Publishing details

Removed from disk on 2017-11-29.
Removal requested on 2017-11-28.
Superseded on 2017-11-27 by jackson-databind - 2.8.6-1+deb9u2build0.17.10.1
Published on 2017-11-03
Copied from ubuntu artful in Private PPA for Ubuntu Security Team by Ubuntu Archive Robot

Changelog

jackson-databind (2.8.6-1+deb9u1build0.17.10.1) artful-security; urgency=medium

  * fake sync from Debian

jackson-databind (2.8.6-1+deb9u1) stretch-security; urgency=high

  * Team upload.
  * Fix CVE-2017-7525: Deserialization vulnerability via readValue
    method of ObjectMapper. (Closes: #870848)

 -- Seth Arnold <email address hidden>  Tue, 31 Oct 2017 20:32:56 -0700

Available diffs

diff from 2.8.6-1 (in Debian) to 2.8.6-1+deb9u1build0.17.10.1 (2.3 KiB)

Builds

amd64

Package files

jackson-databind_2.8.6-1+deb9u1build0.17.10.1.debian.tar.xz (5.7 KiB)
jackson-databind_2.8.6-1+deb9u1build0.17.10.1.dsc (2.2 KiB)
jackson-databind_2.8.6.orig.tar.xz (721.5 KiB)
libjackson2-databind-java-doc_2.8.6-1+deb9u1build0.17.10.1_all.deb (1.1 MiB)
libjackson2-databind-java_2.8.6-1+deb9u1build0.17.10.1_all.deb (1.1 MiB)