libpgjava (42.2.12-1) [PTS] [DDPO]

NEW: VCS has unreleased changes: 42.2.14-1 > 42.2.12-1

Git: https://salsa.debian.org/java-team/libpostgresql-jdbc-java.git
Enter a full Vcs-* header, supported schemes are: Vcs-Bzr, Vcs-Cvs, Vcs-Darcs, Vcs-Git, Vcs-Hg, Vcs-Mtn, Vcs-Svn.
For Vcs-Git append -b branch to select the branch name; append [subdir] if the debian/ directory is not in the repository root.
The next upload will reset the information from the source package headers.
Branch: master
Path: debian/changelog
Browser: https://salsa.debian.org/java-team/libpostgresql-jdbc-java
Last scan: 2020-07-11 03:14:07+00
Next scan: 2020-07-17 03:50:00+00
CI pipeline status: failed

Debian changelog in Git:

libpgjava (42.2.14-1) UNRELEASED; urgency=medium

  * New upstream version.
    + Fixes XML External Entitiy (XXE) injection (CVE-2020-13692).
      https://cheatsheetseries.owasp.org/cheatsheets/XML_External_Entity_Prevention_Cheat_Sheet.html
  * Switch to src tarballs from maven repo, the upstream git repo tarballs
    need gradle to compile. (https://github.com/pgjdbc/pgjdbc/issues/1440)
  * Force doc build to be in English.
  * Remove missing test dependencies:
     classloader-leak-test-framework: Not packaged
     junit: Packaged, but mvn doesn't find it
  * Defang package-contains-ancient-file caused by 1970 README.md.
  * Test both md5 and scram-sha-256 connections.

 -- Christoph Berg <myon@debian.org>  Thu, 30 Apr 2020 12:51:22 +0200

This branch is 10 commits ahead of tag debian/42.2.12-1

Git log:

commit c0b0abd7975d33d9d5a351cf26b30d2ac6ddbf3e
Author: Christoph Berg <myon@debian.org>
Date:   Wed Jun 10 22:16:45 2020 +0200

    copyright: Remove Files-Excluded which isn't necessary with the new tarballs

commit f320a42f9e8f13fd5672f3fa53ab9dbb692c7979
Author: Christoph Berg <myon@debian.org>
Date:   Wed Jun 10 22:15:06 2020 +0200

    Test both md5 and scram-sha-256 connections.

commit d87b379f2baa57585a02310fbb48e166ac973c20
Author: Christoph Berg <myon@debian.org>
Date:   Wed Jun 10 22:04:27 2020 +0200

    Defang package-contains-ancient-file caused by 1970 README.md.

commit 2b725b46a2a3cc05b6f9ae9fc8897555459b64ed
Author: Christoph Berg <myon@debian.org>
Date:   Wed Jun 10 21:42:28 2020 +0200

    Remove missing test dependencies
    
    classloader-leak-test-framework: Not packaged
    junit: Packaged, but mvn doesn't find it

commit df98bc4c35074074fe17460d08ee88a3a5ce5903
Author: Christoph Berg <myon@debian.org>
Date:   Wed Jun 10 21:41:44 2020 +0200

    Updates for new source layout

commit 4bf961fa0fd0372572727c3a80de26b4811f910b
Author: Christoph Berg <myon@debian.org>
Date:   Wed Jun 10 21:17:47 2020 +0200

    Switch to src tarballs from maven repo
    
    The upstream git repo tarballs need gradle to compile.
    (https://github.com/pgjdbc/pgjdbc/issues/1440)

commit fdc8676cac1205d28ffaa5c74808cf13eb656ce0
Author: Christoph Berg <myon@debian.org>
Date:   Wed Jun 10 20:53:00 2020 +0200

    New upstream version.
    
    Fixes XML External Entitiy (XXE) injection (CVE-2020-13692).
    
    https://cheatsheetseries.owasp.org/cheatsheets/XML_External_Entity_Prevention_Cheat_Sheet.html

commit 327c3acbcc23603d8cdc8def037a50464d2aca47
Merge: 23ce311f f04840b1
Author: Christoph Berg <myon@debian.org>
Date:   Wed Jun 10 20:51:34 2020 +0200

    Update upstream source from tag 'upstream/42.2.14'
    
    Update to upstream version '42.2.14'
    with Debian dir 74d110fc541f9bbeb57b3eeb6e6415de305e9ef4

commit f04840b146a8b8efa02c6c31cd5339a28322f253
Author: Christoph Berg <myon@debian.org>
Date:   Wed Jun 10 20:51:29 2020 +0200

    New upstream version 42.2.14

commit 23ce311f5ae988dcd7cd50c37a25905969bb346c
Author: Christoph Berg <myon@debian.org>
Date:   Thu Apr 30 12:51:41 2020 +0200

    Force doc build to be in English.