tag 864859 + pending thanks Some bugs in the jython package are closed in revision fa94dba7f47bf6e245a0016e840e8f3b817000ca in branch ' jessie' by Markus Koschany
The full diff can be seen at https://anonscm.debian.org/cgit/pkg-java/jython.git/commit/?id=fa94dba Commit message: Import Debian changes 2.5.3-3+deb8u1 jython (2.5.3-3+deb8u1) jessie-security; urgency=high * Team upload. * Fix CVE-2016-4000: (Closes: #864859) Unsafe deserialization may lead to arbitrary code execution. __ This is the maintainer address of Debian's Java team <http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers>. Please use debian-j...@lists.debian.org for discussions and questions.