1. Forum
  2. Usenet
  3. LINUX.DEBIAN.BUGS.RC

  • Bug#1108050: marked as done (freeipa: CVE-2025-4404) (2/2)

    From Debian Bug Tracking System@1:229/2 to All on Wed Jun 25 12:10:01 2025
    [continued from previous message]

    viU6DFBVxEHb6ZFh6LstcoWQY5cPHL5VqRjiVRX7RfuVmd3CIRztSwcS46jv7s3AeSdPGOXWjHWlZ
    BUxOO1/UGIc6KjikXVZ2lWEqgnrRlgVJ9txPpWyWYqgcSN8ySu+I+FyawnBj1c7MMI2nvMuyuCAjW
    L4CEH+uQ89IdsH4ZpatAjAD7AEWgFU2JLAPH2o4HpHXNsbtc7jXBUSJovoAdQJDUn4LfG8l/no7r2
    ykpsEbrgrV38jhRTHS/SkDd8pETsEx7CMu7PXJk7ONovzwOFk1y9fdBciIt0NNr0RDd5paOF5HWuT
    /48H4dWA==;
    Received: from dak by fasolo.debian.org with local (Exim 4.94.2)
    (envelope-from <envelope@ftp-master.debian.org>)
    id 1uUMzf-00DzNb-DO; Wed, 25 Jun 2025 10:04:39 +0000
    From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
    Reply-To: Timo Aaltonen <tjaalton@debian.org>
    To: 1108050-close@bugs.debian.org
    X-DAK: dak process-upload
    X-Debian: DAK
    X-Debian-Package: freeipa
    Debian: DAK
    Debian-Changes: freeipa_4.12.4-1_source.changes
    Debian-Source: freeipa
    Debian-Version: 4.12.4-1
    Debian-Architecture: source
    Debian-Suite: unstable
    Debian-Archive-Action: accept
    MIME-Version: 1.0
    Subject: Bug#1108050: fixed in freeipa 4.12.4-1
    Content-Type: multipart/signed; micalg="pgp-sha256";
    protocol="application/pgp-signature";
    boundary="===============1118293633518422773=="
    Message-Id: <E1uUMzf-00DzNb-DO@fasolo.debian.org>
    Date: Wed, 25 Jun 2025 10:04:39 +0000

    --===============1118293633518422773==
    Content-Type: text/plain; charset="utf-8"
    Content-Transfer-Encoding: quoted-printable

    Source: freeipa
    Source-Version: 4.12.4-1
    Done: Timo Aaltonen <tjaalton@debian.org>

    We believe that the bug you reported is fixed in the latest version of
    freeipa, which is due to be installed in the Debian FTP archive.

    A summary of the changes between this version and the previous one is
    attached.

    Thank you for reporting the bug, which will now be closed. If you
    have further comments please address them to 1108050@bugs.debian.org,
    and the maintainer will reopen the bug report if appropriate.

    Debian distribution maintenance software
    pp.
    Timo Aaltonen <tjaalton@debian.org> (supplier of updated freeipa package)

    (This message was generated automatically at their request; if you
    believe that there is a problem with it please contact the archive administrators by mailing ftpmaster@ftp-master.debian.org)


    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    Format: 1.8
    Date: Wed, 25 Jun 2025 12:40:45 +0300
    Source: freeipa
    Built-For-Profiles: noudeb
    Architecture: source
    Version: 4.12.4-1
    Distribution: unstable
    Urgency: medium
    Maintainer: Debian FreeIPA Team <pkg-freeipa-devel@alioth-lists.debian.net> Changed-By: Timo Aaltonen <tjaalton@debian.org>
    Closes: 1012592 1012593 1093383 1108050
    Changes:
    freeipa (4.12.4-1) unstable; urgency=medium
    .
    * New upstream release.
    - CVE-2024-11029 (Closes: #1093383)
    - CVE-2025-4404 (Closes: #1108050)
    * control: Demote libnss-myhostname to Suggests. (ref. #1006829)
    * patches: Fix samba lock directory location. (Closes: #1012593)
    * patches: Map nobody group to nogroup on Debian. (Closes: #1012592) Checksums-Sha1:
    f3691be50382267acadf27bf9c772680b5f7ff66 3049 freeipa_4.12.4-1.dsc
    f9e18b0882aad23c0392cbd55f5019206e26eddf 14677764 freeipa_4.12.4.orig.tar.gz
    762ca43dab91b8fc210f0c9a606b2ae270bb583c 283240 freeipa_4.12.4-1.debian.tar.xz
    4c4dc23005eddc08526186b93457554d3d8ca3d9 11101 freeipa_4.12.4-1_source.buildinfo
    Checksums-Sha256:
    a5d351bd40b679faa5b3a4b985637b36d61452c54173d66fed518c47ce37f887 3049 freeipa_4.12.4-1.dsc
    367ddd1e8680b7af8c67480c1422678978229eae20b8d33c1e30a1ade9fd69d6 14677764 freeipa_4.12.4.orig.tar.gz
    dd7d9f6a3392d233b7bb0f170dd359bf1477191a3db609b10fa68935cfbce8bc 283240 freeipa_4.12.4-1.debian.tar.xz
    6531e9f728c1ee410780c52c8b29000524b0255c251b78a9a0bb9fcec787658f 11101 freeipa_4.12.4-1_source.buildinfo
    Files:
    97e92c50cb36b75775feab38a6b8e625 3049 net optional freeipa_4.12.4-1.dsc
    6121c5826e8d04ae85214183f07f167d 14677764 net optional freeipa_4.12.4.orig.tar.gz
    b9b7eeaa8e40edf287c9ecf64c7e87b7 283240 net optional freeipa_4.12.4-1.debian.tar.xz
    ef66bc50ce3e2f67762bd6fcd179dbd8 11101 net optional freeipa_4.12.4-1_source.buildinfo

    -----BEGIN PGP SIGNATURE-----

    iQIzBAEBCgAdFiEEdS3ifE3rFwGbS2Yjy3AxZaiJhNwFAmhbxV0ACgkQy3AxZaiJ hNynQg//XkDPTzlP11j+z9A0GdriglqlbnTq1B6bsc7ZWCDP4H1pK9ZeUr8ywjPT G6V5ZXRIsoPfL6UwzTV+EWrytWei1hiDNBo+9Y6sxmzb53S5tosRqFMmOz1cgbCk wx6BUZAXB+79EqrhrLHl579V3IvwMsFT1Gm8dLjSLj8JECjWaKvZJJC3SYVIYa/s qgB0V3bO+ecARdhDgMuytYcJn8X6PpeOy/1pjI098a8sGwH/HVYH8H374wrEuuON RMn1CzqPYYwo2Lp+kvzz/Glyfi97fN6TtgGBfV7x2RUsCm3EE/qAwW4CF+da1Ner G3YbCJJZqZfgCrpbQKG/I5N0vFzMThRtnKJO4b08TJ/Lxd3RcW1mZ6JNOhGoEkGW S+a2vDPB9eNEQHQvtV1H6SgqVv/+2iVmKqo+hTwH9VhjGtAqeEJGRCsCPzkkROSH t3vLk1s6oZOhAQVw/AHIbOhOuc3aXY6UevRoIXZUsDFseeHAasc2LMSCpKCmnHPS ckdJ9c0haCdDbHgTmu5lOMc9pGZCINlJQ9OkGlavEiI6ln/FvRRvwKuzKpFl639P p2nTGPEBLPBe1zksGgSwe0YUltrnbirOdIgeRGXxs4hwI7LJonomXleHCDnnprla bO6U9FGJB3n8l3oQpU1YjebrnVCVHhDGKITyKv3z74PIxissjx4=
    =14/b
    -----END PGP SIGNATURE-----


    --==============18293633518422773=Content-Type: application/pgp-signature

    -----BEGIN PGP SIGNATURE-----

    iHUEABYIAB0WIQTziqJOuF8J+ZI8pJSb9qggYcy5IQUCaFvJtwAKCRCb9qggYcy5 ISSTAQCdRv8ZQdzlhA7ABomjvPi1vKFxPjnhIe2LXkiWhT7RCgEAtHJVnp5Ai7t8 /gQJyAPCxsfCncF4ot9dnhJoiePwjQEº4y
    -----END PGP SIGNATURE-----

    --==============18293633518422773==--

    --- SoupGate-Win32 v1.05
    * Origin: you cannot sedate... all the things you hate (1:229/2)