Hi,
I have prepared a debdiff for commons-httpclient that addresses three
CVEs namely CVE-2012-5783, CVE-2012-6153 and CVE-2014-3577. The
differences between the versions in wheezy, jessie and sid are minor
since we use the same upstream version 3.1 for all of them.
06_fix_CVE-2012-5783.patch is
On Wed, 15 Apr 2015, Nguyen Cong wrote:
Thank you very much for uploading my work.
Did you base your work on the patches that have been released in the
wheezy update?
In fact, most of my work is based on information from this:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=762745
Ok.