Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted libhibernate3-java 3.6.10.Final-6+deb9u1 (source) into oldstable
Date: Sun, 03 Jan 2021 22:00:12 +0000
Signed by: Markus Koschany <apo@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 03 Jan 2021 16:45:50 +0100
Source: libhibernate3-java
Binary: libhibernate3-java libhibernate3-java-doc
Architecture: source
Version: 3.6.10.Final-6+deb9u1
Distribution: stretch-security
Urgency: high
Maintainer: Debian Java Maintainers <pkg-java-maintainers@lists.alioth.debian.org>
Changed-By: Markus Koschany <apo@debian.org>
Description:
 libhibernate3-java - Relational Persistence for Idiomatic Java
 libhibernate3-java-doc - Relational Persistence for Idiomatic Java (documentation)
Changes:
 libhibernate3-java (3.6.10.Final-6+deb9u1) stretch-security; urgency=high
 .
   * Team upload.
   * Fix CVE-2020-25638:
     A flaw was found in hibernate-core. A SQL injection in the implementation
     of the JPA Criteria API can permit unsanitized literals when a literal is
     used in the SQL comments of the query. This flaw could allow an attacker to
     access unauthorized information or possibly conduct further attacks. The
     highest threat from this vulnerability is to data confidentiality and
     integrity.
Checksums-Sha1:
 e2993d9b232b8d035b1189dfce08493f95d527c8 3069 libhibernate3-java_3.6.10.Final-6+deb9u1.dsc
 10e5e876fe1d9c49829dc99275f0b7698f080ceb 3429555 libhibernate3-java_3.6.10.Final.orig.tar.gz
 ffae0b1bc175ddad6425fa307c938c0b0faa7070 11820 libhibernate3-java_3.6.10.Final-6+deb9u1.debian.tar.xz
 dfde95403e3fc0cfeb3da8370b143f11c2741b49 16739 libhibernate3-java_3.6.10.Final-6+deb9u1_amd64.buildinfo
Checksums-Sha256:
 f4aa023e8d4edabcd7ab72fdaec10c8703b52d40be05fef04229a661499e65a3 3069 libhibernate3-java_3.6.10.Final-6+deb9u1.dsc
 1a2f83893f7362fd4d1fae0520a2a058ac7d196071989c08e65be9bfab2e9fbb 3429555 libhibernate3-java_3.6.10.Final.orig.tar.gz
 3faa2de6ba0ce70807eb9cacf5e0fe58329bf3eda0a37c959706a915e3614475 11820 libhibernate3-java_3.6.10.Final-6+deb9u1.debian.tar.xz
 be69d46278be8db89986bb8a36ec53f5e4e9eafd9920e539b3bb3452a141e01a 16739 libhibernate3-java_3.6.10.Final-6+deb9u1_amd64.buildinfo
Files:
 44475bcc083065d31248ea4d8ec24dbf 3069 java optional libhibernate3-java_3.6.10.Final-6+deb9u1.dsc
 1caff9022858fa78bcd052d0cda10f42 3429555 java optional libhibernate3-java_3.6.10.Final.orig.tar.gz
 6f763f211ea45c5da40a777d3fa0f55c 11820 java optional libhibernate3-java_3.6.10.Final-6+deb9u1.debian.tar.xz
 6d79e69c4637b639ffe97a2336c48341 16739 java optional libhibernate3-java_3.6.10.Final-6+deb9u1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=G5ha
-----END PGP SIGNATURE-----
News for package libhibernate3-java
