Processing of htdig_3.2.0b6-4_i386.changes
htdig_3.2.0b6-4_i386.changes uploaded successfully to localhost along with the files: htdig_3.2.0b6-4.dsc htdig_3.2.0b6-4.diff.gz htdig-doc_3.2.0b6-4_all.deb htdig_3.2.0b6-4_i386.deb Greetings, Your Debian queue daemon -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
htdig_3.2.0b6-4_i386.changes ACCEPTED
Accepted: htdig-doc_3.2.0b6-4_all.deb to pool/main/h/htdig/htdig-doc_3.2.0b6-4_all.deb htdig_3.2.0b6-4.diff.gz to pool/main/h/htdig/htdig_3.2.0b6-4.diff.gz htdig_3.2.0b6-4.dsc to pool/main/h/htdig/htdig_3.2.0b6-4.dsc htdig_3.2.0b6-4_i386.deb to pool/main/h/htdig/htdig_3.2.0b6-4_i386.deb Override entries for your package: htdig-doc_3.2.0b6-4_all.deb - optional doc htdig_3.2.0b6-4.dsc - source web htdig_3.2.0b6-4_i386.deb - optional web Announcing to [EMAIL PROTECTED] Closing bugs: 453278 Thank you for your contribution to Debian. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#453278: marked as done (CVE-2007-6110: XSS in htsearch)
Your message dated Sun, 02 Dec 2007 10:02:03 + with message-id <[EMAIL PROTECTED]> and subject line Bug#453278: fixed in htdig 1:3.2.0b6-4 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) --- Begin Message --- Package: htdig Version: 1:3.2.0b6-3.1 Severity: important Tags: security Hi The following CVE[0] has been issued against htdig. CVE-2007-6110: Cross-site scripting (XSS) vulnerability in htsearch in htdig 3.2.0b6 allows remote attackers to inject arbitrary web script or HTML via the sort parameter. Please mention the CVE id number in your changelog, when you fix the problem. Cheers Steffen [0]: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6110 --- End Message --- --- Begin Message --- Source: htdig Source-Version: 1:3.2.0b6-4 We believe that the bug you reported is fixed in the latest version of htdig, which is due to be installed in the Debian FTP archive: htdig-doc_3.2.0b6-4_all.deb to pool/main/h/htdig/htdig-doc_3.2.0b6-4_all.deb htdig_3.2.0b6-4.diff.gz to pool/main/h/htdig/htdig_3.2.0b6-4.diff.gz htdig_3.2.0b6-4.dsc to pool/main/h/htdig/htdig_3.2.0b6-4.dsc htdig_3.2.0b6-4_i386.deb to pool/main/h/htdig/htdig_3.2.0b6-4_i386.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Steffen Joeris <[EMAIL PROTECTED]> (supplier of updated htdig package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 02 Dec 2007 08:21:04 + Source: htdig Binary: htdig htdig-doc Architecture: source i386 all Version: 1:3.2.0b6-4 Distribution: unstable Urgency: high Maintainer: Debian QA Group <[EMAIL PROTECTED]> Changed-By: Steffen Joeris <[EMAIL PROTECTED]> Description: htdig - WWW search system for an intranet or small internet htdig-doc - Documentation for the htdig package Closes: 453278 Changes: htdig (1:3.2.0b6-4) unstable; urgency=high . * QA upload by the testing-security team * Fix XSS in htsearch by not displaying the sort type in htsearch/Display.cc and libhtdig/ResultFetch.cc anymore, if it is unrecognised (Closes: #453278) Thanks to William Grant Fixes: CVE-2007-6110 Files: 51203989aa308590710757d0d8c6a998 602 web optional htdig_3.2.0b6-4.dsc 9a4df1dc1ebf2207a133ac945429bdc6 86277 web optional htdig_3.2.0b6-4.diff.gz dd6480852932d671cbc6cdd7c553267e 528280 doc optional htdig-doc_3.2.0b6-4_all.deb 702ffd38a3ca1964f8a3e3e4db1a5e00 1874888 web optional htdig_3.2.0b6-4_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFHUn/Z62zWxYk/rQcRArf0AKC2W55omBZrgteLAY4dH6pehHoN9ACfeL8k pXutxnJUQbcnV5AiwAVdHLo= =Dmoy -END PGP SIGNATURE- --- End Message ---
Bug#435421: myphpmoney: can't install, remove or purge
Hi Christian, this is a ping, looks like you forogt about this item :) Kind regards Nico -- Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted. pgpmke9JDJmJd.pgp Description: PGP signature
Bug#421725: marked as done (turkey: Uninstallable due to unmet dep on libgcj7-awt)
Your message dated Sun, 2 Dec 2007 18:52:52 +0100 with message-id <[EMAIL PROTECTED]> and subject line turkey: Uninstallable due to unmet dep on libgcj7-awt has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) --- Begin Message --- Package: turkey Severity: grave Version: 1.34.0-3 Tags: sid The package is not installable as it depends on libgcj7-awt which is not available in unstable anymore. I tried to fix this by updating the dependency to libgcj7-1-awt, though apparantly not all build dependencies are installable at the moment... Cheers Luk signature.asc Description: OpenPGP digital signature --- End Message --- --- Begin Message --- Hi, as this package was removed from unstable I hereby close this bug. Kind regards Nico -- Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted. pgp90e5riKELS.pgp Description: PGP signature --- End Message ---
Processing of imsniff_0.04-2_i386.changes
imsniff_0.04-2_i386.changes uploaded successfully to localhost along with the files: imsniff_0.04-2.dsc imsniff_0.04-2.diff.gz imsniff_0.04-2_i386.deb Greetings, Your Debian queue daemon -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
imsniff_0.04-2_i386.changes ACCEPTED
Accepted: imsniff_0.04-2.diff.gz to pool/main/i/imsniff/imsniff_0.04-2.diff.gz imsniff_0.04-2.dsc to pool/main/i/imsniff/imsniff_0.04-2.dsc imsniff_0.04-2_i386.deb to pool/main/i/imsniff/imsniff_0.04-2_i386.deb Override entries for your package: imsniff_0.04-2.dsc - source net imsniff_0.04-2_i386.deb - extra net Announcing to [EMAIL PROTECTED] Closing bugs: 449914 Thank you for your contribution to Debian. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
smartcard REMOVED from testing
FYI: The status of the smartcard source package in Debian's testing distribution has changed. Previous version: 0.1.7-3 Current version: (not in testing) Hint: Package not in unstable The script that generates this mail tries to extract removal reasons from comments in the britney hint files. Those comments were not originally meant to be machine readable, so if the reason for removing your package seems to be nonsense, it is probably the reporting script that got confused. Please check the actual hints file before you complain about meaningless removals. -- This email is automatically generated; [EMAIL PROTECTED] is responsible. See http://people.debian.org/~henning/trille/ for more information. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
