Bug#985427: marked as done (Wrong DLA number for spice CVEs)

To: Thomas Lange <lange@cs.uni-koeln.de>

Subject: Bug#985427: marked as done (Wrong DLA number for spice CVEs)

From: "Debian Bug Tracking System" <owner@bugs.debian.org>

Date: Thu, 05 Oct 2023 13:51:06 +0000

Message-id: <[🔎] handler.985427.D985427.16965136992392968.ackdone@bugs.debian.org>

References: <25886.48368.183807.973361@cs.uni-koeln.de> <a82f4255b99347ac89312804b0ff416a@ptsecurity.com>

Your message dated Thu, 5 Oct 2023 15:41:04 +0200 with message-id <25886.48368.183807.973361@cs.uni-koeln.de> and subject line closing has caused the Debian Bug report #985427, regarding Wrong DLA number for spice CVEs to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact owner@bugs.debian.org immediately.) -- 985427: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985427 Debian Bug Tracking System Contact owner@bugs.debian.org with problems

--- Begin Message ---

To: "submit@bugs.debian.org" <submit@bugs.debian.org>
Subject: Wrong DLA number for spice CVEs
From: Petr Perminov <pperminov@ptsecurity.com>
Date: Thu, 18 Mar 2021 05:40:42 +0000
Message-id: <a82f4255b99347ac89312804b0ff416a@ptsecurity.com>

Package: www.debian.org

Severity: normal

-- System Information:

Debian Release: 10.4

APT prefers stable-updates

APT policy: (500, 'stable-updates'), (500, 'stable')

Architecture: amd64 (x86_64)

Kernel: Linux 4.19.0-9-amd64 (SMP w/4 CPU cores)

Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE

Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8)

Shell: /bin/sh linked to /usr/bin/dash

Init: systemd (via /run/systemd/system)

LSM: AppArmor: enabled

You have DLA for mariadb package (https://lists.debian.org/debian-lts-announce/2018/08/msg00036.html)

and DLA for spice package (https://lists.debian.org/debian-lts-announce/2018/08/msg00037.html),

but on the following pages you have wrong DLA number / links:

https://lists.debian.org/debian-lts-announce/2018/08/msg00035.html

and wrong content here:

https://www.debian.org/lts/security/2018/dla-1488 (it copies https://www.debian.org/lts/security/2018/dla-1486)

--- End Message ---

--- Begin Message ---

To: 985427-done@bugs.debian.org
Cc:
Subject: closing
From: Thomas Lange <lange@cs.uni-koeln.de>
Date: Thu, 5 Oct 2023 15:41:04 +0200
Message-id: <25886.48368.183807.973361@cs.uni-koeln.de>

Noone provided a patch for this for 2+ years. Please use
the security-tracker for authoritative information.

-- 
regards Thomas

--- End Message ---

Reply to: