Hey!
On Mon, Jan 08, 2018 at 06:03:48PM +0100, Markus Koschany wrote:
> Hi,
>
> Am 08.01.2018 um 17:44 schrieb Salvatore Bonaccorso:
> [...]
> > So the patched files exits, and similar code flow is present.
> >
> > I explicitly have not looked (yet) at 4.0.2.GA which is in jessie (and
> >
Hi,
Am 08.01.2018 um 17:44 schrieb Salvatore Bonaccorso:
[...]
> So the patched files exits, and similar code flow is present.
>
> I explicitly have not looked (yet) at 4.0.2.GA which is in jessie (and
> wheezy), just the 4.3.3 based versions in stable and unstable yet.
>
> What do you miss?
Hi Abhijith, hi Markus
On Mon, Jan 08, 2018 at 04:01:17PM +0100, Markus Koschany wrote:
> Am 08.01.2018 um 13:32 schrieb Abhijith PA:
> > Hello. :)
> >
> > https://bugzilla.redhat.com/show_bug.cgi?id=1465573#c24 says it affects
> > all 5.x version. But Debian haven't shipped this version yet. And
Am 08.01.2018 um 13:32 schrieb Abhijith PA:
> Hello. :)
>
> https://bugzilla.redhat.com/show_bug.cgi?id=1465573#c24 says it affects
> all 5.x version. But Debian haven't shipped this version yet. And
> upstream patched files doesn't exist in 4.3.3 (version in Debian sid).
> So could you please
Hello. :)
https://bugzilla.redhat.com/show_bug.cgi?id=1465573#c24 says it affects
all 5.x version. But Debian haven't shipped this version yet. And
upstream patched files doesn't exist in 4.3.3 (version in Debian sid).
So could you please elaborate on how your research find 4.3.3 affected ?
--
Control: found -1 4.3.3-1
Control: tags -1 + upstream fixed-upstream
On Thu, Dec 28, 2017 at 10:30:55AM +0100, Salvatore Bonaccorso wrote:
> Source: libhibernate-validator-java
> Severity: important
> Tags: security
>
> Hi,
>
> the following vulnerability was published for
>
Processing control commands:
> found -1 4.3.3-1
Bug #885577 [src:libhibernate-validator-java] libhibernate-validator-java:
CVE-2017-7536: Privilege escalation when running under the security manager
Marked as found in versions libhibernate-validator-java/4.3.3-1.
> tags -1 + upstream
Source: libhibernate-validator-java
Severity: important
Tags: security
Hi,
the following vulnerability was published for
libhibernate-validator-java. There is unfortunately not much
information available, cf. [1].
CVE-2017-7536[0]:
Privilege escalation when running under the security manager
8 matches
Mail list logo