icedtea-web 1.8.3-1 source package in Debian
Changelog
icedtea-web (1.8.3-1) unstable; urgency=medium
* Team upload.
* New upstream release (Closes: #934319)
- Fixes CVE-2019-10181: Unsigned code injection in a signed JAR file
- Fixes CVE-2019-10182: Path traversal while processing <jar/> elements
of JNLP files results in arbitrary file overwrite
- Fixes CVE-2019-10185: Directory traversal in the nested jar
auto-extraction leading to arbitrary file overwrite
-- Emmanuel Bourg <email address hidden> Fri, 09 Aug 2019 18:57:41 +0200
Upload details
- Uploaded by:
- Debian Java Maintainers
- Uploaded to:
- Sid
- Original maintainer:
- Debian Java Maintainers
- Architectures:
- all
- Section:
- java
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Builds
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| icedtea-web_1.8.3-1.dsc | 2.0 KiB | d7defb42015373ede092f2b43224a86c239d61aba5e799c908a19b725918e702 |
| icedtea-web_1.8.3.orig.tar.xz | 1.7 MiB | 0acc12aef7cf0dbdd194fee57cdbe8cf81796bdea1ea5af75fe8f8933c9530e4 |
| icedtea-web_1.8.3-1.debian.tar.xz | 25.0 KiB | 8e453a944afd6e60246251cd3be441d57ba9ee3aca95a3aaaa8aab46469518ab |
No changes file available.
