Your message dated Sat, 15 Jul 2017 21:49:20 +0000 with message-id <e1dwuwc-000aig...@fasolo.debian.org> and subject line Bug#867223: fixed in libclamunrar 0.99-0+deb8u3 has caused the Debian Bug report #867223, regarding libclamunrar: CVE-2012-6706: arbitrary memory write to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 867223: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867223 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: libclamunrar Version: 0.99-0+deb7u1 Severity: grave Tags: security Justification: user security hole CVE-2012-6706 also affects libclamunrar. See #865461 for the original bug report against unrar-nonfree. Upstream fix: https://github.com/vrtadmin/clamav-devel/commit/d4699442bce76574573dc564e7f2177d679b88bd Felix
--- End Message ---
--- Begin Message ---Source: libclamunrar Source-Version: 0.99-0+deb8u3 We believe that the bug you reported is fixed in the latest version of libclamunrar, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 867...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Scott Kitterman <sc...@kitterman.com> (supplier of updated libclamunrar package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sat, 15 Jul 2017 13:34:18 -0400 Source: libclamunrar Binary: libclamunrar7 Architecture: source amd64 Version: 0.99-0+deb8u3 Distribution: jessie Urgency: medium Maintainer: ClamAV Team <pkg-clamav-de...@lists.alioth.debian.org> Changed-By: Scott Kitterman <sc...@kitterman.com> Description: libclamunrar7 - anti-virus utility for Unix - unrar support Closes: 867223 Changes: libclamunrar (0.99-0+deb8u3) jessie; urgency=medium . * Team upload. . [ Sebastian Andrzej Siewior ] * Cherry pick fix for arbitrary memory write. CVE-2012-6706 (Closes: #867223). Checksums-Sha1: 56c7d6cb5cf54b719b5105e4708c2f4f18f2842a 2150 libclamunrar_0.99-0+deb8u3.dsc 5edb1d1b54d59decf8bd4853c598e17c9d9b6c61 8844 libclamunrar_0.99-0+deb8u3.debian.tar.xz de5e58fd7ab4dbfb559c49e59e337b848950735d 32366 libclamunrar7_0.99-0+deb8u3_amd64.deb Checksums-Sha256: 83200239a7f87a62bdd282c6a255c9099e10cc4d659bdfbbbf4a48f6e125a04d 2150 libclamunrar_0.99-0+deb8u3.dsc 2c500d7940923a9d5db82639c4b0b6d0a2f2551a8e3dcfd641ac15ff797070f8 8844 libclamunrar_0.99-0+deb8u3.debian.tar.xz dd0a4d1b9998e0d4c0157fa3bdb650b908dc89efdf7a113fe4716b074382ec0c 32366 libclamunrar7_0.99-0+deb8u3_amd64.deb Files: 2c5103908635d5991a45ac704a31f95e 2150 non-free/libs extra libclamunrar_0.99-0+deb8u3.dsc 4c55ea8683fae8b6ec2125d12fb8fc92 8844 non-free/libs extra libclamunrar_0.99-0+deb8u3.debian.tar.xz dd70e8c747c4800d03ecb4a03e525ad0 32366 non-free/libs extra libclamunrar7_0.99-0+deb8u3_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJZalRPAAoJEHjX3vua1Zrx744P+wV0/vj2A9jSTyX6RO5Stgvq oY3rLPwssj3fr5cONRHNEykqVt3LL6mMFgoiVdzf1wNr/5/f3kvf7mVUwXhBVWrT rMyoJFjp/merpv8NDlCegw6OLsAd+qoDZ8Sj24APbA5kBODIodjOmcqIE7GQs1Cn ml75B2ynYeal5hXxzobPuBU1ZiOGIug/t6bZt3HNl7w+EjrrFdPeeNocUG99NHk7 vw46oSfb46ivZCWvnf201UWz+g8z/0bI7oiWrfHL4O2qaeNzAymzuSZHTYnTnzuO 3uMSUV7MNPopPVkH6L+hgi9p11wrEuCarzQlPS57EB6PUG4Imea3ZBrDUD7h2FIj WD7NC6CrrgBv8KbZiZJhZWE5g2swGcuRVwh+0YV70K/V2IoMOmqOlC8ZbUE4gPQi Qt5Fn+DvrTkbWTC0huWOQAgfLjBa6zkhY4JwJnN6woheUtf1Cj9LwRv/+p7d1MFI 7g70JY0t6mTU0J9pvC36zDANKyC4bFyqv7qflmv8JYcAwdWuLwoHXT6/BzpjYZQJ r+rQU+3gYfhuzfOpHIphD+yIZr8w6rggxVqyUkdh/pCkpBpvll35iPr1WRIpMyXL 0jkYwlBJs4nB/jfWwe2WTHADBy07b4XOBBwkzVjMCA2RrPq8KP55TmpqCOspY+EE pLNlt8YA39Vutctr1ue1 =MUhl -----END PGP SIGNATURE-----
--- End Message ---
