Bug#928210: marked as done (CVE-2019-11471)
Your message dated Sun, 07 Jul 2019 07:46:20 +0000
with message-id <E1hk1sK-000EBD-4X@fasolo.debian.org>
and subject line Bug#928210: fixed in libheif 1.4.0-2
has caused the Debian Bug report #928210,
regarding CVE-2019-11471
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)
--
928210: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=928210
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message ---
- To: Debian Bug Tracking System <submit@bugs.debian.org>
- Subject: CVE-2019-11471
- From: Moritz Muehlenhoff <jmm@debian.org>
- Date: Mon, 29 Apr 2019 23:31:31 +0200
- Message-id: <155657349166.20057.17620906597487411103.reportbug@hullmann.westfalen.local>
Source: libheif
Severity: grave
Tags: security
This was assigned CVE-2019-11471:
https://github.com/strukturag/libheif/issues/123
Patch:
https://github.com/strukturag/libheif/commit/995a4283d8ed2d0d2c1ceb1a577b993df2f0e014
Cheers,
Moritz
--- End Message ---
--- Begin Message ---
Source: libheif
Source-Version: 1.4.0-2
We believe that the bug you reported is fixed in the latest version of
libheif, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 928210@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Sebastian Ramacher <sramacher@debian.org> (supplier of updated libheif package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sat, 06 Jul 2019 15:37:07 +0200
Source: libheif
Architecture: source
Version: 1.4.0-2
Distribution: unstable
Urgency: medium
Maintainer: Debian Multimedia Maintainers <debian-multimedia@lists.debian.org>
Changed-By: Sebastian Ramacher <sramacher@debian.org>
Closes: 928210
Changes:
libheif (1.4.0-2) unstable; urgency=medium
.
* Team upload.
* Upload to unstable.
* debian/patches: Apply upstream fixes for CVE-2019-11471. (Closes: #928210)
Checksums-Sha1:
b3ea36759a2d495b3fd75ff283ae22e11b8436dc 2233 libheif_1.4.0-2.dsc
7727a19106582be266375fe7b368e5ec5784d8ff 7092 libheif_1.4.0-2.debian.tar.xz
Checksums-Sha256:
e40e03faa766862c4bf6cef420b63584c3a32f7f31643a658b20431c3ca71311 2233 libheif_1.4.0-2.dsc
c1c9bbd6c20410156dde7fc91938726c20aad3fc9a2b0c6f6aeb1987df364df5 7092 libheif_1.4.0-2.debian.tar.xz
Files:
d20a6ea917c7eef6a753c6224a57a277 2233 libs optional libheif_1.4.0-2.dsc
3a3eb27438c1bf7dd886f2b8c121db89 7092 libs optional libheif_1.4.0-2.debian.tar.xz
-----BEGIN PGP SIGNATURE-----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=sD1g
-----END PGP SIGNATURE-----
--- End Message ---
Reply to: