Viewing all changes in revision 11.
- Committer: Package Import Robot
- Date: 2014-02-07 17:12:35 UTC
- Revision ID: package-import@ubuntu.com-20140207171235-mz79q4k0eq666mfa
* Team upload.
* Fix CVE-2014-0050: Specially crafted input can trigger an infinite loop
if the buffer used by the MultipartStream is not big enough. When
constructing MultipartStream enforce the requirements for buffer size
by throwing an IllegalArgumentException if the requested buffer size is
too small. This prevents the DoS.
* Enable the unit tests
* Fix CVE-2014-0050: Specially crafted input can trigger an infinite loop
if the buffer used by the MultipartStream is not big enough. When
constructing MultipartStream enforce the requirements for buffer size
by throwing an IllegalArgumentException if the requested buffer size is
too small. This prevents the DoS.
* Enable the unit tests
- files added:
- .pc
- .pc/CVE-2013-2186.patch
- .pc/CVE-2013-2186.patch/src
- .pc/CVE-2013-2186.patch/src/java
- .pc/CVE-2013-2186.patch/src/java/org
- .pc/CVE-2013-2186.patch/src/java/org/apache
- .pc/CVE-2013-2186.patch/src/java/org/apache/commons
- .pc/CVE-2013-2186.patch/src/java/org/apache/commons/fileupload
- .pc/CVE-2013-2186.patch/src/java/org/apache/commons/fileupload/disk
- .pc/CVE-2014-0050.patch
- .pc/CVE-2014-0050.patch/src
- .pc/CVE-2014-0050.patch/src/java
- .pc/CVE-2014-0050.patch/src/java/org
- .pc/CVE-2014-0050.patch/src/java/org/apache
- .pc/CVE-2014-0050.patch/src/java/org/apache/commons
- .pc/CVE-2014-0050.patch/src/java/org/apache/commons/fileupload
- .pc/CVE-2014-0050.patch/src/test
- .pc/CVE-2014-0050.patch/src/test/org
- .pc/CVE-2014-0050.patch/src/test/org/apache
- .pc/CVE-2014-0050.patch/src/test/org/apache/commons
- .pc/CVE-2014-0050.patch/src/test/org/apache/commons/fileupload
- .pc/remove-unused-test-classes.patch
- .pc/remove-unused-test-classes.patch/src
- .pc/remove-unused-test-classes.patch/src/test
- .pc/remove-unused-test-classes.patch/src/test/org
- .pc/remove-unused-test-classes.patch/src/test/org/apache
- .pc/remove-unused-test-classes.patch/src/test/org/apache/commons
- .pc/remove-unused-test-classes.patch/src/test/org/apache/commons/fileupload
- debian/patches
- files modified:
- debian/changelog
expand all
collapse all
added
removed
