Ubuntu
libxml-security-java package

Change logs for libxml-security-java source package in Focal

Focal (20.04)
Change log

libxml-security-java (2.0.10-2+deb11u1build0.20.04.1) focal-security; urgency=medium

  * fake sync from Debian

libxml-security-java (2.0.10-2+deb11u1) bullseye-security; urgency=high

  * Team upload.
  * Fix CVE-2021-40690:
    Apache Santuario - XML Security for Java is vulnerable to an issue where
    the "secureValidation" property is not passed correctly when creating a
    KeyInfo from a KeyInfoReference element. This allows an attacker to abuse
    an XPath Transform to extract any local .xml files in a RetrievalMethod
    element.

 -- Fabian Toepfer <email address hidden>  Tue, 19 Jul 2022 01:06:52 +0200

libxml-security-java (2.0.10-2) unstable; urgency=medium

  * Team upload.

  [ Jochen Sprickerhof ]
  * Add patch for old API used by libitext5-java (Closes: #906375)

  [ Emmanuel Bourg ]
  * Standards-Version updated to 4.2.1

 -- Emmanuel Bourg <email address hidden>  Mon, 24 Sep 2018 12:06:50 +0200

Ubuntulibxml-security-java package

Change logs for libxml-security-java source package in Focal

Ubuntu
libxml-security-java package