[ubuntu/jammy-proposed] c3p0 0.9.1.2-10ubuntu1 (Accepted)

Spyros Seimenis spyros.seimenis at canonical.com
Mon Feb 21 14:18:11 UTC 2022 

c3p0 (0.9.1.2-10ubuntu1) jammy; urgency=medium

  * SECURITY UPDATE: Billion laughs attacks in XML parsing
    - debian/patches/CVE-2019-5427.patch: Enable a wide variety of
      restrictions on XML parsing by default
    - CVE-2019-5427

Date: Thu, 17 Feb 2022 17:37:59 +0200
Changed-By: Spyros Seimenis <spyros.seimenis at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/c3p0/0.9.1.2-10ubuntu1
-------------- next part --------------
Format: 1.8
Date: Thu, 17 Feb 2022 17:37:59 +0200
Source: c3p0
Built-For-Profiles: noudeb
Architecture: source
Version: 0.9.1.2-10ubuntu1
Distribution: jammy
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Spyros Seimenis <spyros.seimenis at canonical.com>
Changes:
 c3p0 (0.9.1.2-10ubuntu1) jammy; urgency=medium
 .
   * SECURITY UPDATE: Billion laughs attacks in XML parsing
     - debian/patches/CVE-2019-5427.patch: Enable a wide variety of
       restrictions on XML parsing by default
     - CVE-2019-5427
Checksums-Sha1:
 3a32fd6b9485fef089e245c6d47b783e49241456 2221 c3p0_0.9.1.2-10ubuntu1.dsc
 a7a9c8a5b42653941df338e320b641cfb36e3b27 12140 c3p0_0.9.1.2-10ubuntu1.debian.tar.xz
 9908b2edefe958c1bfb5548e949f9ac747097372 10331 c3p0_0.9.1.2-10ubuntu1_source.buildinfo
Checksums-Sha256:
 8c6280f59ac2936e186370515614c19a0249a054c0c472835652c4a9a87d201e 2221 c3p0_0.9.1.2-10ubuntu1.dsc
 17b81c1b8c8a64af586bba36de19b9b88c6a70f7f7c92878622d85e3c1357c7b 12140 c3p0_0.9.1.2-10ubuntu1.debian.tar.xz
 1fa0ee6225dda0b9ae09b5dec4668b98cc468750e90214337abb19587602d30c 10331 c3p0_0.9.1.2-10ubuntu1_source.buildinfo
Files:
 ab1353dedf34cdf43ae382d934877bc2 2221 java optional c3p0_0.9.1.2-10ubuntu1.dsc
 d93fcac04e74a62c700f4b9a0490f454 12140 java optional c3p0_0.9.1.2-10ubuntu1.debian.tar.xz
 3bd1037dcee0a688de26e9a977c14dce 10331 java optional c3p0_0.9.1.2-10ubuntu1_source.buildinfo
Original-Maintainer: Debian Java Maintainers <pkg-java-maintainers at lists.alioth.debian.org>

More information about the jammy-changes mailing list