Package: libslide-webdavclient-java Version: 2.1+dfsg-1 Severity: important Tags: security
Hi, the following CVE (Common Vulnerabilities & Exposures) id was published for libslide-webdavclient-java. CVE-2007-5731[0]: | Absolute path traversal vulnerability in Apache Jakarta Slide 2.1 and | earlier allows remote authenticated users to read arbitrary files via | a WebDAV write request that specifies an entity with a SYSTEM tag, a | related issue to CVE-2007-5461. If you fix this vulnerability please also include the CVE id in your changelog entry. This can only be exploited by authenticated attackers. For further information: [0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5731 Kind regards Nico -- Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted.
pgpkRatvcqEEH.pgp
Description: PGP signature
_______________________________________________ pkg-java-maintainers mailing list pkg-java-maintainers@lists.alioth.debian.org http://lists.alioth.debian.org/mailman/listinfo/pkg-java-maintainers