Your message dated Thu, 15 Jun 2023 19:41:26 +0000
with message-id <[email protected]>
and subject line Bug#1038119: fixed in tang 14-1
has caused the Debian Bug report #1038119,
regarding tang: CVE-2023-1672
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1038119: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1038119
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: tang
Version: 11-2
Severity: important
Tags: security upstream
X-Debbugs-Cc: [email protected], Debian Security Team <[email protected]>
Hi,
The following vulnerability was published for tang.
CVE-2023-1672[0]:
| Fix race condition when creating/rotating keys
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2023-1672
https://www.cve.org/CVERecord?id=CVE-2023-1672
[1]
https://github.com/latchset/tang/commit/8dbbed10870378f1b2c3cf3df2ea7edca7617096
Please adjust the affected versions in the BTS as needed.
Regards,
Salvatore
--- End Message ---
--- Begin Message ---
Source: tang
Source-Version: 14-1
Done: Christoph Biedl <[email protected]>
We believe that the bug you reported is fixed in the latest version of
tang, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Christoph Biedl <[email protected]> (supplier of updated tang
package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Thu, 15 Jun 2023 20:00:38 +0200
Source: tang
Architecture: source
Version: 14-1
Distribution: unstable
Urgency: medium
Maintainer: Christoph Biedl <[email protected]>
Changed-By: Christoph Biedl <[email protected]>
Closes: 1038119
Changes:
tang (14-1) unstable; urgency=medium
.
* New upstream version 14. Closes: #1038119 [CVE-2023-1672]
Checksums-Sha1:
06f3c665ddffcdd1870866fea68dacb96a4ac069 2163 tang_14-1.dsc
81a09f024fcb0e8b53bb867b2679ebab14555791 36772 tang_14.orig.tar.xz
9c32fd4c4a4fd987177cc1f388d63c25e4594cd8 5484 tang_14-1.debian.tar.xz
51835cff8bf7d0b0f7b325b56d182bd4120e48bb 8794 tang_14-1_armel.buildinfo
Checksums-Sha256:
a816059790af41e02a815e6efe9409fad5be96fa99af7cdbf129018d2591092d 2163
tang_14-1.dsc
04263ed1cc98d60cab29fe47f908921b7b1aa4d6da5f9de2fcbe543773b75886 36772
tang_14.orig.tar.xz
a3b9dab082bb0660642e2b53160e9e05df3b2481e9df46563d280f3304c4f8cb 5484
tang_14-1.debian.tar.xz
dc3b8905c469110907276a69598d0f70c102057503cf9c3e9cb6b3ea933d08a1 8794
tang_14-1_armel.buildinfo
Files:
05530cdd07f9610f6795ba3303eb15fe 2163 net optional tang_14-1.dsc
d13f72e9d99d80f87957b8758383c295 36772 net optional tang_14.orig.tar.xz
596ee59668e1d1cd2217d1d8f6fbaa05 5484 net optional tang_14-1.debian.tar.xz
d9a9913a7a00051c65806bb24233861e 8794 net optional tang_14-1_armel.buildinfo
-----BEGIN PGP SIGNATURE-----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=JgrQ
-----END PGP SIGNATURE-----
--- End Message ---