[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 1457-1] ant security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : ant
Version        : 1.9.4-3+deb8u2
CVE ID         : TEMP-0904191-9063D5
Debian Bug     : 904191


The fix for CVE-2018-10886 was incomplete in the previous upload. New
changes was implemented upstream which check and resolve symlinks
before expanding the archives.

For Debian 8 "Jessie", this problem has been fixed in version
1.9.4-3+deb8u2.

We recommend that you upgrade your ant packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=PWlA
-----END PGP SIGNATURE-----


Reply to: