libpgjava (42.2.5-1) unstable; urgency=medium * New upstream security release: added server hostname verification for non-default SSL factories in `sslmode=verify-full` (CVE-2018-10936) https://github.com/pgjdbc/pgjdbc/commit/cdeeaca47dc3bc6f727c79a582c9e4123099526e -- Christoph Berg <email address hidden> Mon, 27 Aug 2018 21:20:17 +0200