Bug#857447: marked as done (unblock: libytnef/1.9.2-1)

[owner@bugs.debian.org (Debian Bug Tracking System)]

Your message dated Sat, 11 Mar 2017 10:48:00 +0000
with message-id <b6ef91e8-fb34-3d2b-fd3b-a040dc2c0464@thykier.net>
and subject line Re: Bug#857447: unblock: libytnef/1.9.2-1
has caused the Debian Bug report #857447,
regarding unblock: libytnef/1.9.2-1
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)


-- 
857447: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857447
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems

--- Begin Message ---

• To: Debian Bug Tracking System <submit@bugs.debian.org>
• Subject: unblock: libytnef/1.9.2-1
• From: Jordi Mallach <jordi@debian.org>
• Date: Sat, 11 Mar 2017 11:43:26 +0100
• Message-id: <[🔎] 148922900610.547.820399216361541427.reportbug@penyagolosa>

Package: release.debian.org
Severity: normal
User: release.debian.org@packages.debian.org
Usertags: unblock

Please unblock package libytnef

Upstream continued work on security aspects of the code and fixed another
three issues.

[CVE-2017-6800] Invalid memory access (heap overrun) in handling
                LONG data types
[CVE-2017-6801] Missing check for fields of size 0
[CVE-2017-6802] Potential buffer overrun in compressed RTF streams

unblock libytnef/1.9.2-1

This version has a seldomly used binary being renamed (removes the .pl suffix),
but it's been present in debian for 1.5 months only so I guess it's not a big
deal.

-- System Information:
Debian Release: 9.0
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.9.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=ca_ES.UTF-8, LC_CTYPE=ca_ES.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

--- End Message ---

--- Begin Message ---

• To: Jordi Mallach <jordi@debian.org>, 857447-done@bugs.debian.org
• Subject: Re: Bug#857447: unblock: libytnef/1.9.2-1
• From: Niels Thykier <niels@thykier.net>
• Date: Sat, 11 Mar 2017 10:48:00 +0000
• Message-id: <b6ef91e8-fb34-3d2b-fd3b-a040dc2c0464@thykier.net>
• In-reply-to: <[🔎] 148922900610.547.820399216361541427.reportbug@penyagolosa>
• References: <[🔎] 148922900610.547.820399216361541427.reportbug@penyagolosa>

Jordi Mallach:
> Package: release.debian.org
> Severity: normal
> User: release.debian.org@packages.debian.org
> Usertags: unblock
> 
> Please unblock package libytnef
> 
> Upstream continued work on security aspects of the code and fixed another
> three issues.
> 
> [CVE-2017-6800] Invalid memory access (heap overrun) in handling
>                 LONG data types
> [CVE-2017-6801] Missing check for fields of size 0
> [CVE-2017-6802] Potential buffer overrun in compressed RTF streams
> 
> unblock libytnef/1.9.2-1
> 
> This version has a seldomly used binary being renamed (removes the .pl suffix),
> but it's been present in debian for 1.5 months only so I guess it's not a big
> deal.
> 
> [...]

According to codesearch.d.n, it is not mentioned outside libytnef and
with that fact: unblocked!

Thanks,
~Niels

--- End Message ---