File: changelog

package info (click to toggle)
commons-httpclient 3.1-12
  • links: PTS, VCS
  • area: main
  • in suites: stretch
  • size: 19,344 kB
  • sloc: java: 30,282; xml: 855; makefile: 17
file content (244 lines) | stat: -rw-r--r-- 8,611 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
 
commons-httpclient (3.1-12) unstable; urgency=high

  * Team upload.

  [ Kumar Appaiah ]
  * debian/control:
    + Remove Kumar Appaiah from uploaders

  [ Emmanuel Bourg ]
  * Add myself to Uploaders.
  * Switch to debhelper level 9
  * debian/control:
    - Use canonical URLs for the Vcs-* fields
    - Improved the package description
    - Removed Michael Koch from the uploaders (Closes: #654007)
  * debian/rules: Improved the clean target

  [ tony mancill ]
  * Remove trailing spaces from package description of
    libcommons-httpclient-java-doc in debian/control. (Closes: #783931)

  [ Markus Koschany ]
  * wrap-and-sort -sa.
  * Declare compliance with Debian Policy 3.9.6.
  * Add CVE-2015-5262.patch.
    Fix CVE-2015-5262 jakarta-commons-httpclient: https calls ignore
    http.socket.timeout during SSL Handshake. (Closes: #798650)

 -- Markus Koschany <apo@debian.org>  Mon, 02 Nov 2015 15:32:33 +0100

commons-httpclient (3.1-11) unstable; urgency=high

  * Team upload.
  * Add CVE-2014-3577.patch. (Closes: #758086)
    It was found that the fix for CVE-2012-6153 was incomplete: the code added
    to check that the server hostname matches the domain name in a subject's
    Common Name (CN) field in X.509 certificates was flawed. A
    man-in-the-middle attacker could use this flaw to spoof an SSL server using
    a specially crafted X.509 certificate. The fix for CVE-2012-6153 was
    intended to address the incomplete patch for CVE-2012-5783. The issue is
    now completely resolved by applying this patch and the
    06_fix_CVE-2012-5783.patch.
  * Change java.source and java.target ant properties to 1.5, otherwise
    commons-httpclient will not compile with this patch.

 -- Markus Koschany <apo@gambaru.de>  Mon, 23 Mar 2015 22:57:54 +0100


commons-httpclient (3.1-10.2) unstable; urgency=low

  * Non-maintainer upload.
  * Fix CVE-2012-5783 (Closes: #692442)
  * Fix CN extraction from DN of X500 principal.
  * Fix wildcard validation on ssl connections

 -- Alberto Fernández Martínez <infjaf@gmail.com>  Thu, 6 Dec 2012 14:28:00 +0100

commons-httpclient (3.1-10.1) unstable; urgency=low

  * Non-maintainer upload.
  * Fix CVE-2012-5783 (Closes: #692442)

 -- Alberto Fernández Martínez <infjaf@gmail.com>  Wed, 5 Dec 2012 17:28:00 +0100

commons-httpclient (3.1-10) unstable; urgency=low

  [ Damien Raude-Morvan ]
  * Remove Arnaud Vandyck from Uploaders
  * d/control: Drop Depends on any JRE as a Java library don't need to
    depends on a runtime (Java Policy)

  [ Torsten Werner ]
  * Switch to source format 3.0.
  * Update Standards-Version: 3.9.1.
  * Remove Barry from Uploaders list.

 -- Torsten Werner <twerner@debian.org>  Tue, 30 Aug 2011 11:47:01 +0200

commons-httpclient (3.1-9) unstable; urgency=low

  * Add myself to Uploaders
  * Use quilt as patch system
    - Build-Depends on quilt
    - Add debian/README.source
    - Use CDBS patchsys-quilt.mk
  * New debian/patches/05_osgi_metadata.diff to include OSGi metadata
    in JAR (Closes: #558182)

 -- Damien Raude-Morvan <drazzib@debian.org>  Sun, 29 Nov 2009 01:06:18 +0100

commons-httpclient (3.1-8) unstable; urgency=low

  [Damien Raude-Morvan]
  * Fix debian/watch: use http://www.apache.org/dist/

  [Onkar Shinde]
  * debian/patches/04_fix_classpath.patch
    - Add appropriate jar files in classpath using manifest attribute.
      (LP: #459251)
  * debian/ant.properties
    - Add properties to set target JVM version 1.4.

 -- Onkar Shinde <onkarshinde@ubuntu.com>  Thu, 05 Nov 2009 09:50:19 +0530

commons-httpclient (3.1-7) unstable; urgency=low

  * Add myself to Uploaders.
  * Revert change from last upload:
    - Don't map version of commons-httpclient explicitly.
    (Closes: #551126, #551214, #551217, #551218, #551221, #551224, #551226,
    #551227, #551231, #551242)

 -- Torsten Werner <twerner@debian.org>  Sat, 17 Oct 2009 19:44:10 +0200

commons-httpclient (3.1-6) unstable; urgency=low

  * Don't map version of commons-httpclient explicitly.
  * Added myself to Uploaders.
  * Updated Standards-Version to 3.8.3.

 -- Michael Koch <konqueror@gmx.de>  Mon, 05 Oct 2009 12:23:44 +0200

commons-httpclient (3.1-5) unstable; urgency=low

  * Upload to unstable.

 -- Torsten Werner <twerner@debian.org>  Sun, 09 Aug 2009 10:43:36 +0200

commons-httpclient (3.1-4) experimental; urgency=low

  * Add the Maven POM to the package
  * Add a Build-Depends-Indep dependency on maven-repo-helper
  * Use mh_installpom and mh_installjar to install the POM and the jar to the
    Maven repository

 -- Ludovic Claude <ludovic.claude@laposte.net>  Thu, 09 Jul 2009 17:40:18 +0100

commons-httpclient (3.1-3) unstable; urgency=low

  * Convert to default-jdk/jre (Closes: #508949)
  * Bump Standards-Version to 3.8.1

 -- Varun Hiremath <varun@debian.org>  Thu, 07 May 2009 19:27:19 -0400

commons-httpclient (3.1-2) unstable; urgency=low

  * debian/watch:
    + Update to reflect new upstream mirror structure.
      (Closes: #459995)
  * debian/control:
    + Update my e-mail address to akumar@debian.org.
    + Standards Version is now 3.7.3.
    + Use Vcs-Svn and Vcs-Browser in place of XS-Vcs-*.
    + Depend on ant 1.6.5 and above, instead of 1.6.5-1.
  
 -- Kumar Appaiah <akumar@debian.org>  Fri, 18 Apr 2008 13:25:36 +0530

commons-httpclient (3.1-1) unstable; urgency=low

  * New upstream release.
  * Acknowledge NMU. Thanks to Michael Meskes for the upload.
  * debian/ant.properties:
    + Correct Java directory spelling.
  * debian/control:
    + Add Varun Hiremath and Kumar Appaiah to Uploaders.
    + Add XS-Vcs-Browser and XS-Vcs-Browser.
    + Move section of libcommons-httpclient-doc to doc.
    + Add Homepage Field.
  * debian/patches:
    + Remove 00b_build_xml_dont_copy_lib_dir.patch
    + Update patches/01_build_xml_version_jar.patch and
      patches/02_upstream_disable_examples_classes.patch for the new
      upstream version
  * debian/rules:
    + Remove dependence on package version; use DEB_UPSTREAM_VERSION for version
  * debian/libcommons-httpclient-java.install:
    + Not needed, since functionality written in debian.rules.
  * debian/watch
    + Update watch file to new upstream tarball directory.
  * debian/libcommons-httpclient-java.link:
    + Not needed, since functionality written in debian.rules.
  * Upstream has fixed some RFC violations. (Closes: #329245)
  * Remove .cvsignore files.

 -- Kumar Appaiah <akumar@ee.iitm.ac.in>  Thu, 20 Sep 2007 20:14:02 +0530

commons-httpclient (3.0.1-0.1) unstable; urgency=low

  * Non-maintainer upload.
  * Bump debhelper Build-Depends to (>= 4.1.0) as required by cdbs' 
    debhelper.mk
  * Put the coppyright holders in debian/copyright
  * Include the jar file in the package. (Closes: #381354)
  * Only include one copy of the docs.
    done by James Westby <jw+debian@jameswestby.net>  Mon, 14 Aug 2006 02:29:47 +0100

 -- Michael Meskes <meskes@debian.org>  Fri, 15 Sep 2006 20:07:43 +0200

commons-httpclient (3.0.1-0) unstable; urgency=low

  * New upstream (closes: #340307)
  * Build with cdbs and java-gcj-compat-dev
  * Updated to Standards-Version 3.7.2; split build-dep and
    build-dep-indep.
  * Added libcommons-codec-java to build-dep.
  * Using simple-patchsys and no more dpatch

 -- Arnaud Vandyck <avdyk@debian.org>  Mon, 31 Jul 2006 17:11:32 +0200

commons-httpclient (2.0.2-2) unstable; urgency=low

  * Provide non-version-specific symlink "commons-httpclient.jar" to
    commons-httpclient-2.0.2.jar per Debian Java Policy Section 2.4
    (Closes: 340308)
  * Added additional doc-base entry to point to main section of
    Jakarta Commons HttpClient documentation in addition to the 
    API Javadoc
  * Maintainer email address updated for Barry Hawkins
  * Upload sponsored by Petter Reinholdtsen

 -- Barry Hawkins <barry@alltc.com>  Fri, 25 Nov 2005 13:12:23 -0500

commons-httpclient (2.0.2-1) unstable; urgency=low

  * New upstream release and moved to main (Closes: #301789)
  * Removed dependency upon non-free compilers (Closes: 306744)
  * Updated version of Apache License to 2.0
  * Package updated to reflect maintainership under Debian Java 
    Maintainers
  * Upload sponsored by Petter Reinholdtsen

 -- Barry Hawkins <barry@bytemason.org>  Tue, 13 Sep 2005 23:14:01 -0400

commons-httpclient (2.0a1+20020904-1) unstable; urgency=low

  * New upstream release, with actual source (closes: #160262)

 -- Stephen Peters <portnoy@portnoy.org>  Wed,  4 Sep 2002 22:18:18 -0400

commons-httpclient (2.0a1-1) unstable; urgency=low

  * Initial Release.

 -- Stephen Peters <portnoy@portnoy.org>  Wed,  1 May 2002 13:31:44 -0400