Your message dated Fri, 05 Apr 2019 05:32:17 +0000
with message-id <[email protected]>
and subject line Bug#924615: fixed in edk2 0~20161202.7bbe0b3e-1+deb9u1
has caused the Debian Bug report #924615,
regarding CVE-2018-12178 CVE-2018-12180 CVE-2018-12181
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
924615: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924615
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: edk2
Severity: grave
Tags: security
Please see
https://security-tracker.debian.org/tracker/CVE-2018-12178
https://security-tracker.debian.org/tracker/CVE-2018-12180
https://security-tracker.debian.org/tracker/CVE-2018-12181
Cheers,
Moritz
--- End Message ---
--- Begin Message ---
Source: edk2
Source-Version: 0~20161202.7bbe0b3e-1+deb9u1
We believe that the bug you reported is fixed in the latest version of
edk2, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
dann frazier <[email protected]> (supplier of updated edk2 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Mon, 18 Mar 2019 14:12:49 -0600
Source: edk2
Architecture: source
Version: 0~20161202.7bbe0b3e-1+deb9u1
Distribution: stretch
Urgency: medium
Maintainer: Debian QEMU Team <[email protected]>
Changed-By: dann frazier <[email protected]>
Closes: 924615
Changes:
edk2 (0~20161202.7bbe0b3e-1+deb9u1) stretch; urgency=medium
.
* Security fixes (Closes: #924615):
- Fix buffer overflow in BlockIo service (CVE-2018-12180)
- DNS: Check received packet size before using (CVE-2018-12178)
- Fix stack overflow with corrupted BMP (CVE-2018-12181)
Checksums-Sha1:
050c109167f14753afc21c6ba1b0f4d82752d473 2236
edk2_0~20161202.7bbe0b3e-1+deb9u1.dsc
97c6a851ea2871ffe86941c96e94ca1b32fb6f8c 19416
edk2_0~20161202.7bbe0b3e-1+deb9u1.debian.tar.xz
2be4cffc732e5d4b2deb7f8464ca494999c7a9db 6893
edk2_0~20161202.7bbe0b3e-1+deb9u1_source.buildinfo
Checksums-Sha256:
1544ddd2458f18c4ec1ea10b1b14486e7fc63a7a1f68ee9a36e305740ffe8538 2236
edk2_0~20161202.7bbe0b3e-1+deb9u1.dsc
a22d96e51f623eb06ea9b3480d2771cafb46860d0affc4a8753b851480d285c3 19416
edk2_0~20161202.7bbe0b3e-1+deb9u1.debian.tar.xz
70152a5a517c7f72347efebea2fe11f5d741060dc6a77883c0e0018e06c17d66 6893
edk2_0~20161202.7bbe0b3e-1+deb9u1_source.buildinfo
Files:
9fe04f9aa7af1ab55e748791b0a29305 2236 misc extra
edk2_0~20161202.7bbe0b3e-1+deb9u1.dsc
6da741b84b6dee99605e64b1f76d5356 19416 misc extra
edk2_0~20161202.7bbe0b3e-1+deb9u1.debian.tar.xz
ecd89822da1bdaec149b3697f78ad55f 6893 misc extra
edk2_0~20161202.7bbe0b3e-1+deb9u1_source.buildinfo
-----BEGIN PGP SIGNATURE-----
iQJFBAEBCgAvFiEECfR9vy0y7twkQ+vuG/g8XlT8hkAFAlyP/dYRHGRhbm5mQGRl
Ymlhbi5vcmcACgkQG/g8XlT8hkDEuw/+LKqzcfXg3PHHKmaBq1/8qNuaX4x6qLhO
EOQP3l++8R89Iol8BW0wMzMg12rU27cI8+yIwcwRwpGj08HeJCQ7npTTbfq8ufSJ
J0+D5FITYFYM8Y1FqUiSf3ytY9tCloN/3bAd4w7RuqDe1VLc+pDXhpYMoSj/1deN
cK+H6pqfyCzSAqqdqQ+ORPSwl7UoL5d4gGr/eVFgvGgQMWqW3J3dlCFBUI9uH+jL
J3XW/1YwCqXBbyPsGlOzb6qwn0mdwTGLXgIH0K6+h6kEeJM9rMG97wgUVeWvnP78
UA6krf+mST5NpKW2pQcfbUUa5Ft4g59O3n1BNZ7vFFFKs5DfAA3W6KI27Rx3Q2wE
WD05yCZQHkHhR0ZbqkkBF/Bw3pS0/zLOq8ozxtfAni40l95VbH5Ul2jlvebB2cN4
akx4VjFgkXa05gfwEo7iQ4+rVQ2AvTMZyKfs6Tn+K/cAAgVyDnzdenTSgeRxCreE
uSiCiuEeomd5FKaIoOY0LHuNNa/VyJstP9diNTxdb11kV1ntwLop8t2+Z1OY3yIf
IZTcJKAbeloTvnmqG6muZ8d3BO7bPIy63f9i65I/9W82ucuxUW7xL5ilwta0klbE
lFTfEBuEdw6xwyDiESBGfxo1xXzXBc5/m97knjERgF4V+4xrRJKVoWqE0IW7CBkQ
B3+jpzCw6+E=
=4GnY
-----END PGP SIGNATURE-----
--- End Message ---