Register | Log in

shiro

Apache Shiro - Java Security Framework

Choose email to subscribe with

general

source: shiro (main)
version: 1.3.2-4
maintainer: Debian Java Maintainers (archive) (DMD)
uploaders: Emmanuel Bourg [DMD]
arch: all
std-ver: 4.3.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 1.2.3-1
oldstable: 1.3.2-1
stable: 1.3.2-4
testing: 1.3.2-4
unstable: 1.3.2-4

versioned links

1.2.3-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.3.2-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.3.2-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libshiro-java

action needed

A new upstream version is available: 1.4.1 high

A new upstream version 1.4.1 is available, you should consider packaging it.

Created: 2017-11-21 Last update: 2019-09-21 09:43

2 ignored security issues in jessie low

There are 2 open security issues in jessie.

2 issues skipped by the security teams:

CVE-2016-6802: Apache Shiro before 1.3.2 allows attackers to bypass intended servlet filters and gain access by leveraging use of a non-root servlet context path.
CVE-2016-4437: Apache Shiro before 1.2.5, when a cipher key has not been configured for the "remember me" feature, allows remote attackers to execute arbitrary code or bypass intended access restrictions via an unspecified request parameter.

Please fix them.

Created: 2016-06-04 Last update: 2019-07-07 09:01

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.4.0 instead of 4.3.0).

Created: 2019-07-08 Last update: 2019-07-08 20:09

news

[2019-03-12] shiro 1.3.2-4 MIGRATED to testing (Debian testing watch)
[2019-03-01] Accepted shiro 1.3.2-4 (source) into unstable (Markus Koschany)
[2018-12-05] shiro 1.3.2-3 MIGRATED to testing (Debian testing watch)
[2018-11-29] Accepted shiro 1.3.2-3 (source) into unstable (Emmanuel Bourg)
[2017-08-23] shiro 1.3.2-2 MIGRATED to testing (Debian testing watch)
[2017-08-18] Accepted shiro 1.3.2-2 (source all) into unstable (tony mancill)
[2016-11-22] shiro 1.3.2-1 MIGRATED to testing (Debian testing watch)
[2016-11-16] Accepted shiro 1.3.2-1 (source all) into unstable (Emmanuel Bourg)
[2016-08-25] shiro 1.2.5-2 MIGRATED to testing (Debian testing watch)
[2016-08-19] Accepted shiro 1.2.5-2 (source all) into unstable (Emmanuel Bourg)
[2016-06-15] shiro 1.2.5-1 MIGRATED to testing (Debian testing watch)
[2016-06-12] Accepted shiro 1.2.5-1 (source all) into unstable (tony mancill)
[2015-07-27] shiro 1.2.4-1 MIGRATED to testing (Britney)
[2015-07-21] Accepted shiro 1.2.4-1 (source all) into unstable (Emmanuel Bourg)
[2014-11-04] shiro 1.2.3-1 MIGRATED to testing (Britney)
[2014-10-24] Accepted shiro 1.2.3-1 (source all) into unstable, unstable (Emmanuel Bourg)

bugs [bug history graph]

all: 0

links

homepage
lintian
buildd: logs, clang, reproducibility
popcon
browse source code
edit tags
security tracker

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1.3.2-4

Debian Package Tracker — Copyright 2013-2018 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Bugs — Git Repository — Contributing