[Git][security-tracker-team/security-tracker][master] libapache-poi-java fixed
Moritz Muehlenhoff
jmm at debian.org
Thu Jan 17 13:33:49 GMT 2019
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
918188e6 by Moritz Muehlenhoff at 2019-01-17T13:33:26Z
libapache-poi-java fixed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -84335,7 +84335,7 @@ CVE-2017-12627 (In Apache Xerces-C XML Parser library before 3.2.1, processing o
NOTE: https://svn.apache.org/viewvc?view=revision&revision=1819998
NOTE: https://xerces.apache.org/xerces-c/secadv/CVE-2017-12627.txt
CVE-2017-12626 (Apache POI in versions prior to release 3.17 are vulnerable to Denial ...)
- - libapache-poi-java <unfixed> (bug #888651)
+ - libapache-poi-java 3.17-1 (bug #888651)
[stretch] - libapache-poi-java <no-dsa> (Minor issue)
[jessie] - libapache-poi-java <no-dsa> (Minor issue)
[wheezy] - libapache-poi-java <no-dsa> (Minor issue)
@@ -105971,7 +105971,7 @@ CVE-2017-5645 (In Apache Log4j 2.x before 2.8.2, when using the TCP socket serve
NOTE: https://issues.apache.org/jira/browse/LOG4J2-1863
NOTE: Fixed by: https://git-wip-us.apache.org/repos/asf?p=logging-log4j2.git;h=5dcc19215827db29c993d0305ee2b0d8dd05939d
CVE-2017-5644 (Apache POI in versions prior to release 3.15 allows remote attackers ...)
- - libapache-poi-java <unfixed> (bug #858301)
+ - libapache-poi-java 3.17-1 (bug #858301)
[stretch] - libapache-poi-java <no-dsa> (Minor issue)
[jessie] - libapache-poi-java <no-dsa> (Minor issue)
[wheezy] - libapache-poi-java <no-dsa> (Minor issue)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/918188e6e65c754ab4effc25d7fa6eb096ac5ebb
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/918188e6e65c754ab4effc25d7fa6eb096ac5ebb
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190117/136963d4/attachment.html>
More information about the debian-security-tracker-commits
mailing list