Bug#445283: CVE-2006-6969 predictable session identifiers
Nico Golde
nion at debian.org
Thu Oct 4 23:45:13 UTC 2007
tags 445283 + patch
thanks
Hi,
Greg Wilkins of jetty provides a patch from their cvs for
this issue.
You can find it on:
http://jetty.cvs.sourceforge.net/jetty/Jetty/src/org/mortbay/jetty/servlet/AbstractSessionManager.java?r1=1.52&r2=1.53&view=patch
Kind regards
Nico
--
Nico Golde - http://ngolde.de - nion at jabber.ccc.de - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.alioth.debian.org/pipermail/pkg-java-maintainers/attachments/20071005/dc985db2/attachment.pgp
More information about the pkg-java-maintainers
mailing list