[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#342092: marked as done (CVE-2005-3964: Two exploitable buffer overflows in openmotif)

Your message dated Wed, 02 Aug 2006 11:00:07 +0200
with message-id <87ac6nv7fs.fsf@debian.org>
and subject line Fixed in openmotif 2.2.3-1.4
has caused the attached Bug report to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere.  Please contact me immediately.)

Debian bug tracking system administrator
(administrator, Debian Bugs database)

--- Begin Message ---
Package: openmotif
Severity: grave
Tags: security
Justification: user security hole

Two exploitable buffer overflows have been found in OpenMotif. Please
see http://marc.theaimsgroup.com/?l=full-disclosure&m=113349242925897&w=2 
for details. This has been assigned CVE-2005-3964, please mention it in
the changelog when fixing it.


-- System Information:
Debian Release: testing/unstable
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.14-2-686
Locale: LANG=C, LC_CTYPE=de_DE.ISO-8859-15@euro (charmap=ISO-8859-15)

--- End Message ---
--- Begin Message ---
Source: openmotif
Source-Version: 2.2.3-1.4

Now that openmotif is orphaned, bugs fixed in non-maintainer uploads
can be closed.  The original .changes file follows.

Hash: SHA1

Format: 1.7
Date: Mon, 10 Jul 2006 12:58:42 +0200
Source: openmotif
Binary: libmotif-dev libmotif3 motif-clients
Architecture: source i386
Version: 2.2.3-1.4
Distribution: unstable
Urgency: high
Maintainer: Gerd Knorr <kraxel@debian.org>
Changed-By: Amaya Rodrigo Sastre <amaya@debian.org>
 libmotif-dev - Open Motif - development files
 libmotif3  - Open Motif - shared libraries
 motif-clients - Open Motif - X11 clients (mwm, xmbind)
Closes: 342092 363944
 openmotif (2.2.3-1.4) unstable; urgency=high
   * Non-maintainer upload.
   * Apply patch by Kris Jurka <jurka@ejurka.com> (Closes: #363944).
   * Fix CVE-2005-3964: libUil buffer overflows (Closes: #342092).
     Urgency set accordingly.
 5b9d0f15029fb2ecf61a8483538c7284 712 non-free/devel extra openmotif_2.2.3-1.4.dsc
 d6d64375bc8f81acbc6ce8132ceb823e 18810 non-free/devel extra openmotif_2.2.3-1.4.diff.gz
 5c08a1c2bf269403c5b488bc77b89a9d 1285086 non-free/libs extra libmotif3_2.2.3-1.4_i386.deb
 561e49762f9dd2439b10502440abdae8 2823426 non-free/devel extra libmotif-dev_2.2.3-1.4_i386.deb
 5b5241bf1e2a71c17b7509b5ab6209e4 169304 non-free/x11 extra motif-clients_2.2.3-1.4_i386.deb

Version: GnuPG v1.4.3 (GNU/Linux)


--- End Message ---

Reply to: