Bug#738202: security-tracker: DSA-2856-1 vs. tracker
Package: security-tracker
Severity: normal
Hello,
DSA-2856-1 [1] states that CVE-2014-0050 is fixed in oldstable and
stable security updates for libcommons-fileupload-java.
[1] https://lists.debian.org/debian-security-announce/2014/msg00026.html
The tracker seems to agree on its DSA page [2], but seems to miss the
link with the CVE. As a consequence the CVE page [3] still shows
libcommons-fileupload-java as vulnerable in oldstable (security) and
stable (security)...
[2] https://security-tracker.debian.org/tracker/DSA-2856-1
[3] https://security-tracker.debian.org/tracker/CVE-2014-0050
Please update the tracker data accordingly.
Thanks for your time!
Bye.
Reply to: