Bug#782848: wheezy-pu: package httpcomponents-client/4.1.1-2

["Adam D. Barratt" <adam@adam-barratt.org.uk>]

Control: tags -1 + pending

On 2015-04-26 12:34, Markus Koschany wrote:
> On 26.04.2015 13:30, Adam D. Barratt wrote:
> > On Sat, 2015-04-25 at 17:23 +0100, Adam D. Barratt wrote:
> > > Control: tags -1 + confirmed
> > >
> > > On Sat, 2015-04-18 at 20:56 +0200, Markus Koschany wrote:
> > > > similar to commons-httpclient [1] the Java team would like to fix
> > > > CVE-2014-3577 for httpcomponents-client in wheezy. This package is
> > > > the successor of commons-httpclient and currently also affected by
> > > > this exploitable MITM vulnerability. [2] Please find attached the
> > > > proposed debdiff against the version of httpcomponents-client 
> > > > 4.1.1-2
> > > > in wheezy.
> > >
> > > Please go ahead, thanks.
> >
> > This was uploaded, but got rejected by dak because it was targetted at
> > "stable" and by the time dak processed it "stable" was jessie.
> >
> > A re-upload using "wheezy" as in the proposed diff should work.
>
> Thanks. I have forwarded this information to my sponsor a few hours ago
> and I think he will take care of this soon.

They did, and I've flagged it for acceptance.

Regards,

Adam