This patch is not acceptable as you are trying to fix a security issue (already
fixed) and a bug issue. Please only upload a debdiff for the bug issue.
Also create a new ticket for that, as this one if for the security issue and
that was already fixed.
--
You received this bug notification beca
** Patch added: "maven_focal.debdiff"
https://bugs.launchpad.net/ubuntu/+source/maven/+bug/1922654/+attachment/5701761/+files/maven_focal.debdiff
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to the bug report.
https://bugs.launchpad.net/bu
I have tried to apply debdiff for maven_focal.debdiff[1]
$ debdiff-apply < ../maven_focal.debdiff
Traceback (most recent call last):
File "/usr/bin/debdiff-apply", line 382, in
sys.exit(main(sys.argv[1:]))
^^
File "/usr/bin/debdiff-apply"
** Also affects: maven-resolver (Ubuntu)
Importance: Undecided
Status: New
** Patch added: "maven-resolver_focal.debdiff"
https://bugs.launchpad.net/ubuntu/+source/maven-resolver/+bug/1922654/+attachment/5700653/+files/maven-resolver_focal.debdiff
--
You received this bug notificat
** Patch added: "maven-resolver_jammy.debdiff"
https://bugs.launchpad.net/ubuntu/+source/maven-resolver/+bug/1922654/+attachment/5700654/+files/maven-resolver_jammy.debdiff
** Changed in: maven-resolver (Ubuntu)
Status: New => Fix Released
--
You received this bug notification because
That is already fixed under Ubuntu Pro:
https://ubuntu.com/security/notices/USN-5245-1
https://ubuntu.com/security/notices/USN-5239-1
** Changed in: maven (Ubuntu)
Status: Confirmed => Fix Released
** Changed in: httpcomponents-client (Ubuntu)
Status: Confirmed => Fix Released
--
** Changed in: maven (Ubuntu)
Assignee: Luís Infante da Câmara (luis220413) => (unassigned)
** Patch added: "maven_jammy.debdiff"
https://bugs.launchpad.net/ubuntu/+source/maven/+bug/1922654/+attachment/5697382/+files/maven_jammy.debdiff
--
You received this bug notification because you
** Patch added: "maven_focal.debdiff"
https://bugs.launchpad.net/ubuntu/+source/maven/+bug/1922654/+attachment/5697379/+files/maven_focal.debdiff
** Changed in: maven (Ubuntu)
Assignee: (unassigned) => Luís Infante da Câmara (luis220413)
--
You received this bug notification because you
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-26291
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-13956
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/19
Thanks for taking the time to report this bug and helping to make Ubuntu
better. Since the packages referred to in this bug is in universe or
multiverse, it is community maintained. If you are able, I suggest
coordinating with upstream and posting a debdiff for this issue. When a
debdiff is availab
** Information type changed from Private Security to Public Security
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1922654
Title:
Apache Maven Multiple Security Bypass Vulnerabilities
To manage not
11 matches
Mail list logo
