[Git][security-tracker-team/security-tracker][master] dla-needed: update tika notes, probable commit link
Hugo Lefeuvre
hle at debian.org
Fri Aug 9 15:21:28 BST 2019
Hugo Lefeuvre pushed to branch master at Debian Security Tracker / security-tracker
Commits:
58f04c8e by Hugo Lefeuvre at 2019-08-09T14:21:15Z
dla-needed: update tika notes, probable commit link
Waiting for upstream to confirm commit link before updating tracker
entries.
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=====================================
data/dla-needed.txt
=====================================
@@ -137,6 +137,10 @@ subversion
NOTE: 20190804: For (at least) CVE-2018-11782 the svn_err_trace that is in the diff has not been added yet. (lamby)
--
tika (Hugo Lefeuvre)
+ NOTE: probable fix for all three vulnerabilities:
+ NOTE: https://github.com/apache/tika/commit/426be73b9e7500fa3d441231fa4e473de34743f6
+ NOTE: contacted tika developers to get confirmation:
+ NOTE: https://lists.apache.org/thread.html/fb6c84fd387de997e5e366d50b0ca331a328c466432c80f8c5eed33d@%3Cdev.tika.apache.org%3E
--
tomcat8 (Sylvain Beucler)
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/58f04c8e4955f13d9832646e3fe741f317c076ff
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/58f04c8e4955f13d9832646e3fe741f317c076ff
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190809/705fc1ed/attachment.html>
More information about the debian-security-tracker-commits
mailing list