[rt.debian.org #4815] CVE-2013-4152 XML External Entity (XXE) injection in Spring

To: "OtherRecipients of rt.debian.org Ticket #4815":;
Cc: debian-java@lists.debian.org, 720902@bugs.debian.org, jmm@inutil.org
Subject: [rt.debian.org #4815] CVE-2013-4152 XML External Entity (XXE) injection in Spring
From: "Debian Developer via RT" <rt-comment@rt.debian.org>
Date: Mon, 13 Jan 2014 01:36:09 +0000
Message-id: <[🔎] rt-4.0.7-14016-1389576968-1671.4815-9-0@debian.org>
Reply-to: rt-comment@rt.debian.org
In-reply-to: <52A30F72.8090003@gambaru.de>
References: <RT-Ticket-4815@debian.org> <52A30F72.8090003@gambaru.de>

Hi,

Is there any news with this vulnerability fix?

3.0.6.RELEASE-6+deb7u1 was uploaded to security-master a week ago or so.

Cheers,

Miguel.

Reply to: