Bug#772794: qpid-cpp: Multiple security issues
On Thu, Dec 11, 2014 at 08:10:00AM +0100, László Böszörményi (GCS) wrote: Hi Moritz, On Thu, Dec 11, 2014 at 7:50 AM, Moritz Muehlenhoff j...@inutil.org wrote: The version in sid is fairly old and several security issues have piled up. The Red Hat bugs provides more information: You are right. Investigating. But as you mentioned, it's only in Sid and doesn't affect Jessie. Packaging the latest version should be the best path. Two additional issues have been reported: CVE-2015-0223: http://mail-archives.us.apache.org/mod_mbox/www-announce/201501.mbox/%3c54c604a8.5090...@apache.org%3E CVE-2015-0224: http://mail-archives.us.apache.org/mod_mbox/www-announce/201501.mbox/%3c54c60497.5060...@apache.org%3E Cheers, Moritz -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#772794: qpid-cpp: Multiple security issues
Package: qpid-cpp Severity: grave Tags: security The version in sid is fairly old and several security issues have piled up. The Red Hat bugs provides more information: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-0212 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-4460 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-4459 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-4458 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-4446 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-3629 Cheers, Moritz -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#772794: qpid-cpp: Multiple security issues
Hi Moritz, On Thu, Dec 11, 2014 at 7:50 AM, Moritz Muehlenhoff j...@inutil.org wrote: The version in sid is fairly old and several security issues have piled up. The Red Hat bugs provides more information: You are right. Investigating. But as you mentioned, it's only in Sid and doesn't affect Jessie. Packaging the latest version should be the best path. Thanks, Laszlo/GCS -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#772794: qpid-cpp: Multiple security issues
On Thu, Dec 11, 2014 at 08:10:00AM +0100, László Böszörményi (GCS) wrote: Hi Moritz, Packaging the latest version should be the best path. Agreed. Cheers, Moritz -- To UNSUBSCRIBE, email to debian-bugs-rc-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
