[ubuntu/trusty-updates] activemq 5.6.0+dfsg-1+deb7u2build0.14.04.1 (Accepted)

Ubuntu Archive Robot cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Wed Mar 23 20:28:14 UTC 2016


activemq (5.6.0+dfsg-1+deb7u2build0.14.04.1) trusty-security; urgency=medium

  * fake sync from Debian

activemq (5.6.0+dfsg-1+deb7u2) wheezy-security; urgency=high

  * Team upload.
  * Fix CVE-2015-5254:
    Apache ActiveMQ 5.x before 5.13.0 does not restrict the classes that can be
    serialized in the broker, which allows remote attackers to execute
    arbitrary code via a crafted serialized Java Message Service (JMS)
    ObjectMessage object.

Date: 2016-03-23 11:37:23.429589+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Maintainer: Debian Java Maintainers <pkg-java-maintainers at lists.alioth.debian.org>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/activemq/5.6.0+dfsg-1+deb7u2build0.14.04.1
-------------- next part --------------
Sorry, changesfile not available.


More information about the Trusty-changes mailing list