Change log for httpcomponents-client package in Ubuntu

httpcomponents-client (4.5.14-1) unstable; urgency=medium

  * New upstream release
    - Refreshed the patches
  * Track and download the new releases from GitHub
  * Standards-Version updated to 4.6.1

 -- Emmanuel Bourg <email address hidden>  Tue, 06 Dec 2022 12:54:20 +0100

Available diffs

• diff from 4.5.13-3 to 4.5.14-1 (48.3 KiB)

httpcomponents-client (4.5.13-3) unstable; urgency=medium

  * Track only the 4.x releases
  * Standards-Version updated to 4.6.0.1

 -- Emmanuel Bourg <email address hidden>  Fri, 17 Sep 2021 10:25:48 +0200

Available diffs

• diff from 4.5.13-2 to 4.5.13-3 (617 bytes)

httpcomponents-client (4.5.13-2) unstable; urgency=medium

  * Team upload.
  * Ignore the TestSSLSocketFactory.testTLSOnly test
    because it deliberately sets the protocol version to TLSv1 which is
    disabled by default via the java.security policy in OpenJDK 11. TLSv1 is
    considered to be no longer safe and rejecting the handshake is actually the
    correct behavior. (Closes: #986528)

 -- Markus Koschany <email address hidden>  Thu, 15 Apr 2021 00:31:08 +0200

Available diffs

• diff from 4.5.13-1 to 4.5.13-2 (1016 bytes)

httpcomponents-client (4.5.13-1) unstable; urgency=medium

  * Team upload.
  * New upstream version 4.5.13.
    - Fix CVE-2020-13956:
      Incorrect handling of malformed authority component by
      URIUtils#extractHost.
  * Switch to debhelper-compat = 13.

 -- Markus Koschany <email address hidden>  Fri, 09 Oct 2020 22:45:42 +0200

Available diffs

• diff from 4.5.11-1 to 4.5.13-1 (23.9 KiB)

httpcomponents-client (4.5.11-1) unstable; urgency=medium

  * Team upload.

  [ Andrius Merkys ]
  * Compiling sources depending on libspymemcached-java.

  [ Emmanuel Bourg ]
  * New upstream release
    - Refreshed the patches
  * Standards-Version updated to 4.5.0

 -- Emmanuel Bourg <email address hidden>  Sat, 25 Jan 2020 23:44:33 +0100

Available diffs

• diff from 4.5.10-2 to 4.5.11-1 (23.0 KiB)

httpcomponents-client (4.5.10-2) unstable; urgency=medium

  * Team upload.
  * Enabling tests during build.
  * Building httpclient-cache and httpclient-osgi artifacts (Closes: #942035).

 -- Andrius Merkys <email address hidden>  Thu, 10 Oct 2019 01:57:43 -0400

Available diffs

• diff from 4.5.9-1 to 4.5.10-2 (70.1 KiB)

httpcomponents-client (4.5.9-1) unstable; urgency=medium

  * Team upload.
  * New upstream release

 -- Emmanuel Bourg <email address hidden>  Sun, 07 Jul 2019 09:34:09 +0200

Available diffs

• diff from 4.5.7-1 to 4.5.9-1 (31.0 KiB)

httpcomponents-client (4.5.7-1) unstable; urgency=medium

  * Team upload.
  * New upstream release
    - Refreshed the patches

 -- Emmanuel Bourg <email address hidden>  Mon, 28 Jan 2019 22:48:39 +0100

Available diffs

• diff from 4.5.6-1ubuntu1 (in Ubuntu) to 4.5.7-1 (38.3 KiB)

httpcomponents-client (4.5.6-1ubuntu1) cosmic; urgency=medium

  * support-jre8.diff: Fix calling bb.flip.

 -- Timo Aaltonen <email address hidden>  Tue, 28 Aug 2018 16:00:44 +0300

Available diffs

• diff from 4.5.5-1 (in Debian) to 4.5.6-1ubuntu1 (62.3 KiB)
• diff from 4.5.6-1 (in Debian) to 4.5.6-1ubuntu1 (694 bytes)

httpcomponents-client (4.3.3-1ubuntu0.1) trusty-security; urgency=medium

  * SECURITY UPDATE: It was found that the fix for CVE-2012-5783
    and CVE-2012-6153 was incomplete. The code added to check that
    the server hostname matches the domain name in the subject's CN
    field was flawed. This can be exploited by a Man-in-the-middle
    (MITM) attack where the attacker can spoof a valid certificate
    using a specially crafted subject.
    - debian/patches/CVE-2014-3577.patch: fix in AbstractVerifier.java
    - CVE-2014-3577

 -- Eduardo Barretto <email address hidden>  Fri, 10 Aug 2018 17:06:26 -0300

Available diffs

• diff from 4.3.3-1 (in Debian) to 4.3.3-1ubuntu0.1 (3.3 KiB)

httpcomponents-client (4.5.6-1) unstable; urgency=medium

  * Team upload.
  * New upstream release
    - Refreshed the patches
  * Standards-Version updated to 4.2.0
  * Use salsa.debian.org Vcs-* URLs
  * Use a secure URL in debian/watch

 -- Emmanuel Bourg <email address hidden>  Mon, 06 Aug 2018 15:12:53 +0200

httpcomponents-client (4.5.5-1) unstable; urgency=medium

  * Team upload.
  * New upstream release
  * Removed Damien Raude-Morvan from the uploaders (Closes: #889356)
  * Switch to debhelper level 11

 -- Emmanuel Bourg <email address hidden>  Tue, 13 Feb 2018 17:26:39 +0100

Available diffs

• diff from 4.5.4-1 to 4.5.5-1 (44.8 KiB)

httpcomponents-client (4.5.4-1) unstable; urgency=medium

  * Team upload.

  [ Miguel Landaeta ]
  * Remove myself from uploaders list. (Closes: #871862)
  * Update copyright info.

  [ Emmanuel Bourg ]
  * New upstream release
  * Added the Class-Path attribute in the manifest of httpclient.jar
    (Closes: #883810)
  * Standards-Version updated to 4.1.3

 -- Emmanuel Bourg <email address hidden>  Fri, 12 Jan 2018 09:57:35 +0100

Available diffs

• diff from 4.5.3-1 to 4.5.4-1 (52.1 KiB)

httpcomponents-client (4.5.3-1) unstable; urgency=medium

  * Team upload.
  * New upstream release
    - Removed httpcore-ThreadSafe.patch (fixed upstream)
  * Build with the DH sequencer instead of CDBS
  * Switch to debhelper level 10

 -- Emmanuel Bourg <email address hidden>  Mon, 19 Jun 2017 16:32:56 +0200

Available diffs

• diff from 4.5.2-2 to 4.5.3-1 (100.2 KiB)

httpcomponents-client (4.5.2-2) unstable; urgency=medium

  * Team upload.
  * Add httpcore-ThreadSafe.patch and fix FTBFS due to removal of annotation
    classes in libhttpcore-java.
    Thanks to Daniel Schepler for the report. (Closes: #828206)
  * Declare compliance with Debian Policy 3.9.8.

 -- Markus Koschany <email address hidden>  Thu, 14 Jul 2016 22:57:35 +0200

Available diffs

• diff from 4.5.2-1 to 4.5.2-2 (35.2 KiB)

httpcomponents-client (4.5.2-1) unstable; urgency=medium

  * New upstream release
  * Use secure Vcs-* URLs
  * Standards-Version updated to 3.9.7 (no changes)

 -- Emmanuel Bourg <email address hidden>  Mon, 21 Mar 2016 09:52:51 +0100

Available diffs

• diff from 4.5.1-1 to 4.5.2-1 (41.4 KiB)

httpcomponents-client (4.5.1-1) unstable; urgency=medium

  * New upstream release
  * Build with maven-debian-helper
  * Set the source encoding to make the build reproducible

 -- Emmanuel Bourg <email address hidden>  Fri, 02 Oct 2015 23:29:46 +0200

Available diffs

• diff from 4.4.1-1 to 4.5.1-1 (56.4 KiB)

httpcomponents-client (4.4.1-1) unstable; urgency=medium

  * New upstream release
    - Refreshed the patches
    - Updated the dependency on libhttpcore-java (>= 4.4.1)
    - Added a debian/orig-tar.sh script to fetch the public-suffix-list.txt
      file from publicsuffix.org and add it to the upstream tarball
  * Standards-Version updated to 3.9.6 (no changes)

 -- Emmanuel Bourg <email address hidden>  Mon, 11 May 2015 15:33:31 +0200

Available diffs

• diff from 4.3.5-2 to 4.4.1-1 (344.1 KiB)

httpcomponents-client (4.3.5-2) unstable; urgency=medium


  * Fix FTBFS due to new artifact version for libmaven-bundle-plugin-java.
    Refresh patch: 01-generate_osgi_metadata.patch.
    (Closes: #761545).
  * Update maintainer email address.

 -- Miguel Landaeta <email address hidden>  Tue, 16 Sep 2014 19:07:48 -0430

Available diffs

• diff from 4.3.4-1 to 4.3.5-2 (4.7 KiB)

httpcomponents-client (4.3.4-1) unstable; urgency=medium


  * New upstream release
    - Refreshed the patches

 -- Emmanuel Bourg <email address hidden>  Mon, 09 Jun 2014 23:52:01 +0200

Available diffs

• diff from 4.3.3-1 to 4.3.4-1 (25.4 KiB)

httpcomponents-client (4.3.3-1) unstable; urgency=medium


  * New upstream release
    - Refreshed the patches
  * Removed the unused build dependency on libmaven-assembly-plugin-java

  [ Jakub Adam ]
  * Fix OSGi metadata
    - prevent org.apache.http.impl.execchain to appear in package imports.

 -- Emmanuel Bourg <email address hidden>  Sat, 08 Mar 2014 11:38:26 +0100

Available diffs

• diff from 4.3.2-1 to 4.3.3-1 (13.1 KiB)

httpcomponents-client (4.3.2-1) unstable; urgency=low


  * New upstream release
    - Refreshed the patches
    - New build dependency on libbuild-helper-maven-plugin-java
  * Removed the unused dependency on libapache-mime4j-java
  * Switch to debhelper level 9
  * Standards-Version updated to 3.9.5 (no changes)

 -- Emmanuel Bourg <email address hidden>  Wed, 29 Jan 2014 18:47:37 +0100

Available diffs

• diff from 4.2.5-2 to 4.3.2-1 (1.6 MiB)

httpcomponents-client (4.2.5-2) unstable; urgency=low


  [ Jakub Adam ]
  * Fix OSGi metadata generation.

  [ Niels Thykier ]
  * Fix problem with the clean target.

 -- Jakub Adam <email address hidden>  Mon, 08 Jul 2013 21:48:32 +0200

Available diffs

• diff from 4.2.5-1 to 4.2.5-2 (1.3 KiB)

httpcomponents-client (4.2.5-1) unstable; urgency=low


  * New upstream release.
  * d/rules: Add get-orig-source target.
  * d/patches/02-700268.patch: Drop, included in upstream release.
  * d/control: Update Homepage field.
  * d/control: Use canonical URL for Vcs-* fields.

 -- Damien Raude-Morvan <email address hidden>  Tue, 07 May 2013 23:58:33 +0200

Available diffs

• diff from 4.1.1-2ubuntu1 (in Ubuntu) to 4.2.5-1 (262.9 KiB)

httpcomponents-client (4.1.1-2ubuntu1) quantal; urgency=low

  * Transition package to default java implementation:
    - d/control: Drop preferred BD on openjdk-6-jdk.
 -- James Page <email address hidden>   Wed, 01 Aug 2012 15:05:14 +0100

Available diffs

• diff from 4.1.1-2 (in Debian) to 4.1.1-2ubuntu1 (679 bytes)

httpcomponents-client (4.1.1-2) unstable; urgency=low


  * Add OSGi metadata to JAR manifest.
  * Add Jakub Adam to Uploaders.
  * Bump Standards-Version to 3.9.3. No changes were required.
  * Updated copyright file format.
  * Add httpcore.jar and httpclient.jar to httpmime.jar Class-Path.

 -- Jakub Adam <email address hidden>  Tue, 27 Mar 2012 21:33:50 +0200

Available diffs

• diff from 4.1.1-1 to 4.1.1-2 (2.2 KiB)

httpcomponents-client (4.1.1-1) unstable; urgency=high
  * New upstream release:    Fixed critical bug causing Proxy-Authorization header to be    sent to the target host when tunneling requests through a proxy    server that requires authentication: CVE-2011-1498. (Closes: #628727).  * New maintainer. (Closes: #628731).  * Bump Standards-Version to 3.9.2. No changes were required.  * Add Build-Depends on libmockito-java.  * Update Vcs-* fields. -- Miguel Landaeta <email address hidden>  Wed, 29 Jun 2011 00:13:18 -0430

httpcomponents-client (4.0.3-2) unstable; urgency=low

  * Upload to unstable
  * Package orphaned
  * Tests disabled, they make the package FTBFS
 -- Ubuntu Archive Auto-Sync <email address hidden>   Fri,  03 Jun 2011 10:23:39 +0000

Available diffs

• diff from 4.0.3-1 to 4.0.3-2 (731 bytes)

httpcomponents-client (4.0.3-1) experimental; urgency=low

  * New upstream version

Available diffs

• diff from 4.0.1-1 to 4.0.3-1 (10.2 KiB)

httpcomponents-client (4.0.1-1) unstable; urgency=low

  * Initial release (Closes: #575327)
 -- David Paleino <email address hidden>   Sun,  03 Oct 2010 22:08:59 +0000