OBS-URL: https://build.opensuse.org/package/show/Java:packages/apache-ivy?expand=0&rev=70

2023-08-21 23:35:11 +00:00 · 2023-08-21 23:35:11 +00:00 · 96c58388ed
commit 96c58388ed
parent 801551d59b
1 changed files with 12 additions and 0 deletions
--- a/apache-ivy.changes
+++ b/apache-ivy.changes
@ -1,3 +1,15 @@
+-------------------------------------------------------------------
+Mon Aug 21 23:30:17 UTC 2023 - Fridrich Strba <fstrba@suse.com>
+
+- Upgrade to version 2.5.2 (bsc#1214422)
+  * Fixes:
+    + ivy:retrieve could fail because of a 'NullPointerException' 
+      (jira:IVY-1641[])
+    + reading POMs may loose dependencies when multiple Maven
+      dependencies only differ in 'classifier' (jira:IVY-1642[])
+    + CVE-2022-46751: Apache Ivy Is Vulnerable to XML External
+      Entity Injections
+
 -------------------------------------------------------------------
 Mon Nov  7 08:10:54 UTC 2022 - David Anes <david.anes@suse.com>