[RFS] Patch to elasticsearch to fix CVS-2014-6439

To: Debian Java <debian-java@lists.debian.org>
Subject: [RFS] Patch to elasticsearch to fix CVS-2014-6439
From: "Potter, Tim (Cloud Services)" <timothy.potter@hp.com>
Date: Mon, 20 Oct 2014 01:30:39 +0000
Message-id: <[🔎] D06AB0C0.1BCE2%timothy.potter@hp.com>

Hi everyone.  I've pushed a patch to elasticsearch to fix a recent
security vulnerability reported in a bug against the package.  Diff is
attached.

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=763958

I've back-ported the fix from the master branch (sans tests as they don't
exist in 1.0.3).  Sorry also for the multiple commits.  I'm still
developing my workflow and local testing.

Could someone take a look and upload please?


Regards,

Tim.

Attachment: CVE-2014-6439.patch
Description: Binary data

Attachment: smime.p7s
Description: S/MIME cryptographic signature

Reply to:

Follow-Ups:
- Re: [RFS] Patch to elasticsearch to fix CVS-2014-6439
  - From: Miguel Landaeta <nomadium@debian.org>

Prev by Date: Re: how to package Maven-based projects with modules and inter-module dependencies
Next by Date: RFS: robocode 1.6.2+dfsg2-1 [ITA] [RC]
Previous by thread: Bug#765557: ITP: jenkins-antisamy-markup-formatter-plugin -- OWASP Markup Formatter Plugin for Jenkins
Next by thread: Re: [RFS] Patch to elasticsearch to fix CVS-2014-6439
Index(es):
- Date
- Thread