Format: 1.8
Date: Sat, 06 Apr 2024 21:45:36 +0200
Source: openrefine
Binary: openrefine
Architecture: all
Version: 3.7.8-1
Distribution: sid
Urgency: high
Maintainer: Debian Java Maintainers <pkg-java-maintainers@lists.alioth.debian.org>
Changed-By: Markus Koschany <apo@debian.org>
Description:
 openrefine - powerful tool for working with messy data
Closes: 1064192
Changes:
 openrefine (3.7.8-1) unstable; urgency=high
 .
   * New upstream version 3.7.8
     - Fix CVE-2024-23833: A jdbc attack vulnerability exists in OpenRefine
       where an attacker may construct a JDBC query which may read files on
       the host filesystem. (Closes: #1064192)
       Thanks to Salvatore Bonaccorso for the report.
Checksums-Sha1:
 942a8fb2ca33054e9ccae90a6776bdf1f25f5ab7 2007992 openrefine_3.7.8-1_all.deb
 5d66ff054d20a10f53f5dd3c6eaba40995672f67 18320 openrefine_3.7.8-1_arm64.buildinfo
Checksums-Sha256:
 bbca1321960e46df8bf7000513962953d09f5e4c84c5471c891eecb5a709a13b 2007992 openrefine_3.7.8-1_all.deb
 02aac4d822c4bb72604fc20ee4d67eb9069b73072a769908807d8f4cd83401ee 18320 openrefine_3.7.8-1_arm64.buildinfo
Files:
 af6bfcfa1d672c230671fca8d1e4db3f 2007992 java optional openrefine_3.7.8-1_all.deb
 f101245ac894ba544146f5c0f7c165cb 18320 java optional openrefine_3.7.8-1_arm64.buildinfo