flatpak (1.10.2-3) unstable; urgency=medium . * d/patches: Align with upstream flatpak-1.10.x branch, making this effectively a release candidate for upstream stable release 1.10.3 - d/patches: Update metadata to reflect upstream flatpak-1.10.x branch. All the patches we apply in Debian are expected to be released in 1.10.3 upstream, but not all were annotated to reflect this. - d/p/system-helper-Fix-deploys-of-local-remotes.patch: Fix some failures to update in GNOME Software and the unit tests. This change was previously applied in Ubuntu's flatpak_1.10.2-1ubuntu1 to fix a unit test failure, possibly triggered by a newer version of GLib. It has also been reported to fix a failure to upgrade Flatpak apps using GNOME Software, this time in Fedora. - d/p/create-usb-Skip-copying-extra-data-flatpaks.patch: Skip flatpaks with "extra-data" when using `flatpak create-usb`. This command is intended to create USB drives that can be used to install Flatpak apps and/or runtimes while offline, but the "extra-data" feature downloads extra content for an app or runtime at install time, as a way to automate installation of data that can be re-downloaded by end users but is not licensed for redistribution by Flatpak repositories. Such apps and runtimes would fail to install while offline. - d/p/series: Re-order patches to match upstream flatpak-1.10.x branch libjdom1-java (1.1.3-2.1) unstable; urgency=medium . * Non-maintainer upload by the LTS team. * Add patch to fix setFeature bug and add test case. (Fixes: CVE-2021-33813) openjdk-11 (11.0.12+7-2) unstable; urgency=high . * OpenJDK 11.0.12+7 build (release). * Security fixes: - JDK-8256157: Improve bytecode assembly. - JDK-8256491: Better HTTP transport. - JDK-8258432, CVE-2021-2341: Improve file transfers. - JDK-8260453: Improve Font Bounding. - JDK-8260960: Signs of jarsigner signing. - JDK-8260967, CVE-2021-2369: Better jar file validation. - JDK-8262380: Enhance XML processing passes. - JDK-8262403: Enhanced data transfer. - JDK-8262410: Enhanced rules for zones. - JDK-8262477: Enhance String Conclusions. - JDK-8262967: Improve Zip file support. - JDK-8264066, CVE-2021-2388: Enhance compiler validation. - JDK-8264079: Improve abstractions. - JDK-8264460: Improve NTLM support. * Encode the early-access status into the package version. LP: #1934895. openjdk-11 (11.0.12+7-1) unstable; urgency=high . * OpenJDK 11.0.12+7 build (release). * Security fixes: - JDK-8256157: Improve bytecode assembly. - JDK-8256491: Better HTTP transport. - JDK-8258432, CVE-2021-2341: Improve file transfers. - JDK-8260453: Improve Font Bounding. - JDK-8260960: Signs of jarsigner signing. - JDK-8260967, CVE-2021-2369: Better jar file validation. - JDK-8262380: Enhance XML processing passes. - JDK-8262403: Enhanced data transfer. - JDK-8262410: Enhanced rules for zones. - JDK-8262477: Enhance String Conclusions. - JDK-8262967: Improve Zip file support. - JDK-8264066, CVE-2021-2388: Enhance compiler validation. - JDK-8264079: Improve abstractions. - JDK-8264460: Improve NTLM support. * Encode the early-access status into the package version. LP: #1934895. openjdk-11 (11.0.12+6-1) unstable; urgency=medium . * OpenJDK 11.0.12+6 build (early access). openjdk-11 (11.0.12+4-1) unstable; urgency=medium . * OpenJDK 11.0.12+4 build (early access). * Don't apply the m68k-support patch, needs an update. openjdk-11-jre-dcevm (11.0.12+7-1) unstable; urgency=medium . * New upstream release (Closes: #991006) perm (0.4.0-7) unstable; urgency=medium . * Team Upload. * d/p/fix-buffer-overflow.patch: Do not reduce buffer size by 1 perm (0.4.0-6) unstable; urgency=medium . * Team Upload. [ Shruti Sridhar ] * d/tests/data: Add testdata * d/tests: Add autopkgtest * d/example: Install test data as example * d/docs: Install d/README.* and d/tests/run-unit-test as documents * d/p/hardening.patch: Add CPPFLAGS which helped detect buffer overflow * d/copyright: Test data has been written by Shruti, mentioning them in copyright for the same . [ Nilesh Patra ] * d/p/fix-buffer-overflow.patch: Use strlcpy from libbsd-dev instead of strncpy in order to fix buffer overflow * d/control: Add B-D on libbsd-dev