Processing commands for cont...@bugs.debian.org: > #libspring-2.5-java (2.5.6.SEC02-2+squeeze1) stable-security; urgency=high > # > # * Backport fix for CVE-2011-2730: Spring Framework information disclosure > # from 2.5.6.SEC03 on upstream maintainance repository (Closes: #677814): > # - d/patches/CVE-2011-2730.diff: A new context parameter has been added > # called springJspExpressionSupport. When true (the default) the existing > # behaviour of evaluating EL within the tag will be performed. When > running > # in an environment where EL support is provided by the container, it is > # strongly recommended that this is set to false > # > limit source libspring-2.5-java Limiting to bugs with field 'source' containing at least one of 'libspring-2.5-java' Limit currently set to 'source':'libspring-2.5-java'
> tags 677814 + pending Bug #677814 [libspring-2.5-java] CVE-2011-2730 Added tag(s) pending. > thanks Stopping processing here. Please contact me if you need assistance. -- 677814: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=677814 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems __ This is the maintainer address of Debian's Java team <http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers>. Please use debian-j...@lists.debian.org for discussions and questions.
