Bug#969213: marked as done (rust-rgb: CVE-2020-25016: RUSTSEC-2020-0029: Allows viewing and modifying arbitrary structs as bytes)

Thu, 16 Mar 2023 19:45:15 -0700 

Your message dated Fri, 17 Mar 2023 02:41:07 +0000
with message-id <[email protected]>
and subject line Bug#969213: fixed in rust-rgb 0.8.36-1
has caused the Debian Bug report #969213,
regarding rust-rgb: CVE-2020-25016: RUSTSEC-2020-0029: Allows viewing and 
modifying arbitrary structs as bytes
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
969213: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=969213
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Source: rust-rgb
Version: 0.8.11-1
Severity: important
Tags: security upstream
Forwarded: https://github.com/kornelski/rust-rgb/issues/35
X-Debbugs-Cc: [email protected], Debian Security Team <[email protected]>

Hi

For detail see

https://rustsec.org/advisories/RUSTSEC-2020-0029.html
https://github.com/kornelski/rust-rgb/issues/35

Regards,
Salvatore

--- End Message ---
--- Begin Message --- 
Source: rust-rgb
Source-Version: 0.8.36-1
Done: Peter Michael Green <[email protected]>

We believe that the bug you reported is fixed in the latest version of
rust-rgb, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Peter Michael Green <[email protected]> (supplier of updated rust-rgb package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Thu, 16 Mar 2023 23:57:26 +0000
Source: rust-rgb
Architecture: source
Version: 0.8.36-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Rust Maintainers 
<[email protected]>
Changed-By: Peter Michael Green <[email protected]>
Closes: 969213
Changes:
 rust-rgb (0.8.36-1) unstable; urgency=medium
 .
   * Package rgb 0.8.36 from crates.io using debcargo 2.6.0
   * Fix tests when building with only the argb feature.
 .
   [ Blair Noctis ]
   * Team upload.
   * Package rgb 0.8.34 from crates.io using debcargo 2.6.0 (Closes: #969213)
   * Collapse features
Checksums-Sha1:
 52713a3f41d440386974fdecdf27c48626c4a7d9 2224 rust-rgb_0.8.36-1.dsc
 38e69b94f0f6f4685c862e3a7669d4315c7ce3b6 16576 rust-rgb_0.8.36.orig.tar.gz
 8ae71ad87ca6fcc798ded0a90e3d0ab7502c56c6 3280 rust-rgb_0.8.36-1.debian.tar.xz
 3b93e0fe475b14336c2523afe326b06bb9743546 7262 
rust-rgb_0.8.36-1_source.buildinfo
Checksums-Sha256:
 e1607f23c67b3514d2cd0910c2ab6edb79255f0d9e2eaaffd1e9f9b91be06599 2224 
rust-rgb_0.8.36-1.dsc
 20ec2d3e3fc7a92ced357df9cebd5a10b6fb2aa1ee797bf7e9ce2f17dffc8f59 16576 
rust-rgb_0.8.36.orig.tar.gz
 dcc10f28f806eb599d84002ad2796c851fce764bb4dd83e6497d2dc1cc05fc1f 3280 
rust-rgb_0.8.36-1.debian.tar.xz
 97d74d93641fb33a95032562a9d84645fbd52db419703a7a24e7bc6cb0f4a803 7262 
rust-rgb_0.8.36-1_source.buildinfo
Files:
 e197e168533770cdb0bf6ad029257fc9 2224 rust optional rust-rgb_0.8.36-1.dsc
 c0bdf08dda3d0d5de0651e6f552edb72 16576 rust optional 
rust-rgb_0.8.36.orig.tar.gz
 06bb0a7a1dfe9688cb1fa4822938c7a6 3280 rust optional 
rust-rgb_0.8.36-1.debian.tar.xz
 98fee80f7ee585cfa30157edde4cffb6 7262 rust optional 
rust-rgb_0.8.36-1_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQJIBAEBCAAyFiEEU0DQATYMplbjSX63DEjqKnqP/XsFAmQTytQUHHBsdWd3YXNo
QGRlYmlhbi5vcmcACgkQDEjqKnqP/XsLUQ/+Nq+dvFvjo5YuYRe1qcZDyy/fauAv
YF9sxyujRUbSYfoE4F8D6IG6bx3aQeOfOa7xabcSjFV6buPkaUTRbjrFQL/ER7OS
/DelSzXY8L/3aFqC/g2w2dLBC6CHU2Xz0ahX7tca5joO2n+i5Sr8dBJ1zhMJJNMv
DZeJot8ztVBP3wRzWstsKsSeR590/TnuSrZt59WyP5eyTpuXSjcqN3SF0Rj0IwuP
1PFqKIUQNVduwd+fZQEi/4AulphrPSphmORTipIB2YzqOnJ/neAiwn4c9WBS5EY7
RtzbF30bA/rsqZPKxEIAfMFwFdahdyg8Z/YuYPNc3MsX5N0WOCT0Mi8j55/q+4Hh
4c7IZ0Z2EdpA/J30AWUGb1MDSzn9qlDovEnT0Qwb4q36xT/E3CXuNm70qyHVbZ3C
ansR3y1KzMNRVGghk8CjZ6qNKdsgR3RlRuQoyqAGkdT4O+IfjW7g2sRtToRbhOJ4
Cgh5PP0T5ZGmHCjVc/zoemtzBxVocQ6wInuMCzOV1NUaAL2+R+FyCLji8NOSdnaR
sBe0SU7TpFupiyGYkd2ZdicLWDh1qIdmpO1+oCJsuMF/T4dnCVZYem6PS+omSfuW
Jj5AS6k7R0WQeYRZFdxcx+MynTARZ6bxim9IO5VVlL1NgN4OaQZBXvcaV067yGT2
L7KKU4P9AjM9tM8=
=Ih1F
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to