Bug#758086: marked as done (CVE-2014-3577 Apache HttpComponents hostname verification bypass)
Debian Bug Tracking System
owner at bugs.debian.org
Sat May 16 06:06:06 UTC 2015
Your message dated Sat, 16 May 2015 06:03:38 +0000
with message-id <E1YtVCE-00068H-RL at franck.debian.org>
and subject line Bug#758086: fixed in commons-httpclient 3.1-10.2+deb7u1
has caused the Debian Bug report #758086,
regarding CVE-2014-3577 Apache HttpComponents hostname verification bypass
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner at bugs.debian.org
immediately.)
--
758086: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=758086
Debian Bug Tracking System
Contact owner at bugs.debian.org with problems
-------------- next part --------------
An embedded message was scrubbed...
From: Henri Salo <henri at nerv.fi>
Subject: CVE-2012-6153: Apache HttpComponents client: Hostname verification susceptible to MITM attack
Date: Thu, 14 Aug 2014 10:06:47 +0300
Size: 3314
URL: <http://lists.alioth.debian.org/pipermail/pkg-java-maintainers/attachments/20150516/ae1c1de6/attachment.mht>
-------------- next part --------------
An embedded message was scrubbed...
From: Markus Koschany <apo at gambaru.de>
Subject: Bug#758086: fixed in commons-httpclient 3.1-10.2+deb7u1
Date: Sat, 16 May 2015 06:03:38 +0000
Size: 6671
URL: <http://lists.alioth.debian.org/pipermail/pkg-java-maintainers/attachments/20150516/ae1c1de6/attachment-0001.mht>
More information about the pkg-java-maintainers
mailing list