FYI: The status of the dd-plist source package
in Debian's testing distribution has changed.
Previous version: (not in testing)
Current version: 1.20-1
--
This email is automatically generated once a day. As the installation of
new packages into testing happens multiple times a day you
FYI: The status of the jetty9 source package
in Debian's testing distribution has changed.
Previous version: 9.2.23-1
Current version: 9.2.24-1
--
This email is automatically generated once a day. As the installation of
new packages into testing happens multiple times a day you will
Processing commands for cont...@bugs.debian.org:
> found 899332 3.3.5+dfsg1-2
Bug #899332 [zookeeper] CVE-2018-8012: Apache ZooKeeper Quorum Peer mutual
authentication
Marked as found in versions zookeeper/3.3.5+dfsg1-2.
> tags 899332 + upstream fixed-upstream
Bug #899332 [zookeeper]
Processing commands for cont...@bugs.debian.org:
> fixed 899332 3.4.10-1
Bug #899332 [zookeeper] CVE-2018-8012: Apache ZooKeeper Quorum Peer mutual
authentication
Marked as fixed in versions zookeeper/3.4.10-1.
> thanks
Stopping processing here.
Please contact me if you need assistance.
--
Package: zookeeper
X-Debbugs-CC: t...@security.debian.org
Severity: grave
Tags: security
Fixed: 3.4.10-1
Hi,
The following vulnerability was published for zookeeper.
CVE-2018-8012[0]:
| No authentication/authorization is enforced when a server attempts to
| join a quorum in Apache ZooKeeper
binary:libjboss-annotations-1.2-api-java is NEW.
binary:libjboss-annotations-1.2-api-java is NEW.
source:jboss-annotations-1.2-api is NEW.
Your package has been put into the NEW queue, which requires manual action
from the ftpteam to process. The upload was otherwise valid (it had a good
OpenPGP
jboss-annotations-1.2-api_1.0.0-1_amd64.changes uploaded successfully to
localhost
along with the files:
jboss-annotations-1.2-api_1.0.0-1.dsc
jboss-annotations-1.2-api_1.0.0.orig.tar.gz
jboss-annotations-1.2-api_1.0.0-1.debian.tar.xz
jboss-annotations-1.2-api_1.0.0-1_amd64.buildinfo
Processing commands for cont...@bugs.debian.org:
> tags 898935 - pending
Bug #898935 [src:tomcat8] tomcat8: CVE-2018-8014: The defaults settings for the
CORS filter provided in Apache Tomcat are insecure and enable
'supportsCredentials'
Removed tag(s) pending.
> thanks
Stopping processing here.