Advisories ยป MGASA-2015-0392

Updated jakarta-commons-httpclient and httpcomponents-client packages fixes security vulnerability

Publication date: 09 Oct 2015
Type: security
Affected Mageia releases : 5
CVE: CVE-2015-5262

Description

The Apache httpclient library had a bug where the socket timeout was
ignored during the SSL handshake, causing threads in an application to
hang (CVE-2015-5262).
                

References

SRPMS

5/core