On Sun, Jun 21, 2015 at 09:29:26PM +0200, Markus Koschany wrote: > Hi all, > > I am looking for someone who is interested in uploading jackrabbit and > fixing #787316. > > Packaging the latest upstream release was sufficient. We only build the > jackrabbit-webdav module which is needed for wagon2 but of course only > this module is affected by the vulnerability. I intend to prepare fixes > for Jessie and Wheezy too but I am unsure about the severity of this > issue. Any ideas how I can test/verify the patches in the wagon2 context? > > https://anonscm.debian.org/cgit/pkg-java/jackrabbit.git
Hi Markus, Thank you for the update. I have uploaded it to unstable. Please let me know if need follow-on updates for wagon2 or releated. Cheers, tony
signature.asc
Description: Digital signature
