Your message dated Tue, 31 Oct 2006 00:02:42 -0800
with message-id <[EMAIL PROTECTED]>
and subject line Bug#395102: fixed in wims 3.60-1
has caused the attached Bug report to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere.  Please contact me immediately.)

Debian bug tracking system administrator
(administrator, Debian Bugs database)

--- Begin Message ---
package: wims
severity: grave
tags: security

A vulnerability has been found in WIMS (and is fixed in 3.60):

"This release fixes a security hole related to variable rights, which 
allowed some kinds of users to alter unauthorized data"


Please mention the CVE id in the changelog.


--- End Message ---
--- Begin Message ---
Source: wims
Source-Version: 3.60-1

We believe that the bug you reported is fixed in the latest version of
wims, which is due to be installed in the Debian FTP archive:

flydraw_3.60-1_i386.deb
  to pool/main/w/wims/flydraw_3.60-1_i386.deb
texgd_3.60-1_i386.deb
  to pool/main/w/wims/texgd_3.60-1_i386.deb
wims-modules_3.60-1_all.deb
  to pool/main/w/wims/wims-modules_3.60-1_all.deb
wims_3.60-1.diff.gz
  to pool/main/w/wims/wims_3.60-1.diff.gz
wims_3.60-1.dsc
  to pool/main/w/wims/wims_3.60-1.dsc
wims_3.60-1_i386.deb
  to pool/main/w/wims/wims_3.60-1_i386.deb
wims_3.60.orig.tar.gz
  to pool/main/w/wims/wims_3.60.orig.tar.gz



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Georges Khaznadar <[EMAIL PROTECTED]> (supplier of updated wims package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Sun, 29 Oct 2006 12:05:29 +0100
Source: wims
Binary: texgd flydraw wims-modules wims
Architecture: source i386 all
Version: 3.60-1
Distribution: unstable
Urgency: low
Maintainer: Georges Khaznadar <[EMAIL PROTECTED]>
Changed-By: Georges Khaznadar <[EMAIL PROTECTED]>
Description: 
 flydraw    - Inline drawing tool
 texgd      - Program to convert short TeX formulas to PNG graphics
 wims       - WWW Interactive Mathematics Server (WIMS)
 wims-modules - modules used by the WIMS server
Closes: 395102
Changes: 
 wims (3.60-1) unstable; urgency=low
 .
   * Upgraded to new upstream version.
     Closes: #395102 (CVE-2006-5443)
Files: 
 c5eb65fae0b67dd046fe1878b2bec941 642 web optional wims_3.60-1.dsc
 eb297f6a5b465a086ff046f141698802 12640037 web optional wims_3.60.orig.tar.gz
 ef20d040d42dab477474decdef2ec663 19932 web optional wims_3.60-1.diff.gz
 bb98e3a0db716bf4be1ae68beb1b267b 6593048 web optional wims_3.60-1_i386.deb
 932ec2b12fc9f45595eed98a9dd7891a 40218 graphics optional 
flydraw_3.60-1_i386.deb
 bbf8609e32f0a565a3cf2fe4fd0555bf 20274 graphics optional texgd_3.60-1_i386.deb
 8c3f3cf706e53136e935672c33ad651f 6006616 web optional 
wims-modules_3.60-1_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFFROCMvPbGD26BadIRAq/UAJ9485VrnL6Pjpv6FERJJ2YbK1zddACfYXF7
sBvFGfX36Fdzk6T+3zkmL5Y=
=N79a
-----END PGP SIGNATURE-----


--- End Message ---

Reply via email to