netty (1:4.1.48-4) [PTS] [DDPO]

OK: VCS matches the version in the archive

Git: https://salsa.debian.org/java-team/netty.git
Enter a full Vcs-* header, supported schemes are: Vcs-Bzr, Vcs-Cvs, Vcs-Darcs, Vcs-Git, Vcs-Hg, Vcs-Mtn, Vcs-Svn.
For Vcs-Git append -b branch to select the branch name; append [subdir] if the debian/ directory is not in the repository root.
The next upload will reset the information from the source package headers.
Branch: master
Path: debian/changelog
Browser: https://salsa.debian.org/java-team/netty
Last scan: 2022-01-25 06:36:06+00
Next scan: 2022-01-31 13:02:00+00

Debian changelog in Git:

netty (1:4.1.48-4) unstable; urgency=high

  * Team upload.
  * Fix CVE-2021-21409 (Closes: #986217)
    Address a vulnerability that enables request smuggling. The content-length
    header is not correctly validated if the request only uses a single
    Http2HeaderFrame with the endStream set to true. This could lead to request
    smuggling if the request is proxied to a remote peer and translated to
    HTTP/1.1.  This is a followup to CVE-2021-21295 to address this case.

 -- tony mancill <tmancill@debian.org>  Wed, 31 Mar 2021 22:01:52 -0700

This branch is even with tag debian/1%4.1.48-4