On Mon, Aug 19, 2019 at 02:27:09PM +0200, Hugo Lefeuvre wrote:
> Hi,
>
> I just had a look at xymon's vulnerabilities in jessie, stretch and buster.
>
> Upstream claims some of these issues to be exploitable, among others the XSS
> vulnerability. I plan to address at least this one in jessie.
>
Hello,
Am 19.08.19 um 11:23 schrieb Thomas Elsner:
> Hi,
>
> Markus Koschany schrieb am 15.08.19 um 23:57:
>> Package: openjdk-7
>> Version: 7u231-2.6.19-1~deb8u1
>> CVE ID : CVE-2019-2745 CVE-2019-2762 CVE-2019-2769 CVE-2019-2816
>
> I'm not able to install the openjdk-7
Hi,
I just had a look at xymon's vulnerabilities in jessie, stretch and buster.
Upstream claims some of these issues to be exploitable, among others the XSS
vulnerability. I plan to address at least this one in jessie.
I see that Moritz and Axel already discussed this on upstream's mailing list,
hi,
today I unclaimed:
for LTS:
-libav (Mike Gabriel)
-python2.7 (Thorsten Alteholz)
-ruby-mini-magick (Thorsten Alteholz)
-xymon (Thorsten alteholz)
and nothing for eLTS.
--
tschau,
Holger
---
Hi,
Markus Koschany schrieb am 15.08.19 um 23:57:
> Package: openjdk-7
> Version: 7u231-2.6.19-1~deb8u1
> CVE ID : CVE-2019-2745 CVE-2019-2762 CVE-2019-2769 CVE-2019-2816
I'm not able to install the openjdk-7-jdk package without an error
message during execution of the pos