bouncycastle (1.60-1+deb10u1) buster-security; urgency=high * Non-maintainer upload by the Debian LTS team. * CVE-2023-33201: Prevent a protential LDAP injection vulnerability. During the certificate validation process, bouncycastle used the certificate's "Subject Name" into an LDAP search filter without any escaping. (Closes: #1040050) * Add debian/.gitlab-ci.yml and disable (failing) reprotest job. -- Chris Lamb Wed, 02 Aug 2023 09:33:01 +0100 bouncycastle (1.60-1) unstable; urgency=medium * Team upload. * New upstream version 1.60. * Drop CVE-2018-1000180 patches. Fixed upstream. * Declare compliance with Debian Policy 4.1.5. -- Markus Koschany Sat, 07 Jul 2018 21:05:35 +0200 bouncycastle (1.59-2) unstable; urgency=high * Team upload. * Fix CVE-2018-1000180. Thanks to Salvatore Bonaccorso for the report. (Closes: #900843) * Declare compliance with Debian Policy 4.1.4. -- Markus Koschany Tue, 12 Jun 2018 22:38:03 +0200 bouncycastle (1.59-1) unstable; urgency=medium * Team upload. * New upstream version 1.59. * Drop CVE-2017-13098.patch. Fixed upstream. * Use compat level 11. * Declare compliance with Debian Policy 4.1.3. -- Markus Koschany Tue, 16 Jan 2018 21:49:11 +0100 bouncycastle (1.58-1) unstable; urgency=high * Team upload. * New upstream version 1.58. * Declare compliance with Debian Policy 4.1.2. * Apply CVE-2017-13098.patch and fix CVE-2017-13098. Thanks to Salvatore Bonaccorso for the report. (Closes: #884241) -- Markus Koschany Sun, 17 Dec 2017 20:32:38 +0100 bouncycastle (1.57-1) unstable; urgency=medium * Team upload. * New upstream release - Refreshed the patches - Updated the Maven poms * Standards-Version updated to 4.0.0 * Removed the test libraries from the upstream tarball -- Emmanuel Bourg Tue, 27 Jun 2017 15:56:28 +0200 bouncycastle (1.56-1) unstable; urgency=medium * Team upload. * New upstream release - Refreshed the patches - Updated the Maven poms * Build with the DH sequencer instead of CDBS * Switch to debhelper level 10 -- Emmanuel Bourg Fri, 06 Jan 2017 17:34:39 +0100 bouncycastle (1.55-2) unstable; urgency=medium * Team upload. * Refresh POMs with debian/rules get-orig-pom target so versioned paths reflect the current version the current version. (Closes: #845291) -- tony mancill Wed, 23 Nov 2016 12:46:41 -0800 bouncycastle (1.55-1) unstable; urgency=medium * Team upload. * New upstream release - Refreshed the patches -- Emmanuel Bourg Fri, 09 Sep 2016 23:14:59 +0200 bouncycastle (1.54-1) unstable; urgency=medium * Team upload. * New upstream release - Refreshed the patches - Restored the getObjectId() method in AlgorithmIdentifier to preserve the backward compatibility. - libbcprov-java 1.54 breaks libcanl-java << 2.3.0~ * Standards-Version updated to 3.9.8 (no changes) * Use a secure Vcs-Git URL -- Emmanuel Bourg Thu, 28 Apr 2016 23:59:53 +0200 bouncycastle (1.51-4) unstable; urgency=medium * Team upload. * Switch back from gnumail to libmail-java. -- Markus Koschany Fri, 11 Dec 2015 17:43:42 +0100 bouncycastle (1.51-3) unstable; urgency=medium * Team upload. * No change rebuild with original sources included. -- Markus Koschany Sun, 06 Dec 2015 02:49:15 +0100 bouncycastle (1.51-2) unstable; urgency=medium * Team upload. * Upload to unstable. (Closes: #799007) * The new upstream release 1.51 fixes CVE-2015-7940. (Closes: #802671) * Declare compliance with Debian Policy 3.9.6. * Vcs-Browser: Use https. * Add fix-encoding.patch. This prevents an error when creating javadoc which would otherwise lead to empty -doc packages. Drop 01_build.patch because it once tried to accomplish the same but it is obsolete now. Thanks to dean for the report. (Closes: #798343) -- Markus Koschany Sun, 06 Dec 2015 00:34:19 +0100 bouncycastle (1.49+dfsg-3) unstable; urgency=medium * Replaced the dependency on libgnumail-java with libmail-java * Standards-Version updated to 3.9.6 (no changes) * Switch to debhelper level 9 * Use XZ compression for the upstream tarball * Moved the package to Git -- Emmanuel Bourg Wed, 22 Oct 2014 13:41:01 +0200 bouncycastle (1.51-1) experimental; urgency=medium * New upstream release - Refreshed the patches - Updated the Maven poms * Standards-Version updated to 3.9.5 (no changes) * Switch to debhelper level 9 * Use XZ compression for the upstream tarball -- Emmanuel Bourg Thu, 07 Aug 2014 14:07:58 +0200 bouncycastle (1.49+dfsg-2) unstable; urgency=low * Upload to unstable * debian/control: Specified the packages broken by this version. This completes the transition to Bouncy Castle >= 1.47 (Closes: #687694) -- Emmanuel Bourg Mon, 09 Sep 2013 10:41:55 +0200 bouncycastle (1.49+dfsg-1) experimental; urgency=low * New upstream release * Updated the Maven poms * Use canonical URLs in the Vcs-* fields * Added the missing dependencies between the packages: - libbcpkix-java depends on libbcprov-java - libbcpg-java depends on libbcprov-java - libbcmail-java depends on libbcprov-java and libbcpkix-java * Added the Classpath attribute in the manifests * Added the upstream changelog * Removed the -gcj packages * debian/orig-tar.sh: Exclude Eclipse project file * debian/orig-tar.sh: Exclude the prebuilt CLDC classes * debian/rules: - Use the CDBS Ant class - Updated the download URL for the poms - Use uppercase names for the constants - Removed the duplicate constants * debian/copyright: Updated to follow the Copyright Format 1.0 * The documentation is now registered with doc-base * Moved the documentation in the libbcprov-java-doc package * Improved the description of the documentation packages * Removed the debian/*.dirs files -- Emmanuel Bourg Mon, 15 Jul 2013 19:26:52 +0200 bouncycastle (1.48+dfsg-2) unstable; urgency=low * Removed the dependency on the Activation Framework (libgnujaf-java) * Enabled the hardening for the -gcj packages * Upload to unstable -- Emmanuel Bourg Fri, 17 May 2013 00:10:32 +0200 bouncycastle (1.48+dfsg-1) experimental; urgency=low * Team upload. * New upstream release (Closes: #701698) - Fixes the Lucky 13 attack on CBC-mode encryption in TLS CVE-2013-0169, CVE-2013-1624 (Closes: #699885) * Added the bcpkix packages (Closes: #675819) * Removed the bctsp packages (the TSP API is now included in bcpkix) * Updated Standards-Version to 3.9.4: no changes needed. * Removed the DMUA flag * Refreshed the patches * Removed "Suggests: java-virtual-machine" on the libbcpg-java-gcj package -- Emmanuel Bourg Fri, 29 Mar 2013 12:52:23 +0100 bouncycastle (1.46+dfsg-7) unstable; urgency=low * Team upload. * Updated Standards-Version to 3.9.3: no changes needed. * As per Java Policy, remove "Depends: default-jre | java2-runtime" and "Suggests: java-virtual-machine" from library packages: only programs need explicit depends on runtime. * Force a Build-Depends on default-jdk (>= 1:1.6) to indicate that this package needs some classes (like java.security.spec.ECFieldF2m) which are not available in GCJ classpath (Closes: #678904). * Remove Build-Depends on quilt and debian/README.source file since we already use quilt (3.0) source format. -- Damien Raude-Morvan Sat, 18 Aug 2012 12:04:18 +0200 bouncycastle (1.46+dfsg-6) unstable; urgency=low * Now building for Java 1.5 rather than 1.6 (Closes: #678904) -- Brian Thomason Wed, 01 Aug 2012 16:32:19 +0000 bouncycastle (1.46+dfsg-5) unstable; urgency=low * Compile using jdk16.xml rather than jdk14.xml as the latter exludes classes * Pass unicode flag to javac targets as comments in the files prevent them from being compiled as ASCII -- Brian Thomason Tue, 22 May 2012 15:23:21 +0000 bouncycastle (1.46+dfsg-4) unstable; urgency=low * Disabled optimizations on sparc (Closes: #652117) -- Brian Thomason Tue, 03 Apr 2012 22:00:48 +0000 bouncycastle (1.46+dfsg-3) unstable; urgency=low * Disabled tests as they will fail as a known issue of the security certs having expired. Upstream has been informed and should fix for the next upstream release. This should fix the building of bouncycastle on certain platforms that were previously failing. -- Brian Thomason Mon, 12 Mar 2012 16:14:47 -0400 bouncycastle (1.46+dfsg-2) unstable; urgency=low [ by sponsor Steffen Moeller ] * Transition from experimental to unstable. * Removal of Michael from uploaders (Closes: #653997). * Added DMUA for Brian -- Brian Thomason Sat, 04 Feb 2012 19:19:27 +0100 bouncycastle (1.46+dfsg-1) experimental; urgency=low [ by sponsor Steffen Moeller ] * Merging Ubuntu changes with what is in pkg-java * Removing Michael Koch from uploaders, adding Brian -- Brian Thomason Tue, 10 Jan 2012 13:15:54 +0100 bouncycastle (1.46+dfsg-0ubuntu1) precise; urgency=low * New upstream release * Updated Standards-Version to 3.9.2 * Changed source format to 3.0 (quilt) * Changed Section to Java -- Brian Thomason Tue, 06 Dec 2011 20:53:23 +0000 bouncycastle (1.44+dfsg-2ubuntu2) oneiric; urgency=low * Deployment of Maven artifacts: - debian/rules: retrieve source POM's and install - debian/control: Build-depend on maven-repo-helper - debian/poms/*: versioned POM's from repo1.maven.org - debian/lib[bcprov|bcmail|bcpg|bctsp].poms; POM lists for deployment to maven-repo - debian/maven.rules: Transform rules for POM deployment -- James Page Wed, 29 Jun 2011 16:36:43 +0100 bouncycastle (1.44+dfsg-3) unstable; urgency=low * Team upload. [Niels Thykier] * Changed the section of the gcj packages to java. * Replaced B-D on default-jdk-builddep with gcj-native-helper and default-jdk. [tony mancill] * Apply patch to deploy maven artifacts. (Closes: #632183) Thanks to James Page. * All Recommends on *-gcj packages downgraded to Suggests. (Closes: #585062) * Bumped Standards-Versions 3.9.2 - no changes required. -- tony mancill Sun, 10 Jul 2011 16:27:31 -0700 bouncycastle (1.44+dfsg-2ubuntu1) maverick; urgency=low * Merge from debian. Remaining changes: - debian/rules: Enable test suite - debian/control: Build-depend on ant-optional (needed for test suite) - debian/control: Only suggest libbcprov-java-gcj on selected architectures, build libbcprov-java architecture "any" to have it work -- Thierry Carrez Thu, 03 Jun 2010 15:51:05 +0200 bouncycastle (1.44+dfsg-2) unstable; urgency=low [ Thierry Carrez ] * debian/control: depend on java2-runtime-headless instead of java2-runtime [ Torsten Werner ] * Remove Charles from Uploaders list. (Closes: #569476) -- Torsten Werner Thu, 11 Feb 2010 22:13:38 +0100 bouncycastle (1.44+dfsg-1) unstable; urgency=low * Upload as new upstream release. * Add debian/orig-tar.sh script and use it in watch file. This now removes the RFCs comming with the upstream tarball. (Closes: #554456) -- Michael Koch Thu, 05 Nov 2009 08:16:03 +0100 bouncycastle (1.44-1) unstable; urgency=low * New upstream release. -- Michael Koch Sun, 25 Oct 2009 21:04:40 +0100 bouncycastle (1.43-1) unstable; urgency=low [ Dominik Smatana ] * Fixed broken debian/watch [ Michael Koch ] * New upstream version. * Build-Depends on debhelper >= 7. * Let all packages Depends on ${misc:Depends}. * Move all -java packages to section 'java'. * Replaces java-gcj-compat with default-jre-headless. * Added debian/README.source. * Updated Standards-Version to 3.8.3. -- Michael Koch Tue, 22 Sep 2009 08:23:30 +0200 bouncycastle (1.39-2) unstable; urgency=low * Build-Depends on default-jdk-builddep. Closes: #477847 -- Michael Koch Wed, 30 Apr 2008 04:35:02 -0100 bouncycastle (1.39-1) unstable; urgency=low * New upstream release. * Fixed watch file to match upstream version correctly. * Removed '-1' part in Build-Depends. -- Michael Koch Sat, 12 Apr 2008 13:49:12 +0200 bouncycastle (1.38-1) unstable; urgency=low * New upstream release. * Updated Standards-Version to 3.7.3. * Added Homepage, Vcs-Svn and Vcs-Browser fields. -- Michael Koch Sat, 29 Dec 2007 17:03:04 +0100 bouncycastle (1.37-2) unstable; urgency=low * Fix dependency of targets to make it possible to build arch:dep packages only. Closes: #440669. -- Michael Koch Mon, 15 Oct 2007 20:26:02 +0200 bouncycastle (1.37-1) unstable; urgency=low * New upstream release. Closes: #430560, #430562. * Replaced ${Source-Version} bei ${source:Version} * Added myself to Uploaders. -- Michael Koch Sun, 15 Jul 2007 19:22:07 +0200 bouncycastle (1.33-4) unstable; urgency=low * Rebuild the database of security providers in the postrm, not in the prerm. -- Matthias Klose Sat, 10 Feb 2007 12:02:19 +0100 bouncycastle (1.33-3) unstable; urgency=low * Merge from Ubuntu: - Build -gcj packages. - Install the docs in an api subdir (not apidoc). -- Matthias Klose Wed, 3 Jan 2007 14:29:42 +0100 bouncycastle (1.33-2.1) unstable; urgency=medium * NMU * Register org.bouncycastle.jce.provider.BouncyCastleProvider as security provider for classpath based runtimes. * Install bcprov.jar in /usr/share/java/gcj-endorsed as well. * Closes: #394680. -- Matthias Klose Sun, 22 Oct 2006 14:57:44 +0000 bouncycastle (1.33-2) unstable; urgency=low * Move clean target dependencies to Build-Depends * Make pkg-java-maintainers the primary maintainer * Update to standards version 3.7.2 -- Charles Fry Wed, 5 Jul 2006 12:32:16 -0400 bouncycastle (1.33-1) unstable; urgency=low * New upstream release * Generate bcmail, bctsp, and bcpg in addition to bcprov -- Charles Fry Mon, 8 May 2006 11:46:32 -0400 bouncycastle (1.32-1) unstable; urgency=low * New upstream release * Add build dependencies on ant, use java-gcj-compat-dev (thanks to Matthias Klose ) -- Charles Fry Thu, 20 Apr 2006 22:15:18 -0400 bouncycastle (1.30-1) unstable; urgency=low * Initial release (Closes: #234048) -- Charles Fry Mon, 19 Sep 2005 08:02:36 -0400