Bug#991189: unblock: fail2ban/0.11.2-2

To: Salvatore Bonaccorso <carnil@debian.org>, 991189@bugs.debian.org
Subject: Bug#991189: unblock: fail2ban/0.11.2-2
From: Graham Inggs <ginggs@debian.org>
Date: Sat, 17 Jul 2021 13:58:57 +0200
Message-id: <[🔎] CAM8zJQtBWYVW5raO_+Ufhzg0ikox_AiAOBrN_hZsL2UJmPjdKA@mail.gmail.com>
Reply-to: Graham Inggs <ginggs@debian.org>, 991189@bugs.debian.org
In-reply-to: <[🔎] 162646327902.629575.14198525935650405563.reportbug@eldamar.lan>
References: <[🔎] 162646327902.629575.14198525935650405563.reportbug@eldamar.lan> <[🔎] 162646327902.629575.14198525935650405563.reportbug@eldamar.lan>

Control: tags -1 + moreinfo

Hi Salvatore

On Fri, 16 Jul 2021 at 21:24, Salvatore Bonaccorso <carnil@debian.org> wrote:
> fail2ban is affected by CVE-2021-32749, see detailed advisory in
> https://github.com/fail2ban/fail2ban/security/advisories/GHSA-m985-3f3v-cwmm,
> which is a possible remote code execution vulnerability in the mailing
> action mail-whois.

fail2ban (0.11.2-2) unstable; urgency=high

  * Fix a problem with mail

 -- Sylvestre Ledru <sylvestre@debian.org>  Mon, 12 Jul 2021 06:52:40 +0200

Would it be better to have the CVE mentioned in the changelog?

Regards
Graham

Reply to:

Follow-Ups:
- Bug#991189: unblock: fail2ban/0.11.2-2
  - From: Salvatore Bonaccorso <carnil@debian.org>

References:
- Bug#991189: unblock: fail2ban/0.11.2-2
  - From: Salvatore Bonaccorso <carnil@debian.org>

Prev by Date: Bug#991203: unblock: python-dbussy/1.3-1.1
Next by Date: Processed: Re: Bug#991189: unblock: fail2ban/0.11.2-2
Previous by thread: Bug#991189: unblock: fail2ban/0.11.2-2
Next by thread: Bug#991189: unblock: fail2ban/0.11.2-2
Index(es):
- Date
- Thread