-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Package: libzypp
Version: 14.29.1-2+deb8u1
CVE ID : CVE-2019-18900
It was discovered that there was an issue where incorrect default
permissions on a HTTP cookie store could have allowed local attackers
to read private
FYI it seems none of your messages made it to the Xerces c-dev mailing list:
https://mail-archives.apache.org/mod_mbox/xerces-c-dev/202001.mbox/browser
Are you still working on a patch?
- Sylvain
On 30/01/2020 09:16, Ola Lundqvist wrote:
> Hi
>
> Yes you answered my questions. Please go ahead
Hi,
During the month of February, I spent 29h on LTS on the following tasks:
- firefox-esr update
- thunderbird update
- clamav update
- spamassassin update
- missing webwml script improvements
- jackson-databind update
- python-reportlab update
- CVE triage
- python-pysaml2 update
- openjdk-7