Bug#462793: jetty5: CVE-2007-6672 unauthorized disclosure of information
reassign 462793 jetty thanks Hi, * Martin Michlmayr [EMAIL PROTECTED] [2008-01-28 15:05]: * Nico Golde [EMAIL PROTECTED] [2008-01-27 16:25]: Source: jetty5 There's no such package? Thanks for the hint. How did you notice it? Kind regards Nico -- Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted. pgpOrTk1vE5jp.pgp Description: PGP signature
Processed: Re: Bug#462793: jetty5: CVE-2007-6672 unauthorized disclosure of information
Processing commands for [EMAIL PROTECTED]: reassign 462793 jetty Bug#462793: jetty5: CVE-2007-6672 unauthorized disclosure of information Warning: Unknown package 'jetty5' Bug reassigned from package `jetty5' to `jetty'. thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#462793: jetty5: CVE-2007-6672 unauthorized disclosure of information
Hi, On Mon Jan 28, 2008 at 21:50:21 +0100, Nico Golde wrote: reassign 462793 jetty thanks Hi, * Martin Michlmayr [EMAIL PROTECTED] [2008-01-28 15:05]: * Nico Golde [EMAIL PROTECTED] [2008-01-27 16:25]: Source: jetty5 There's no such package? Thanks for the hint. How did you notice it? [EMAIL PROTECTED] look at merkel. -- Martin Zobel-Helas [EMAIL PROTECTED] | Debian Release Team Member Debian GNU/Linux Developer | Debian Listmaster Public key http://zobel.ftbfs.de/5d64f870.asc - KeyID: 5D64 F870 GPG Fingerprint: 5DB3 1301 375A A50F 07E7 302F 493E FB8E 5D64 F870 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#462793: jetty5: CVE-2007-6672 unauthorized disclosure of information
Source: jetty5 Severity: grave Tags: security Hi, the following CVE (Common Vulnerabilities Exposures) id was published for jetty5. CVE-2007-6672[0]: | Mortbay Jetty 6.1.5 and 6.1.6 allows remote attackers to bypass | protection mechanisms and read the source of files via multiple '/' | (slash) characters in the URI. If you fix this vulnerability please also include the CVE id in your changelog entry. For further information: [0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6672 Kind regards Nico -- Nico Golde - http://www.ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted. pgpxZ99s3iUEM.pgp Description: PGP signature
Bug#462793: jetty5: CVE-2007-6672 unauthorized disclosure of information
* Nico Golde [EMAIL PROTECTED] [2008-01-27 16:25]: Source: jetty5 There's no such package? -- Martin Michlmayr http://www.cyrius.com/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]