Your message dated Mon, 15 Oct 2007 06:02:04 +0000
with message-id <[EMAIL PROTECTED]>
and subject line Bug#436249: fixed in pennmush 1.8.2p7-1
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: pennmush
Severity: important
Hi
The following CVE[0] has been issued against pennmush. I am not quite
sure, if the versions in Debian are affected. Please check. The text
says:
Multiple unspecified vulnerabilities in PennMUSH 1.8.3 before 1.8.3p1
and 1.8.2 before 1.8.2p3 allow attackers to cause a denial of service
(crash) related to the (1) speak and (2) buy functions.
Cheers
Steffen
[0]: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1431
--- End Message ---
--- Begin Message ---
Source: pennmush
Source-Version: 1.8.2p7-1
We believe that the bug you reported is fixed in the latest version of
pennmush, which is due to be installed in the Debian FTP archive:
pennmush-common_1.8.2p7-1_all.deb
to pool/main/p/pennmush/pennmush-common_1.8.2p7-1_all.deb
pennmush-i18n_1.8.2p7-1_all.deb
to pool/main/p/pennmush/pennmush-i18n_1.8.2p7-1_all.deb
pennmush-mysql_1.8.2p7-1_i386.deb
to pool/main/p/pennmush/pennmush-mysql_1.8.2p7-1_i386.deb
pennmush_1.8.2p7-1.diff.gz
to pool/main/p/pennmush/pennmush_1.8.2p7-1.diff.gz
pennmush_1.8.2p7-1.dsc
to pool/main/p/pennmush/pennmush_1.8.2p7-1.dsc
pennmush_1.8.2p7-1_i386.deb
to pool/main/p/pennmush/pennmush_1.8.2p7-1_i386.deb
pennmush_1.8.2p7.orig.tar.gz
to pool/main/p/pennmush/pennmush_1.8.2p7.orig.tar.gz
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Ervin Hearn III <[EMAIL PROTECTED]> (supplier of updated pennmush package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Sun, 14 Oct 2007 22:26:42 -0600
Source: pennmush
Binary: pennmush-common pennmush pennmush-i18n pennmush-mysql
Architecture: source i386 all
Version: 1.8.2p7-1
Distribution: unstable
Urgency: low
Maintainer: Ervin Hearn III <[EMAIL PROTECTED]>
Changed-By: Ervin Hearn III <[EMAIL PROTECTED]>
Description:
pennmush - text-based multi-user virtual world server
pennmush-common - common files for the PennMUSH virtual world server
pennmush-i18n - i18n support files for the PennMUSH virtual world server
pennmush-mysql - text-based multi-user virtual world server with MySQL support
Closes: 395786 403711 435951 436249
Changes:
pennmush (1.8.2p7-1) unstable; urgency=low
.
* New upstream release
* Latest upstream release fixes possible DoS vulnerabilities in
pennmush (Closes: #436249)
* Added missing build target to debian/rules (Closes: #395786)
* Corrected FTBFS on GNU/kFreeBSD due to timestamp skew
(Closes: #403711)
* Applied patch to correct control file to make package binNMU safe
(Closes: #435951)
Files:
aa6a32e277aefa7ba4a81b942f78f266 719 games optional pennmush_1.8.2p7-1.dsc
f6c08b63129574bfcc2475dab3b741eb 2027011 games optional
pennmush_1.8.2p7.orig.tar.gz
1f4e23e0e39f5d9b34fbf8325e667f38 13748 games optional
pennmush_1.8.2p7-1.diff.gz
e709ac3d3d69795d0230cf9f9f87f3d3 399476 games optional
pennmush_1.8.2p7-1_i386.deb
93379f771464b92f65d9100b99d1fd75 500030 games optional
pennmush-common_1.8.2p7-1_all.deb
f2b97e9b063ccfe01ff87e53996df29b 355412 games optional
pennmush-i18n_1.8.2p7-1_all.deb
72a8e1c044ecd969dae94b720609bb23 403342 games optional
pennmush-mysql_1.8.2p7-1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFHEv9r8KmKTEzW49IRApk5AJ9qQ6EEJPPe8rDNIyr4NoIRIkW9+gCeMiek
Yj+/QcsuyokoIzqButQJdPo=
=4IIu
-----END PGP SIGNATURE-----
--- End Message ---
