Accepted groovy2 2.2.2+dfsg-3+deb8u2 (source all) into proposed-updates->stable-new, proposed-updates
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Mon, 30 Jan 2017 17:49:16 +0100
Source: groovy2
Binary: groovy2 groovy2-doc
Architecture: source all
Version: 2.2.2+dfsg-3+deb8u2
Distribution: jessie
Urgency: medium
Maintainer: Debian Java Maintainers <pkg-java-maintainers@lists.alioth.debian.org>
Changed-By: Markus Koschany <apo@debian.org>
Description:
groovy2 - Agile dynamic language for the Java Virtual Machine
groovy2-doc - Agile dynamic language for the Java Virtual Machine (documentatio
Changes:
groovy2 (2.2.2+dfsg-3+deb8u2) jessie; urgency=medium
.
* Team upload.
* Fix CVE-2016-6814: It was found that a flaw in Apache Groovy, a dynamic
language for the Java Virtual Machine, allows remote code execution
wherever deserialization occurs in the application. It is possible for an
attacker to craft a special serialized object that will execute code
directly when deserialized. All applications which rely on serialization
and do not isolate the code which deserializes objects are subject to this
vulnerability.
Checksums-Sha1:
6da94657aea64a866431e94b7843758824abaf4f 2511 groovy2_2.2.2+dfsg-3+deb8u2.dsc
c647e175ca97690a905f639968467b656c189ff7 22244 groovy2_2.2.2+dfsg-3+deb8u2.debian.tar.xz
d01681e816b79a61df3c3183f0745405c531c2fd 18053574 groovy2_2.2.2+dfsg-3+deb8u2_all.deb
11a8ef9f52e2674a5370f10d8fe27d31fe1d7f69 2638390 groovy2-doc_2.2.2+dfsg-3+deb8u2_all.deb
Checksums-Sha256:
ac42b340e74334780156669a724b6ef798ee6985a86d3420e5c20035354258b9 2511 groovy2_2.2.2+dfsg-3+deb8u2.dsc
fde8ea5075e3fdeaa4981cdf0a64d8410643454744e42c2d616010943dc00a65 22244 groovy2_2.2.2+dfsg-3+deb8u2.debian.tar.xz
d8f7154ff2a7f4c31e855de3ca3955d9a083d3059a02f61d2cf214d32c084a72 18053574 groovy2_2.2.2+dfsg-3+deb8u2_all.deb
8a93af9e3b42a9031ee6c365b072ca1cdcf3fd79fc4d908d6576cb4e58c17274 2638390 groovy2-doc_2.2.2+dfsg-3+deb8u2_all.deb
Files:
93575e5d171fc40ba2517565e4895d1a 2511 java optional groovy2_2.2.2+dfsg-3+deb8u2.dsc
58cd4df8fd01e89ace1af90fadc6cd28 22244 java optional groovy2_2.2.2+dfsg-3+deb8u2.debian.tar.xz
9076e27d73831fcd4980e6c3bb7ad585 18053574 java optional groovy2_2.2.2+dfsg-3+deb8u2_all.deb
148895fb4a70f0eb18c7b5e1cb2f218e 2638390 doc optional groovy2-doc_2.2.2+dfsg-3+deb8u2_all.deb
-----BEGIN PGP SIGNATURE-----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=CLrT
-----END PGP SIGNATURE-----