Bug#462793: jetty5: CVE-2007-6672 unauthorized disclosure of information

2008-01-28 Thread Martin Zobel-Helas
Hi, On Mon Jan 28, 2008 at 21:50:21 +0100, Nico Golde wrote: > reassign 462793 jetty > thanks > > Hi, > * Martin Michlmayr <[EMAIL PROTECTED]> [2008-01-28 15:05]: > > * Nico Golde <[EMAIL PROTECTED]> [2008-01-27 16:25]: > > > Source: jetty5 > > > > There's no such package? > > Thanks for the h

Bug#462793: jetty5: CVE-2007-6672 unauthorized disclosure of information

2008-01-28 Thread Nico Golde
reassign 462793 jetty thanks Hi, * Martin Michlmayr <[EMAIL PROTECTED]> [2008-01-28 15:05]: > * Nico Golde <[EMAIL PROTECTED]> [2008-01-27 16:25]: > > Source: jetty5 > > There's no such package? Thanks for the hint. How did you notice it? Kind regards Nico -- Nico Golde - http://www.ngolde.de -

Processed: Re: Bug#462793: jetty5: CVE-2007-6672 unauthorized disclosure of information

2008-01-28 Thread Debian Bug Tracking System
Processing commands for [EMAIL PROTECTED]: > reassign 462793 jetty Bug#462793: jetty5: CVE-2007-6672 unauthorized disclosure of information Warning: Unknown package 'jetty5' Bug reassigned from package `jetty5' to `jetty'. > thanks Stopping processing here. Ple

Bug#462793: jetty5: CVE-2007-6672 unauthorized disclosure of information

2008-01-27 Thread Martin Michlmayr
* Nico Golde <[EMAIL PROTECTED]> [2008-01-27 16:25]: > Source: jetty5 There's no such package? -- Martin Michlmayr http://www.cyrius.com/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Bug#462793: jetty5: CVE-2007-6672 unauthorized disclosure of information

2008-01-27 Thread Nico Golde
Source: jetty5 Severity: grave Tags: security Hi, the following CVE (Common Vulnerabilities & Exposures) id was published for jetty5. CVE-2007-6672[0]: | Mortbay Jetty 6.1.5 and 6.1.6 allows remote attackers to bypass | protection mechanisms and read the source of files via multiple '/' | (slash)