On 26.04.2015 13:30, Adam D. Barratt wrote: > On Sat, 2015-04-25 at 17:23 +0100, Adam D. Barratt wrote: >> Control: tags -1 + confirmed >> >> On Sat, 2015-04-18 at 20:56 +0200, Markus Koschany wrote: >>> similar to commons-httpclient [1] the Java team would like to fix >>> CVE-2014-3577 for httpcomponents-client in wheezy. This package is >>> the successor of commons-httpclient and currently also affected by >>> this exploitable MITM vulnerability. [2] Please find attached the >>> proposed debdiff against the version of httpcomponents-client 4.1.1-2 >>> in wheezy. >> >> Please go ahead, thanks. > > This was uploaded, but got rejected by dak because it was targetted at > "stable" and by the time dak processed it "stable" was jessie. > > A re-upload using "wheezy" as in the proposed diff should work. > Thanks. I have forwarded this information to my sponsor a few hours ago and I think he will take care of this soon. Regards, Markus
Attachment:
signature.asc
Description: OpenPGP digital signature