Bug#773364: async-http-client: CVE-2013-7397 CVE-2013-7398
Moritz Muehlenhoff
jmm at inutil.org
Wed Dec 17 14:43:18 UTC 2014
Package: async-http-client
Severity: important
Tags: security
Hi,
please see
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-7397 :
https://github.com/AsyncHttpClient/async-http-client/issues/352
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-7398 :
https://github.com/AsyncHttpClient/async-http-client/issues/197
https://github.com/wsargent/async-http-client/commit/db6716ad2f10f5c2d5124904725017b2ba8c3434
It would be nice if we could address CVE-2013-7398 for jessie.
Cheers,
Moritz
More information about the pkg-java-maintainers
mailing list