Bug#885577: libhibernate-validator-java: CVE-2017-7536: Privilege escalation when running under the security manager

Abhijith PA abhijith at openmailbox.org
Mon Jan 8 12:32:22 UTC 2018


Hello. :)

https://bugzilla.redhat.com/show_bug.cgi?id=1465573#c24 says it affects
all 5.x version. But Debian haven't shipped this version yet. And
upstream patched files doesn't exist in 4.3.3 (version in Debian sid).
So could you please elaborate on how your research find 4.3.3 affected ?


--
Abhijith



More information about the pkg-java-maintainers mailing list