-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Wed, 23 Oct 2024 23:20:32 -0300
Source: activemq
Binary: activemq libactivemq-java
Architecture: all
Version: 5.17.2+dfsg-2+deb12u1
Distribution: bookworm-security
Urgency: medium
Maintainer: all Build Daemon (x86-grnet-02) <buildd_all-x86-grnet-02@buildd.debian.org>
Changed-By: Santiago Ruano Rincón <santiagorr@riseup.net>
Description:
 activemq   - Java message broker - server
 libactivemq-java - Java message broker core libraries
Closes: 1054909
Changes:
 activemq (5.17.2+dfsg-2+deb12u1) bookworm-security; urgency=medium
 .
   * CVE-2022-41678: Potential arbitrary code execution via Jolokia
   * CVE-2023-46604: The Java OpenWire protocol marshaller is vulnerable to
     Remote Code Execution (Closes: #1054909).
Checksums-Sha1:
 d491b202a456b1d36e35c88af2380620186ac85e 18396 activemq_5.17.2+dfsg-2+deb12u1_all-buildd.buildinfo
 e0067b5d347a135f0cc5f9e90a0550e14cbe2755 50212 activemq_5.17.2+dfsg-2+deb12u1_all.deb
 0a7e51d6183a84d32835114fdf0c0b99dc9f8f55 4137972 libactivemq-java_5.17.2+dfsg-2+deb12u1_all.deb
Checksums-Sha256:
 c092ea39013f3694f3cd9805cd22d223d00da42197e9580647807024793f860a 18396 activemq_5.17.2+dfsg-2+deb12u1_all-buildd.buildinfo
 376f64b84b68d913a85ea0ac2193f6a0667769151a37b7744cfb7074a274b649 50212 activemq_5.17.2+dfsg-2+deb12u1_all.deb
 501c08477bba5f92d1ac5fb6ccafee43df6ab190f28cf4ea34a9e1288eb0ef13 4137972 libactivemq-java_5.17.2+dfsg-2+deb12u1_all.deb
Files:
 17fe30c7d193436fa8e75207b6c3d618 18396 java optional activemq_5.17.2+dfsg-2+deb12u1_all-buildd.buildinfo
 b33a7537aad36a6600809af85b8db85e 50212 java optional activemq_5.17.2+dfsg-2+deb12u1_all.deb
 6a829b3fb750b79d5a3a6923cf50167c 4137972 java optional libactivemq-java_5.17.2+dfsg-2+deb12u1_all.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEQsM0t1ygJv2xcx3e4cagXJhOTXsFAmcbqQYACgkQ4cagXJhO
TXtpiA/8DZoNP2qB0FOZvUyDAG0DIhqlmR5cEgwf+op/Ny953hqxSXYBHtPOAnKs
qpe+uMqOzsbYA6q0d/KbaX5YUJDlYZ6J8d4jZo2Uuy9z3OM/Ycvx7BI0FYN+S1RP
//NSJF9E6Mif/MfLEY4liZ4c3jCEqRVw4qIcdjfodfvLX3Gls5dU+/GyE0ea+kpg
uwO5M8k8s0UwPxrVVwTnQPHnCo68Xk7BQgzJtnq4BUZ4z+YHGenZ5AWTGR2PQqN2
GSHqoWzMnxpjLr0fcOln9eys0tJrzIbN1ynj9XGIYUpcuwQZrBYYVzUGLbcu+kaj
H9C03TktPZ4O12Y6bMsNqjlM4dKqs4KOI0JTQqGy2uKcju3btK6xHayP/bC0sJFe
MkyGxtBtWrZRm01oO9gWICxB3DEGwOBL67U1qhQrYrgpqcJM3Feyn95S6fTQsUyA
ocqmhcpwftL1OZFetbpaw45Cqlmewy7uYJbLkh01upakhlhl1iz5OUOtglRWCuT0
Ge5BjusNgFJFXpPDgIfykLsFXqxxufr6MtZyRCni3r0X85zDDkieJ5NRS9w8oWd/
i3bFacuYVE/Gy8evQLsHMxKcvR/KXnLwrm1n0gQvKmQQeW8dEzZaYsUdB+3+MFlj
wvV41bUtOj3JEfX7HGMsTgW1PdifIPYJlLVi9bOcXW82NYr7xA0=
=GvMC
-----END PGP SIGNATURE-----