axis 1.4-29 source package in Ubuntu
Changelog
axis (1.4-29) unstable; urgency=medium
* Team upload.
* Fix CVE-2023-40743:
When integrating Apache Axis 1.x in an application, it may not have been
obvious that looking up a service through "ServiceFactory.getService"
allows potentially dangerous lookup mechanisms such as LDAP. When passing
untrusted input to this API method, this could expose the application to
DoS, SSRF and even attacks leading to RCE. (Closes: #1051288)
* Switch to debhelper-compat = 13.
* Declare compliance with Debian Policy 4.6.2.
-- Markus Koschany <email address hidden> Tue, 17 Oct 2023 01:00:51 +0200
Upload details
- Uploaded by:
- Debian Java Maintainers
- Uploaded to:
- Sid
- Original maintainer:
- Debian Java Maintainers
- Architectures:
- all
- Section:
- libs
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Oracular | release | universe | java | |
| Noble | release | universe | java |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| axis_1.4-29.dsc | 2.3 KiB | 8ef6c38748a0e1e561741440f4b4b3f0b30c58fe17f4cf1c494894cd0ed1738f |
| axis_1.4.orig.tar.gz | 5.1 MiB | 9c6fd085bf83c76162c186ef755b05bb3cca68ab5ff66d47dcf69efda072ab74 |
| axis_1.4-29.debian.tar.xz | 13.9 KiB | 30d44358d3362671355a872da5fa2648fc837d5f3114a8081487b474ccecd812 |
Available diffs
- diff from 1.4-28 to 1.4-29 (1.7 KiB)
No changes file available.
Binary packages built by this source
- libaxis-java: No summary available for libaxis-java in ubuntu oracular.
No description available for libaxis-java in ubuntu oracular.
- libaxis-java-doc: No summary available for libaxis-java-doc in ubuntu oracular.
No description available for libaxis-java-doc in ubuntu oracular.
