-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 3 Jun 2023 20:15:30 CEST Source: apache-jena Binary: libapache-jena-java Architecture: source all Version: 4.5.0-2~bpo11+1 Distribution: bullseye-backports Urgency: high Maintainer: Debian Java Maintainers <pkg-java-maintainers@lists.alioth.debian.org> Changed-By: Markus Koschany <apo@debian.org> Description: libapache-jena-java - Java framework for building Semantic Web applications Checksums-Sha1: ac11d3a49283b7aa8a15162cd13591b2ee4fac17 2595 apache-jena_4.5.0-2~bpo11+1.dsc 83966a00776162e2fe2f2cba6bf00389235982ed 7814853 apache-jena_4.5.0.orig.tar.gz b06d6a26ee791bb83337869e4f101c847ca85f67 21680 apache-jena_4.5.0-2~bpo11+1.debian.tar.xz fac76994ffb43c4b1634bdb774f6e97d93d1b8b0 14533 apache-jena_4.5.0-2~bpo11+1_amd64.buildinfo 6a7ecd599f4d686627e4c4724a440f6a57446742 7021428 libapache-jena-java_4.5.0-2~bpo11+1_all.deb Checksums-Sha256: b0ad4cc8dc4cef3a64afe779c05b8f35f5dbdeed8964e48744a96436b488f4d8 2595 apache-jena_4.5.0-2~bpo11+1.dsc 8aa33419153394598d90edcc339eef814f2f2e45bac384be3ba199fb62607b08 7814853 apache-jena_4.5.0.orig.tar.gz 3aa7aeee7435dc0d8c634fc2eb3e2416245af07baf368c903849923664ad93c5 21680 apache-jena_4.5.0-2~bpo11+1.debian.tar.xz 387e45cf678a8fb816a523211888cffde48fda1579631ac5f8a2bc4d02e1c855 14533 apache-jena_4.5.0-2~bpo11+1_amd64.buildinfo 3a8ce5722426f1ca1b44d6bb890bcb3e8f5a2b19d13b8aaf8d69aafcd0aa47aa 7021428 libapache-jena-java_4.5.0-2~bpo11+1_all.deb Closes: 1014982 Changes: apache-jena (4.5.0-2~bpo11+1) bullseye-backports; urgency=medium . * Rebuild for bullseye-backports. * Tighten B-D on commons-io. . apache-jena (4.5.0-2) unstable; urgency=medium . * Add RDFReader.patch for backwards compatibility to fix a FTBFS in librdfa-java. * Declare compliance with Debian Policy 4.6.2. . apache-jena (4.5.0-1) unstable; urgency=high . * New upstream version 4.5.0. - Fix CVE-2021-33192, CVE-2021-39239 and CVE-2022-28890. Thanks to Moritz Mühlenhoff for the report. (Closes: #1014982) * Refresh the patches. * Add libprotobuf-java, libtitanium-json-ld-java and libjsonp2-java to Build-Depends. * Tighten dependency on libthrift-java. * Declare compliance with Debian Policy 4.6.1. . apache-jena (3.17.0-3) unstable; urgency=medium . * Rebuild for bullseye-backports. * No longer depend on libapache-jena-java itself and fix the debian poms file instead. Files: 75a59bc8d107a34c3ae7d632734428d6 2595 java optional apache-jena_4.5.0-2~bpo11+1.dsc 18043a86f41f0f5f2bd5cf587e55b4b6 7814853 java optional apache-jena_4.5.0.orig.tar.gz cb4cc52676f130507f503c332d5cb1b8 21680 java optional apache-jena_4.5.0-2~bpo11+1.debian.tar.xz 97ad36bbe464b6976d0df1e9ba5ba241 14533 java optional apache-jena_4.5.0-2~bpo11+1_amd64.buildinfo 5c7a825cec4518f5affa27d4a1fb0657 7021428 java optional libapache-jena-java_4.5.0-2~bpo11+1_all.deb -----BEGIN PGP SIGNATURE----- iQKjBAEBCgCNFiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAmR7g1pfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQPHGFwb0BkZWJp YW4ub3JnAAoJENmtFLlRO1HkVN8P/jxDPF/U3tUfcgXJprrZExfZygXzQLf5dH5W jmMGs/6VqFwM5mZoNO0DAN/4qSEwhCkAGPWxohB2Wi8V01OvPmPIBqzQ5eZ6T9zm CPa1rjWm9xXzpuDx3yS905Y47c2/hKYgZMIURLG32uPyxvE8A9QQZvfVTXuwdYo0 FPsSIlUCfUcfgoR2OwDlA6mB9BiuqRT/Coqm3jgCPlvxfVZo48izs/RIW+GOXU7C R74Frn2XGuJaWIS85qV7bBllnUyrcrOxAxBqC4i3AeFc3/FE++Bo093YM2DFp3If JVbIkCvzfFm6gopsUQvWPiMSK1U+38+Ls7ybN+Com4MPTcfvWbIgPAM+XRTgk4k0 4JxyIKcHwB0LS8ZF6+l9HApciGzPSo1FCqxrIiI1EQCDk9/slKgycOh3wlTd8fUq gk0r3ZnPnqy+Ntfyh2gGQYcws25UyO2BW6kq2tiEuF4z3NTdIZSHYVwCMc11eyEb b5y+a+Qhrz00Xur+6bgJGFt0lddXKTMQC0qvD18SAxnlQC1ARnPM/86khE9znF0s G90hVseyeLxuipDe2Cy1BzLq8mg3mQIMx+AeJWoM1jo54j/aujYyjbifCVDcBXYG KGOcL8iAdwolRn0CtZjldekYUCwC+5uIY7WQv63EU2KnkHrpKV4vEOrlQ/t3YdQq h6mgFD4e =pZfy -----END PGP SIGNATURE-----
