Details
-
Bug
-
Resolution: Done
-
Major
-
jboss-fuse-6.2.1
-
None
-
%
Description
A query was raised with the product security team for CVE-2015-5344 wherein customer was asking if the fix was released in Fuse 6.2.1, to which the security team had given the following reply
" Product Security's support policy is to provide fixes via errata
for the latest minor release for any supported major product. The timing of the
fixes of these CVEs for Fuse resulted in them going into 6.3, not 6.2.1, which
means there aren't currently plans to provide fixes for 6.2.1. Of course, the
customer is free to request backports from the program, but PST won't issue
errata for them, unless program management and PST make the decision to."
Now the customer has re-opened the ticket and is asking for the HOT fix for the same in version 6.2.1
