Bug#758086: CVE-2012-6153: Apache HttpComponents client: Hostname verification susceptible to MITM attack
Emmanuel Bourg
ebourg at apache.org
Thu Aug 14 21:43:32 UTC 2014
Hi Henri,
Thank you for the report.
Is there an example available somewhere of a subject improperly parsed
by commons-httpclient/3.1-10.2? This would help backporting the fix to
this version.
Emmanuel Bourg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 825 bytes
Desc: OpenPGP digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-java-maintainers/attachments/20140814/9f8d94ce/attachment.sig>
More information about the pkg-java-maintainers
mailing list