Your message dated Thu, 17 Jul 2014 15:49:38 +0000 with message-id <e1x7nwa-0003ec...@franck.debian.org> and subject line Bug#755038: fixed in drupal7 7.29-1 has caused the Debian Bug report #755038, regarding drupal7: SA-CORE-2014-003 - Drupal core - Multiple vulnerabilities to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 755038: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=755038 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: drupal7 Severity: grave Tags: security upstream fixed-upstream Hi See [1] for details, multiple vulnerabilities were fixed in drupal7 7.29 (there are no CVEs assigned yet). [1] https://www.drupal.org/SA-CORE-2014-003 Regards, Salvatore
--- End Message ---
--- Begin Message ---Source: drupal7 Source-Version: 7.29-1 We believe that the bug you reported is fixed in the latest version of drupal7, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 755...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Gunnar Wolf <gw...@debian.org> (supplier of updated drupal7 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Thu, 17 Jul 2014 07:42:19 -0500 Source: drupal7 Binary: drupal7 Architecture: source all Version: 7.29-1 Distribution: unstable Urgency: high Maintainer: Luigi Gangitano <lu...@debian.org> Changed-By: Gunnar Wolf <gw...@debian.org> Description: drupal7 - fully-featured content management framework Closes: 750666 755038 Changes: drupal7 (7.29-1) unstable; urgency=high . * New upstream release * Fixes SA-CORE-2014-003 (Denial of service; access bypass; 2×cross- site scripting) (Closes: #755038) * Setting urgency as high due to the security issues this release closes. * Add a build-dependency on yui-compressor and actually build the minified JS files excluded from the package. (Closes: #750666) * Added lintian overrides for shipped sources, specific JS version Checksums-Sha1: 2935e62cd62c164a90b579e924c223fb9373de8d 1871 drupal7_7.29-1.dsc 8d48563f9af4cb414c352256cb97accb2764d7c5 3204971 drupal7_7.29.orig.tar.gz 990d43b5dcf5249471ac9003e32dda91ce2a93d4 173328 drupal7_7.29-1.debian.tar.xz 32f2ef2277e4836ce9db22b775bf738d372a923c 2473042 drupal7_7.29-1_all.deb Checksums-Sha256: a224c11d7325e6c5bc902fa11b564a5f10f56729bf4f9bc985e5c857c99f4da4 1871 drupal7_7.29-1.dsc 631ab9864e48cf467dc7b2ca4c300d53e3f73b7f86757be517e7ab89f09d3884 3204971 drupal7_7.29.orig.tar.gz e5d31fcd0d334e854d41176a69ba3cd6b017e5d6c7c8fae54bcc566178bcecd1 173328 drupal7_7.29-1.debian.tar.xz 4a950e65c39ffa4afaadf936120fcd9e44aecbc74459060a00f243aef4d5b278 2473042 drupal7_7.29-1_all.deb Files: 7b40d755a3176b597780377407888096 2473042 web extra drupal7_7.29-1_all.deb 89927ab37b23f7974f828c19f08e4302 1871 web extra drupal7_7.29-1.dsc 4d2fce09cef015e42a198b1517ec6554 3204971 web extra drupal7_7.29.orig.tar.gz 8a1a25a3977af5794adfda7758404d04 173328 web extra drupal7_7.29-1.debian.tar.xz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJTx+F2AAoJEGc6A+TB25IfXC4P/A987wg+de0hh4HwM38xBQRw 16B0DPqFYwK/Iek8cQNo4c3lDvuk6ddghEGBoZhply7KCjKMeGMj74e7uDQzyHTi b0782fv3enqQpdfImCp3/eYTm8Rn5Bzd4t03B0ExINAixitZyYFlJe0DCANyXmyR HAD5QJ96ImDj4Ncs80G39JwyvlsmxCGsJZl6UJCxUsVF+DWHf5EjmI37njD8oPGt zFrl1PAcDljdt0xEA/QDXqgoc5paI+h9rhZmm/bR3JmUFvZEk1OkDp1SW/2yDDzU 29O7NWUJ9JYjGUhVh+pc922GJ3GZUMyCAXtqgTwYAYQcyJ35K63EjcpUZ1ctMaAC FYgfBjPZaSrqUKDBkugA2YlLe7LPw2/sTRU1aIJXnTxclxk9/zltzbybbcBtjzDB kZEdQcH2KnTlwT4+NoIDlAmg9d/dtnepIhVLJC+oiWfTPm9fj0H85O5nvNJRP8rL YKkYv2lsOgJrRaj3yFI3FLNuX1IJSuL6KBGZUZotkLSzorv/oNHj3qca1Q4Fj/vt dzC8y5TlS/qDjuErUud2pOtL7Whga7eXI0Qcb9B5UlPNFfaiC3pGkrmwdODtZ4bu kNosjS2xb4uJ3PD0IohIzh8O5dTdISDFMbjrAJmBd1iykpRxam7JuPGCSjBUGK5O Cb4XzNYmmfS2sWAkLhwn =JBlV -----END PGP SIGNATURE-----
--- End Message ---
