Hi Andreas,
Thanks for raising the problem.
On Wed, May 05, 2021 at 10:04:46PM +0200, Andreas Beckmann wrote:
> Followup-For: Bug #985220
>
> Hi,
>
> CVE-2020-13936 is fixed in stretch-security but not buster, making
> upgrades difficult since stetch-security has a newer version than buster.
>
Followup-For: Bug #985220
Hi,
CVE-2020-13936 is fixed in stretch-security but not buster, making
upgrades difficult since stetch-security has a newer version than buster.
Please upload the fix to buster, too.
velocity | 1.7-4| jessie | source, all
velocity | 1.7-5| st
Source: velocity
Version: 1.7-5.1
Severity: important
Tags: security upstream
X-Debbugs-Cc: car...@debian.org, Debian Security Team
Control: found -1 1.7-5
Hi,
The following vulnerability was published for velocity.
CVE-2020-13936[0]:
| An attacker that is able to modify Velocity templates may
3 matches
Mail list logo