Bug#632882: CVE-2011-2204
tony mancill
tmancill at debian.org
Thu Jul 7 04:49:17 UTC 2011
Hello Moritz,
Thank you for filing the bug. I've uploaded an updated tomcat6 package
for unstable and will get the patch applied for the next tomcat7 upload
soon. I'll also look into an upload of 6.0.28 for stable proposed updates.
Cheers,
tony
On 07/06/2011 10:58 AM, Moritz Muehlenhoff wrote:
> Package: tomcat6
> Severity: grave
> Tags: security
>
> (Also applies to Tomcat 5.5 and Tomcat 6)
>
> Please see
> http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2204
>
> This doesn't warrant a DSA, but could be fixed through a point
> update.
>
> Cheers,
> Moritz
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 900 bytes
Desc: OpenPGP digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-java-maintainers/attachments/20110706/3e8e5a0f/attachment.pgp>
More information about the pkg-java-maintainers
mailing list