Public bug reported:
Please sync commons-configuration2 2.7-1 (universe) from Debian unstable
(main)
It fixs a security bug CVE-2020-1953.
Changelog entries since current focal version 2.2-1:
commons-configuration2 (2.7-1) unstable; urgency=medium
* Team upload
* Update debian/watch to repack as .xz and use https URL
* New upstream version 2.7, CVE-2020-1953 (Closes: #954713)
* Specify debhelper compat 12 via debhelper-compat dependency
* Add build-dep on libcommons-text-java
* Remove get-orig-source target from debian/rules
* Set source and target in maven.properites to Java 8
* Specify debhelper compat 12 via debhelper-compat dependency
* Add build-dep on libcommons-text-java
* Remove get-orig-source target from debian/rules
* Set source and target in maven.properites to Java 8
* Set "Rules-Requires-Root: no" in debian/control
* Bump Standards-Version to 4.5.0
* Freshen years in debian/copyright
* Update Vcs URLs to point to Salsa
* Ship NOTICE.txt with binary package
-- tony mancill <tmanc...@debian.org> Sat, 28 Mar 2020 21:32:41 -0700
** Affects: commons-configuration2 (Ubuntu)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1869654
Title:
Sync commons-configuration2 2.7-1 (universe) from Debian unstable
(main)
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/commons-configuration2/+bug/1869654/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
