]>
Commit | Line | Data |
---|---|---|
0e9a9917 SB |
1 | libyaml (0.1.4-3.2) unstable; urgency=high |
2 | ||
3 | * Non-maintainer upload by the Security Team. | |
4 | * Add CVE-2014-2525.patch patch. | |
5 | CVE-2014-2525: Fixes heap overflow in yaml_parser_scan_uri_escapes. | |
6 | The heap overflow is caused by not properly expanding a string before | |
7 | writing to it in function yaml_parser_scan_uri_escapes in scanner.c. | |
8 | (Closes: #742732) | |
9 | ||
10 | -- Salvatore Bonaccorso <carnil@debian.org> Thu, 27 Mar 2014 06:22:25 +0100 | |
11 | ||
8c29bde4 SB |
12 | libyaml (0.1.4-3.1) unstable; urgency=medium |
13 | ||
14 | * Non-maintainer upload. | |
15 | * Drop libyaml-indent-column-overflow-v2.patch patch. | |
16 | This patch causes additional regressions on simple YAML files. | |
17 | * Add libyaml-guard-against-overflows-in-indent-and-flow_level.patch patch. | |
18 | Add upstream's patch to guard against overflows in indent and | |
19 | flow_level. (Closes: #738587) | |
20 | ||
21 | -- Salvatore Bonaccorso <carnil@debian.org> Thu, 13 Feb 2014 07:51:58 +0100 | |
22 | ||
757f614e | 23 | libyaml (0.1.4-3) unstable; urgency=high |
4690e8e8 AK |
24 | |
25 | * Fix CVE-2013-6393: heap-based buffer overflow when parsing YAML tags. | |
26 | (Closes: #737076) | |
27 | ||
757f614e | 28 | -- Anders Kaseorg <andersk@mit.edu> Wed, 29 Jan 2014 20:11:48 -0500 |
4690e8e8 | 29 | |
9d74d117 | 30 | libyaml (0.1.4-2) unstable; urgency=low |
5d566460 AK |
31 | |
32 | * Remove extra libyaml-0.so symlink from libyaml-dev. | |
264015cb | 33 | * Bump Debhelper compat level to 9. |
dc0d8d28 | 34 | * Support multiarch. (Closes: #653748) (LP: #905630) |
5ebf03b5 | 35 | * Use 3.0 (quilt) source format. |
5d566460 | 36 | |
9d74d117 | 37 | -- Anders Kaseorg <andersk@mit.edu> Fri, 30 Dec 2011 17:14:52 -0500 |
5d566460 | 38 | |
7919b4c8 | 39 | libyaml (0.1.4-1) unstable; urgency=low |
a16771db AK |
40 | |
41 | * New upstream version 0.1.4. | |
42 | + Fixed a bug that prevented an empty mapping being used as a simple | |
43 | key. | |
44 | + Fixed pointer overflow when calculating the position of a potential | |
45 | simple key. | |
18d792f8 | 46 | + Added pkg-config support. (Closes: #537834) |
d27f4509 | 47 | * Remove unneded libyaml.la file. (Closes: #622452) |
2dff8bb1 AK |
48 | * Add libyaml-0-2-dbg package with debugging symbols. |
49 | (Closes: #592747) | |
8e7f8c47 | 50 | * Bumped standards version to 3.9.2 without further change |
a16771db | 51 | |
7919b4c8 | 52 | -- Anders Kaseorg <andersk@mit.edu> Mon, 30 May 2011 22:27:27 -0400 |
a16771db | 53 | |
6e99db53 | 54 | libyaml (0.1.3-1) unstable; urgency=low |
b5157f22 AK |
55 | |
56 | * New upstream version 0.1.3. | |
57 | + This release fixes non-standard structure initialization and a | |
58 | streaming-related issue. | |
59 | * Bump priority from extra to optional. | |
60 | ||
6e99db53 | 61 | -- Anders Kaseorg <andersk@mit.edu> Sun, 04 Oct 2009 14:07:18 -0400 |
b5157f22 | 62 | |
d571cc8b | 63 | libyaml (0.1.2-1) unstable; urgency=low |
2decfa0e AK |
64 | |
65 | * New upstream version 0.1.2. | |
66 | + Fixed grammar in error messages (from YAML::XS::LibYAML). | |
67 | + Rewritten whitespace detection in the scalar analyzer and block | |
68 | scalar writers (ported from PyYAML). | |
69 | + Fixed emitting folded scalars with trailing breaks; Forced emitting | |
70 | of a document end indicator when there is a possibility of ambiguous | |
71 | parsing. | |
72 | ||
d571cc8b | 73 | -- Anders Kaseorg <andersk@mit.edu> Mon, 29 Dec 2008 21:10:48 -0500 |
2decfa0e | 74 | |
01068572 AK |
75 | libyaml (0.1.1-1) unstable; urgency=low |
76 | ||
77 | * Initial release (Closes: #484381). | |
78 | ||
79 | -- Anders Kaseorg <andersk@mit.edu> Tue, 10 Jun 2008 02:37:34 -0400 |