Bug#933169: libquartz-java: CVE-2019-13990: XXE in initDocumentParser
Salvatore Bonaccorso
carnil at debian.org
Mon Oct 7 20:37:43 BST 2019
Hi
On Sat, Jul 27, 2019 at 08:22:26AM +0200, Salvatore Bonaccorso wrote:
> Source: libquartz-java
> Version: 1:1.8.6-6
> Severity: important
> Tags: security upstream
> Forwarded: https://github.com/quartz-scheduler/quartz/issues/467
FWIW, it looks there is now an upstream patch for this issue if I see
it correctly.
Regards,
Salvatore
More information about the pkg-java-maintainers
mailing list