json-smart (2.5.2-1) [PTS] [DDPO]

OK: VCS matches the version in the archive

Git: https://salsa.debian.org/java-team/json-smart.git
JSON
Enter a full Vcs-* header, supported schemes are: Vcs-Bzr, Vcs-Cvs, Vcs-Darcs, Vcs-Git, Vcs-Hg, Vcs-Mtn, Vcs-Svn.
For Vcs-Git append -b branch to select the branch name; append [subdir] if the debian/ directory is not in the repository root.
The next upload will reset the information from the source package headers.
Branch: master
Path: debian/changelog
Repo size: 151552
Browser: https://salsa.debian.org/java-team/json-smart/
Last scan: 2025-03-24 19:06:06+00
Next scan: 2025-03-31 16:49:00+00

Debian changelog in Git:

json-smart (2.5.2-1) unstable; urgency=medium

  * New upstream version 2.5.2:
    - Fixes CVE-2024-57699: A security issue was found in Netplex Json-smart
      2.5.0 through 2.5.1. When loading a specially crafted JSON input,
      containing a large number of ’{’, a stack exhaustion can be trigger,
      which could allow an attacker to cause a Denial of Service (DoS). This
      issue exists because of an incomplete fix for CVE-2023-1370.
      (Closes: #1095839)
  * Refreshing patches

 -- Pierre Gruet <pgt@debian.org>  Sun, 16 Feb 2025 15:47:20 +0100

This branch is even with tag debian/2.5.2-1