Your message dated Mon, 06 Jan 2014 22:48:35 +0000
with message-id <[email protected]>
and subject line Bug#731999: fixed in typo3-src 4.3.9+dfsg1-1+squeeze9
has caused the Debian Bug report #731999,
regarding typo3-src: TYPO3-CORE-SA-2013-004
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
731999: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=731999
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: typo3-src
Version: 4.5.30+dfsg1-2
Severity: important
Tags: fixed-upstream, security
Following vulnerabilities was published for TYPO3 and a bit special issue also
fixed at the same time.
http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004/
http://typo3.org/teams/security/security-bulletins/typo3-flow/typo3-flow-sa-2013-001/
CVE request http://www.openwall.com/lists/oss-security/2013/12/11/5
Please use following CVEs in changelog:
CVE-2013-7073
CVE-2013-7074
CVE-2013-7075
CVE-2013-7076
CVE-2013-7077
CVE-2013-7078
CVE-2013-7079
CVE-2013-7080
CVE-2013-7081
CVE-2013-7082
I'm happy to help if there is any questions about these issues.
---
Henri Salo
signature.asc
Description: Digital signature
--- End Message ---
--- Begin Message ---
Source: typo3-src
Source-Version: 4.3.9+dfsg1-1+squeeze9
We believe that the bug you reported is fixed in the latest version of
typo3-src, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Salvatore Bonaccorso <[email protected]> (supplier of updated typo3-src package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Wed, 18 Dec 2013 18:40:09 +0100
Source: typo3-src
Binary: typo3-src-4.3 typo3-database typo3
Architecture: source all
Version: 4.3.9+dfsg1-1+squeeze9
Distribution: squeeze-security
Urgency: high
Maintainer: Christian Welzel <[email protected]>
Changed-By: Salvatore Bonaccorso <[email protected]>
Description:
typo3 - The enterprise level open source WebCMS (Meta)
typo3-database - TYPO3 - The enterprise level open source WebCMS (Database)
typo3-src-4.3 - TYPO3 - The enterprise level open source WebCMS (Core)
Closes: 731999
Changes:
typo3-src (4.3.9+dfsg1-1+squeeze9) squeeze-security; urgency=high
.
* Security patch backported from new upstream release 4.5.32:
- fixes: "TYPO3 Security Bulletin TYPO3-CORE-SA-2013-004:
Several Vulnerabilities in TYPO3 Core" (Closes: 731999)
* Added gbp.conf.
Checksums-Sha1:
dd71eb69a324aab0e4a2403c3fd0aba6ce6f0e7c 1748
typo3-src_4.3.9+dfsg1-1+squeeze9.dsc
ac5745408c5196bbfb5a141625a8ec354ee55b54 155443
typo3-src_4.3.9+dfsg1-1+squeeze9.debian.tar.gz
5b2df2abd337e14e4e7127eab64c6ab35c674a9a 11292182
typo3-src-4.3_4.3.9+dfsg1-1+squeeze9_all.deb
af75edaf929cfba53fda56ef3f79613e7395e5b9 202850
typo3-database_4.3.9+dfsg1-1+squeeze9_all.deb
c67b8e3706edf90528c22dcffcb6d9b00d19a14d 1260
typo3_4.3.9+dfsg1-1+squeeze9_all.deb
Checksums-Sha256:
50375ce5a7c819fbccf604a28b76bb54444e2595f45beba5092043211139d995 1748
typo3-src_4.3.9+dfsg1-1+squeeze9.dsc
df5ec1b49895e3a98af4a0475eef13d74a79c64c06eb2dbafde94a8fd18ce103 155443
typo3-src_4.3.9+dfsg1-1+squeeze9.debian.tar.gz
cc452940725be2fd62f4fd6534e18be11be91dec972e89f8e487b3700654e784 11292182
typo3-src-4.3_4.3.9+dfsg1-1+squeeze9_all.deb
59eb19fb22587c30aecf77f18f21e37d3611314588fa6a29294d868c2122013b 202850
typo3-database_4.3.9+dfsg1-1+squeeze9_all.deb
31e603d067389368e2df6bdf52fd66bcf75ed7221b336d318d83c33f83ea0e83 1260
typo3_4.3.9+dfsg1-1+squeeze9_all.deb
Files:
81055cba860f309cad0dfb752cfd4ae5 1748 web optional
typo3-src_4.3.9+dfsg1-1+squeeze9.dsc
89e7a0500ed61e9310ef4e3403dc028b 155443 web optional
typo3-src_4.3.9+dfsg1-1+squeeze9.debian.tar.gz
fe29513291e0de4a18fa6441bf0cf31c 11292182 web optional
typo3-src-4.3_4.3.9+dfsg1-1+squeeze9_all.deb
389554b5220ac27dd17470ac5b3e7279 202850 web optional
typo3-database_4.3.9+dfsg1-1+squeeze9_all.deb
52ace7aca9b4324c2dd802a143c7cd9d 1260 web optional
typo3_4.3.9+dfsg1-1+squeeze9_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
iQIcBAEBCgAGBQJSwC7gAAoJEAVMuPMTQ89Ei3QP/39GQFxHPPMQzdAn9h2BMLaV
0gT2VXckqkxzKFpoEB6/yKFsYr94UvRl7frWUgH8CH4Wf1BG2/V+Ne3xe5b3wuTU
ZXNtyIWtD0OcfslPGoQbl4555W2uHDwOTyCufKhyBr2X8/a9K2g7Ra30OYxTAmhd
AKWUHHF9XS3gy/K8DOfVl+beeQavlxkKCYHnq4ogSguQdQHRl7aeGW/H3DL1Yi4I
Mg3V1tb4KsLD9AhDJuOF6Uf2L7sDHDRaWwn6GyiiYjsyo+l5F3tuvnJrAfg0i0ew
hEMUKYaKPlpqwf6ieYnICZ/kD1mTTyv+QyJBuzxPc4UTIMw52s7Sx5c1Hk+UeEme
xrx7OVMZa1Q1Pxc8pJVwZ5jpnCIiCfL7Pg80efjszfx4kTrLchQFuAcbAaZMPqbw
3V44d4Vy0GNh47KqVWVTH4TQJ3R5OiHXYN/K+p9goJQ5/sscPZsavLJ/vMd4U/Lh
cbJHdGEWA4UHyp7wEpwv72Tb488WnnSVEBiy/q+Waofv41U2+7hmDy+kZY+MQGRk
+qjpYsgbsKMUlWFq1bDfwXJqWB4Rh39LRPwHbBXRe6hFpqBqxQTmzt5CwGTBD2Gq
rAzcDBggGBALmO0E1iaKqcVf8upJIFJ9YXHKdqlPak9fzilg/F70TMkCY6ykkAak
oiove/7+MFjKWCZ7pnE6
=F6Zt
-----END PGP SIGNATURE-----
--- End Message ---
