Changelog
libspring-java (4.1.9-1) unstable; urgency=medium
* Team upload.
* New upstream release
- Fixes CVE-2015-3192: DoS Attack with XML Input (Closes: #796137)
- Refreshed the patches
- Updated the Maven poms
- New binary package for the spring-messaging module
- Switch Spring MVC to Tiles 3 only and drop Tiles 2 support
- Patched Spring MVC to use the older Rome API in Debian
- Depend on libquartz2-java instead of libquartz-java
- New suggested dependency on libyaml-snake-java for libspring-beans-java
- New suggested dependencies on libnetty-java, libprotobuf-java-format-java,
libprotobuf-java, libjackson2-dataformat-xml-java for libspring-web-java
- Ignore the non-free JSONassert dependency
- Depend on libjetty9-extra-java instead of libjetty9-java
-- Emmanuel Bourg <email address hidden> Mon, 30 May 2016 21:14:36 +0200