[SCM] jenkins packaging branch, master, updated. debian/1.409.3+dfsg-1-1-g62a4d53
James Page
james.page at canonical.com
Fri Jan 13 20:58:07 UTC 2012
The following commit has been merged in the master branch:
commit 62a4d53a03478681eac1d1a571f406691bee2b35
Author: James Page <james.page at canonical.com>
Date: Fri Jan 13 21:57:54 2012 +0100
Rebuild with updated deps to fix Hash DoS vulnerability
diff --git a/debian/changelog b/debian/changelog
index ce4adab..2e055c3 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,12 @@
+jenkins (1.409.3+dfsg-2) unstable; urgency=low
+
+ * http://www.cloudbees.com/jenkins-advisory/jenkins-security-advisory-2012-01-10.cb
+ - Rebuild to pickup new versions of jenkins-winstone (>= 0.9.10-jenkins-31)
+ and jenkins-executable-war (>= 1.25) to fix Hash DoS vulnerability in
+ jenkins when running standalone.
+
+ -- James Page <james.page at ubuntu.com> Fri, 13 Jan 2012 20:51:01 +0000
+
jenkins (1.409.3+dfsg-1) unstable; urgency=low
* Initial Debian release (Closes: #561963):
diff --git a/debian/control b/debian/control
index 04b2a8b..255b2e9 100644
--- a/debian/control
+++ b/debian/control
@@ -17,7 +17,7 @@ Build-Depends-Indep:
glassfish-mail,
groovy,
jenkins-crypto-util,
- jenkins-executable-war,
+ jenkins-executable-war (>= 1.25),
jenkins-memory-monitor,
jenkins-task-reactor,
jenkins-test-annotations,
@@ -50,7 +50,7 @@ Build-Depends-Indep:
libjenkins-htmlunit-java,
libjenkins-json-java (>= 2.1-rev7),
libjenkins-trilead-ssh2-java,
- libjenkins-winstone-java (>= 0.9.10-jenkins-29),
+ libjenkins-winstone-java (>= 0.9.10-jenkins-31),
libjenkins-xstream-java,
libjetty-java,
libjffi-java,
--
jenkins packaging
More information about the pkg-java-commits
mailing list