axis (1.4-29) [PTS] [DDPO]

COMMITS: VCS has seen 2 commits since the debian/1.4-29 tag

Git: https://salsa.debian.org/java-team/axis.git
JSON
Enter a full Vcs-* header, supported schemes are: Vcs-Bzr, Vcs-Cvs, Vcs-Darcs, Vcs-Git, Vcs-Hg, Vcs-Mtn, Vcs-Svn.
For Vcs-Git append -b branch to select the branch name; append [subdir] if the debian/ directory is not in the repository root.
The next upload will reset the information from the source package headers.
Branch: master
Path: debian/changelog
Repo size: 892928
Browser: https://salsa.debian.org/java-team/axis
Last scan: 2025-10-13 11:52:03+00
Next scan: 2025-10-21 11:22:00+00

Debian changelog in Git:

axis (1.4-29) unstable; urgency=medium

  * Team upload.
  * Fix CVE-2023-40743:
    When integrating Apache Axis 1.x in an application, it may not have been
    obvious that looking up a service through "ServiceFactory.getService"
    allows potentially dangerous lookup mechanisms such as LDAP. When passing
    untrusted input to this API method, this could expose the application to
    DoS, SSRF and even attacks leading to RCE. (Closes: #1051288)
  * Switch to debhelper-compat = 13.
  * Declare compliance with Debian Policy 4.6.2.

 -- Markus Koschany <apo@debian.org>  Tue, 17 Oct 2023 01:00:51 +0200

This branch is 2 commits ahead of tag debian/1.4-29

Git log:

commit cee428f3a001d86a9613f2447d6f5c266294c7dc
Merge: 6867c25 704b20a
Author: Alexandre Detiste <alexandre.detiste@gmail.com>
Date:   Fri Sep 5 11:25:19 2025 +0200

    Merge branch 'multiarch-fixes' into 'master'
    
    Apply multi-arch hints
    
    See merge request java-team/axis!1

commit 704b20a56ca5810a3cac8f0c53e7ce80fac3c6f9
Author: Debian Janitor <janitor@jelmer.uk>
Date:   Tue Jan 24 13:52:45 2023 +0000

    Apply multi-arch hints.
    + libaxis-java-doc: Add Multi-Arch: foreign.
    
    Changes-By: apply-multiarch-hints