Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]
Groups > linux.debian.maint.java > #9984
| From | Felix Natter <fnatter@gmx.net> |
|---|---|
| Newsgroups | linux.debian.maint.java |
| Subject | Re: Security issue in groovy<2.5.0 |
| Date | 2017-09-07 20:50 +0200 |
| Message-ID | <una2e-3SJ-17@gated-at.bofh.it> (permalink) |
| References | <ufxyG-7o-17@gated-at.bofh.it> <uiLYu-3mY-11@gated-at.bofh.it> |
| Organization | linux.* mail to news gateway |
hello Debian-java, Emmanuel Bourg <ebourg@apache.org> writes: > Le 17/08/2017 à 20:18, Felix Natter a écrit : > >> So the question is: Can I package freeplane without the 'securegroovy' >> library, expecting that groovy 2.5 will be released soon, and will >> shortly after be packaged for Debian? > > Yes ignore securegroovy, we have to directly patch or upgrade our groovy > package in this case. I have backported the single GROOVY-8163 [1] [2] commit (plus a missing import), and pushed the result here: https://anonscm.debian.org/cgit/pkg-java/groovy.git [1] https://issues.apache.org/jira/browse/GROOVY-8163 [2] https://github.com/apache/groovy/commit/0305a38a0cc8f4190a1486c460ebc6f712ad1a07 I have tested this extensively with freeplane. Could someone please consider sponsoring this? I assumed a QA upload because lintian complains about missing Uploader: and because of Paul Wise's advice. Shall I revert to team upload? Thanks and Best Regards, -- Felix Natter debian/rules!
Back to linux.debian.maint.java | Previous | Next — Previous in thread | Next in thread | Find similar | Unroll thread
Security issue in groovy<2.5.0 Felix Natter <fnatter@gmx.net> - 2017-08-17 20:20 +0200
Re: Security issue in groovy<2.5.0 Felix Natter <fnatter@gmx.net> - 2017-08-26 18:20 +0200
Re: Security issue in groovy<2.5.0 Emmanuel Bourg <ebourg@apache.org> - 2017-08-26 18:50 +0200
Re: Security issue in groovy<2.5.0 Felix Natter <fnatter@gmx.net> - 2017-08-26 20:00 +0200
Re: Security issue in groovy<2.5.0 Felix Natter <fnatter@gmx.net> - 2017-08-26 20:40 +0200
Re: Security issue in groovy<2.5.0 Thorsten Glaser <t.glaser@tarent.de> - 2017-08-27 00:50 +0200
Re: Security issue in groovy<2.5.0 Felix Natter <fnatter@gmx.net> - 2017-08-28 19:10 +0200
Re: Security issue in groovy<2.5.0 Felix Natter <fnatter@gmx.net> - 2017-09-02 16:40 +0200
Re: Security issue in groovy<2.5.0 殷啟聰 | Kai-Chung Yan <seamlikok@gmail.com> - 2017-09-04 08:10 +0200
Re: Security issue in groovy<2.5.0 Felix Natter <fnatter@gmx.net> - 2017-09-04 21:40 +0200
Re: Security issue in groovy<2.5.0 Miguel Landaeta <nomadium@debian.org> - 2017-09-05 22:00 +0200
Re: Security issue in groovy<2.5.0 殷啟聰 | Kai-Chung Yan <seamlikok@gmail.com> - 2017-09-06 18:10 +0200
Re: Security issue in groovy<2.5.0 Paul Wise <pabs@debian.org> - 2017-09-07 05:00 +0200
Re: Security issue in groovy<2.5.0 Emmanuel Bourg <ebourg@apache.org> - 2017-08-26 18:20 +0200
Re: Security issue in groovy<2.5.0 Felix Natter <fnatter@gmx.net> - 2017-09-07 20:50 +0200
Re: Security issue in groovy<2.5.0 Emmanuel Bourg <ebourg@apache.org> - 2017-09-07 21:10 +0200
csiph-web