UbuntuUpdates.org

Bugs fixes in "commons-httpclient"

Origin Bug number Title Date fixed
CVE CVE-2015-5262 Possible DoS due to failure to set socket timeout on SSL connections 2015-10-14
CVE CVE-2012-6153 http/conn/ssl/AbstractVerifier.java in Apache Commons HttpClient before 4.2.3 does not properly verify that the server hostname matches a domain name 2015-10-14
CVE CVE-2014-3577 org.apache.http.conn.ssl.AbstractVerifier in Apache HttpComponents HttpClient before 4.3.5 and HttpAsyncClient before 4.0.2 does not properly verify 2015-10-14
CVE CVE-2012-5783 Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service (FPS) merchant Java SDK and other products, does not verify that the serve 2015-10-14
CVE CVE-2015-5262 Possible DoS due to failure to set socket timeout on SSL connections 2015-10-14
CVE CVE-2014-3577 org.apache.http.conn.ssl.AbstractVerifier in Apache HttpComponents HttpClient before 4.3.5 and HttpAsyncClient before 4.0.2 does not properly verify 2015-10-14
CVE CVE-2015-5262 Possible DoS due to failure to set socket timeout on SSL connections 2015-10-14
CVE CVE-2012-6153 http/conn/ssl/AbstractVerifier.java in Apache Commons HttpClient before 4.2.3 does not properly verify that the server hostname matches a domain name 2015-10-14
CVE CVE-2014-3577 org.apache.http.conn.ssl.AbstractVerifier in Apache HttpComponents HttpClient before 4.3.5 and HttpAsyncClient before 4.0.2 does not properly verify 2015-10-14
CVE CVE-2012-5783 Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service (FPS) merchant Java SDK and other products, does not verify that the serve 2015-10-14
CVE CVE-2015-5262 Possible DoS due to failure to set socket timeout on SSL connections 2015-10-14
CVE CVE-2014-3577 org.apache.http.conn.ssl.AbstractVerifier in Apache HttpComponents HttpClient before 4.3.5 and HttpAsyncClient before 4.0.2 does not properly verify 2015-10-14


About   -   Send Feedback to @ubuntu_updates