Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted openrefine 3.7.8-1 (source) into unstable
Date: Sat, 06 Apr 2024 20:37:30 +0000
Signed by: Markus Koschany <apo@debian.org>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 06 Apr 2024 21:45:36 +0200
Source: openrefine
Architecture: source
Version: 3.7.8-1
Distribution: unstable
Urgency: high
Maintainer: Debian Java Maintainers <pkg-java-maintainers@lists.alioth.debian.org>
Changed-By: Markus Koschany <apo@debian.org>
Closes: 1064192
Changes:
 openrefine (3.7.8-1) unstable; urgency=high
 .
   * New upstream version 3.7.8
     - Fix CVE-2024-23833: A jdbc attack vulnerability exists in OpenRefine
       where an attacker may construct a JDBC query which may read files on
       the host filesystem. (Closes: #1064192)
       Thanks to Salvatore Bonaccorso for the report.
Checksums-Sha1:
 db1ea80492009c7f88022b910aa0d0f569fb9dc7 3613 openrefine_3.7.8-1.dsc
 13d0d733d33971054fa7871f5f7c7dd9452670a2 4288064 openrefine_3.7.8.orig.tar.xz
 b3e70722ffd02b68caf7d650281a49c1e2b3e254 309112 openrefine_3.7.8-1.debian.tar.xz
 16c43d96f6fe57d6f2bf869d9d9b528b741179a6 19133 openrefine_3.7.8-1_amd64.buildinfo
Checksums-Sha256:
 0a9fbb24aa4a25d676370fb9043bb77ef8777982d2b3222486f8759e4f5dbd9c 3613 openrefine_3.7.8-1.dsc
 7d79bc097c47d7fe1aae4f14c72a96a5a954f2423f13d5805b88e6e54fd73b36 4288064 openrefine_3.7.8.orig.tar.xz
 7b9718dc85bf8a51bb81598bef739233a11d28294f0e1d2d5fd362bcf089f9f8 309112 openrefine_3.7.8-1.debian.tar.xz
 109398ee7b162bdfa5f1f462394bdd8b2c6ea93f74edf7327c8d0e2f02b0f4c6 19133 openrefine_3.7.8-1_amd64.buildinfo
Files:
 bb8e95ddf713492ab47fc311d3b6c94e 3613 java optional openrefine_3.7.8-1.dsc
 9d8c0ccd036a61609d402d99cf6c0503 4288064 java optional openrefine_3.7.8.orig.tar.xz
 ebf7337b97b7bbceb84f48c4585eff0e 309112 java optional openrefine_3.7.8-1.debian.tar.xz
 aae95b881f31b05963a9f681a10c31d7 19133 java optional openrefine_3.7.8-1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----

iQKjBAEBCgCNFiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAmYRp4BfFIAAAAAALgAo
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD
RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQPHGFwb0BkZWJp
YW4ub3JnAAoJENmtFLlRO1Hk+A8QAM2kS8rEA0WFD5K0/mJnRh6uX2eWlVrIxOGc
nO1B1/5pX6hiLc8BAcbArGNpcT5boakA57ckV3Rbqm/oW2CGydC/1gEURiksanFj
Agy4dy3q9cVSIJ8Q0AlcxX7+wVroAffd8hjIEAD4t7XsCGYAVdxX6v92g2wfwpbB
E4e5WX7EnEO8g397mSog/EZXNZ7xhVQKnUapZUdi0fVyaI9CPo2DlrKuT7gaZpL6
N+jfVjh7TEuGMDWMiZ7puIW+SF82UVGvgkH6HwgqsU6v5UfswVnC1Zngh3rt0jBt
XuXhOCY6jrJCimt/UkZ5mqIF2TLJbVlTm5pkR9MEWSCUCbQ74cvidkKwHW3Yy2rj
qb8C3yel6OW5q3ua86TD6oZlcgalahyE48oP6GIdlZuAnN6Bsa6dzX/G6BLHNfow
EL1VoZFvK+nKTJm+ZrG3z1WVTXDYK8rkMOMDj7uXv6JqdiARp/lzxpskstui2Xoe
AkT+OdiSa5Mqx8huNmgG/v5RF6oJZCbmP6eT2RXkMKN4iajtvt5tlU/P6bnP1GKY
Z+Zr7mPZQCAQuUntdxhFRGJv1PngoOk8efBCrj/kQXLrMLiG/d/CxOHYupu2vkx1
ufYBDr+V/5S9Sv14nRltzgUG4GXHT69i0J86Bsr6IW55nGnN1DKyiIDM8WDC+a7u
whNLBy1N
=dl8/
-----END PGP SIGNATURE-----
News for package openrefine
