Your message dated Mon, 19 Jun 2017 18:44:12 +0000 with message-id <e1dn1em-0009ld...@fasolo.debian.org> and subject line Bug#864195: fixed in libopenmpt 0.2.8190~beta24-1 has caused the Debian Bug report #864195, regarding libopenmpt: Security updates libopenmpt-0.2.7386-beta20.3-p7 available to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 864195: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864195 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: libopenmpt Version: 0.2.7386~beta20.3-3 Severity: important Tags: upstream Dear Maintainer, A couple of security-related fixes have been released upstream as version 0.2.7386-beta20.3-p7. See https://lib.openmpt.org/libopenmpt/md_announce-2017-06-02.html . These most importantly fix a couple of possible crashes which can be triggered by maliciously modified or malformed or truncated module files as well as denial-of-service through hangs or excessive CPU consumption which can also be triggered maliciously modfied or malformed or truncated module files. -- System Information: Debian Release: 9.0 APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.9.0-3-amd64 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US:en (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)
--- End Message ---
--- Begin Message ---Source: libopenmpt Source-Version: 0.2.8190~beta24-1 We believe that the bug you reported is fixed in the latest version of libopenmpt, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 864...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. James Cowgill <jcowg...@debian.org> (supplier of updated libopenmpt package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 19 Jun 2017 18:53:10 +0100 Source: libopenmpt Binary: openmpt123 libopenmpt0 libopenmpt-dev libopenmpt-doc libopenmpt-modplug1 libopenmpt-modplug-dev Architecture: source Version: 0.2.8190~beta24-1 Distribution: unstable Urgency: medium Maintainer: Debian Multimedia Maintainers <pkg-multimedia-maintainers@lists.alioth.debian.org> Changed-By: James Cowgill <jcowg...@debian.org> Description: libopenmpt-dev - module music library based on OpenMPT -- development files libopenmpt-doc - module music library based on OpenMPT -- documentation libopenmpt-modplug-dev - module music library based on OpenMPT -- modplug compat developme libopenmpt-modplug1 - module music library based on OpenMPT -- modplug compat library libopenmpt0 - module music library based on OpenMPT -- shared library openmpt123 - module music library based on OpenMPT -- music player Closes: 864195 Changes: libopenmpt (0.2.8190~beta24-1) unstable; urgency=medium . * New upstream release. - Fixes various local denial-of-service security bugs. (Closes: #864195) * Upload to unstable. . * debian/control: - Bump standards to 4.0.0 (no changes required). Checksums-Sha1: 05dc0d63d1a404659b3b66e95c3d4baee87d5112 2688 libopenmpt_0.2.8190~beta24-1.dsc cc208e1d3d584c07d33542f51a42b80b5a3102fd 1282019 libopenmpt_0.2.8190~beta24.orig.tar.gz a4597628aa9a3818d53362de86104f04eb3e2e6a 11628 libopenmpt_0.2.8190~beta24-1.debian.tar.xz 77d95c3d4b25359816902bc9f5e26f5f28ebfe6e 7975 libopenmpt_0.2.8190~beta24-1_source.buildinfo Checksums-Sha256: f153a550031e82b443d4cc3d2b129eeb4689526e4d2ff7c11ca2e6df095b7563 2688 libopenmpt_0.2.8190~beta24-1.dsc 91495fbc0b160231bbf0176502715360b5b874462f71345801cce29d85e0ad84 1282019 libopenmpt_0.2.8190~beta24.orig.tar.gz dbbeed0dca8a06601af171eb7688247518c5358f1e1895b57e69c64886508e10 11628 libopenmpt_0.2.8190~beta24-1.debian.tar.xz 4c2ea2feb3c1bcbd9eabeca6666904bbc9f1916570c84c0a6c034ee73bd7f6e2 7975 libopenmpt_0.2.8190~beta24-1_source.buildinfo Files: 558eafa819634bf2396219f4593a1345 2688 libs optional libopenmpt_0.2.8190~beta24-1.dsc 782e098a9fc261bfa8801a2401df08ec 1282019 libs optional libopenmpt_0.2.8190~beta24.orig.tar.gz b4e246d8555e79b0bb2d6f34e351bc52 11628 libs optional libopenmpt_0.2.8190~beta24-1.debian.tar.xz de0edfebe16909be3b9f50d256ebe6ac 7975 libs optional libopenmpt_0.2.8190~beta24-1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQJIBAEBCgAyFiEE+Ixt5DaZ6POztUwQx/FnbeotAe8FAllID9EUHGpjb3dnaWxs QGRlYmlhbi5vcmcACgkQx/FnbeotAe8FEg//eYG8kcVt+h9xg9NWF2L6AXu3K86L VCuA1n2ntLpxtKbIpNt+o1P7wds2JIbkbF02wlqG3coy2cn+pB1bHyCmfcJj6c+i c6QPhXycvbO4/sYP5tccvA130rOOwH1NiuCXOGMKqx4U9f4BMV7YyZjUowEvvyq2 8VPcvBvSCjZg/97OfVQOFtrG6gxtBd1G+SS76LxWgROaTic0ZyMKExN2NN9O6vGS GbR2EDnPjHmpdf5lkWVh9lapm3+U65XVGBUcKpgC38COcf/D0PsgqBRe75z74ZCL rzkSLlHyReazWkLdnPqvq3G7KZVrUtZg4zLx0T5MV+t6pboFSvBLUJiNt1lckBld QYBHVnvsUD1CD1elhLHrksraCluB2MGoHbQNsFmHIdJuOWFZ5z9xwuakP6o6dI4r 8A8tZJFkE0j4AEDE5bvcyGSTzlB/qUizbQA7BHupLQ2T3v6Bgh2fmEJ6z4VJe7Kz ClYIASsaSjlUcAQbUNW61shsE/2Ny6Ko1wd6jWLv7EVq0VaSSJOxyBLoTaB0MBct 44Ox3QJ1YKbIVouhKNui1YguDnZUX1VCK1iN2ujDBv0ZslD8iqOobzLbVsQqIurA nluJ+6UYmqgmHxHvWFh/KorMhMEQSbv5UnagM6wRnI5qyKoTgQ2uLOZmKs+ICbDe LgtCYozzW4n7NF4= =WN3M -----END PGP SIGNATURE-----
--- End Message ---
_______________________________________________ pkg-multimedia-maintainers mailing list pkg-multimedia-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-multimedia-maintainers
