Your message dated Sat, 3 May 2014 12:18:02 +0900
with message-id <[email protected]>
and subject line Re: Bug#746639: netty: CVE-2014-0193
has caused the Debian Bug report #746639,
regarding netty: CVE-2014-0193
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
746639: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=746639
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: netty
Severity: grave
Tags: security
Justification: user security hole
Hi,
please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-0193
and http://netty.io/news/2014/04/30/release-day.html
Cheers,
Moritz
--- End Message ---
--- Begin Message ---
Control: notfound -1 3.2.6.Final-2
Le Fri, May 02, 2014 at 09:27:32AM +0200, Moritz Muehlenhoff a écrit :
> Package: netty
> Severity: grave
> Tags: security
> Justification: user security hole
>
> please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-0193
> and http://netty.io/news/2014/04/30/release-day.html
Thanks Moritz for the warning.
I do not know if it is good news or not, but our version of netty is so old
that it does not contain the WebSocket08FrameDecoder function. I therefore
mark this bug as done.
Have a nice week-end,
--
Charles Plessy
Tsurumi, Kanagawa, Japan
--- End Message ---