On 16.04.2015 11:31, Markus Koschany wrote:
> On 16.04.2015 09:00, Thijs Kinkhorst wrote:
> [...]
>> I can take care of this, but did you also prepare a package for wheezy? If
>> so, I missed it.
>>
>
> Hi Thijs,
>
> I already filed a bug report for wheezy against release.debian.org. [1]
> The se
On 16.04.2015 09:00, Thijs Kinkhorst wrote:
[...]
> I can take care of this, but did you also prepare a package for wheezy? If
> so, I missed it.
>
Hi Thijs,
I already filed a bug report for wheezy against release.debian.org. [1]
The security team has marked this CVE as "no-dsa". The debdiff for
On Wed, April 15, 2015 23:10, Markus Koschany wrote:
> Hi,
>
> I have prepared a debdiff for commons-httpclient that addresses three
> CVEs namely CVE-2012-5783, CVE-2012-6153 and CVE-2014-3577. The
> differences between the versions in wheezy, jessie and sid are minor
> since we use the same upstr
Hi,
I have prepared a debdiff for commons-httpclient that addresses three
CVEs namely CVE-2012-5783, CVE-2012-6153 and CVE-2014-3577. The
differences between the versions in wheezy, jessie and sid are minor
since we use the same upstream version 3.1 for all of them.
06_fix_CVE-2012-5783.patch is
