Accepted:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Format: 1.8
Date: Fri, 29 Mar 2013 21:37:32 +0100
Source: eclipse-wtp
Binary: eclipse-wtp eclipse-wtp-xmltools eclipse-wtp-webtools eclipse-wtp-xsl
eclipse-wtp-ws eclipse-wtp-servertools w3c-xsd-xslt
Architecture: source all
Version:
Package: maven
Version: 3.0.4-3
Severity: normal
Dear Maintainer,
Please upgrade maven to 3.0.5. Upstream recommends against using 3.0.4 due to
the following security vulnerability: http://maven.40175.n5.nabble.com
/SECURITY-CVE-2013-0253-Apache-Maven-3-0-4-td5748186.html , currently also
eclipse-wtp_3.4.2-1_amd64.changes uploaded successfully to localhost
along with the files:
eclipse-wtp_3.4.2-1.dsc
eclipse-wtp_3.4.2.orig.tar.xz
eclipse-wtp_3.4.2-1.debian.tar.gz
eclipse-wtp_3.4.2-1_all.deb
eclipse-wtp-xmltools_3.4.2-1_all.deb
eclipse-wtp-webtools_3.4.2-1_all.deb
On Sat, Mar 30, 2013 at 10:53 AM, Luís Picciochi Oliveira
pitxy...@gmail.com wrote:
Please upgrade maven to 3.0.5. Upstream recommends against using 3.0.4 due to
the following security vulnerability: http://maven.40175.n5.nabble.com
/SECURITY-CVE-2013-0253-Apache-Maven-3-0-4-td5748186.html ,
Your message dated Sat, 30 Mar 2013 22:32:57 -0300
with message-id
caea1cytfhp0-97rp78dipzvwrfbaxsfbolfunke3cxth2z2...@mail.gmail.com
and subject line Bug#654108: fixed in maven 3.0.4-1
has caused the Debian Bug report #654108,
regarding Updating the maven Uploaders list
to be marked as done.
5 matches
Mail list logo