Ubuntu
libcommons-net-java package

Change logs for libcommons-net-java source package in Bionic

Bionic (18.04)
Change log

libcommons-net-java (3.6-1+deb11u1build0.18.04.1) bionic-security; urgency=medium

  * fake sync from Debian

libcommons-net-java (3.6-1+deb11u1) bullseye-security; urgency=high

  * Non-maintainer upload by the LTS team.
  * Fix CVE-2021-37533:
    ZeddYu Lu discovered that the FTP client of Apache Commons Net, a Java
    client API for basic Internet protocols, trusts the host from PASV response
    by default. A malicious server can redirect the Commons Net code to use a
    different host, but the user has to connect to the malicious server in the
    first place. This may lead to leakage of information about services running
    on the private network of the client. (Closes: #1025910)

 -- George-Andrei Iosif <email address hidden>  Thu, 20 Apr 2023 14:45:05 +0300

libcommons-net-java (3.6-1) unstable; urgency=medium

  * New upstream release
  * Switch to debhelper level 10

 -- Emmanuel Bourg <email address hidden>  Tue, 20 Jun 2017 10:08:25 +0200

Ubuntulibcommons-net-java package

Change logs for libcommons-net-java source package in Bionic

Ubuntu
libcommons-net-java package