Your message dated Sun, 20 Oct 2013 23:18:57 +0000 with message-id <e1vy2gv-0005ie...@franck.debian.org> and subject line Bug#726473: fixed in nss 2:3.15.2-1 has caused the Debian Bug report #726473, regarding nss: CVE-2013-1739 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 726473: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=726473 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---package: nss version: 3.12.8-1 severity: grave tag: security Hi, A security issue was recently fixed in nss 3.15.2: [0] https://security-tracker.debian.org/tracker/CVE-2013-1739 For unstable, its probably easiest to just update directly to the latest upstream version to fix this. Actual patch is still behind a restricted bug report, so I was not able to fully check affected versions. Best wishes, Mike
--- End Message ---
--- Begin Message ---Source: nss Source-Version: 2:3.15.2-1 We believe that the bug you reported is fixed in the latest version of nss, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 726...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Mike Hommey <gland...@debian.org> (supplier of updated nss package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Mon, 21 Oct 2013 08:05:24 +0900 Source: nss Binary: libnss3 libnss3-1d libnss3-tools libnss3-dev libnss3-dbg Architecture: source amd64 Version: 2:3.15.2-1 Distribution: unstable Urgency: low Maintainer: Maintainers of Mozilla-related packages <pkg-mozilla-maintain...@lists.alioth.debian.org> Changed-By: Mike Hommey <gland...@debian.org> Description: libnss3 - Network Security Service libraries libnss3-1d - Network Security Service libraries - transitional package libnss3-dbg - Debugging symbols for the Network Security Service libraries libnss3-dev - Development files for the Network Security Service libraries libnss3-tools - Network Security Service tools Closes: 726473 Changes: nss (2:3.15.2-1) unstable; urgency=low . * New upstream release. - Fixes CVE-2013-1739. Closes: #726473. Checksums-Sha1: 9baaaa828fa59a6f39a30ef6cb8537905abea9f5 2176 nss_3.15.2-1.dsc 2d900c296bf11deabbf833ebd6ecdea549c97a5f 6288669 nss_3.15.2.orig.tar.gz f03208371a47dbc7a4ce6a89516127425c4b6643 37097 nss_3.15.2-1.debian.tar.gz bdd2f806704f548f814d6c536e9a4ce33205dac3 1088742 libnss3_3.15.2-1_amd64.deb 0db8a83456b0cff09177e4af7094b1e33e6e872a 20100 libnss3-1d_3.15.2-1_amd64.deb 8beeb15eca5cd7c6313e17cf43357acab145ef98 230300 libnss3-tools_3.15.2-1_amd64.deb 3eb5a2f2613b3ff0467a97e5adce2eefcfe8d8be 219792 libnss3-dev_3.15.2-1_amd64.deb 0881e16737ca55c842e96ef4e9db5c0fb9dafb9e 4757858 libnss3-dbg_3.15.2-1_amd64.deb Checksums-Sha256: 27df1270336cececf2cd976bcfadf1b1b90e9f7337f1134ba17e8e09e605f1e2 2176 nss_3.15.2-1.dsc 7b2c80d18c49581edbdb509cbf7afd61d8c53658f2a38ff20e224c1909faeddc 6288669 nss_3.15.2.orig.tar.gz df9f2fabf3cf75dfbba349eafc89cb283ad6fe8ddf34e0843341a1f98c623bf5 37097 nss_3.15.2-1.debian.tar.gz b0252f7e5bf7f752615e698212945e7a52a1d86edb7722a8a3907673cc61d4ee 1088742 libnss3_3.15.2-1_amd64.deb 64ce394ca32a46cb3a9ebe9e57cec4fc7b2e25157540896d887d0fa965f81069 20100 libnss3-1d_3.15.2-1_amd64.deb 675371b30aa2a1ac232e05616d61964d1d4b9ec0099994205d6d94a1627a8728 230300 libnss3-tools_3.15.2-1_amd64.deb e3e02aae77251f08c2fc7f09b4e915013eba5fc2fa61d7c221698edd63feb337 219792 libnss3-dev_3.15.2-1_amd64.deb e37bd2a91af698c10411f689c57c8cc474d66ba957c7e196fa901319f59a5b23 4757858 libnss3-dbg_3.15.2-1_amd64.deb Files: a70a2633370be617d16792c704327386 2176 libs optional nss_3.15.2-1.dsc 154223568f9734c76c164b46c774450c 6288669 libs optional nss_3.15.2.orig.tar.gz 4e1ef29b8546e8b9ee98f66bd3200a3d 37097 libs optional nss_3.15.2-1.debian.tar.gz 7a98a6c4ab714c31d6a1c72c8071845b 1088742 libs optional libnss3_3.15.2-1_amd64.deb 3d9399cd1ca4c3ebf861cf075264356a 20100 oldlibs extra libnss3-1d_3.15.2-1_amd64.deb fe9dc8e8cede6a20234faf66ecb07879 230300 admin optional libnss3-tools_3.15.2-1_amd64.deb eb87d69cc78d161388708c0113aa8b67 219792 libdevel optional libnss3-dev_3.15.2-1_amd64.deb 2aaea8839d2ff984688e9b6f503171f5 4757858 debug extra libnss3-dbg_3.15.2-1_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.15 (GNU/Linux) iQIVAwUBUmRjSuQqoE+mqoxyAQiwPg//YvFnEoYZ4egErXT4C2GDBHB64q3armzV Woe6nJ7vMWHjOatpMYoAm9wd5ybs0oWGelF8zQo8ZLA+duB/c795rjHI5dPC7gGI oE13ThDV4DQyhpjsxdJnE6+CbMjXRncQ6uz16OgoBEhMvyusOoSTulqkxPFh5039 NfsUgNVmJL1nqpkJ36FnBxhUVfHDAZ2ZNu4i5It2XxHpFkymDvIbjokyRKOt27+c 8bjn5s+YLeAWYtcqTeAGne+ADBPtdlDRmA2fdJYz+H/f2tTPTqTsF7bKC5SZwVg7 4eechf+oXX7PEnZr3HRHewGSOWlChskji+QsIdppWalQNIfrBTPSIM4fTlfwfURu I9BnyQzUc7f2iT+dmHfNWZeK6DVZzvTu4VH6kXLsqzmyujOLuoHe39btR+HFV7/J hlWWRkkC39jHpStKWUta+XU1YzIBK44WPNz1YEezu3BUzgu9i/IPsBneDUw54Mqm vpyKlVYoNlFQnUSMw+RS+qJR+3j3iMiTZ9aV9nopvV3/uq455BsH99OaDa6nv6zx A9bgyawK7gYXOpijAe0wBa2+D4Z+UHyyHjqoQXFHx66HmYWYDt9oQG8P4gltHFSt CZgoeQhAlP+ef3HryQ2QILK6CV5IqBsilzVs7KtDnH+7bPMfftILIj/gvzCCKiZ2 7AlArByvOxY= =j7QY -----END PGP SIGNATURE-----
--- End Message ---
