Your message dated Sun, 26 Aug 2012 21:17:40 +0000 with message-id <e1t5kde-0002ul...@franck.debian.org> and subject line Bug#684890: fixed in beaker 1.6.3-1.1 has caused the Debian Bug report #684890, regarding CVE-2012-3458: Information disclosure to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 684890: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=684890 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Package: beaker Severity: grave Tags: security Justification: user security hole Please see https://groups.google.com/forum/?fromgroups#!topic/pylons-devel/zOx8OhIDru4[1-25] Remember we're in freeze, so please fix this in sid through the isolated fix instead of updating to 1.6.4. Cheers, Moritz
--- End Message ---
--- Begin Message ---Source: beaker Source-Version: 1.6.3-1.1 We believe that the bug you reported is fixed in the latest version of beaker, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 684...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. David Prévot <taf...@debian.org> (supplier of updated beaker package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Fri, 24 Aug 2012 13:54:13 -0400 Source: beaker Binary: python-beaker python3-beaker Architecture: source all Version: 1.6.3-1.1 Distribution: unstable Urgency: low Maintainer: Debian Python Modules Team <python-modules-team@lists.alioth.debian.org> Changed-By: David Prévot <taf...@debian.org> Description: python-beaker - cache and session library python3-beaker - cache and session library for Python 3 Closes: 684890 Changes: beaker (1.6.3-1.1) unstable; urgency=low . * Non-maintainer upload. * Fix security issue, with PyCrypto not securing data such that an attacker could possibly determine parts of the encrypted payload. Patch by Miloslav Trmac of Redhat. [CVE-2012-3458] Closes: #684890 Checksums-Sha1: 8b0677f6ad94dedf710cc983fbc75268bc355d05 2159 beaker_1.6.3-1.1.dsc 86988a46e5861e4d2feeaaa9c70d139b88341d36 6234 beaker_1.6.3-1.1.debian.tar.gz fd7c260dcc99b8be472a0455817bba2db5bc9804 46534 python-beaker_1.6.3-1.1_all.deb 6ef596c3414aa9b11f0b33ede5fe51edb8ad4d47 45308 python3-beaker_1.6.3-1.1_all.deb Checksums-Sha256: 117bc71cb29b982cc5bbaa6c99282e3c377482877e262dabe54499af604e76a1 2159 beaker_1.6.3-1.1.dsc 0ba69f59dc65a1edd11f218f51393968c78e545a672f9f8a90d344fb3ee43251 6234 beaker_1.6.3-1.1.debian.tar.gz 65207dc156f9edf26820a5f03a340c5d4ccf3bfe7c39b9ecec6c9269571f8d97 46534 python-beaker_1.6.3-1.1_all.deb aee2444b3a1403e893889c4183311214dbaf166ac063d073195ea13694f5bdf0 45308 python3-beaker_1.6.3-1.1_all.deb Files: ed1aa4272e799c11dba30daacd6fdfac 2159 python optional beaker_1.6.3-1.1.dsc 4c60dc77af3cf95992c1b3bf5f77523d 6234 python optional beaker_1.6.3-1.1.debian.tar.gz 53a451af701b6dd8e32455acf6cf7f08 46534 python optional python-beaker_1.6.3-1.1_all.deb 514130c701b3b292ea8196874cd13f03 45308 python optional python3-beaker_1.6.3-1.1_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQIcBAEBCAAGBQJQN8TtAAoJELgqIXr9/gny4tIQAK8DNvkWv4UX20sJJ7q+UUFX mY+xn9w+B5B1qo/k98GwasZ00C4PNVgPqYk18ucQVPr6fDMYbFousDoGRBtlUOD9 ZBM/zH3Vj8mX5xh9zjNbZYkEyp29LNJTUZtOih+W4ACZ98U+CVcUhBy0ja2Zb4qg DKHiBAomKaMQagnQTwLWRq8PcA2cqSsXv1vbqX/bLnrlhVwVDbC0IZVEHUjeBfLo IVHs+tVgVytz3rJOH2IHsPInWwxrv5K7WlOmy7XbBOuctWh48kt1hdDQNWBnmvJj yCRIkqnRjL0yYYSFltF6z8QSdbKKMF6SPb9PTTSDZ7ir1MMO2G11GZ5vvMPzpMXJ JDdk+AgoYvJ8j9MqvV67gOB1yLx8RSYPsKnkkf3WUhnmLkVaoKi6Y4usyBYSOiyA T7M8RHwLEwtcB7c4MbT2lJ335sl7RsB+4ZeDFb2Bef1ZDoLrkHPaSN7xDBQV6GD9 iorPOO/M1nQ/sQY4G2TZLGkzi7O8B2L6gf6iuEGR+JEw7b7fUpQzrUHwpY0L0snz c4A9dRpeTN26bORhnKw7Gz9043hNb8Z2hWk7Pp8FLWNNm7+OrivaEQSaiMdhq5as nvYi2BjTNc/DLjgDbLWAzm1TNsAmAuMRTazgSiAN1C3ph2BDmK2qVLdbL2zLoJtv Vgi6YPEadu78o6gTDp8d =uuNK -----END PGP SIGNATURE-----
--- End Message ---
_______________________________________________ Python-modules-team mailing list Python-modules-team@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/python-modules-team
