Your message dated Fri, 15 Jun 2012 22:46:45 -0430
with message-id <20120616031645.ga28...@valeria.miguel.cc>
and subject line Re: Spring: Multiple security issues
has caused the Debian Bug report #677680,
regarding CVE-2011-2732
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
677680: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=677680
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: libspring-security-2.0-java
Severity: grave
Tags: security
Please see
http://www.securityfocus.com/archive/1/519593/30/0/threaded
http://www.springsource.com/security/cve-2011-2731
http://www.springsource.com/security/cve-2011-2732
http://www.springsource.com/security/cve-2011-2894
CVE-2011-2894 seems to affect libspring-java? If so, please clone or
reassign as needed.
CVE-2011-2730 seems to affect libspring-2.5-java? If so, please clone or
reassign as needed.
Cheers,
Moritz
--- End Message ---
--- Begin Message ---
Sorry, this was a mistake.
Closing it because this vulnerability only affected to Spring Security 2.0.x
and 3.0.x.
--
Miguel Landaeta, miguel at miguel.cc
secure email with PGP 0x6E608B637D8967E9 available at http://keyserver.pgp.com/
"Faith means not wanting to know what is true." -- Nietzsche
signature.asc
Description: Digital signature
--- End Message ---
