json-smart (2.2-2ubuntu1) lunar; urgency=medium

  * SECURITY UPDATE: DoS caused by unclosed quotes
    - debian/patches/0004-CVE-2021-31684-Fix-indexOf.patch:
      set right control variable for the indexOf function
      in json-smart/src/main/java/net/minidev/json/
      parser/JSONParserByteArray.java.
    - CVE-2021-31684
  * SECURITY UPDATE: DoS caused by uncontrolled nesting
    - debian/patches/0005-CVE-2023-1370-stack-overflow-due-to-
      excessive-recurs.patch: add limit for nested depth when processing
      "{" or "[" in
      json-smart/src/main/java/net/minidev/json/parser/JSONParserBase.java,
      json-smart/src/main/java/net/minidev/json/parser/ParseException.java,
      and json-smart/src/test/java/net/minidev/json/test/TestOverflow.java.
    - CVE-2023-1370

 -- David Fernandez Gonzalez <david.fernandezgonzalez@canonical.com>  Tue, 11 Apr 2023 13:33:16 +0200

json-smart (2.2-2) unstable; urgency=medium

  * Team upload.
  * Add maven-bundle-plugin-failok.patch and work around a FTBFS
    caused by a bug in maven-bundle-plugin. See #868913 for more information.
    (Closes: #868603)
  * Switch to compat level 10.
  * Declare compliance with Debian Policy 4.1.1.
  * Use https for format field.

 -- Markus Koschany <apo@debian.org>  Mon, 16 Oct 2017 15:52:50 +0200

json-smart (2.2-1) unstable; urgency=medium

  * New upstream release
    - Build the new accessors-smart module
    - Ignore the timezone dependent tests in TestDateConvert
  * Standards-Version updated to 3.9.8

 -- Emmanuel Bourg <ebourg@apache.org>  Wed, 03 Aug 2016 10:06:43 +0200

json-smart (1.2-1) unstable; urgency=medium

  * Initial release (Closes: #819635)

 -- Emmanuel Bourg <ebourg@apache.org>  Thu, 31 Mar 2016 13:21:52 +0200
