Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]

Groups > linux.debian.maint.java > #12349

Bug#700610: bsh (BeanShell) security vulnerability (CVE-2016-2510)

From Thomas Uhle <thomas.uhle@mailbox.tu-dresden.de>
Newsgroups linux.debian.bugs.dist, linux.debian.maint.java
Subject Bug#700610: bsh (BeanShell) security vulnerability (CVE-2016-2510)
Date 2022-02-23 00:00 +0100
Message-ID <DTMit-3FsZ-15@gated-at.bofh.it> (permalink)
References <r3Scq-4Z3-7@gated-at.bofh.it> <r3TrP-5KW-3@gated-at.bofh.it> <r3VWG-7Ih-17@gated-at.bofh.it> <kDpsR-n9-3@gated-at.bofh.it> <r3VWG-7Ih-17@gated-at.bofh.it>
Organization linux.* mail to news gateway

Cross-posted to 2 groups.

Show all headers | View raw

Dear maintainers,

there was published a new release of BeanShell 14 months ago. You can find 
the sources of version 2.1.0 on GitHub at

https://github.com/beanshell/beanshell/releases/tag/2.1.0

The new version has not been published on Maven though (where versions 
from 2.0b4 to 2.0b6 are still the newest releases), but this is explained 
on GitHub at https://github.com/beanshell/beanshell/issues/603 .
Anyway, version 2.1.0 is an official release linked from 
https://www.beanshell.org/download.html and there is also stated that 
version 2.0b4 is now merely a legacy release.

What do you think, wouldn't it be time for an update in Debian?

Best regards,

Thomas Uhle

Back to linux.debian.maint.java | Previous | NextNext in thread | Find similar

Thread

Bug#700610: bsh (BeanShell) security vulnerability (CVE-2016-2510) Thomas Uhle <thomas.uhle@mailbox.tu-dresden.de> - 2022-02-23 00:00 +0100
  Bug#700610: bsh (BeanShell) security vulnerability (CVE-2016-2510) Thorsten Glaser <t.glaser@tarent.de> - 2022-02-23 00:40 +0100
    Bug#700610: bsh (BeanShell) security vulnerability (CVE-2016-2510) Thomas Uhle <thomas.uhle@mailbox.tu-dresden.de> - 2022-02-25 22:40 +0100

csiph-web