .PHONY tag.
Checksums-Sha1:
15528d2057858624c0292d0c3411d5c32c753f3d 1855 colortest_20110624-2.dsc
cd99540b4385127f162109f9661b90c0847c919f 6332
colortest_20110624-2.debian.tar.gz
c4b8f901f70a634d2221552ffa1faee1b83cc550 12802 colortest_20110624-2_all.deb
Checksums-Sha256:
90dbe3d6c3892ed06071ce6621075d08828835fed23b3be5d0c96043484ff81e 1855
colortest_20110624-2.dsc
c4dd29ff56c6b7fb0878e106106a8fd650e3902b602f7f14d0f54fc75f0d4b0a 6332
colortest_20110624-2.debian.tar.gz
801f092a3f6058d4f3078c26bd875e6a90cad48dc160e5cff3a8b97d3a45dcf5 12802
colortest_20110624-2_all.deb
Files:
ce1ddae60cf48341aca16afc8ba7d0de 1855 utils optional colortest_20110624-2.dsc
274996939721e05f8479697dd9f0b4d4 6332 utils optional
colortest_20110624-2.debian.tar.gz
36cda73d07bcf0840ba6512d7b18b186 12802 utils optional
colortest_20110624-2_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)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=mRWE
-----END PGP SIGNATURE-----
--- End Message ---
