According to upstream, this version is affected[1], while Glassfish 3.1.2.1 or
later isn't. Also, take into account that Debian's current version has reached
EOL[2].
BTW: why the severity level change?
[1] http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html
[2] http://www.
Package: src:glassfish
Version: 1:2.1.1-b31g-3
Severity: serious
Tags: security
Dear glassfish maintainers,
Please determine whether and how glassfish as present in Debian is
affected by CVE-2012-3155. Please adjust the severity of this bug
accordingly.
| Unspecified vulnerability in the CORBA O
2 matches
Mail list logo