[ubuntu/yakkety-proposed] jsch 0.1.54-1 (Accepted)
Logan Rosen
loganrosen at gmail.com
Mon Sep 5 06:54:43 UTC 2016
jsch (0.1.54-1) unstable; urgency=medium
* Team upload.
* New upstream release
- Fixes CVE-2016-5725: Malicious SFTP servers may force a client-side
relative path traversal for recursive sftp-get allowing the server
to write files outside the clients download basedir with effective
permissions of the jsch sftp client process.
- Updated the OSGi metadata
* Build with the DH sequencer instead of CDBS
* Standards-Version updated to 3.9.8
* Use secure Vcs-* URLs
Date: 2016-09-02 10:19:43.911123+00:00
Changed-By: Debian Java Maintainers <pkg-java-maintainers at lists.alioth.debian.org>
Signed-By: Logan Rosen <loganrosen at gmail.com>
https://launchpad.net/ubuntu/+source/jsch/0.1.54-1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Yakkety-changes
mailing list