Debian Package Tracker
Register | Log in
Subscribe

libjson-java

library for transforming Java objects and XML to JSON and back again

Choose email to subscribe with

general
  • source: libjson-java (main)
  • version: 3.1.0+dfsg-2
  • maintainer: Debian Java Maintainers (archive) (DMD)
  • uploaders: Torsten Werner [DMD] – Emmanuel Bourg [DMD] – Varun Hiremath [DMD]
  • arch: all
  • std-ver: 4.7.0
  • VCS: Git (Browse, QA)
versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]
[pool directory]
  • o-o-stable: 2.4-3
  • oldstable: 2.4-3.1
  • stable: 2.4-3.1
  • testing: 3.1.0+dfsg-2
  • unstable: 3.1.0+dfsg-2
versioned links
  • 2.4-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 2.4-3.1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 3.1.0+dfsg-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
binaries
  • libjson-java
action needed
2 security issues in bookworm high

There are 2 open security issues in bookworm.

1 important issue:
  • CVE-2024-47855: util/JSONTokener.java in JSON-lib before 3.1.0 mishandles an unbalanced comment string.
1 issue left for the package maintainer to handle:
  • CVE-2023-5072: (needs triaging) Denial of Service in JSON-Java versions up to and including 20230618.  A bug in the parser means that an input string of modest size can lead to indefinite amounts of memory being used.

You can find information about how to handle this issue in the security team's documentation.

Created: 2023-10-13 Last update: 2025-02-27 05:02
Standards version of the package is outdated. wishlist
The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.2 instead of 4.7.0).
Created: 2025-02-21 Last update: 2025-02-27 13:24
news
[rss feed]
  • [2024-12-22] libjson-java 3.1.0+dfsg-2 MIGRATED to testing (Debian testing watch)
  • [2024-12-16] Accepted libjson-java 3.1.0+dfsg-2 (source) into unstable (Pierre Gruet)
  • [2024-12-14] libjson-java 3.1.0+dfsg-1 MIGRATED to testing (Debian testing watch)
  • [2024-12-08] Accepted libjson-java 3.1.0+dfsg-1 (source) into unstable (Pierre Gruet)
  • [2021-01-10] libjson-java 2.4-3.1 MIGRATED to testing (Debian testing watch)
  • [2021-01-05] Accepted libjson-java 2.4-3.1 (source) into unstable (Holger Levsen)
  • [2016-05-17] libjson-java 2.4-3 MIGRATED to testing (Debian testing watch)
  • [2016-05-11] Accepted libjson-java 2.4-3 (source all) into unstable (Emmanuel Bourg)
  • [2015-11-26] libjson-java 2.4-2 MIGRATED to testing (Britney)
  • [2015-11-20] Accepted libjson-java 2.4-2 (source all) into unstable (Emmanuel Bourg)
  • [2015-10-28] libjson-java 2.4-1 MIGRATED to testing (Britney)
  • [2015-10-22] Accepted libjson-java 2.4-1 (source all) into unstable (Emmanuel Bourg)
  • [2014-11-17] libjson-java 2.3-3 MIGRATED to testing (Britney)
  • [2014-04-12] Accepted libjson-java 2.3-3 (source all) (Emmanuel Bourg) (signed by: Miguel Landaeta)
  • [2013-12-15] libjson-java REMOVED from testing (Debian testing watch)
  • [2010-05-19] libjson-java 2.3-2 MIGRATED to testing (Debian testing watch)
  • [2010-05-08] Accepted libjson-java 2.3-2 (source all) (Torsten Werner)
  • [2009-10-07] libjson-java 2.3-1 MIGRATED to testing (Debian testing watch)
  • [2009-09-27] Accepted libjson-java 2.3-1 (source all) (Michael Koch)
  • [2009-02-16] libjson-java 2.2.3-1 MIGRATED to testing (Debian testing watch)
  • [2009-01-01] Accepted libjson-java 2.2.3-1 (source all) (Torsten Werner)
  • [2008-12-07] Accepted libjson-java 2.2.2-3 (source all) (Varun Hiremath)
  • [2008-08-20] Accepted libjson-java 2.2.2-2 (source all) (Torsten Werner)
  • [2008-07-17] libjson-java 2.2.2-1 MIGRATED to testing (Debian testing watch)
  • [2008-07-06] Accepted libjson-java 2.2.2-1 (source all) (Varun Hiremath)
  • [2008-02-27] libjson-java 2.2.1-1 MIGRATED to testing (Debian testing watch)
  • [2008-02-15] Accepted libjson-java 2.2.1-1 (source all) (Varun Hiremath)
  • [2008-01-15] libjson-java 2.2-1 MIGRATED to testing (Debian testing watch)
  • [2008-01-04] Accepted libjson-java 2.2-1 (source all) (Varun Hiremath)
  • [2008-01-01] libjson-java 2.1-2 MIGRATED to testing (Debian testing watch)
  • 1
  • 2
bugs [bug history graph]
  • all: 0
links
  • homepage
  • lintian
  • buildd: logs, reproducibility
  • popcon
  • browse source code
  • edit tags
  • other distros
  • security tracker
  • screenshots
  • debian patches
ubuntu Ubuntu logo [Information about Ubuntu for Debian Developers]
  • version: 3.1.0+dfsg-2

Debian Package Tracker — Copyright 2013-2025 The Distro Tracker Developers
Report problems to the tracker.debian.org pseudo-package in the Debian BTS.
Documentation — Bugs — Git Repository — Contributing