Format: 1.8
Date: Wed, 23 Mar 2016 07:32:16 -0400
Source: activemq
Binary: libactivemq-java libactivemq-java-doc activemq
Architecture: source
Version: 5.6.0+dfsg-1+deb7u2build0.14.04.1
Distribution: trusty-security
Urgency: high
Maintainer: Debian Java Maintainers <pkg-java-maintainers@lists.alioth.debian.org>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description: 
 activemq   - Java message broker - server
 libactivemq-java - Java message broker core libraries
 libactivemq-java-doc - Java message broker core libraries - documentation
Changes: 
 activemq (5.6.0+dfsg-1+deb7u2build0.14.04.1) trusty-security; urgency=medium
 .
   * fake sync from Debian
 .
 activemq (5.6.0+dfsg-1+deb7u2) wheezy-security; urgency=high
 .
   * Team upload.
   * Fix CVE-2015-5254:
     Apache ActiveMQ 5.x before 5.13.0 does not restrict the classes that can be
     serialized in the broker, which allows remote attackers to execute
     arbitrary code via a crafted serialized Java Message Service (JMS)
     ObjectMessage object.
Checksums-Sha1: 
 66f062c6e2afc0d38b8c9f143a77c25ec1298c44 3394 activemq_5.6.0+dfsg-1+deb7u2build0.14.04.1.dsc
 8e12f987b8925b8220f2b86875ff124234b72fac 42978 activemq_5.6.0+dfsg-1+deb7u2build0.14.04.1.debian.tar.gz
Checksums-Sha256: 
 ed4369763f3d962d5f02a8dc267489531bc300d02c618fbb1964d274d7b3be5e 3394 activemq_5.6.0+dfsg-1+deb7u2build0.14.04.1.dsc
 2dcfb0d3e33623d1b6b9810863ccc09bf665d59fc3008f38351a7e74586965ea 42978 activemq_5.6.0+dfsg-1+deb7u2build0.14.04.1.debian.tar.gz
Files: 
 052088917f8eeb68d931f3d2dfc9e020 3394 java optional activemq_5.6.0+dfsg-1+deb7u2build0.14.04.1.dsc
 a01b631cb0ef66a754b689aa42160607 42978 java optional activemq_5.6.0+dfsg-1+deb7u2build0.14.04.1.debian.tar.gz