Bug#825501: CVE-2016-4434

Faidon Liambotis paravoid at debian.org
Thu Jan 11 12:03:23 UTC 2018


On Fri, May 27, 2016 at 11:58:33AM +0200, Moritz Muehlenhoff wrote:
> please see http://seclists.org/oss-sec/2016/q2/413  for details.

That link says:
  Versions Affected: 
  Apache Tika 0.10 to 1.12

So perhaps 1.5 isn't affected after all? I tried to find the relevant
commit in the upstream git but failed :(

Regards,
Faidon



More information about the pkg-java-maintainers mailing list