Le 22/09/2014 17:44, Raphael Hertzog a écrit :
> If there are no objections, I'll file a bug against
> debian-security-support to request this. CC to the security team in case
> they want to request the same for Wheezy.
Hi Raphael,
Glasshfish is an important package for the Java ecosystem as it
FYI: The status of the tika source package
in Debian's testing distribution has changed.
Previous version: (not in testing)
Current version: 1.5-1
--
This email is automatically generated once a day. As the installation of
new packages into testing happens multiple times a day you will rec
FYI: The status of the httpcomponents-client source package
in Debian's testing distribution has changed.
Previous version: 4.3.5-1
Current version: 4.3.5-2
--
This email is automatically generated once a day. As the installation of
new packages into testing happens multiple times a day yo
Hello,
while triaging CVE affecting Debian Squeeze I came on glassfish:
https://security-tracker.debian.org/tracker/source-package/glassfish
From what I gathered, Oracle doesn't provide any useful information to
apply a targeted fix on the current package. The 2.1.x branch is also
no longer maint
Source: glassfish
Version: 1:2.1.1-b31g+dfsg1-1
Severity: serious
Tags: security
Hello,
while looking up open security issues in glassfish I noticed that the
current version is no longer supported upstream (according to
http://www.oracle.com/us/support/library/lifetime-support-middleware-069163.p
Hi,
On Mon, 18 Aug 2014, Salvatore Bonaccorso wrote:
> On Thu, Aug 14, 2014 at 11:43:32PM +0200, Emmanuel Bourg wrote:
> > Is there an example available somewhere of a subject improperly parsed
> > by commons-httpclient/3.1-10.2? This would help backporting the fix to
> > this version.
>
> I thin
Package: axis
Severity: grave
Tags: security
Hi,
the following vulnerability was published for axis.
CVE-2014-3596[0]:
| The getCN function in Apache Axis 1.4 and earlier does not properly
| verify that the server hostname matches a domain name in the subject's
| Common Name (CN) or subjectAltNam
Processing commands for cont...@bugs.debian.org:
> tags 761522 + help
Bug #761522 [src:sisu-guice] sisu-guice: FTBFS: Error(s) found in manifest
configuration
Added tag(s) help.
>
End of message, stopping processing here.
Please contact me if you need assistance.
--
761522: http://bugs.debian.o
Accepted:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Format: 1.8
Date: Mon, 22 Sep 2014 10:54:55 +0200
Source: mac-widgets
Binary: libmac-widgets-java libmac-widgets-doc
Architecture: source all
Version: 0.10.0+svn416-dfsg1-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Java m
Accepted:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Format: 1.8
Date: Mon, 22 Sep 2014 09:30:56 +0200
Source: libspring-security-2.0-java
Binary: libspring-security-core-2.0-java libspring-security-acl-2.0-java
libspring-security-ntlm-2.0-java libspring-security-portlet-2.0-java
libspring
mac-widgets_0.10.0+svn416-dfsg1-1_i386.changes uploaded successfully to
localhost
along with the files:
libmac-widgets-java_0.10.0+svn416-dfsg1-1_all.deb
libmac-widgets-doc_0.10.0+svn416-dfsg1-1_all.deb
mac-widgets_0.10.0+svn416-dfsg1-1.dsc
mac-widgets_0.10.0+svn416-dfsg1.orig.tar.bz2
ma
libspring-security-2.0-java_2.0.7.RELEASE-3_amd64.changes uploaded successfully
to localhost
along with the files:
libspring-security-core-2.0-java_2.0.7.RELEASE-3_all.deb
libspring-security-acl-2.0-java_2.0.7.RELEASE-3_all.deb
libspring-security-ntlm-2.0-java_2.0.7.RELEASE-3_all.deb
libsp
libspring-security-2.0-java_2.0.7.RELEASE-3.dsc: Invalid size hash for
libspring-security-2.0-java_2.0.7.RELEASE.orig.tar.gz:
According to the control file the size hash should be 736850,
but libspring-security-2.0-java_2.0.7.RELEASE.orig.tar.gz has 766860.
If you did not include libspring-secu
libspring-security-2.0-java_2.0.7.RELEASE-3_amd64.changes uploaded successfully
to localhost
along with the files:
libspring-security-core-2.0-java_2.0.7.RELEASE-3_all.deb
libspring-security-acl-2.0-java_2.0.7.RELEASE-3_all.deb
libspring-security-ntlm-2.0-java_2.0.7.RELEASE-3_all.deb
libsp
14 matches
Mail list logo
