Accepted snakeyaml 1.28-1+deb11u1 (source) into proposed-updates
- To: debian-changes@lists.debian.org
- Subject: Accepted snakeyaml 1.28-1+deb11u1 (source) into proposed-updates
- From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
- Date: Thu, 23 Feb 2023 21:17:10 +0000
- Debian: DAK
- Debian-architecture: source
- Debian-archive-action: accept
- Debian-changes: snakeyaml_1.28-1+deb11u1_source.changes
- Debian-source: snakeyaml
- Debian-suite: proposed-updates
- Debian-version: 1.28-1+deb11u1
- Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=ftp-master.debian.org; s=smtpauto.fasolo; h=Date:Message-Id: Content-Transfer-Encoding:Content-Type:Subject:MIME-Version:To:Reply-To:From: Cc:Content-ID:Content-Description:In-Reply-To:References; bh=fh8rQ931fPXKqKbizq3i4U5t2+/US0x9qcZJzXMsjHY=; b=S/9g57gbyy/RP4INnIrq0VZrlT WsYqm+pKGDDs/TMMDNmzRokSj2fzOhkj671MG18V0C7r+B9dfgLze9N+YPtDpfE/sDS25QiDN+rsK FiMc9Ja7v+BA+eaX4aBL0OIUP8+govOgKGTAa/1RrV0Gezr8LoXduE9NH7wCVAZxNFiB7eeeL8SJt H7Ku4uGJ8usI7/+L6P76REIjv/EhPfc5GNDfG0zsfShVYL873UvuOk4H6u3owlgV75sPPrZgnGsWw LFPNZs1TKHfkN47NTbwVOMdIqE7zxgohezg1FMM8ULTBVHPJqGVmh83W3PjZVHdKQaj7psD4f4BkI 5A/L9oSQ==;
- Mail-followup-to: debian-devel@lists.debian.org
- Message-id: <E1pVIxi-0030e9-2P@fasolo.debian.org>
- Reply-to: debian-devel@lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sun, 19 Feb 2023 17:05:00 +0100
Source: snakeyaml
Architecture: source
Version: 1.28-1+deb11u1
Distribution: bullseye
Urgency: medium
Maintainer: Debian Java Maintainers <pkg-java-maintainers@lists.alioth.debian.org>
Changed-By: Markus Koschany <apo@debian.org>
Changes:
snakeyaml (1.28-1+deb11u1) bullseye; urgency=medium
.
* Team upload.
Fix CVE-2022-25857, CVE-2022-38749, CVE-2022-38750 and CVE-2022-38751.
Several security vulnerabilities have been discovered in SnakeYaml, a YAML
parser for Java, which could facilitate a denial of service attack whenever
maliciously crafted input files are processed by SnakeYaml.
Checksums-Sha1:
b39656af327c3a3dea6f82e5da26bcaaa19a78a7 2580 snakeyaml_1.28-1+deb11u1.dsc
d72d374ec0cb8c7f545c742d0bf70818d85560e9 13608 snakeyaml_1.28-1+deb11u1.debian.tar.xz
3bab66228c775de7b78d03ae2bb9cca36bbb779b 14598 snakeyaml_1.28-1+deb11u1_amd64.buildinfo
Checksums-Sha256:
edf8d0322cf5f6f486284457daaa4f3ba29e4bffd69d4df5a71d73f9ddf05e84 2580 snakeyaml_1.28-1+deb11u1.dsc
707e4f0b5bcd6f127948f11c7211283f42c173fc3b5f69e9a86c6ab2973d7e5a 13608 snakeyaml_1.28-1+deb11u1.debian.tar.xz
2f44c1904c62998c74c5a60b549492528e4acc9d593ede4f4748874e5b9e28de 14598 snakeyaml_1.28-1+deb11u1_amd64.buildinfo
Files:
58e9f2faba98aee9edb4dbc7783e5aaa 2580 java optional snakeyaml_1.28-1+deb11u1.dsc
955e5399040fefd6ddd3f634ecd69804 13608 java optional snakeyaml_1.28-1+deb11u1.debian.tar.xz
17c7123b7b373e1b4065fad235197760 14598 java optional snakeyaml_1.28-1+deb11u1_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=cFUu
-----END PGP SIGNATURE-----