Debian Package Tracker

From: Emmanuel Bourg <ebourg@apache.org>
To: <debian-changes@lists.debian.org>
Subject: Accepted libcommons-collections3-java 3.2.1-5+deb7u1 (source all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates
Date: Thu, 26 Nov 2015 21:17:51 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Tue, 24 Nov 2015 12:18:15 +0100
Source: libcommons-collections3-java
Binary: libcommons-collections3-java libcommons-collections3-java-doc
Architecture: source all
Version: 3.2.1-5+deb7u1
Distribution: wheezy-security
Urgency: medium
Maintainer: Debian Java Maintainers <pkg-java-maintainers@lists.alioth.debian.org>
Changed-By: Emmanuel Bourg <ebourg@apache.org>
Description: 
 libcommons-collections3-java - A set of abstract data type interfaces and implementations
 libcommons-collections3-java-doc - Documentation for libcommons-collections3-java
Changes: 
 libcommons-collections3-java (3.2.1-5+deb7u1) wheezy-security; urgency=medium
 .
   * Backported a modification from commons-collections 3.2.2 disabling
     the deserialization of the functors classes unless the system property
     org.apache.commons.collections.enableUnsafeSerialization is set to true.
     This fixes a vulnerability in unsafe applications deserializing objects
     from untrusted sources without sanitizing the input data.
Checksums-Sha1: 
 15984f3c85a1ded13dd0945027618e77f1be1651 2327 libcommons-collections3-java_3.2.1-5+deb7u1.dsc
 99b7c96d3731fc2f07d6e16ce2ec6d79027a9e3f 7533 libcommons-collections3-java_3.2.1-5+deb7u1.debian.tar.gz
 9cf10b0b135e092f53b7b3fd9429c26a2cfb92b1 606258 libcommons-collections3-java_3.2.1-5+deb7u1_all.deb
 b66bad4b9c8da309bc4145972fa261c6f15a4090 909742 libcommons-collections3-java-doc_3.2.1-5+deb7u1_all.deb
Checksums-Sha256: 
 4dce894392a22e1713b8813f132dbf27c3a4dc66d13722455a511721504b6f06 2327 libcommons-collections3-java_3.2.1-5+deb7u1.dsc
 f6b4dc4d9ace8689fc0294c2a6b2cc664926a1d9e0a47ae9af10161a4b685170 7533 libcommons-collections3-java_3.2.1-5+deb7u1.debian.tar.gz
 cb4e62477ee674bf213e21e8f86a97f60a60ffed6e9d43f764642d0d3bb5eaaa 606258 libcommons-collections3-java_3.2.1-5+deb7u1_all.deb
 21b7098b06c96229c770ef5e5457fe52f81360e33d39ce718060dd1b60761cdc 909742 libcommons-collections3-java-doc_3.2.1-5+deb7u1_all.deb
Files: 
 1dbb32746031d9c6ba06cc01c4dc3fd1 2327 java optional libcommons-collections3-java_3.2.1-5+deb7u1.dsc
 df23c461f56c6dd65687e3873eca1ced 7533 java optional libcommons-collections3-java_3.2.1-5+deb7u1.debian.tar.gz
 ed58b1d0aa3d353e40a9849b51fdda10 606258 java optional libcommons-collections3-java_3.2.1-5+deb7u1_all.deb
 5e10642e8e3ca71402e7644958d20235 909742 doc optional libcommons-collections3-java-doc_3.2.1-5+deb7u1_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQIcBAEBAgAGBQJWVHN3AAoJEPUTxBnkudCsYcYP/RG4eC41RUEjnk9jfjt9HVXM
ddny9euC9Nt+4q95tHvB6k0tTAQCZoGH2ryS8xhIko3QY4oh1To3BEbpvm3z/Sz6
IWkrdFX5A1nLxRvd34azOMOjI3vizg0i1KU4hwnjaiIfrhkrVMGtG++0Z/yUYtZE
o4NCvUIYiEOmtwCihwqnly5DmsPYUPcLlhhNO1hVqGPDwdMagnqpxgL0vhQRUHIW
qD1CQxZOs7iBZBWZ9bgbJrgQj2OZU7yi2kNQBS8p4lXpaQIoA5vjSWIM/UQvMudX
E7UyqpxSuqZC5V7WlXaeaUlGJKvwDyzRaANJ/g6CgC9navvspIG8ied8ED/KzYUc
mhcCkNx9BuTUEOFwR62pQs96nPV7cZOG+6qr03HcKDMZ3yKVIjWJykCgR8zxRSSh
pZEWkmzTDSl4YflrW1ZuGSmY1krBC2B6TqLTwy7AGGqhOa5u5nys6WckgCkgXutd
XPHKSBKqtaRWeQldIgY0Nw+EUvxh9I/lPrY37n/WhMifzljlWpZg4h3IY8HOG3bQ
UsYBNTeKOprqlOGqVXacD+UoGczZ5eFLBbrS+r+Vr4M64OnviOFIbA2jyuM3k5Co
UmCpxeM4uxGwZVdA5MWzOQfXKuWE/d6fBy2TSL2OQ//cIn4nTJoLF5EbSF12cXvT
xPA4y8Wx8wBAPyvgDLau
=xvBw
-----END PGP SIGNATURE-----
News for package libcommons-collections3-java
