ELA-119-1 zookeeper security update

Information disclosure vulnerability

2019-05-24
Packagezookeeper
Version3.4.5+dfsg-2+deb7u2
Related CVEs CVE-2019-0201


It was discovered that there was an information disclosure vulnerability in zookeeper, a distributed co-ordination server. Users who were not authorised to read data were able to view the access control list.



For Debian 7 Wheezy, these problems have been fixed in version 3.4.5+dfsg-2+deb7u2.

We recommend that you upgrade your zookeeper packages.

Further information about Extended LTS security advisories can be found in the dedicated section of our website.