Your message dated Mon, 30 Apr 2018 13:17:08 +0000 with message-id <e1fd8g0-000eiz...@fasolo.debian.org> and subject line Bug#896701: fixed in drupal7 7.52-2+deb9u4 has caused the Debian Bug report #896701, regarding drupal7: CVE-2018-7602: SA-CORE-2018-004 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 896701: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=896701 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: drupal7 Version: 7.32-1 Severity: grave Tags: security upstream Hi, The following vulnerability was published for drupal7. CVE-2018-7602[0]: SA-CORE-2018-004 If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2018-7602 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7602 [1] https://www.drupal.org/psa-2018-003 Regards, Salvatore
--- End Message ---
--- Begin Message ---Source: drupal7 Source-Version: 7.52-2+deb9u4 We believe that the bug you reported is fixed in the latest version of drupal7, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 896...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Gunnar Wolf <gw...@debian.org> (supplier of updated drupal7 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Wed, 25 Apr 2018 13:23:46 -0500 Source: drupal7 Binary: drupal7 Architecture: source all Version: 7.52-2+deb9u4 Distribution: stretch-security Urgency: high Maintainer: Gunnar Wolf <gw...@debian.org> Changed-By: Gunnar Wolf <gw...@debian.org> Description: drupal7 - fully-featured content management framework Closes: 896701 Changes: drupal7 (7.52-2+deb9u4) stretch-security; urgency=high . * Move repository from Alioth to Salsa; update Vcs-Git and Vcs-Browser accordingly * SA-CORE-2018-004: Fix remote code execution vulnerability (CVE-2018- 7602) (Closes: #896701) Checksums-Sha1: 03ccc79067dc648aecc5c1c329b62b0e6fae8a90 1877 drupal7_7.52-2+deb9u4.dsc 643f2cea005e9bcde53b5503b064d38c46715105 194372 drupal7_7.52-2+deb9u4.debian.tar.xz 32ad31e6427a77db7065c6af57e550d2845a2f75 2518500 drupal7_7.52-2+deb9u4_all.deb 9b2b903209a2837739441379a77d75478e05b522 8834 drupal7_7.52-2+deb9u4_amd64.buildinfo Checksums-Sha256: 158b02087045513fc42e1c471b949d810040ac4f01d3f69f6f884dae79bf6f1c 1877 drupal7_7.52-2+deb9u4.dsc 6396e39d06a235acfa0f0400c7f888803c382cecbede3327436b3df3f9c48e9e 194372 drupal7_7.52-2+deb9u4.debian.tar.xz c445781b1dfa715f889b9d6ecb02eab5a288aa553716e3c40ce073cdf0c32e6a 2518500 drupal7_7.52-2+deb9u4_all.deb 79be90be0f4af8ff5a4223b9666476eec4fbb1e3751e55f011e44ee5355b67ef 8834 drupal7_7.52-2+deb9u4_amd64.buildinfo Files: fc394d338095728d81792952978b2e9f 1877 web extra drupal7_7.52-2+deb9u4.dsc 9b4940653dad83597347fd1a97e37b70 194372 web extra drupal7_7.52-2+deb9u4.debian.tar.xz 898f4f080607f9b233932956692a710c 2518500 web extra drupal7_7.52-2+deb9u4_all.deb 1f759e7e4216f2e1c38ceba5f3027cef 8834 web extra drupal7_7.52-2+deb9u4_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEq0HBxor9ZoygRev4ZzoD5MHbkh8FAlrgx94ACgkQZzoD5MHb kh+SwhAApHq6xHcs62h8jZ4IapxxtJ4sIbpndlCw07oAwOKwNZJTi2ZLq4HcATgC OX0ka4icb2cE+UoeTdnzXmL578AeY+R3rH7XJPg2hDvep8ciswTzcmcXol/4e8v+ oM1O7khhcEb5lvnI1xpPTteJPF5/CjCCcIxnxbr7Fp6pkBet0IG3gEUL6HlXjdaP 4/JYguVlgPEf3Iiowc1np+fQuAqcjJRYSvJ7rkLCix+PH2+S/Ph259lSIroYhKuc FgY9DjijXUvF7xyKtUh9ZlpPgszXSiS402eBK4D4JyQSIEx6j/xAK03zIhZKEiI7 GtiSRAYxgkmJnLvJ+/9uOzppUZRvHXNZuM6hjsjAGHU4tVhPrAFyEfT7Ibs1EFAd ujmq77nxNuXw0BbbmqFPTI/Xsd5NJXAFT8I336ObbJXRir056DFfMeodtSWCU84v 7OAoH6erzDmxGBS8DZEdYZFyuIAUOHRD3YrdsuQTErQsBddISotJwAof6DBeL5Na Yirbx0vCknRTkW25v5P7ESkpKqe8DpC26FalKwO68LHWw7komXpFE7/OpfBFQMtt 3zZOWobU4vvtww2H2n5x8yliDWoNCRWNsBZe0so1XvbEHq/Fsw5Z4DZ1D06vucNz v3a84XlfZ+LYaSikfj7nCWffPZv2a+3WZYhZDSevkNE7hU4NIQk= =k5zU -----END PGP SIGNATURE-----
--- End Message ---
