20894 – apache-juddi new security issue CVE-2015-5241

Bug 20894 - apache-juddi new security issue CVE-2015-5241

Summary: apache-juddi new security issue CVE-2015-5241

Status:	RESOLVED OLD

Alias:	None

Product:	Mageia
Classification:	Unclassified
Component:	Security (show other bugs)
Version:	5
Hardware:	All Linux

Priority:	Normal Severity: normal
Target Milestone:	---
Assignee:	Nicolas Lécureuil
QA Contact:	Sec team

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2017-05-20 12:21 CEST by David Walser
Modified:	2017-12-27 05:04 CET (History)
CC List:	0 users

See Also:
Source RPM:	apache-juddi-3.1.5-5.mga5.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2017-05-20 12:21:41 CEST

Upstream has issued an advisory on May 18:
http://openwall.com/lists/oss-security/2017/05/18/10

The issue is fixed upstream in 3.2.

It can also be fixed by removing the UI.

Comment 1 David Walser 2017-12-27 05:04:26 CET

We won't be fixing this type of package for Mageia 5.

Status: NEW => RESOLVED
Resolution: (none) => OLD

Note You need to log in before you can comment on or make changes to this bug.