[libyaml.git] / debian / changelog

libyaml (0.2.2-1) UNRELEASED; urgency=medium

  * New upstream version 0.2.2.

 -- Anders Kaseorg <andersk@mit.edu>  Sat, 14 Sep 2019 19:40:51 -0700

libyaml (0.2.1-1) unstable; urgency=medium

  * New upstream version 0.2.1.
    + Moved canonical repo to GitHub.  (Closes: #865709)
  * Bump Standards-Version to 4.1.4 and debian/compat to 11.
    + Moved documentation in libyaml-doc from /usr/share/doc/libyaml-doc
      to /usr/share/doc/libyaml-dev.

 -- Anders Kaseorg <andersk@mit.edu>  Tue, 26 Jun 2018 20:25:08 -0400

libyaml (0.1.7-2) unstable; urgency=medium

  * Clean doxygen-generated documentation with dh_doxygen.
  * Mark libyaml-doc Multi-Arch: foreign.
  * Add libyaml-0-2.symbols file.

 -- Anders Kaseorg <andersk@mit.edu>  Fri, 30 Sep 2016 22:06:09 -0400

libyaml (0.1.7-1) unstable; urgency=medium

  * New upstream version 0.1.7.
    + Fix segfault in yaml_string_write_handler.
    + Fix invalid simple key assertion.
  * Drop upstreamed patches.
  * Migrate packaging from CDBS to dh.
  * Drop libyaml-0-2-dbg in favor of automatically generated
    libyaml-0-2-dbgsym package.

 -- Anders Kaseorg <andersk@mit.edu>  Sat, 03 Sep 2016 06:48:38 -0400

libyaml (0.1.6-3) unstable; urgency=high

  * debian/patches/CVE-2014-9130.patch: Fix CVE-2014-9130 assertion
    failure caused by wrapped strings.  (Closes: #771366)
  * Bump Standards-Version to 3.9.6 (no changes needed).

 -- Anders Kaseorg <andersk@mit.edu>  Fri, 28 Nov 2014 22:05:10 -0500

libyaml (0.1.6-2) unstable; urgency=medium

  * Move doxygen from Build-Depends to Build-Depends-Indep.

 -- Anders Kaseorg <andersk@mit.edu>  Tue, 19 Aug 2014 21:56:25 -0400

libyaml (0.1.6-1) unstable; urgency=medium

  * New upstream version 0.1.6.
    + Fix CVE-2013-6393: heap-based buffer overflow when parsing YAML
      tags.
    + Fix CVE-2014-2525: heap-based buffer overflow in
      yaml_parser_scan_uri_escapes.
  * Drop upstreamed patches.
  * Run tests at build time.
  * Bump Standards-Version to 3.9.5 (no changes needed).
  * Use dh-autoreconf.  (Closes: #745078)
  * Use dh-buildinfo.
  * Add libyaml-doc package for Doxygen-generated API documentation and
    examples.  (Closes: #696821)
  * Acknowledge NMUs.

 -- Anders Kaseorg <andersk@mit.edu>  Tue, 19 Aug 2014 00:03:53 -0400

libyaml (0.1.4-3.2) unstable; urgency=high

  * Non-maintainer upload by the Security Team.
  * Add CVE-2014-2525.patch patch.
    CVE-2014-2525: Fixes heap overflow in yaml_parser_scan_uri_escapes.
    The heap overflow is caused by not properly expanding a string before
    writing to it in function yaml_parser_scan_uri_escapes in scanner.c.
    (Closes: #742732)

 -- Salvatore Bonaccorso <carnil@debian.org>  Thu, 27 Mar 2014 06:22:25 +0100

libyaml (0.1.4-3.1) unstable; urgency=medium

  * Non-maintainer upload.
  * Drop libyaml-indent-column-overflow-v2.patch patch.
    This patch causes additional regressions on simple YAML files.
  * Add libyaml-guard-against-overflows-in-indent-and-flow_level.patch patch.
    Add upstream's patch to guard against overflows in indent and
    flow_level. (Closes: #738587)

 -- Salvatore Bonaccorso <carnil@debian.org>  Thu, 13 Feb 2014 07:51:58 +0100

libyaml (0.1.4-3) unstable; urgency=high

  * Fix CVE-2013-6393: heap-based buffer overflow when parsing YAML tags.
    (Closes: #737076)

 -- Anders Kaseorg <andersk@mit.edu>  Wed, 29 Jan 2014 20:11:48 -0500

libyaml (0.1.4-2) unstable; urgency=low

  * Remove extra libyaml-0.so symlink from libyaml-dev.
  * Bump Debhelper compat level to 9.
  * Support multiarch.  (Closes: #653748) (LP: #905630)
  * Use 3.0 (quilt) source format.

 -- Anders Kaseorg <andersk@mit.edu>  Fri, 30 Dec 2011 17:14:52 -0500

libyaml (0.1.4-1) unstable; urgency=low

  * New upstream version 0.1.4.
    + Fixed a bug that prevented an empty mapping being used as a simple
      key.
    + Fixed pointer overflow when calculating the position of a potential
      simple key.
    + Added pkg-config support.  (Closes: #537834)
  * Remove unneded libyaml.la file.  (Closes: #622452)
  * Add libyaml-0-2-dbg package with debugging symbols.
    (Closes: #592747)
  * Bumped standards version to 3.9.2 without further change

 -- Anders Kaseorg <andersk@mit.edu>  Mon, 30 May 2011 22:27:27 -0400

libyaml (0.1.3-1) unstable; urgency=low

  * New upstream version 0.1.3.
    + This release fixes non-standard structure initialization and a
      streaming-related issue.
  * Bump priority from extra to optional.

 -- Anders Kaseorg <andersk@mit.edu>  Sun, 04 Oct 2009 14:07:18 -0400

libyaml (0.1.2-1) unstable; urgency=low

  * New upstream version 0.1.2.
    + Fixed grammar in error messages (from YAML::XS::LibYAML).
    + Rewritten whitespace detection in the scalar analyzer and block
      scalar writers (ported from PyYAML).
    + Fixed emitting folded scalars with trailing breaks; Forced emitting
      of a document end indicator when there is a possibility of ambiguous
      parsing.

 -- Anders Kaseorg <andersk@mit.edu>  Mon, 29 Dec 2008 21:10:48 -0500

libyaml (0.1.1-1) unstable; urgency=low

  * Initial release (Closes: #484381).

 -- Anders Kaseorg <andersk@mit.edu>  Tue, 10 Jun 2008 02:37:34 -0400
Commit	Line	Data
f58cc6c8 AK	1	libyaml (0.2.2-1) UNRELEASED; urgency=medium
	2
	3	* New upstream version 0.2.2.
	4
	5	-- Anders Kaseorg <andersk@mit.edu> Sat, 14 Sep 2019 19:40:51 -0700
	6
0f400264	7	libyaml (0.2.1-1) unstable; urgency=medium
eaa382de	8
3d3d2045 AK	9	* New upstream version 0.2.1.
3d3d2045 AK	10	+ Moved canonical repo to GitHub. (Closes: #865709)
e13fd244 AK	11	* Bump Standards-Version to 4.1.4 and debian/compat to 11.
	12	+ Moved documentation in libyaml-doc from /usr/share/doc/libyaml-doc
	13	to /usr/share/doc/libyaml-dev.
eaa382de	14
0f400264	15	-- Anders Kaseorg <andersk@mit.edu> Tue, 26 Jun 2018 20:25:08 -0400
eaa382de	16
6adf940b	17	libyaml (0.1.7-2) unstable; urgency=medium
f626072a AK	18
f626072a AK	19	* Clean doxygen-generated documentation with dh_doxygen.
c384b60e	20	* Mark libyaml-doc Multi-Arch: foreign.
7c10b9ff	21	* Add libyaml-0-2.symbols file.
f626072a	22
6adf940b	23	-- Anders Kaseorg <andersk@mit.edu> Fri, 30 Sep 2016 22:06:09 -0400
f626072a	24
61cbe72d	25	libyaml (0.1.7-1) unstable; urgency=medium
7161b858 AK	26
	27	* New upstream version 0.1.7.
	28	+ Fix segfault in yaml_string_write_handler.
	29	+ Fix invalid simple key assertion.
	30	* Drop upstreamed patches.
b35dbbb1	31	* Migrate packaging from CDBS to dh.
ec43579c	32	* Drop libyaml-0-2-dbg in favor of automatically generated
b35dbbb1	33	libyaml-0-2-dbgsym package.
7161b858	34
61cbe72d	35	-- Anders Kaseorg <andersk@mit.edu> Sat, 03 Sep 2016 06:48:38 -0400
7161b858	36
9a751a1d	37	libyaml (0.1.6-3) unstable; urgency=high
6ecaf949 AK	38
	39	* debian/patches/CVE-2014-9130.patch: Fix CVE-2014-9130 assertion
	40	failure caused by wrapped strings. (Closes: #771366)
48fc5d2d	41	* Bump Standards-Version to 3.9.6 (no changes needed).
6ecaf949	42
9a751a1d	43	-- Anders Kaseorg <andersk@mit.edu> Fri, 28 Nov 2014 22:05:10 -0500
6ecaf949	44
6f165d57	45	libyaml (0.1.6-2) unstable; urgency=medium
ec5a74bd AK	46
	47	* Move doxygen from Build-Depends to Build-Depends-Indep.
	48
6f165d57	49	-- Anders Kaseorg <andersk@mit.edu> Tue, 19 Aug 2014 21:56:25 -0400
ec5a74bd	50
aaf3a1c2	51	libyaml (0.1.6-1) unstable; urgency=medium
678a07c9	52
0070a532	53	* New upstream version 0.1.6.
678a07c9 AK	54	+ Fix CVE-2013-6393: heap-based buffer overflow when parsing YAML
678a07c9 AK	55	tags.
0070a532 AK	56	+ Fix CVE-2014-2525: heap-based buffer overflow in
0070a532 AK	57	yaml_parser_scan_uri_escapes.
678a07c9	58	* Drop upstreamed patches.
dd2bbc9e	59	* Run tests at build time.
d328a1cd	60	* Bump Standards-Version to 3.9.5 (no changes needed).
a3d68865	61	* Use dh-autoreconf. (Closes: #745078)
f8dcd9ae	62	* Use dh-buildinfo.
47950261 AK	63	* Add libyaml-doc package for Doxygen-generated API documentation and
47950261 AK	64	examples. (Closes: #696821)
4fdeceb2	65	* Acknowledge NMUs.
678a07c9	66
aaf3a1c2	67	-- Anders Kaseorg <andersk@mit.edu> Tue, 19 Aug 2014 00:03:53 -0400
678a07c9	68
0e9a9917 SB	69	libyaml (0.1.4-3.2) unstable; urgency=high
	70
	71	* Non-maintainer upload by the Security Team.
	72	* Add CVE-2014-2525.patch patch.
	73	CVE-2014-2525: Fixes heap overflow in yaml_parser_scan_uri_escapes.
	74	The heap overflow is caused by not properly expanding a string before
	75	writing to it in function yaml_parser_scan_uri_escapes in scanner.c.
	76	(Closes: #742732)
	77
	78	-- Salvatore Bonaccorso <carnil@debian.org> Thu, 27 Mar 2014 06:22:25 +0100
	79
8c29bde4 SB	80	libyaml (0.1.4-3.1) unstable; urgency=medium
	81
	82	* Non-maintainer upload.
	83	* Drop libyaml-indent-column-overflow-v2.patch patch.
	84	This patch causes additional regressions on simple YAML files.
	85	* Add libyaml-guard-against-overflows-in-indent-and-flow_level.patch patch.
	86	Add upstream's patch to guard against overflows in indent and
	87	flow_level. (Closes: #738587)
	88
	89	-- Salvatore Bonaccorso <carnil@debian.org> Thu, 13 Feb 2014 07:51:58 +0100
	90
757f614e	91	libyaml (0.1.4-3) unstable; urgency=high
4690e8e8 AK	92
	93	* Fix CVE-2013-6393: heap-based buffer overflow when parsing YAML tags.
	94	(Closes: #737076)
	95
757f614e	96	-- Anders Kaseorg <andersk@mit.edu> Wed, 29 Jan 2014 20:11:48 -0500
4690e8e8	97
9d74d117	98	libyaml (0.1.4-2) unstable; urgency=low
5d566460 AK	99
5d566460 AK	100	* Remove extra libyaml-0.so symlink from libyaml-dev.
264015cb	101	* Bump Debhelper compat level to 9.
dc0d8d28	102	* Support multiarch. (Closes: #653748) (LP: #905630)
5ebf03b5	103	* Use 3.0 (quilt) source format.
5d566460	104
9d74d117	105	-- Anders Kaseorg <andersk@mit.edu> Fri, 30 Dec 2011 17:14:52 -0500
5d566460	106
7919b4c8	107	libyaml (0.1.4-1) unstable; urgency=low
a16771db AK	108
	109	* New upstream version 0.1.4.
	110	+ Fixed a bug that prevented an empty mapping being used as a simple
	111	key.
	112	+ Fixed pointer overflow when calculating the position of a potential
	113	simple key.
18d792f8	114	+ Added pkg-config support. (Closes: #537834)
d27f4509	115	* Remove unneded libyaml.la file. (Closes: #622452)
2dff8bb1 AK	116	* Add libyaml-0-2-dbg package with debugging symbols.
2dff8bb1 AK	117	(Closes: #592747)
8e7f8c47	118	* Bumped standards version to 3.9.2 without further change
a16771db	119
7919b4c8	120	-- Anders Kaseorg <andersk@mit.edu> Mon, 30 May 2011 22:27:27 -0400
a16771db	121
6e99db53	122	libyaml (0.1.3-1) unstable; urgency=low
b5157f22 AK	123
	124	* New upstream version 0.1.3.
	125	+ This release fixes non-standard structure initialization and a
	126	streaming-related issue.
	127	* Bump priority from extra to optional.
	128
6e99db53	129	-- Anders Kaseorg <andersk@mit.edu> Sun, 04 Oct 2009 14:07:18 -0400
b5157f22	130
d571cc8b	131	libyaml (0.1.2-1) unstable; urgency=low
2decfa0e AK	132
	133	* New upstream version 0.1.2.
	134	+ Fixed grammar in error messages (from YAML::XS::LibYAML).
	135	+ Rewritten whitespace detection in the scalar analyzer and block
	136	scalar writers (ported from PyYAML).
	137	+ Fixed emitting folded scalars with trailing breaks; Forced emitting
	138	of a document end indicator when there is a possibility of ambiguous
	139	parsing.
	140
d571cc8b	141	-- Anders Kaseorg <andersk@mit.edu> Mon, 29 Dec 2008 21:10:48 -0500
2decfa0e	142
01068572 AK	143	libyaml (0.1.1-1) unstable; urgency=low
	144
	145	* Initial release (Closes: #484381).
	146
	147	-- Anders Kaseorg <andersk@mit.edu> Tue, 10 Jun 2008 02:37:34 -0400