Your message dated Wed, 16 Jan 2013 21:48:13 +0000
with message-id <[email protected]>
and subject line Bug#696424: fixed in sanlock 2.2-2
has caused the Debian Bug report #696424,
regarding sanlock: CVE-2012-5638
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
696424: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=696424
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: sanlock
Severity: grave
Tags: security
Justification: user security hole
Please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-5638
Cheers,
Moritz
--- End Message ---
--- Begin Message ---
Source: sanlock
Source-Version: 2.2-2
We believe that the bug you reported is fixed in the latest version of
sanlock, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
David Weber <[email protected]> (supplier of updated sanlock package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Thu, 03 Jan 2013 22:12:33 +0100
Source: sanlock
Binary: sanlock libsanlock-client1 libsanlock-dev
Architecture: source amd64
Version: 2.2-2
Distribution: unstable
Urgency: low
Maintainer: David Weber <[email protected]>
Changed-By: David Weber <[email protected]>
Description:
libsanlock-client1 - shared storage lock manager (client library)
libsanlock-dev - shared storage lock manager (development files)
sanlock - shared storage lock manager
Closes: 689696 696424
Changes:
sanlock (2.2-2) unstable; urgency=low
.
* Fix CVE-2012-5638 sanlock world writable /var/log/sanlock.log.
Thanks to Salvatore Bonaccorso (Closes: #696424)
Add patches cherry-picked from git repository:
- 0001-sanlock-remove-umask-0.patch
- 0001-sanlock-use-lockfile-mode-644.patch
- 0001-wdmd-use-lockfile-mode-644.patch
* Replace restrict field name (Closes: #689696)
Add patch cherry-picked from git repository:
- restrict.patch
Checksums-Sha1:
a205e34a5ef2e387f7e511978c1e2fc1619eebc2 1825 sanlock_2.2-2.dsc
311da627f0daf4ec4aaa1bede5a8b795532669ac 9410 sanlock_2.2-2.debian.tar.gz
b29a37da4c85842437340efd14b6d46da758eb1b 112110 sanlock_2.2-2_amd64.deb
647bc244a0cc8ba69e8833b80908dd7453153637 9698
libsanlock-client1_2.2-2_amd64.deb
c578a8120a3d9ead344074020f3268c2a5375435 5858 libsanlock-dev_2.2-2_amd64.deb
Checksums-Sha256:
1a68c41bebf077e9dc98df73f1a702ccd50fb1a3c5eba8c0f06e71d01ae6b221 1825
sanlock_2.2-2.dsc
d792c8e5b709df190ef9897164d84013905ab4fa221c51ed8c83410c5bd9ec3f 9410
sanlock_2.2-2.debian.tar.gz
7674e4b376e02910d7dba21866ac73cfca62714622ca2aa583e68cc60163f9f6 112110
sanlock_2.2-2_amd64.deb
a10b24546e4866b10c5e5fe12c6bcf36ee5b98b055316df583c1179dfd3fad47 9698
libsanlock-client1_2.2-2_amd64.deb
0743507745b851e9fc1b9b31c2c4c5cd5617967277b30ca991572cf8c540d40a 5858
libsanlock-dev_2.2-2_amd64.deb
Files:
57d7b01349eb07741723f1cdcdc7acd0 1825 libs optional sanlock_2.2-2.dsc
1a13a28e0cda2e5365561453b0716479 9410 libs optional sanlock_2.2-2.debian.tar.gz
53acb0f2df3e5506bedcb69e497e3a09 112110 libs optional sanlock_2.2-2_amd64.deb
32aa85948df25bfd304f3f94e814834b 9698 libs optional
libsanlock-client1_2.2-2_amd64.deb
0153758bad90eedbc07981bfd6ca81ef 5858 libdevel optional
libsanlock-dev_2.2-2_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
iQIcBAEBCgAGBQJQ9xxxAAoJEHidbwV/2GP+xcAP/31GvUkcsHQVRZNpvDp6lcOE
dOi2wIwR6hLcVHdHCEK6juLq1fNTkEBzbbJdFla0ktWutxBSt6hH9KOU1YvIv0Cb
sFevf9ik45Vd57i8O7V1CNq/+wVBS9PkEti+KxIMYyBj/o0bcIWglcLZCm77uWhG
B53p8+psAWGcIosh/DpJz+dba/Wqui0/1vDzjgvww6edsEG4MG3CKezMnKQZaavw
lV37TJ5Yq9jGn11vbpzeqReKGvTtYBilJPwxWEkp+ptSAifSQPE62xJ0E6boWqCw
DCQz3DtbBEQU8731VhD85Hwg9OIotO7rHkGeiEblSlkT6uGPAJt1ctAdxldOWt9v
XbUXKuZ10HKC/O/R9/pEqQSPy7kkvX/DI7p5zf+ZhNHASTJ8ynPPcMlsXBVtoe+R
nN2kxGGUh5s4wR9rzF5ZxOj+zd8U5zB6JSUc+LZrZh4DxFuqVV6X3s4YT/rkenJg
jZpljGGWTsyeXGx2W3WCzEuJ+vb/QrZ/BnWpoJVUBAAY65toS/4+McaXhBMfHvD9
5GSl9fP/dHafxFqzst1TSmJH04PoMYnVdImZquitJVxp4P2Rf0kgZykgPAG+idFK
q3gxNZwD0kfi0eaWUSW6EjAITZk384GxfkH8PgUqRA0nU17SIgOATP6aJUSaKLLI
eyq3iuYuDrPIZxU/M9Mn
=dCPq
-----END PGP SIGNATURE-----
--- End Message ---