-
bsh (2.0b4-15ubuntu0.14.04.1) trusty-security; urgency=medium
* SECURITY UPDATE: remote code execution vulnerability via
deserialization
- debian/patches/CVE-2016-2510.patch: prevent deserialization of
Handler in src/bsh/XThis.java.
- CVE-2016-2510
-- Marc Deslauriers <email address hidden> Thu, 03 Mar 2016 14:02:14 -0500
-
bsh (2.0b4-15) unstable; urgency=low
* Added the poms missing in the previous upload (Closes: #730008)
* Transition to the Servlet API 3.0 (Closes: #729972)
-- Emmanuel Bourg <email address hidden> Thu, 21 Nov 2013 17:16:04 +0100
-
bsh (2.0b4-14ubuntu1) trusty; urgency=low
* Merge from Debian unstable. Remaining changes:
- Transition libservlet2.5-java -> libservlet3.0-java.
bsh (2.0b4-14) unstable; urgency=low
* Upload to unstable
* Removed the bsh-gcj package
* Moved the jar and the Maven artifacts in a new libbsh-java package
that doesn't depend on a Java runtime.
* debian/control:
- Removed Michael Koch from the uploaders (Closes: #653998)
- Use canonical URLs for the Vcs-* fields
- Updated Standards-Version to 3.9.5 (no changes)
* Build depend on debhelper >= 9
[ Niels Thykier ]
* Changed the section of bsh to devel
bsh (2.0b4-13) experimental; urgency=low
* Team upload.
* Upload to experimental due to freeze.
* Moved the gcj package to the java section.
* Replaced B-D on default-jdk-builddep with gcj-native-helper and
default-jdk.
* Bumped Standards-Versions 3.9.1 - no changes required.
* Updated README.Debian to better reflect the current times.
* Added descriptions to the patches.
* Added patch to fix a typo in the upstream code.
* Added mh_clean to the clean rule.
* Linked the javadoc against the system javadoc.
-- James Page <email address hidden> Tue, 19 Nov 2013 17:31:10 +0000
-
bsh (2.0b4-12ubuntu1) quantal; urgency=low
* Transition libservlet2.5-java -> libservlet3.0-java (LP: #1023405).
-- James Page <email address hidden> Thu, 12 Jul 2012 15:02:13 +0100