Your message dated Mon, 16 Feb 2015 15:39:34 +0000 with message-id <e1ynnlm-000668...@franck.debian.org> and subject line Bug#773625: fixed in nss 3.12.8-1+squeeze11 has caused the Debian Bug report #773625, regarding nss: CVE-2014-1569 information leak to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 773625: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=773625 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---package: src:nss version: 3.12.8-1 severity: serious tag: security An information leak issue was disclosed for nss, fixed in 3.17.3: https://security-tracker.debian.org/tracker/CVE-2014-1569 Best wishes, Mike
--- End Message ---
--- Begin Message ---Source: nss Source-Version: 3.12.8-1+squeeze11 We believe that the bug you reported is fixed in the latest version of nss, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 773...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Raphaël Hertzog <hert...@debian.org> (supplier of updated nss package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Mon, 16 Feb 2015 14:49:54 +0100 Source: nss Binary: libnss3-1d libnss3-tools libnss3-dev libnss3-1d-dbg Architecture: source amd64 Version: 3.12.8-1+squeeze11 Distribution: squeeze-lts Urgency: medium Maintainer: Maintainers of Mozilla-related packages <pkg-mozilla-maintain...@lists.alioth.debian.org> Changed-By: Raphaël Hertzog <hert...@debian.org> Description: libnss3-1d - Network Security Service libraries libnss3-1d-dbg - Debugging symbols for the Network Security Service libraries libnss3-dev - Development files for the Network Security Service libraries libnss3-tools - Network Security Service tools Closes: 773625 Changes: nss (3.12.8-1+squeeze11) squeeze-lts; urgency=medium . * Non-maintainer upload by the Debian LTS team. * Fix CVE-2011-3389 by backporting the upstream patch: https://hg.mozilla.org/projects/nss/rev/7f7446fcc7ab * Fix CVE-2014-1569 by backporting the upstream patch: https://hg.mozilla.org/projects/nss/rev/a163e09dc4d5 Closes: #773625 Checksums-Sha1: 84415931f675020793b9ae8ce6a67288d501b925 1723 nss_3.12.8-1+squeeze11.dsc f8920a00e2c24ca8c0c5e629324abcf3d17253d0 130249 nss_3.12.8-1+squeeze11.debian.tar.gz 889714beb9dc62992e358158c2bdacb28898a714 1119710 libnss3-1d_3.12.8-1+squeeze11_amd64.deb b0aa028ff6432003a12a5febeeff5ca3797c1a69 449506 libnss3-tools_3.12.8-1+squeeze11_amd64.deb 3059fd5ce7979088c553aeebbfa01947010cbebb 271206 libnss3-dev_3.12.8-1+squeeze11_amd64.deb a92896123a1d8f2c05c526cbf9641a9f4d7199fa 3276408 libnss3-1d-dbg_3.12.8-1+squeeze11_amd64.deb Checksums-Sha256: 2e48201a04be617203a01e5f23ecc622c439ce226da79bc34c7ce022a69e1bc5 1723 nss_3.12.8-1+squeeze11.dsc dc8e200c7aab08c459fb5b8fc1f174ad5018473a6a81c471d409fd502d2a1280 130249 nss_3.12.8-1+squeeze11.debian.tar.gz 29e391aab31e51a25bdd88917d77c6f57327ea711ef4a6dd29ebe639545cf697 1119710 libnss3-1d_3.12.8-1+squeeze11_amd64.deb fdad9b9e128e4400f617055f3c09a5ee1e33ac044b33ee9358e17ecec6938e02 449506 libnss3-tools_3.12.8-1+squeeze11_amd64.deb 6cc7de56541c381b9b0b760f5b6609fd6154a5bd644e61a95ccc070f9a16396e 271206 libnss3-dev_3.12.8-1+squeeze11_amd64.deb 5601f7afc7de99ea68080eb2db806693748ecda6b0aaa2aae278ce654339f58c 3276408 libnss3-1d-dbg_3.12.8-1+squeeze11_amd64.deb Files: 28f5ee47ce692dc54f53897e18f0125a 1723 libs optional nss_3.12.8-1+squeeze11.dsc 18b4c79097f2a8504ca686bd9b7047b6 130249 libs optional nss_3.12.8-1+squeeze11.debian.tar.gz 108edebab11738cca4d7ea7193a75acb 1119710 libs optional libnss3-1d_3.12.8-1+squeeze11_amd64.deb 2ab095a4d9eab9c02abedc54996b1c87 449506 admin optional libnss3-tools_3.12.8-1+squeeze11_amd64.deb 45445ca987ba335504769399ac7476ed 271206 libdevel optional libnss3-dev_3.12.8-1+squeeze11_amd64.deb 3eb0bbe2f4cb8a2d29c250ff29b9e900 3276408 debug extra libnss3-1d-dbg_3.12.8-1+squeeze11_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 Comment: Signed by Raphael Hertzog iQEcBAEBCAAGBQJU4gTYAAoJEAOIHavrwpq5xN0H/jwmrsXYyeb3ImT7bQlo3/l1 cEi/uovfKGAisqTTt0j6cjV/2cJ996DRCMXDXRvb2Cq5ICr0HVKibwp8xIJzuCUG kP16n1+eLha2HUc0SxQL2rIZEzgnsb3JEsEdAegJkjG2zkZvXmWrgA/ACUwnosed FU37Vs/TzV6kZ9s8X8ZjJH07SXijxB4WmdYW1i3OUujj8nRV9AhGOXl3TDWDq0Xe v/aAAoKrU9YUne+6TIiMwfqtyJW0qv8C7t+6qxL19kicTTR51GK8qCgsgus3HPQE xh6H2mjewBzvrY5LTLOE5Qft8pUp2r97QJVOsv4kh20eT34dpW4qunZpQAbttdI= =uiv2 -----END PGP SIGNATURE-----
--- End Message ---
