Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted openrefine 3.6.2-3 (source) into unstable
Date: Fri, 18 Aug 2023 00:12:48 +0000
Signed by: Markus Koschany <apo@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 18 Aug 2023 01:37:01 +0200
Source: openrefine
Architecture: source
Version: 3.6.2-3
Distribution: unstable
Urgency: medium
Maintainer: Debian Java Maintainers <pkg-java-maintainers@lists.alioth.debian.org>
Changed-By: Markus Koschany <apo@debian.org>
Closes: 1041422
Changes:
 openrefine (3.6.2-3) unstable; urgency=medium
 .
   * Tighten B-D on commons-io to >= 2.11.0.
   * Fix CVE-2023-37476 and automatically refresh all other patches.
     OpenRefine is a free, open source tool for data processing. A carefully
     crafted malicious OpenRefine project tar file can be used to trigger
     arbitrary code execution in the context of the OpenRefine process if a user
     can be convinced to import it. (Closes: #1041422)
   * Declare compliance with Debian Policy 4.6.2.
Checksums-Sha1:
 c0ea5c7ff89fe3ed60880bb33963efaba2aa521f 3594 openrefine_3.6.2-3.dsc
 086d8ea4f865c529bf19da15dee1697022b53513 309624 openrefine_3.6.2-3.debian.tar.xz
 72b4137a132e07866f2579f228a008362bf50b35 18207 openrefine_3.6.2-3_amd64.buildinfo
Checksums-Sha256:
 a7068a72811602b299d4f34b90ee472cca6a166cb3c1bda06f5fd4a390b99489 3594 openrefine_3.6.2-3.dsc
 16ee4fa9f6e36d5e4f7cc222455e3b2afed102e8d5ece9dca9079b8f17d524b0 309624 openrefine_3.6.2-3.debian.tar.xz
 0aca365e595d347169f688f879d73a5278f928c27f05cb3bc160f60abe5d8fa9 18207 openrefine_3.6.2-3_amd64.buildinfo
Files:
 30a765993f3ece851d062c9e52fd125d 3594 java optional openrefine_3.6.2-3.dsc
 7c7e685af6e1db8615a724f6bcbc6a4c 309624 java optional openrefine_3.6.2-3.debian.tar.xz
 a39a8b5a391be99e29d7467997fdb821 18207 java optional openrefine_3.6.2-3_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=Na+6
-----END PGP SIGNATURE-----

News for package openrefine