------------------------------------------------------------------- Fri Apr 17 12:04:59 UTC 2020 - Pedro Monreal Gonzalez - Security fix: [bsc#1169760, CVE-2020-10683] * External Entity vulnerability in default SAX parser * Add dom4j-CVE-2020-10683.patch ------------------------------------------------------------------- Fri Jan 25 11:10:16 UTC 2019 - Cédric Bosdonnat - Build STAXEventReader, STAXEventWriter and the data types. [bsc#1123158] * Added patch dom4j-enable-stax-datatypes.patch ------------------------------------------------------------------- Tue Sep 18 10:31:28 UTC 2018 - pmonrealgonzalez@suse.com - Security fix: [bsc#1105443, CVE-2018-1000632] * Version prior to version 2.1.1 contains a CWE-91: XML Injectionvulnerability in Class: Element. Methods: addElement, addAttribute that canresult in an attacker tampering with XML documents through. * Added dom4j-CVE-2018-1000632.patch ------------------------------------------------------------------- Tue Jul 10 12:41:17 UTC 2018 - fstrba@suse.com - Added patch: * dom4j-javadoc.patch + Don't load urls while building javadoc in environment without connectivity ------------------------------------------------------------------- Wed May 16 11:56:27 UTC 2018 - fstrba@suse.com - Modified patch: * dom4j-sourcetarget.patch + Build with source and target 8 to prepare for a possible removal of 1.6 compatibility ------------------------------------------------------------------- Fri Sep 8 05:47:14 UTC 2017 - fstrba@suse.com - Added patch: * dom4j-sourcetarget.patch + Use java source and target level 1.6 in order to allow building with jdk9 ------------------------------------------------------------------- Fri May 19 09:03:12 UTC 2017 - mpluskal@suse.com - Update dependencies ------------------------------------------------------------------- Wed Mar 18 09:46:06 UTC 2015 - tchvatal@suse.com - Fix build with new javapackages-tools ------------------------------------------------------------------- Tue Jul 8 10:43:35 UTC 2014 - tchvatal@suse.com - Do not depend on ant-trax and run spec-cleaner. ------------------------------------------------------------------- Mon Sep 9 11:05:39 UTC 2013 - tchvatal@suse.com - Move from jpackage-utils to javapackage-tools ------------------------------------------------------------------- Wed Aug 28 13:57:11 UTC 2013 - mvyskocil@suse.com - use add_maven_depmap from javapackages-tools - drop repolib part (never built) - drop pointless jarjar - unversioned javadoc ------------------------------------------------------------------- Fri Mar 23 08:50:16 UTC 2012 - cfarrell@suse.com - license update: Apache-1.1 SPDX ------------------------------------------------------------------- Sun Sep 18 17:17:12 UTC 2011 - jengelh@medozas.de - Remove redundant tags/sections from specfile (cf. packaging guidelines) ------------------------------------------------------------------- Wed May 20 11:39:13 CEST 2009 - mvyskocil@suse.cz - 'fixed bnc#501764: removed clover.license from source tarball' ------------------------------------------------------------------- Mon May 18 15:04:56 CEST 2009 - mvyskocil@suse.cz - Removed documentation of ConcurrentReaderHashMap (bnc#504663) * dom4j-1.6.1/docs/clover/org/dom4j/tree/ConcurrentReaderHashMap.html * dom4j-1.6.1/docs/xref/org/dom4j/tree/ConcurrentReaderHashMap.html ------------------------------------------------------------------- Thu May 14 11:06:10 CEST 2009 - mvyskocil@suse.cz - Initial SUSE packaging: * spec script and jarjar build support was taken from jpackage.org 5.0 * Source of dom4j and build.xml comes from Debian unstable, as there don't need proprietary msv from sun (bnc#430592)