Processed: [bts-link] source package src:jackson-databind
Debian Bug Tracking System
owner at bugs.debian.org
Mon Mar 5 17:21:29 UTC 2018
Processing commands for control at bugs.debian.org:
> #
> # bts-link upstream status pull for source package src:jackson-databind
> # see http://lists.debian.org/debian-devel-announce/2006/05/msg00001.html
> #
> user bts-link-upstream at lists.alioth.debian.org
Setting user to bts-link-upstream at lists.alioth.debian.org (was bts-link-devel at lists.alioth.debian.org).
> # remote status report for #891614 (http://bugs.debian.org/891614)
> # Bug title: jackson-databind: CVE-2018-7489: incomplete fix for CVE-2017-7525 permits unsafe serialization via c3p0 libraries
> # * https://github.com/FasterXML/jackson-databind/issues/1931
> # * remote status changed: (?) -> closed
> # * closed upstream
> tags 891614 + fixed-upstream
Bug #891614 [src:jackson-databind] jackson-databind: CVE-2018-7489: incomplete fix for CVE-2017-7525 permits unsafe serialization via c3p0 libraries
Added tag(s) fixed-upstream.
> usertags 891614 + status-closed
There were no usertags set.
Usertags are now: status-closed.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
891614: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=891614
Debian Bug Tracking System
Contact owner at bugs.debian.org with problems
More information about the pkg-java-maintainers
mailing list