Re: Jackrabbit security update

To: Markus Koschany <apo@debian.org>
Cc: "team\@security.debian.org" <team@security.debian.org>, "debian-java\@lists.debian.org" <debian-java@lists.debian.org>
Subject: Re: Jackrabbit security update
From: Florian Weimer <fw@deneb.enyo.de>
Date: Tue, 27 Sep 2016 12:58:51 +0200
Message-id: <[🔎] 877f9xzk0k.fsf@mid.deneb.enyo.de>
In-reply-to: <[🔎] a872695d-b1b4-9059-385f-8fc041ddcf09@debian.org> (Markus Koschany's message of "Mon, 26 Sep 2016 21:20:51 +0200")
References: <[🔎] 35fb430b-eb41-1ad2-9758-060cc7193eca@debian.org> <[🔎] 87shsmydhr.fsf@mid.deneb.enyo.de> <[🔎] 87eg46scx0.fsf@mid.deneb.enyo.de> <[🔎] a872695d-b1b4-9059-385f-8fc041ddcf09@debian.org>

* Markus Koschany:

> On 26.09.2016 21:01, Florian Weimer wrote:
>> * Florian Weimer:
>> 
>>> * Markus Koschany:
>>>
>>>> I have prepared a security update for Jackrabbit to fix CVE-2016-6801.
>>>
>>> Hi Markus,
>>>
>>> thanks, this looks good to me packaging-wise.  Have you tested this
>>> update in some way?  If yes, please update to security-master.
>> 
>> We've got the upload and dak processed it.  Have you tested it?
>
> "If yes, please update to security master".
>
> So yes, I have tested this upload as far it was reasonably possible. An
> almost identical patch was uploaded to wheezy-security a week ago and I
> haven't heard anything negative about it.

Thanks for the confirmation.  I have pushed the update as DSA-3679-1.

Reply to:

References:
- Jackrabbit security update
  - From: Markus Koschany <apo@debian.org>
- Re: Jackrabbit security update
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: Jackrabbit security update
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: Jackrabbit security update
  - From: Markus Koschany <apo@debian.org>

Prev by Date: Re: Jackrabbit security update
Next by Date: please update Apache JMeter in sid to version 3.0
Previous by thread: Re: Jackrabbit security update
Next by thread: please update Apache JMeter in sid to version 3.0
Index(es):
- Date
- Thread