Processing control commands:
> tags -1 -moreinfo
Bug #864405 [src:undertow] undertow: CVE-2017-2666 CVE-2017-2670
Removed tag(s) moreinfo.
> tags -1 pending
Bug #864405 [src:undertow] undertow: CVE-2017-2666 CVE-2017-2670
Added tag(s) pending.
--
864405: http://bugs.debian.org/cgi-bin/bugreport.
Control: tags -1 -moreinfo
Control: tags -1 pending
Upstream communication was not really great but I believe the issue was
fixed in 1.4.17.
CVE-2017-2666: https://issues.jboss.org/browse/UNDERTOW-1101
Fixing commit:
https://github.com/undertow-io/undertow/commit/1e72647818c9fb31b693a953b1ae595a6
Control: tags -1 moreinfo
On Thu, 8 Jun 2017 09:40:02 +0200 Markus Koschany wrote:
> Am 08.06.2017 um 09:01 schrieb Moritz Mühlenhoff:
> > retitle 864405 undertow: CVE-2016-2666 CVE-2016-2670
> > thx
> >
> > Moritz Muehlenhoff wrote:
> >>
> >> There's no other reference that what Red Hat publis
Processing control commands:
> tags -1 moreinfo
Bug #864405 [src:undertow] undertow: CVE-2017-2666 CVE-2017-2670
Added tag(s) moreinfo.
--
864405: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864405
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
Am 08.06.2017 um 09:01 schrieb Moritz Mühlenhoff:
> retitle 864405 undertow: CVE-2016-2666 CVE-2016-2670
> thx
>
> Moritz Muehlenhoff wrote:
>>
>> There's no other reference that what Red Hat published here:
>> https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2666
>
> Also:
> https://bugzilla
retitle 864405 undertow: CVE-2016-2666 CVE-2016-2670
thx
Moritz Muehlenhoff wrote:
>
> There's no other reference that what Red Hat published here:
> https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2666
Also:
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2670
Cheers,
Moritz
Source: undertow
Severity: grave
Tags: security
There's no other reference that what Red Hat published here:
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2666
Upstream needs to be contacted or the patch pulled from their
update.
Cheers,
Moritz
7 matches
Mail list logo