Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

CVE-2011-1787

Related Vulnerabilities: CVE-2011-1787  

Source

Debian Bug report logs - #631506
CVE-2011-1787

version graph

Package: open-vm-tools; Maintainer for open-vm-tools is Bernd Zeimetz <bzed@debian.org>; Source for open-vm-tools is src:open-vm-tools (PTS, buildd, popcon).

Reported by: Luciano Bello <luciano@debian.org>

Date: Fri, 24 Jun 2011 13:27:02 UTC

Severity: important

Tags: security

Fixed in version 2:8.4.2+2011.08.21-471295-1

Done: Daniel Baumann <daniel.baumann@progress-technologies.net>

Bug is archived. No further changes may be made.

Toggle useless messages

View this report as an mbox folder, status mbox, maintainer mbox

Report forwarded to debian-bugs-dist@lists.debian.org, Debian VMware Maintainers <vmware@lists.debian-maintainers.org>:
Bug#631506; Package open-vm-tools. (Fri, 24 Jun 2011 13:27:05 GMT) (full text, mbox, link).

Acknowledgement sent to Luciano Bello <luciano@debian.org>:
New Bug report received and forwarded. Copy sent to Debian VMware Maintainers <vmware@lists.debian-maintainers.org>. (Fri, 24 Jun 2011 13:27:05 GMT) (full text, mbox, link).

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

From: Luciano Bello <luciano@debian.org>
To: submit@bugs.debian.org
Subject: open-vm-tools: CVE-2011-1787
Date: Fri, 24 Jun 2011 10:22:43 -0300
Package: open-vm-tools
Severity: important
Tags: security

Hi there,
        New security issue: 
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1787

Contrib isn't covered by security support, Squeeze/Lenny can be fixed
through spu/opsu if needed.

Cheers,

-luciano

Changed Bug title to 'CVE-2011-1787' from 'open-vm-tools: CVE-2011-1787' Request was from Daniel Baumann <daniel.baumann@progress-technologies.net> to control@bugs.debian.org. (Sun, 28 Aug 2011 13:24:18 GMT) (full text, mbox, link).

Reply sent to daniel.baumann@progress-technologies.net:
You have taken responsibility. (Sun, 09 Oct 2011 16:12:08 GMT) (full text, mbox, link).

Notification sent to Luciano Bello <luciano@debian.org>:
Bug acknowledged by developer. (Sun, 09 Oct 2011 16:12:09 GMT) (full text, mbox, link).

Message #12 received at 631506-done@bugs.debian.org (full text, mbox, reply):

From: Daniel Baumann <daniel.baumann@progress-technologies.net>
To: 623968-done@bugs.debian.org, 631506-done@bugs.debian.org, 631507-done@bugs.debian.org, 631508-done@bugs.debian.org
Date: Sun, 09 Oct 2011 18:08:54 +0200
Version: 2:8.4.2+2011.08.21-471295-1

this has been fixed in above version, closing.

-- 
Address:        Daniel Baumann, Donnerbuehlweg 3, CH-3012 Bern
Email:          daniel.baumann@progress-technologies.net
Internet:       http://people.progress-technologies.net/~daniel.baumann/

Bug archived. Request was from Debbugs Internal Request <owner@bugs.debian.org> to internal_control@bugs.debian.org. (Mon, 07 Nov 2011 07:32:15 GMT) (full text, mbox, link).

Bug unarchived. Request was from jmw@debian.org to control@bugs.debian.org. (Sun, 08 Jul 2012 16:48:08 GMT) (full text, mbox, link).

Information forwarded to debian-bugs-dist@lists.debian.org, Daniel Baumann <daniel.baumann@progress-technologies.net>:
Bug#631506; Package open-vm-tools. (Mon, 09 Jul 2012 07:27:16 GMT) (full text, mbox, link).

Acknowledgement sent to Jonathan Wiltshire <jmw@debian.org>:
Extra info received and forwarded to list. Copy sent to Daniel Baumann <daniel.baumann@progress-technologies.net>. (Mon, 09 Jul 2012 07:27:17 GMT) (full text, mbox, link).

Message #21 received at 631506@bugs.debian.org (full text, mbox, reply):

From: Jonathan Wiltshire <jmw@debian.org>
To: 631506@bugs.debian.org
Subject: Re: CVE-2011-1787
Date: Mon, 09 Jul 2012 07:23:37 -0000
Dear maintainer,

Recently you fixed one or more security problems and as a result you closed
this bug. These problems were not serious enough for a Debian Security
Advisory, so they are now on my radar for fixing in the following suites
through point releases:

squeeze (6.0.6) - use target "stable"

Please prepare a minimal-changes upload targetting each of these suites,
and submit a debdiff to the Release Team [0] for consideration. They will
offer additional guidance or instruct you to upload your package.

I will happily assist you at any stage if the patch is straightforward and
you need help. Please keep me in CC at all times so I can
track [1] the progress of this request.

For details of this process and the rationale, please see the original
announcement [2] and my blog post [3].

0: debian-release@lists.debian.org
1: http://prsc.debian.net/tracker/631506/
2: <201101232332.11736.thijs@debian.org>
3: http://deb.li/prsc

Thanks,

with his security hat on:
--
Jonathan Wiltshire                                      jmw@debian.org
Debian Developer                         http://people.debian.org/~jmw

4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC  74C3 5394 479D D352 4C51

Bug archived. Request was from Debbugs Internal Request <owner@bugs.debian.org> to internal_control@bugs.debian.org. (Tue, 07 Aug 2012 07:26:00 GMT) (full text, mbox, link).

Send a report that this bug log contains spam.

Debian bug tracking system administrator <owner@bugs.debian.org>. Last modified: Wed Jun 19 13:29:14 2019; Machine Name: buxtehude

Debian Bug tracking system

Debbugs is free software and licensed under the terms of the GNU Public License version 2. The current version can be obtained from https://bugs.debian.org/debbugs-source/.

Copyright © 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson, 2005-2017 Don Armstrong, and many other contributors.

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started