[Git][security-tracker-team/security-tracker][master] libapache-poi-java fixed

Thu, 17 Jan 2019 05:34:10 -0800 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
918188e6 by Moritz Muehlenhoff at 2019-01-17T13:33:26Z
libapache-poi-java fixed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -84335,7 +84335,7 @@ CVE-2017-12627 (In Apache Xerces-C XML Parser library 
before 3.2.1, processing o
        NOTE: https://svn.apache.org/viewvc?view=revision&revision=1819998
        NOTE: https://xerces.apache.org/xerces-c/secadv/CVE-2017-12627.txt
 CVE-2017-12626 (Apache POI in versions prior to release 3.17 are vulnerable to 
Denial ...)
-       - libapache-poi-java <unfixed> (bug #888651)
+       - libapache-poi-java 3.17-1 (bug #888651)
        [stretch] - libapache-poi-java <no-dsa> (Minor issue)
        [jessie] - libapache-poi-java <no-dsa> (Minor issue)
        [wheezy] - libapache-poi-java <no-dsa> (Minor issue)
@@ -105971,7 +105971,7 @@ CVE-2017-5645 (In Apache Log4j 2.x before 2.8.2, when 
using the TCP socket serve
        NOTE: https://issues.apache.org/jira/browse/LOG4J2-1863
        NOTE: Fixed by: 
https://git-wip-us.apache.org/repos/asf?p=logging-log4j2.git;h=5dcc19215827db29c993d0305ee2b0d8dd05939d
 CVE-2017-5644 (Apache POI in versions prior to release 3.15 allows remote 
attackers ...)
-       - libapache-poi-java <unfixed> (bug #858301)
+       - libapache-poi-java 3.17-1 (bug #858301)
        [stretch] - libapache-poi-java <no-dsa> (Minor issue)
        [jessie] - libapache-poi-java <no-dsa> (Minor issue)
        [wheezy] - libapache-poi-java <no-dsa> (Minor issue)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/918188e6e65c754ab4effc25d7fa6eb096ac5ebb

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/918188e6e65c754ab4effc25d7fa6eb096ac5ebb
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to