Ubuntu
acon package

please remove acon (source, binary) from intrepid.

Bug #280177 reported by StefanPotyra on 2008-10-08

256

Affects		Status	Importance	Assigned to	Milestone
	acon (Debian)	Fix Released	Undecided	Unassigned
	acon (Ubuntu)	Fix Released	High	Unassigned

Bug Description

Binary package hint: acon

http://blog.steve.org.uk/so_cunning_you_could_brush_your_teeth_with_it_.html
cf. debian #501461

Revision history for this message

StefanPotyra (sistpoty) wrote on 2008-10-08:

#1

hm... should we remove this package from intrepid? (it's suggested in the Debian bug report to remove it from Debian altogeether).

Changed in acon:
importance:	Undecided → High
status:	New → Confirmed

Bug Watch Updater (bug-watch-updater) on 2008-10-09

Changed in acon:
status:	Unknown → New

Revision history for this message

StefanPotyra (sistpoty) wrote on 2008-10-09:

#2

packages was removed from unstable, see bug #501482.

If noone objects, I'll turn this into a removal request tomorrow.

Revision history for this message

StefanPotyra (sistpoty) wrote on 2008-10-10:

#3

Hi,

please remove acon from intrepid for the following reasons:
* was removed from unstable
* contains a setuid binary
* is written in bad/insecure manner, as the debian security audit (cf. debian #501461) revealed.

Thanks,
Stefan.

Revision history for this message

Martin Pitt (pitti) wrote on 2008-10-13:

#4

2008-10-13 07:41:34 INFO Removing candidates:
2008-10-13 07:41:34 INFO acon 1.0.5-7 in intrepid
2008-10-13 07:41:34 INFO Removed-by: Martin Pitt
2008-10-13 07:41:34 INFO Comment: insecure, unmaintained, suid root binary, LP #280177
2008-10-13 07:41:34 INFO 1 package successfully removed.

Changed in acon:
status:	Confirmed → Fix Released

Revision history for this message

Nizar Kerkeni (nizarus) wrote on 2008-10-14:

#5

acon should be removed from language-support-extra-ar dependency (https://bugs.edge.launchpad.net/ubuntu/+source/acon/+bug/283268)

Revision history for this message

Artur Rona (ari-tczew) wrote on 2010-02-21:

#6

Fixed in version 1.0.5-7+rm

Changed in acon (Debian):
importance:	Unknown → Undecided
status:	New → Fix Released

Revision history for this message

Artur Rona (ari-tczew) wrote on 2010-02-21:

#7

There is nothing to take care, so I'm unsubscribing motu-swat.

Report a bug

This report contains Public Security information

Everyone can see this security related information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

debbugs #501461
[done grave] Edit

Bug watches keep track of this bug in other bug trackers.