[Pkg-freeciv-devel] Bug#302702: marked as done (freeciv-server: Do the server DoS vulnerabilities fixed in 2.0 rc1 affect 1.14 as well?)

Debian Bug Tracking System owner@bugs.debian.org
Sun, 01 May 2005 08:18:07 -0700 

Your message dated Sun, 1 May 2005 17:00:56 +0200
with message-id <20050501150056.GA18534@informatik.uni-bremen.de>
and subject line This is fixed
has caused the attached Bug report to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere.  Please contact me immediately.)

Debian bug tracking system administrator
(administrator, Debian Bugs database)

--------------------------------------
Received: (at submit) by bugs.debian.org; 2 Apr 2005 12:43:50 +0000
>From jmm@inutil.org Sat Apr 02 04:43:50 2005
Return-path: <jmm@inutil.org>
Received: from gluck.debian.org [192.25.206.10] 
	by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
	id 1DHhyf-00016E-00; Sat, 02 Apr 2005 04:43:50 -0800
Received: from inutil.org (vserver151.vserver151.serverflex.de) [193.22.164.111] 
	by gluck.debian.org with esmtp (Exim 3.35 1 (Debian))
	id 1DHhyf-0000Y1-00; Sat, 02 Apr 2005 05:43:49 -0700
Received: from wlan-client-010.informatik.uni-bremen.de ([134.102.116.11] helo=localhost.localdomain)
	by vserver151.vserver151.serverflex.de with esmtpsa (TLS-1.0:RSA_AES_256_CBC_SHA:32)
	(Exim 4.50)
	id 1DHhyX-0002Yg-To
	for submit@bugs.debian.org; Sat, 02 Apr 2005 14:43:41 +0200
Received: from jmm by localhost.localdomain with local (Exim 4.50)
	id 1DHhyc-0003yJ-19; Sat, 02 Apr 2005 14:43:46 +0200
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: Moritz Muehlenhoff <jmm@inutil.org>
To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: freeciv-server: Do the server DoS vulnerabilities fixed in 2.0 rc1 affect
 1.14 as well?
X-Mailer: reportbug 3.9
Date: Sat, 02 Apr 2005 14:43:45 +0200
Message-Id: <E1DHhyc-0003yJ-19@localhost.localdomain>
X-SA-Exim-Connect-IP: 134.102.116.11
X-SA-Exim-Mail-From: jmm@inutil.org
X-SA-Exim-Scanned: No (on vserver151.vserver151.serverflex.de); SAEximRunCond expanded to false
Delivered-To: submit@bugs.debian.org
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 
	(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-8.0 required=4.0 tests=BAYES_00,HAS_PACKAGE 
	autolearn=no version=2.60-bugs.debian.org_2005_01_02
X-Spam-Level: 

Package: freeciv-server
Version: 1.14.2-1
Severity: important
Tags: security

Dear Freeciv maintainers,
the changelog for 2.0rc1 mentioned
 * Fixed several security problems with the network code (a client could
   trigger a server crash).

Do these affect 1.14 as well? If so and Freeciv 2.0 comes too late for
Sarge, could you please backport them to 1.14.2?

Cheers,
        Moritz

-- System Information:
Debian Release: 3.1
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.11
Locale: LANG=C, LC_CTYPE=de_DE.ISO-8859-15@euro (charmap=ISO-8859-15)

Versions of packages freeciv-server depends on:
ii  freeciv-data                1.14.2-1     Civilization turn based strategy g
ii  libc6                       2.3.2.ds1-20 GNU C Library: Shared libraries an
ii  libreadline4                4.3-15       GNU readline and history libraries
ii  zlib1g                      1:1.2.2-4    compression library - runtime

-- no debconf information

---------------------------------------
Received: (at 302702-done) by bugs.debian.org; 1 May 2005 15:01:08 +0000
>From jmm@inutil.org Sun May 01 08:01:08 2005
Return-path: <jmm@inutil.org>
Received: from inutil.org (vserver151.vserver151.serverflex.de) [193.22.164.111] 
	by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
	id 1DSFwS-00088x-00; Sun, 01 May 2005 08:01:08 -0700
Received: from p54894682.dip.t-dialin.net ([84.137.70.130] helo=localhost.localdomain)
	by vserver151.vserver151.serverflex.de with esmtpsa (TLS-1.0:RSA_AES_256_CBC_SHA:32)
	(Exim 4.50)
	id 1DSFwR-0004oA-2q
	for 302702-done@bugs.debian.org; Sun, 01 May 2005 17:01:07 +0200
Received: from jmm by localhost.localdomain with local (Exim 4.50)
	id 1DSFwH-0004pD-Dw
	for 302702-done@bugs.debian.org; Sun, 01 May 2005 17:00:57 +0200
Date: Sun, 1 May 2005 17:00:56 +0200
To: 302702-done@bugs.debian.org
Subject: This is fixed
Message-ID: <20050501150056.GA18534@informatik.uni-bremen.de>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.5.9i
From: Moritz Muehlenhoff <jmm@inutil.org>
X-SA-Exim-Connect-IP: 84.137.70.130
X-SA-Exim-Mail-From: jmm@inutil.org
X-SA-Exim-Scanned: No (on vserver151.vserver151.serverflex.de); SAEximRunCond expanded to false
Delivered-To: 302702-done@bugs.debian.org
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02 
	(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-3.0 required=4.0 tests=BAYES_00 autolearn=no 
	version=2.60-bugs.debian.org_2005_01_02
X-Spam-Level: 

Since 2.0 has hit sid, I'm closing this.

Cheers,
        Moritz