Bug#1006337: marked as done (libexpat1: Latest security updates of libexpat on buster and bullseye break libwbxml)
Your message dated Sun, 13 Mar 2022 18:51:38 +0000
with message-id <E1nTTJa-000Hgd-Aa@fasolo.debian.org>
and subject line Bug#1006337: fixed in wbxml2 0.11.8+dfsg-1
has caused the Debian Bug report #1006337,
regarding libexpat1: Latest security updates of libexpat on buster and bullseye break libwbxml
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)
--
1006337: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1006337
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message ---
- To: Debian Bug Tracking System <submit@bugs.debian.org>
- Subject: libexpat1: Latest security updates of libexpat on buster and bullseye break libwbxml
- From: Hanno Stock <opensource@hanno-stock.de>
- Date: Wed, 23 Feb 2022 21:25:58 +0100
- Message-id: <164564795873.1448561.13533440221049597326.reportbug@sagres.indurad.x>
Package: libexpat1
Version: 2.2.10-2+deb11u2
Severity: important
X-Debbugs-Cc: team@security.debian.org
Dear Maintainer,
after several hours of debugging our SOGo installation, we found out
that libwbxml in general was not able to parse any previously parseable
XML documents.
Expected result:
$ xml2wbxml sample_xml_minimal.xml
xml2wbxml succeded
Result after latest security upgrade:
$ xml2wbxml sample_xml_minimal.xml
xml2wbxml failed: Parsing of XML Document Failed
Minimal XML file:
<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE ActiveSync PUBLIC "-//MICROSOFT//DTD ActiveSync//EN" "http://www.microsoft.com/";>
<FolderSync xmlns="FolderHierarchy:">
<Status>1</Status>
</FolderSync>
This happened on Debian 10 and Debian 11 with the Debian supplied
version of libwbxml.
HTH,
Hanno
-- System Information:
Debian Release: 11.2
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 5.10.0-11-amd64 (SMP w/6 CPU threads)
Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages libexpat1 depends on:
ii libc6 2.31-13+deb11u2
libexpat1 recommends no packages.
libexpat1 suggests no packages.
-- no debconf information
--- End Message ---
--- Begin Message ---
Source: wbxml2
Source-Version: 0.11.8+dfsg-1
Done: Boyuan Yang <byang@debian.org>
We believe that the bug you reported is fixed in the latest version of
wbxml2, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 1006337@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Boyuan Yang <byang@debian.org> (supplier of updated wbxml2 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sun, 13 Mar 2022 14:26:58 -0400
Source: wbxml2
Architecture: source
Version: 0.11.8+dfsg-1
Distribution: unstable
Urgency: medium
Maintainer: Debian QA Group <packages@qa.debian.org>
Changed-By: Boyuan Yang <byang@debian.org>
Closes: 1006337
Changes:
wbxml2 (0.11.8+dfsg-1) unstable; urgency=medium
.
* QA upload.
* New upstream release 0.11.8.
+ Fix compatibility with libexpat 2.4.5+. (Closes: #1006337)
* debian/watch: Fix typo.
Checksums-Sha1:
278d4c052e71eeeb5b59e657460d23650599ffc9 2048 wbxml2_0.11.8+dfsg-1.dsc
0013d43a9874086a7c9d24621b03bae9a4858279 193924 wbxml2_0.11.8+dfsg.orig.tar.xz
70c1f58ce0f39ad33c207c8d2695ad9553d7f207 8572 wbxml2_0.11.8+dfsg-1.debian.tar.xz
7346898e307554813d624bd5008a38af160f3947 8156 wbxml2_0.11.8+dfsg-1_amd64.buildinfo
Checksums-Sha256:
837832b291d9b5258accf66e24b35cc2d41fc0879b10e9a7577ac6809fc02d41 2048 wbxml2_0.11.8+dfsg-1.dsc
ce7a716148236f073e15ef01de267e7b19e541b2da120671d620af137e4b0ed3 193924 wbxml2_0.11.8+dfsg.orig.tar.xz
21ef15487f93cc6be79bfef1e483d5064d12f09381fb72610f894e180c3e1c0a 8572 wbxml2_0.11.8+dfsg-1.debian.tar.xz
2f0afb378c8413d45d6535648d6a1fb979423ed0d33d12ed059ebd0bcf455588 8156 wbxml2_0.11.8+dfsg-1_amd64.buildinfo
Files:
99903c95af493be108de4b537af42ae8 2048 libs optional wbxml2_0.11.8+dfsg-1.dsc
53052a8ce6bc1a47285ce1a8fe640729 193924 libs optional wbxml2_0.11.8+dfsg.orig.tar.xz
ddef6399bd7a1568d4026936ab772bef 8572 libs optional wbxml2_0.11.8+dfsg-1.debian.tar.xz
50321aff19f371ba6f821cfa3fd82584 8156 libs optional wbxml2_0.11.8+dfsg-1_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----
iQIzBAEBCgAdFiEEfncpR22H1vEdkazLwpPntGGCWs4FAmIuN+kACgkQwpPntGGC
Ws6Crw//XKs4JhgzyVD23VjxeNELXIrQWgq/qJ/k1E417mix6F2vdcG+YMg6txTw
tXjZbsCsZLd3dluyAOrhF+f74aXG0u9U+m7lERGxm7DX9wAv/ffpuWhyfBcR55kR
TkeSH3slNUjSlQ3BUNGrLmSLsW9bPY+3uWexoRyvnnT9J9qoUcKIhEuMdtddB/4e
fB5emVy4NPHqytwFB9AChOroobaHou5jvoUtDoZ2eRDe2SQoPlz0+iHqIR3lmsEe
50BTULt09XTLZa1BvaLCMB7mylDrkpX/wm9M1inNCQdovpMLYxL0CmqiwtYYy6sa
n9RoCk38vcghvy3N74nXQ6M3H2L1WTZ+Q8CqddWV5Ln/qNQJkmBh2xZkn7OwQH2C
aCtbkEIwglYNhoZjwsWD6Cka0hE3gJYpdeEqEJjZj/Zs7kSGMlBJc05U/9ZBGzry
H2dKyXvtizqFeTfLmtAF6gYd7EEj2aDng55Z4smaivyyJtMoqZzTw3O+4SyQVTVz
adZ2P0GxjK1vv3qZl9ekj8s7vT0xnw3NyDnJL5jceHgwPx8hrFVmIBlI/RqkRy1V
bcvbhNjrk6S5XhBHvwiwnFzhn+cLGkk10mW7YA/BHoL4ZSLnh2M942t2InI92Z5w
QwHHfq59nSbhZ56+Mlkede0c+Fujvloq9sAyrtaq703YBHl0vqE=
=YYOw
-----END PGP SIGNATURE-----
--- End Message ---
Reply to: