From 96c58388ede2a7ad80853ec6eeaedb29718ec02069f93d2e038cfc5071e29b81 Mon Sep 17 00:00:00 2001 From: Fridrich Strba Date: Mon, 21 Aug 2023 23:35:11 +0000 Subject: [PATCH] OBS-URL: https://build.opensuse.org/package/show/Java:packages/apache-ivy?expand=0&rev=70 --- apache-ivy.changes | 12 ++++++++++++ 1 file changed, 12 insertions(+) diff --git a/apache-ivy.changes b/apache-ivy.changes index c513e18..b5c5838 100644 --- a/apache-ivy.changes +++ b/apache-ivy.changes @@ -1,3 +1,15 @@ +------------------------------------------------------------------- +Mon Aug 21 23:30:17 UTC 2023 - Fridrich Strba + +- Upgrade to version 2.5.2 (bsc#1214422) + * Fixes: + + ivy:retrieve could fail because of a 'NullPointerException' + (jira:IVY-1641[]) + + reading POMs may loose dependencies when multiple Maven + dependencies only differ in 'classifier' (jira:IVY-1642[]) + + CVE-2022-46751: Apache Ivy Is Vulnerable to XML External + Entity Injections + ------------------------------------------------------------------- Mon Nov 7 08:10:54 UTC 2022 - David Anes