Your message dated Wed, 16 Dec 2009 23:43:55 +0000
with message-id <[email protected]>
and subject line Bug#551936: fixed in expat 1.95.8-3.4+etch1
has caused the Debian Bug report #551936,
regarding expat: CVE-2009-2625
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
551936: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=551936
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
package: expat
version: 1.95.8-3
severity: serious
tags: security
hello, a security issue has been disclosed for expat. see [0],[1].
this affects all supported debian releases, so please coordinate with
the security team to prepare DSAs.
mike
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2625
[1] https://bugs.gentoo.org/show_bug.cgi?id=280615
--- End Message ---
--- Begin Message ---
Source: expat
Source-Version: 1.95.8-3.4+etch1
We believe that the bug you reported is fixed in the latest version of
expat, which is due to be installed in the Debian FTP archive:
expat_1.95.8-3.4+etch1.diff.gz
to main/e/expat/expat_1.95.8-3.4+etch1.diff.gz
expat_1.95.8-3.4+etch1.dsc
to main/e/expat/expat_1.95.8-3.4+etch1.dsc
expat_1.95.8-3.4+etch1_i386.deb
to main/e/expat/expat_1.95.8-3.4+etch1_i386.deb
libexpat1-dev_1.95.8-3.4+etch1_i386.deb
to main/e/expat/libexpat1-dev_1.95.8-3.4+etch1_i386.deb
libexpat1-udeb_1.95.8-3.4+etch1_i386.udeb
to main/e/expat/libexpat1-udeb_1.95.8-3.4+etch1_i386.udeb
libexpat1_1.95.8-3.4+etch1_i386.deb
to main/e/expat/libexpat1_1.95.8-3.4+etch1_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Daniel Leidert (dale) <[email protected]> (supplier of updated expat
package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Mon, 26 Oct 2009 15:21:49 +0100
Source: expat
Binary: libexpat1 libexpat1-dev expat libexpat1-udeb
Architecture: source i386
Version: 1.95.8-3.4+etch1
Distribution: oldstable-security
Urgency: medium
Maintainer: Debian XML/SGML Group <[email protected]>
Changed-By: Daniel Leidert (dale) <[email protected]>
Description:
expat - XML parsing C library - example application
libexpat1 - XML parsing C library - runtime library
libexpat1-dev - XML parsing C library - development kit
libexpat1-udeb - XML parsing C library - runtime library (udeb)
Closes: 551936
Changes:
expat (1.95.8-3.4+etch1) oldstable-security; urgency=medium
.
* NMU to old stable to fix security issues.
* CVE-2009-2625: Fix DoS vulnerability (closes: #551936).
Files:
0a87419bbdae53aeacaf08eef449f8b3 711 text optional expat_1.95.8-3.4+etch1.dsc
aff487543845a82fe262e6e2922b4c8e 318349 text optional expat_1.95.8.orig.tar.gz
b78006808401dff164db95fd8f2499f0 413057 text optional
expat_1.95.8-3.4+etch1.diff.gz
ad28064754c7f1fb08035ad626647448 128180 libdevel optional
libexpat1-dev_1.95.8-3.4+etch1_i386.deb
0554efb1bbae1faa50d1c5c5a0038dfc 63076 libs optional
libexpat1_1.95.8-3.4+etch1_i386.deb
e2df0e10b8466ca1f5534145f432b4fe 54964 debian-installer extra
libexpat1-udeb_1.95.8-3.4+etch1_i386.udeb
6e8dbc3e542af0a3c9b6970014c7e5e4 21034 text optional
expat_1.95.8-3.4+etch1_i386.deb
Package-Type: udeb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEARECAAYFAkrm4oAACgkQNxpp46476ar1FACdEtpDCjdYgEmEkbmF82uey/VR
zvwAniANoArXBFI0zOkeJrQBIez8C1Eo
=zFZI
-----END PGP SIGNATURE-----
--- End Message ---
