[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: security fixes for CVE-2019-10088 and CVE-2019-1009{3,4}

Y. You got CVE-2019-10088:

Two other commits you'll want are the following



On Fri, Aug 9, 2019 at 10:14 AM Hugo Lefeuvre <hle@owl.eu.com> wrote:
> Dear tika developers,
> I'd like to backport the security fixes for CVE-2019-10088, CVE-2019-10093
> and CVE-2019-10094 to older tika releases in Debian.
> I had a look at the changelog, the corresponding commit seems to be
> https://github.com/apache/tika/commit/426be73b9e7500fa3d441231fa4e473de34743f6
> Can anybody confirm? Are there other fixes I should consider applying?
> thanks!
> regards,
> Hugo Lefeuvre (Debian LTS team)
> --
>                 Hugo Lefeuvre (hle)    |    www.owl.eu.com
> RSA4096_ 360B 03B3 BF27 4F4D 7A3F D5E8 14AA 1EB8 A247 3DFD
> ed25519_ 37B2 6D38 0B25 B8A2 6B9F 3A65 A36F 5357 5F2D DC4C

Reply to: