Your message dated Mon, 23 Feb 2015 11:33:40 +0000
with message-id <[email protected]>
and subject line Bug#778996: fixed in forked-daapd 22.0-2
has caused the Debian Bug report #778996,
regarding forked-daapd: Multiple security issues
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
778996: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=778996
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: forked-daapd
Version: 0.22.0-1
Severity: serious
Tags: upstream fixed-upstream security
Remotely trigger-able use-after-free and invalid reads causing DOS have
been fixed upstream:
https://github.com/ejurgensen/forked-daapd/commit/4efca3660f7c944071c76cfeca91dc836bd9c8c2
https://github.com/ejurgensen/forked-daapd/commit/cdb004808272cd331f09334fff618a8976e4fb25
Cheers,
Balint
--- End Message ---
--- Begin Message ---
Source: forked-daapd
Source-Version: 22.0-2
We believe that the bug you reported is fixed in the latest version of
forked-daapd, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Balint Reczey <[email protected]> (supplier of updated forked-daapd
package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Mon, 23 Feb 2015 11:54:01 +0100
Source: forked-daapd
Binary: forked-daapd
Architecture: source
Version: 22.0-2
Distribution: unstable
Urgency: medium
Maintainer: Debian Multimedia Maintainers
<[email protected]>
Changed-By: Balint Reczey <[email protected]>
Description:
forked-daapd - DAAP/DACP (iTunes) server, support for AirPlay and Roku devices
Closes: 778995 778996 779011
Changes:
forked-daapd (22.0-2) unstable; urgency=medium
.
* Fix compatibility with iTunes 12.1 (Closes: #778995)
* Fix two segfaults with upstream patches (Closes: #778996)
* Fix playing audio locally (Closes: #779011)
Checksums-Sha1:
899b1c1596b6510f3908974eaf3490d8501034e6 2514 forked-daapd_22.0-2.dsc
966d0aafc3b2b71f80700b230591c18ec293c7ab 10852
forked-daapd_22.0-2.debian.tar.xz
Checksums-Sha256:
ea14c8294bcfd1ed0f16c5ba77dcff2e0e4093ace94df165d23847b959101f3f 2514
forked-daapd_22.0-2.dsc
9e116911caa843925bd9381352928a71aab09ab334d68a14e2edb257a6eb7c86 10852
forked-daapd_22.0-2.debian.tar.xz
Files:
8ad9ec711b06b8ecd1f1ef2f61a92e09 2514 sound optional forked-daapd_22.0-2.dsc
30909ce3ddc16fc08355dda1fd168898 10852 sound optional
forked-daapd_22.0-2.debian.tar.xz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=vaDI
-----END PGP SIGNATURE-----
--- End Message ---
