Your message dated Tue, 07 Aug 2012 18:17:24 +0000 with message-id <e1syolm-0003rf...@franck.debian.org> and subject line Bug#684143: fixed in redeclipse 1.2-3 has caused the Debian Bug report #684143, regarding redeclipse: security issues with transmitted map cfgs to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 684143: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=684143 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: redeclipse Version: 1.2-2 Severity: grave Tags: security patch upstream Justification: user security hole A security issue with execution of map cfg(script) files could allow these scripts the same r/w access to files as the user running the game client. This issue has been patched upstream, which makes it harder to exploit. -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (900, 'testing'), (800, 'unstable'), (300, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.2.0-2-amd64 (SMP w/4 CPU cores) Locale: LANG=en_GB.utf8, LC_CTYPE=en_GB.utf8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages redeclipse depends on: ii dpkg 1.16.4.3 ii libc6 2.13-33 ii libenet1a 1.3.3-2 ii libgcc1 1:4.7.1-2 ii libgl1-mesa-glx [libgl1] 8.0.3-1 ii libsdl-image1.2 1.2.12-2 ii libsdl-mixer1.2 1.2.12-2 ii libsdl1.2debian 1.2.15-5 ii libstdc++6 4.7.1-2 ii libx11-6 2:1.5.0-1 ii redeclipse-data 1.2-1 ii zlib1g 1:1.2.7.dfsg-13 redeclipse recommends no packages. redeclipse suggests no packages. -- no debconf information
--- End Message ---
--- Begin Message ---Source: redeclipse Source-Version: 1.2-3 We believe that the bug you reported is fixed in the latest version of redeclipse, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 684...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Martin Erik Werner <martinerikwer...@gmail.com> (supplier of updated redeclipse package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Mon, 27 Feb 2012 13:53:19 +0100 Source: redeclipse Binary: redeclipse redeclipse-dbg redeclipse-server redeclipse-server-dbg Architecture: source amd64 Version: 1.2-3 Distribution: unstable Urgency: high Maintainer: Debian Games Team <pkg-games-de...@lists.alioth.debian.org> Changed-By: Martin Erik Werner <martinerikwer...@gmail.com> Description: redeclipse - single-player and multi-player first-person ego-shooter redeclipse-dbg - debug symbols for the Red Eclipse FPS game redeclipse-server - server for the Red Eclipse FPS game redeclipse-server-dbg - debug symbols for the Red Eclipse dedicated server Closes: 684143 Changes: redeclipse (1.2-3) unstable; urgency=high . * Add debian/patches/security-text-command-fix.patch - File access security fix (Closes: #684143) Checksums-Sha1: bb56ec69a6eca31bf9a51cf5e07f48f1aeba33ca 1894 redeclipse_1.2-3.dsc ebdd10018902009eaee0bd69456ece4f0cea4b2a 18131 redeclipse_1.2-3.debian.tar.gz 421938c59d76629cfd5a26df020c796427a60d79 1516780 redeclipse_1.2-3_amd64.deb 0e7ef825e0383e486e4f94312ba774523f57d102 4364152 redeclipse-dbg_1.2-3_amd64.deb 19628fb43a46251e40753697bb590045ee12aede 282922 redeclipse-server_1.2-3_amd64.deb d61c5662ba4f2bae657d429dc317e16a4a0221fb 665334 redeclipse-server-dbg_1.2-3_amd64.deb Checksums-Sha256: d455a07a6d1a3e64722506329762ca0dac09c355f2c1d621b951277cf9f8518c 1894 redeclipse_1.2-3.dsc f36f80588f4460b2f65ae221073cc03df6ac18dda874ac5f8338ecc95a750ce5 18131 redeclipse_1.2-3.debian.tar.gz 977a791f6b0194472e075cf770b8b27913ebbee27895087f442d09d8ce02ed7d 1516780 redeclipse_1.2-3_amd64.deb efd455d2aeaca42251948d91c2195c2ef21aaaa99ae959f4844eda198ee99f3a 4364152 redeclipse-dbg_1.2-3_amd64.deb eb21a3c08a9e9e545fd2c0f5b0bfad72250d0436adfb2ce77ed3121e39329d75 282922 redeclipse-server_1.2-3_amd64.deb d31b5964ce4eaa16eb31ae7137a3133833cdbb1e81a4c738496efc5c30400745 665334 redeclipse-server-dbg_1.2-3_amd64.deb Files: 420b10adcb521437ef24e83da1d1cec9 1894 contrib/games optional redeclipse_1.2-3.dsc 94fe9bfde4b3b67a7af3ccf86a981bd9 18131 contrib/games optional redeclipse_1.2-3.debian.tar.gz 7b0bf11ea8ef8d44dcc3f2613fdca97d 1516780 contrib/games optional redeclipse_1.2-3_amd64.deb 0ae7714112a2980a62ec357bc8ee7323 4364152 contrib/debug extra redeclipse-dbg_1.2-3_amd64.deb 1f4834d814d8a00588d800ca008d735b 282922 contrib/games optional redeclipse-server_1.2-3_amd64.deb 7c9d000e2358c9e2f6ec92d84bf76d86 665334 contrib/debug extra redeclipse-server-dbg_1.2-3_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQEcBAEBAgAGBQJQIVjQAAoJEFb2GnlAHawEsycIAJ1+5ftzrAwitfLWlxx7IJst x6uI3B3FQ3T5rr1IvkfjNqIINd9UoSdnTbT8WbhRX54nXbZB0zT3rqLO0La04Aw7 5/AaIFoIzAqcSkz9UROib6x3HLd26hRFJu+mFt4XomSqQq27SR8g4fIviYaIE2br WTAjGWZ86366vnLAHWQ5o4IS3/EAuRXgoNQ4FxwxA+mrSTCDzArTNj13q8jX6sAI am6De6k0eB+Cyln74KPDE/kOzu++zfKXKgQX9dGS6ItWDV7834nd00awOxMGVhjY wJwa2sm+nABli4leLiypAtdm6uUcXnvOqPni3V5OTsplrhwvYvUf2XuqPinpsko= =xmUX -----END PGP SIGNATURE-----
--- End Message ---
