-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 3.0 (quilt) Source: activemq Binary: libactivemq-java, libactivemq-java-doc, activemq Architecture: all Version: 5.6.0+dfsg-1+deb7u1 Maintainer: Debian Java Maintainers <[email protected]> Uploaders: Damien Raude-Morvan <[email protected]> Homepage: http://activemq.apache.org Standards-Version: 3.9.3 Vcs-Browser: http://git.debian.org/?p=pkg-java/activemq.git Vcs-Git: git://git.debian.org/pkg-java/activemq.git Build-Depends: cdbs, debhelper (>= 7), default-jdk, maven-debian-helper (>= 1.4) Build-Depends-Indep: ant, default-jdk-doc, glassfish-javaee (>= 2.1.1-b31g), libactivemq-activeio-java, libactivemq-protobuf-java, libaopalliance-java, libaxis-java, libaxis-java-doc, libbuild-helper-maven-plugin-java, libcommons-beanutils-java, libcommons-beanutils-java-doc, libcommons-collections3-java, libcommons-daemon-java, libcommons-httpclient-java, libcommons-io-java, libcommons-logging-java, libcommons-logging-java-doc, libcommons-net2-java, libcommons-net2-java-doc, libcommons-pool-java, libcommons-pool-java-doc, libgentlyweb-utils-java, libgentlyweb-utils-java-doc, libjasypt-java, libjasypt-java-doc, libjavacc-maven-plugin-java, libjdom1-java (>= 1.0), libjdom1-java-doc, libjettison-java, libjosql-java, libjosql-java-doc, liblog4j1.2-java, libmaven-antrun-plugin-java, libmaven-bundle-plugin-java, libmaven-enforcer-plugin-java, libmaven-install-plugin-java, libmaven-javadoc-plugin-java, libmaven-shade-plugin-java, libmaven-war-plugin-java, libslf4j-java, libspring-context-java (>= 3.0.5.RELEASE-3), libspring-jms-java, libspring-test-java, libspring-web-java, libspring-web-servlet-java, libstax-java, libxalan2-java, libxbean-java (>= 3.7), libxbean-java-doc, libxpp3-java, libxstream-java (>= 1.4) Package-List: activemq deb java optional libactivemq-java deb java optional libactivemq-java-doc deb doc optional Checksums-Sha1: 9dbc1e3b7d01cc54002401c753c9c9502512c6ac 3187408 activemq_5.6.0+dfsg.orig.tar.gz d6dcaf964db30d725948ca104d33d4db963f42b8 22896 activemq_5.6.0+dfsg-1+deb7u1.debian.tar.gz Checksums-Sha256: f6589dae9e2cff7efe144c5bda99f18c1fc2f220b121a3ac9ef92174cb0899a3 3187408 activemq_5.6.0+dfsg.orig.tar.gz 3882dae19f7fe96bec13a7e379696d495e702ddf21c00b219a44508b7d374a4e 22896 activemq_5.6.0+dfsg-1+deb7u1.debian.tar.gz Files: 54227cd13c5f73e8ec7e62a0d13d3763 3187408 activemq_5.6.0+dfsg.orig.tar.gz 85cc41a99e7bffec1414627fa93f939c 22896 activemq_5.6.0+dfsg-1+deb7u1.debian.tar.gz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQIcBAEBAgAGBQJVxRfeAAoJEPUTxBnkudCsqq4P/RK0hNBIPyZWlYJvT9tFOwBR i4rRsehsYRDQqQoHnfYA/bFo25bkiyaOTeuBqszKtoZ44qxilksfDOMgxld3ry8B GCLVFKHyOtETB9qGQmQxxM+cdyDOIkiLtOODFPNft/8BmFfVu9ZB4eciyiA4vnZa nCM4MXUlF0rmejad90hewVEFzFvHR5l9yE21yecQ62XvDzOkjcx84SM9jnREmskv m8xLeAu2Z6UBVbJFEP7oWN2+fJ7SDl20iULxKRo0pMlgP5eHzIpGvhkSrGCB+Y3o X83ZybShTFp5xmUixYhkDELNNAll2hBptyCuJpXdz9ZFO5e/cxteURwwC1ontGrs qfi+YJhImuA4q5y3nuH8cxLaNB61pTsipiA3H1v/yOpIsWcKv1EUK1G0uqWTORCe TytU+GptdPXajX9VcwjCsx36mS4otBNiTxy+cOoNWQmSHm73Z3/J4MGlRU+t3vcw X7JGZsvROOqZDFtWHWx2zzLobwW1WQAUhWu0/Zi2I5XKnYIbVxdDBSdkEKPPF7bf d69EAjXHAppN3xfAoyyeJNRe0tiY4SLvh9gEbuO5nG4rvH9ve39bLWmHeQAipBmm ZN7LH46b8lQUMqNNG8jDbvvDkBkmAOjU4UOxzQcTODo1vbm7OAVhb1ubW7PjH3co 39DhIvuTh7KDRBCVJe4s =xNLE -----END PGP SIGNATURE----- Changes: activemq (5.6.0+dfsg-1+deb7u1) wheezy-security; urgency=high * Team upload. * Fixed security issues (Closes: #777196, #792857) - CVE-2014-3612: JAAS LDAPLoginModule allows empty password authentication - CVE-2014-3600: XML External Entity expansion when evaluating XPath expressions - CVE-2014-3576: DoS via unauthenticated remote shutdown command - Disable JMX by default (Closes: #769887) -- Emmanuel Bourg <[email protected]> Fri, 07 Aug 2015 22:16:39 +0200
