Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]

Groups > linux.debian.bugs.dist > #673100

Bug#796114: CVE-2015-2156

From Moritz Muehlenhoff <jmm@debian.org>
Newsgroups linux.debian.bugs.dist
Subject Bug#796114: CVE-2015-2156
Date 2015-08-19 17:10 +0200
Message-ID <pZda2-150-7@gated-at.bofh.it> (permalink)
Organization linux.* mail to news gateway

Show all headers | View raw

Source: netty
Severity: grave
Tags: security

This was assigned CVE-2015-2156:
http://netty.io/news/2015/05/08/3-9-8-Final-and-3.html

Fix:
https://github.com/slandelle/netty/commit/800555417e77029dcf8a31d7de44f27b5a8f79b8.patch

In addition to src:netty (3.2.6), there's also src:netty-3.9 (3.9.0)
and there was also src:netty3.1 at some point (now removed).

Please phase out src:netty towards the updated src:netty-3.9 so that
there's only one version around.

Cheers,
        Moritz

Back to linux.debian.bugs.dist | Previous | NextNext in thread | Find similar

Thread

Bug#796114: CVE-2015-2156 Moritz Muehlenhoff <jmm@debian.org> - 2015-08-19 17:10 +0200
  Re: Phasing out libnetty-java (was Re: Bug#796114: CVE-2015-2156) Emmanuel Bourg <ebourg@apache.org> - 2015-08-20 17:30 +0200
    Bug#796114: Phasing out libnetty-java (was Re: Bug#796114: CVE-2015-2156) Charles Plessy <plessy@debian.org> - 2015-08-21 00:30 +0200

csiph-web