libspring-java_3.2.13-4_amd64.changes uploaded successfully to localhost
along with the files:
libspring-java_3.2.13-4.dsc
libspring-java_3.2.13-4.debian.tar.xz
libspring-aop-java_3.2.13-4_all.deb
libspring-beans-java_3.2.13-4_all.deb
libspring-context-java_3.2.13-4_all.deb
Processing control commands:
> retitle -1 CVE-2015-7940: bouncycastle: ECC private keys can be recovered via
> invalid curve attack
Bug #802671 [src:bouncycastle] bouncycastle: ECC private keys can be recovered
via invalid curve attack
Changed Bug title to 'CVE-2015-7940: bouncycastle: ECC
Control: retitle -1 CVE-2015-7940: bouncycastle: ECC private keys can be
recovered via invalid curve attack
FTR, this issue has been assigned CVE-2015-7940
Cheers,
--
Raphaël Hertzog ◈ Debian Developer
Support Debian LTS: http://www.freexian.com/services/debian-lts.html
Learn to master
Package: freemind
Version: 0.9.0+dfsg2-1
Severity: normal
Hallo,
I have installed OpenJDK-7 and OpenJDK-8.
Freemind is starting normally with OpenJDK-7 but hangs in the splash
screen when started with OpenJDK-8.
When I start freemind without any settings
$ freemind
it will use OpenJDK-8 (from
Despite the fact that I'm not running on Debian, I encountered this very
bug and indeed I can confirm that it seems to be related to multiple
screens.
However, I don't have to actually disable the secondary screen, it's
enough to move the mouse to the primary one, so that the window is
initially
apache-log4j2_2.4-1_amd64.changes uploaded successfully to localhost
along with the files:
apache-log4j2_2.4-1.dsc
apache-log4j2_2.4.orig.tar.gz
apache-log4j2_2.4-1.debian.tar.xz
liblog4j2-java-doc_2.4-1_all.deb
liblog4j2-java_2.4-1_all.deb
Greetings,
Your Debian queue daemon
Accepted:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Format: 1.8
Date: Thu, 22 Oct 2015 19:44:48 +0200
Source: apache-log4j2
Binary: liblog4j2-java liblog4j2-java-doc
Architecture: source all
Version: 2.4-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Java Maintainers
Accepted:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Format: 1.8
Date: Wed, 21 Oct 2015 20:49:51 +0200
Source: httpcomponents-asyncclient
Binary: libhttpasyncclient-java
Architecture: source all
Version: 4.1-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Java Maintainers
revno: 655
committer: Matthias Klose
branch nick: openjdk8
timestamp: Thu 2015-10-22 14:01:37 +0200
message:
openjdk-8 (8u66-b17-1) unstable; urgency=high
* Update to 8u66-b01.
* Security fixes:
-
revno: 656
committer: Matthias Klose
branch nick: openjdk8
timestamp: Thu 2015-10-22 14:05:41 +0200
message:
- fix changelog
modified:
debian/changelog
--
lp:~openjdk/openjdk/openjdk8
revno: 597
committer: Matthias Klose
branch nick: openjdk7
timestamp: Thu 2015-10-22 14:00:33 +0200
message:
openjdk-7 (7u85-2.6.1-6) unstable; urgency=high
[ Tiago Stürmer Daitx ]
* Security fixes
-
revno: 657
committer: Matthias Klose
branch nick: openjdk8
timestamp: Thu 2015-10-22 14:11:07 +0200
message:
- add some cross build fixes.
modified:
debian/rules
--
lp:~openjdk/openjdk/openjdk8
Package: libjetty-extra-java
Version: 6.1.26-5
Severity: important
Dear Maintainer,
Some time back (version 6.1.26-2), jetty switched dependencies from
tomcat6 to tomcat7. Things seemed to be working fine and I don't see
any tomcat-related entries in the changelog since then.
However, there
libjson-java_2.4-1_amd64.changes uploaded successfully to localhost
along with the files:
libjson-java_2.4-1.dsc
libjson-java_2.4.orig.tar.xz
libjson-java_2.4-1.debian.tar.xz
libjson-java_2.4-1_all.deb
Greetings,
Your Debian queue daemon (running on host franck.debian.org)
__
Accepted:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Format: 1.8
Date: Thu, 22 Oct 2015 23:34:54 +0200
Source: libjson-java
Binary: libjson-java
Architecture: source all
Version: 2.4-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Java Maintainers
2015-10-22 16:42 https://reproducible.debian.net/unstable/amd64/libspring-java
changed from unreproducible -> FTBFS
2015-10-22 18:52 https://reproducible.debian.net/unstable/amd64/libspring-java
changed from FTBFS -> unreproducible
__
This is the maintainer address of Debian's Java team
Accepted:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Format: 1.8
Date: Wed, 21 Oct 2015 23:32:19 +0200
Source: libspring-java
Binary: libspring-core-java libspring-beans-java libspring-aop-java
libspring-context-java libspring-context-support-java libspring-web-java
Accepted:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Format: 1.8
Date: Wed, 21 Oct 2015 23:13:05 +0200
Source: geronimo-jta-1.2-spec
Binary: libgeronimo-jta-1.2-spec-java
Architecture: source all
Version: 1.0~alpha-1-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Java
Source: bouncycastle
Version: 1.44+dfsg-2
Severity: serious
Tags: security
Control: fixed -1 1.51-1
Hello,
bouncycastle 1.49 in stable/testing/unstable (and 1.44 in wheezy/squeeze)
is vulnerable to an invalid curve attack as described here:
Your message dated Fri, 23 Oct 2015 03:46:03 +0200
with message-id <1976896.OHRq8Vx7hr@bagend>
and subject line Closing bug
has caused the Debian Bug report #581790,
regarding libapache2-mod-jk: tomcat auto-configure could be easier
to be marked as done.
This means that you claim that the problem
Processing control commands:
> fixed -1 1.51-1
Bug #802671 [src:bouncycastle] bouncycastle: ECC private keys can be recovered
via invalid curve attack
Marked as fixed in versions bouncycastle/1.51-1.
--
802671: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=802671
Debian Bug Tracking System
FYI: The status of the libgpars-groovy-java source package
in Debian's testing distribution has changed.
Previous version: 1.2.1-3
Current version: 1.2.1-4
--
This email is automatically generated once a day. As the installation of
new packages into testing happens multiple times a day
FYI: The status of the felix-main source package
in Debian's testing distribution has changed.
Previous version: 5.0.0-1
Current version: 5.0.0-2
--
This email is automatically generated once a day. As the installation of
new packages into testing happens multiple times a day you will
FYI: The status of the gradle-debian-helper source package
in Debian's testing distribution has changed.
Previous version: (not in testing)
Current version: 1.1
--
This email is automatically generated once a day. As the installation of
new packages into testing happens multiple times a
#
# bts-link upstream status pull for source package jackrabbit
# see http://lists.debian.org/debian-devel-announce/2006/05/msg1.html
#
user bts-link-upstr...@lists.alioth.debian.org
# remote status report for #800993 (http://bugs.debian.org/800993)
# Bug title: jackrabbit: depends on
Processing commands for cont...@bugs.debian.org:
> #
> # bts-link upstream status pull for source package jackrabbit
> # see http://lists.debian.org/debian-devel-announce/2006/05/msg1.html
> #
> user bts-link-upstr...@lists.alioth.debian.org
Setting user to
Accepted:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Format: 1.8
Date: Mon, 19 Oct 2015 09:37:49 +0200
Source: jeromq
Binary: libjeromq-java
Architecture: source all
Version: 0.3.5-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Java Maintainers
27 matches
Mail list logo