Re: Wheezy update of fop?

Hi Ola, On Sun, Apr 23, 2017 at 9:46 PM, Ola Lundqvist wrote: > Dear maintainer(s), > > The Debian LTS team would like to fix the security issues which are > currently open in the Wheezy version of fop: > https://security-tracker.debian.org/tracker/CVE-2017-5661 > > Would you

Bug#861240: felix-main: Creates .felix/ directory in $HOME/{user.home}/

Package: felix-main Version: 5.0.0-4 Severity: normal cd to $HOME/ and run: $ tree -D -a -s \{user.home\}/ && felix-framework && tree -D -a -s \{user.home\}/ {user.home}/ [error opening dir] 0 directories, 0 files Welcome to Apache Felix Gogo g! gosh: stopping

Bug#860566: Wheezy update of batik?

On 2017-04-23 23:06:57, Emilio Pozuelo Monfort wrote: > On 23/04/17 21:50, Ola Lundqvist wrote: >> Dear maintainer(s), >> >> The Debian LTS team would like to fix the security issues which are >> currently open in the Wheezy version of batik: >>

Bug#860566: batik package ready for testing

Hi, As previously mentioned, I have worked on an update for the Batik package. I have basically assumed the issue is the upstream BATIK-1139 issue, and used the patches refered to there: https://issues.apache.org/jira/browse/BATIK-1139 That may be incorrect and because we don't have a

Processed: Re: Wheezy update of fop?

Processing control commands: > forwarded -1 https://issues.apache.org/jira/browse/FOP-2668 Bug #860567 [src:fop] fop: CVE-2017-5661: information disclosure vulnerability Set Bug forwarded-to-address to 'https://issues.apache.org/jira/browse/FOP-2668'. -- 860567:

Bug#860567: Wheezy update of fop?

Control: forwarded -1 https://issues.apache.org/jira/browse/FOP-2668 On 2017-04-26 08:07:33, Mathieu Malaterre wrote: > Hi Ola, > > On Sun, Apr 23, 2017 at 9:46 PM, Ola Lundqvist wrote: >> Dear maintainer(s), >> >> The Debian LTS team would like to fix the security issues which

Bug#860567: fop LTS update package ready for testing

Hi, After much digging, I believe I have found the relevant issue and commits to fix the CVE-2017-5661 issue in fop. I have backported the patch to our 1.0 release in LTS and it seems to compile fine. However, I haven't performed any tests because I lack experience with that peculiar

Processed: bug 860566 is forwarded to https://issues.apache.org/jira/browse/BATIK-1139, tagging 860566

Processing commands for cont...@bugs.debian.org: > forwarded 860566 https://issues.apache.org/jira/browse/BATIK-1139 Bug #860566 [src:batik] batik: CVE-2017-5662: information disclosure vulnerability Set Bug forwarded-to-address to 'https://issues.apache.org/jira/browse/BATIK-1139'. > tags

Processed: tagging 860567

Processing commands for cont...@bugs.debian.org: > tags 860567 + patch Bug #860567 [src:fop] fop: CVE-2017-5661: information disclosure vulnerability Added tag(s) patch. > thanks Stopping processing here. Please contact me if you need assistance. -- 860567: