-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 28 Sep 2025 00:52:50 +0200
Source: openrefine
Architecture: source
Version: 3.6.2-2+deb12u3
Distribution: bookworm
Urgency: medium
Maintainer: Debian Java Maintainers <pkg-java-maintainers@lists.alioth.debian.org>
Changed-By: Markus Koschany <apo@debian.org>
Changes:
 openrefine (3.6.2-2+deb12u3) bookworm; urgency=medium
 .
   * Fix CVE-2024-23833, CVE-2024-47878, CVE-2024-47880, CVE-2024-47881,
     CVE-2024-47882 and CVE-2024-49760.
     OpenRefine is a free, open source tool for data processing. Users could be
     tricked into opening malicious websites which then enabled attackers to run
     arbitrary code on the server due to improper escaping or code restrictions.
Checksums-Sha1:
 307c23e36e342bc4aca432d32296a4ecd5980c11 3614 openrefine_3.6.2-2+deb12u3.dsc
 cc14eb4020c19546817ce250a522670e55d03bbe 7064104 openrefine_3.6.2.orig.tar.xz
 1d2739fb2228542d9d87304c778d20644701626d 315428 openrefine_3.6.2-2+deb12u3.debian.tar.xz
 c70e9ea72c28ac1e77c58bcedeb3bb4a0cc0951f 18726 openrefine_3.6.2-2+deb12u3_amd64.buildinfo
Checksums-Sha256:
 ca33960f540fc77f45439df868cc711e18faba35173c9d866fece92f0a5d8120 3614 openrefine_3.6.2-2+deb12u3.dsc
 ab3aae5f751211cd39a1103184efae8853830c3cebb889ca9db6f906cc63f4ff 7064104 openrefine_3.6.2.orig.tar.xz
 6f95b00362b810b9066ff773470006300b047ebf9f4c267dadbce9bf69902589 315428 openrefine_3.6.2-2+deb12u3.debian.tar.xz
 d57330181bb0b7416cb3419c2786052bdd0e74417af4ed82c3d47b9b3b798de1 18726 openrefine_3.6.2-2+deb12u3_amd64.buildinfo
Files:
 e89ef1da902be2aae8f7e796ff8b1b83 3614 java optional openrefine_3.6.2-2+deb12u3.dsc
 376af8bed8b467263bd556c710fb30d2 7064104 java optional openrefine_3.6.2.orig.tar.xz
 903df464e28a5c8761c1ecdfcf937078 315428 java optional openrefine_3.6.2-2+deb12u3.debian.tar.xz
 6764cd8dca01da7e8b83e5a32c8972a6 18726 java optional openrefine_3.6.2-2+deb12u3_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=/dOK
-----END PGP SIGNATURE-----