| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: apache-commons-httpclient | Distribution: openSUSE Leap 15.2 |
| Version: 3.1 | Vendor: openSUSE |
| Release: lp152.6.3.1 | Build date: Thu Nov 5 00:08:30 2020 |
| Group: Development/Libraries/Java | Build host: armbuild04 |
| Size: 376662 | Source RPM: apache-commons-httpclient-3.1-lp152.6.3.1.src.rpm |
| Packager: http://bugs.opensuse.org | |
| Url: http://hc.apache.org/httpclient-3.x/ | |
| Summary: Feature rich package for accessing resources via HTTP | |
Although the java.net package provides basic functionality for accessing resources via HTTP, it doesn't provide the full flexibility or functionality needed by many applications. The Apache Commons HttpClient component provides a package implementing the client side of the most recent HTTP standards and recommendations. The HttpClient component may be of interest to anyone building HTTP-aware client applications such as web browsers, web service clients, or systems that leverage or extend the HTTP protocol for distributed communication.
Apache-2.0
* Tue Oct 27 2020 Pedro Monreal <pmonreal@suse.com>
- Security fix [bsc#945190, CVE-2015-5262]
* http/conn/ssl/SSLConnectionSocketFactory.java ignores the
http.socket.timeout configuration setting during an SSL handshake,
which allows remote attackers to cause a denial of service (HTTPS
call hang) via unspecified vectors.
- Add apache-commons-httpclient-CVE-2015-5262.patch
* Tue Oct 27 2020 Pedro Monreal <pmonreal@suse.com>
- Security fix [bsc#1178171, CVE-2014-3577]
* org.apache.http.conn.ssl.AbstractVerifier does not properly
verify that the server hostname matches a domain name in the
subject's Common Name (CN) or subjectAltName field of the X.509
certificate, which allows MITM attackers to spoof SSL servers
via a "CN=" string in a field in the distinguished name (DN)
of a certificate.
- Add apache-commons-httpclient-CVE-2014-3577.patch
* Mon Apr 01 2019 Jan Engelhardt <jengelh@inai.de>
- Trim conjecture from description.
* Mon Jan 21 2019 Fridrich Strba <fstrba@suse.com>
- Add maven pom file and clean-up the spec file
* Tue May 15 2018 fstrba@suse.com
- Build with source and target 8 to prepare for a possible removal
of 1.6 compatibility
- Run fdupes on documentation
* Thu Sep 07 2017 fstrba@suse.com
- Build with java source and target versions 1.6
* fixes build with jdk9
* Tue Jul 08 2014 tchvatal@suse.com
- Redo the bytcode disabling properly.
- Cleanup with spec-cleaner
* Mon Apr 14 2014 darin@darins.net
- disable bytecode test on SLES
* Fri Oct 25 2013 mvyskocil@suse.com
- really apply CVE-2012-5783 patch
- build with java 6 and higher
* Thu Mar 28 2013 mvyskocil@suse.com
- enhance fix of bnc#803332 / CVE-2012-5783
* add a check for subjectAltNames for instance
/usr/share/doc/packages/apache-commons-httpclient /usr/share/doc/packages/apache-commons-httpclient/README.txt /usr/share/doc/packages/apache-commons-httpclient/RELEASE_NOTES.txt /usr/share/java/apache-commons-httpclient.jar /usr/share/java/apache-commons-httpclient3.jar /usr/share/java/commons-httpclient.jar /usr/share/java/commons-httpclient3.jar /usr/share/java/jakarta-commons-httpclient.jar /usr/share/java/jakarta-commons-httpclient3.jar /usr/share/licenses/apache-commons-httpclient /usr/share/licenses/apache-commons-httpclient/LICENSE.txt /usr/share/maven-metadata/apache-commons-httpclient.xml /usr/share/maven-poms/apache-commons-httpclient.pom
Generated by rpm2html 1.8.1
Fabrice Bellet, Tue Apr 9 14:28:18 2024