XPost: linux.debian.devel.release
This is a multi-part MIME message sent by reportbug.
Package: release.debian.org
Severity: normal
Tags: bookworm moreinfo
X-Debbugs-Cc:
[email protected],
[email protected] Control: affects -1 + src:commons-beanutils
User:
[email protected]
Usertags: pu
* CVE-2025-48734: Improper access control (Closes: #1106746)
Tagged moreinfo, as question to the security team whether they want
this in pu or as DSA.
diffstat for commons-beanutils-1.9.4 commons-beanutils-1.9.4
changelog | 7
patches/0001-Add-org.apache.commons.beanutils.SuppressPropertiesB.patch | 99 ++++++++++
patches/series | 1
3 files changed, 107 insertions(+)
diff -Nru commons-beanutils-1.9.4/debian/changelog commons-beanutils-1.9.4/debian/changelog
--- commons-beanutils-1.9.4/debian/changelog 2019-08-17 03:51:58.000000000 +0300
+++ commons-beanutils-1.9.4/debian/changelog 2025-07-17 16:14:22.000000000 +0300
@@ -1,3 +1,10 @@
+commons-beanutils (1.9.4-1+deb12u1) bookworm; urgency=medium
+
+ * Non-maintainer upload.
+ * CVE-2025-48734: Improper access control (Closes: #1106746)
+
+ -- Adrian Bunk <
[email protected]> Thu, 17 Jul 2025 16:14:22 +0300
+
commons-beanutils (1.9.4-1) unstable; urgency=medium
* New upstream release
diff -Nru commons-beanutils-1.9.4/debian/patches/0001-Add-org.apache.commons.beanutils.SuppressPropertiesB.patch commons-beanutils-1.9.4/debian/patches/0001-Add-org.apache.commons.beanutils.SuppressPropertiesB.patch
--- commons-beanutils-1.9.4/debian/patches/0001-Add-org.apache.commons.beanutils.SuppressPropertiesB.patch 1970-01-01 02:00:00.000000000 +0200
+++ commons-beanutils-1.9.4/debian/patches/0001-Add-org.apache.commons.beanutils.SuppressPropertiesB.patch 2025-07-17 16:14:13.000000000 +0300
@@ -0,0 +1,99 @@