Your message dated Tue, 30 Jun 2015 09:52:19 +0000
with message-id <[email protected]>
and subject line Bug#789162: fixed in aptdaemon 0.31+bzr413-1.1+deb6u1
has caused the Debian Bug report #789162,
regarding aptdaemon: CVE-2015-1323: information disclosure via simulate dbus
method
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
789162: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=789162
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: aptdaemon
Version: 1.1.1-4
Severity: grave
Tags: security upstream
Hi,
the following vulnerability was published for aptdaemon, which AFICS
as well affects Debian.
CVE-2015-1323[0]:
information disclosure via simulate dbus method
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2015-1323
[1] http://www.ubuntu.com/usn/usn-2648-1/
[2] https://bugs.launchpad.net/ubuntu/+source/aptdaemon/+bug/1449587
Please adjust the affected versions in the BTS as needed.
Regards,
Salvatore
--- End Message ---
--- Begin Message ---
Source: aptdaemon
Source-Version: 0.31+bzr413-1.1+deb6u1
We believe that the bug you reported is fixed in the latest version of
aptdaemon, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Raphaël Hertzog <[email protected]> (supplier of updated aptdaemon package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Tue, 30 Jun 2015 11:20:06 +0200
Source: aptdaemon
Binary: aptdaemon python-aptdaemon python-aptdaemon-gtk
Architecture: source all
Version: 0.31+bzr413-1.1+deb6u1
Distribution: squeeze-lts
Urgency: medium
Maintainer: Julian Andres Klode <[email protected]>
Changed-By: Raphaël Hertzog <[email protected]>
Description:
aptdaemon - transaction based package management service
python-aptdaemon - Python module for the server and client of aptdaemon
python-aptdaemon-gtk - Python GTK+ widgets to run an aptdaemon client
Closes: 789162
Changes:
aptdaemon (0.31+bzr413-1.1+deb6u1) squeeze-lts; urgency=medium
.
* Non-maintainer upload by the Debian LTS team.
* Fix information leak via simulate dbus method (CVE-2015-1323).
Closes: #789162
Checksums-Sha1:
d2b7068b47a894478189113bdc06ef8f8001f982 1699
aptdaemon_0.31+bzr413-1.1+deb6u1.dsc
0963bd5ffb1ef535cf08bc08b6eda99e999b3b76 9555
aptdaemon_0.31+bzr413-1.1+deb6u1.debian.tar.gz
d82d915c24a383116a3be7cfff884c67481b4ca7 167996
aptdaemon_0.31+bzr413-1.1+deb6u1_all.deb
5aacba4f02a773463ffe5c9c7c01ca16f8ec9e67 59014
python-aptdaemon_0.31+bzr413-1.1+deb6u1_all.deb
6525f009789469d139a6bcdf6b552e332dceb41b 196988
python-aptdaemon-gtk_0.31+bzr413-1.1+deb6u1_all.deb
Checksums-Sha256:
de1d91e820182d783dc0a341dc2468ad609a0219d3156f13a28b58dc78984372 1699
aptdaemon_0.31+bzr413-1.1+deb6u1.dsc
47ce8ff19fb029468912c7c3c2d2a073c4e77ff5e28cf4792ae19fddd9d2db17 9555
aptdaemon_0.31+bzr413-1.1+deb6u1.debian.tar.gz
8bb4ccdf06b0c3143ee0cfa8a45c159c932f22dbdc7a28a71f166bfdac99435f 167996
aptdaemon_0.31+bzr413-1.1+deb6u1_all.deb
76fd4895b8f2f4e85b86ebd2eb7e43b61a07fb181a056290bac9dfb6dc8892ad 59014
python-aptdaemon_0.31+bzr413-1.1+deb6u1_all.deb
a99bcd4cbc6652ea08b49bbdb79e6ae4551fd8d192717ae54fe3c628fbed48e4 196988
python-aptdaemon-gtk_0.31+bzr413-1.1+deb6u1_all.deb
Files:
2b4ea1c7ff3d234e8f7005f5f6ed9522 1699 admin extra
aptdaemon_0.31+bzr413-1.1+deb6u1.dsc
c548d62ebb5b4488da149b064ea3ddb6 9555 admin extra
aptdaemon_0.31+bzr413-1.1+deb6u1.debian.tar.gz
8b913579e3f16f3f944a314a1e362c6f 167996 admin extra
aptdaemon_0.31+bzr413-1.1+deb6u1_all.deb
0eafb00f8b71270dd59ea77e3ca54045 59014 python extra
python-aptdaemon_0.31+bzr413-1.1+deb6u1_all.deb
ebd5e6086e15f183d4edd14f2131bb19 196988 python extra
python-aptdaemon-gtk_0.31+bzr413-1.1+deb6u1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
Comment: Signed by Raphael Hertzog
iQEcBAEBCAAGBQJVkmSaAAoJEAOIHavrwpq5ymoH/RB7fD3319zc6PzQwLW4vnQy
ATjoi5VIJUY3knmUYjM0XcIeI+qKOKYjvvQEe189VWFVk55U5SrzkBBuKl9oYo2O
112OsVvhlcFIghF2Eyfb4ZUwUEueu7BL6NA5d980mycv7rx2HeSf8VMvJiM6h0QF
P5s1Ko83Sw6UHfzpYIenRkM/F0rDRGOOgGWYdW9ewXgz10QEHioEO6S/c2Bz2pF4
ssXMPyy7Fm2Ea6wJDxrcWEf0v2k0Wm2Cr21qP3vJamVh5FOuVwngQvw6X8q1cY9L
hWYdLOYyiQes5q3mxsEsmryUNYLrf7PleHoD8n2sV4upSSf3guKg1R4C8ftWE1w=
=Pwvi
-----END PGP SIGNATURE-----
--- End Message ---
