]>
Commit | Line | Data |
---|---|---|
1 | libyaml (0.1.7-3) UNRELEASED; urgency=medium | |
2 | ||
3 | * Build-Depend debhelper (>= 9.20160114~) for dh_strip | |
4 | --dbgsym-migration. | |
5 | ||
6 | -- Anders Kaseorg <andersk@mit.edu> Fri, 21 Oct 2016 02:54:31 -0400 | |
7 | ||
8 | libyaml (0.1.7-2) unstable; urgency=medium | |
9 | ||
10 | * Clean doxygen-generated documentation with dh_doxygen. | |
11 | * Mark libyaml-doc Multi-Arch: foreign. | |
12 | * Add libyaml-0-2.symbols file. | |
13 | ||
14 | -- Anders Kaseorg <andersk@mit.edu> Fri, 30 Sep 2016 22:06:09 -0400 | |
15 | ||
16 | libyaml (0.1.7-1) unstable; urgency=medium | |
17 | ||
18 | * New upstream version 0.1.7. | |
19 | + Fix segfault in yaml_string_write_handler. | |
20 | + Fix invalid simple key assertion. | |
21 | * Drop upstreamed patches. | |
22 | * Migrate packaging from CDBS to dh. | |
23 | * Drop libyaml-0-2-dbg in favor of automatically generated | |
24 | libyaml-0-2-dbgsym package. | |
25 | ||
26 | -- Anders Kaseorg <andersk@mit.edu> Sat, 03 Sep 2016 06:48:38 -0400 | |
27 | ||
28 | libyaml (0.1.6-3) unstable; urgency=high | |
29 | ||
30 | * debian/patches/CVE-2014-9130.patch: Fix CVE-2014-9130 assertion | |
31 | failure caused by wrapped strings. (Closes: #771366) | |
32 | * Bump Standards-Version to 3.9.6 (no changes needed). | |
33 | ||
34 | -- Anders Kaseorg <andersk@mit.edu> Fri, 28 Nov 2014 22:05:10 -0500 | |
35 | ||
36 | libyaml (0.1.6-2) unstable; urgency=medium | |
37 | ||
38 | * Move doxygen from Build-Depends to Build-Depends-Indep. | |
39 | ||
40 | -- Anders Kaseorg <andersk@mit.edu> Tue, 19 Aug 2014 21:56:25 -0400 | |
41 | ||
42 | libyaml (0.1.6-1) unstable; urgency=medium | |
43 | ||
44 | * New upstream version 0.1.6. | |
45 | + Fix CVE-2013-6393: heap-based buffer overflow when parsing YAML | |
46 | tags. | |
47 | + Fix CVE-2014-2525: heap-based buffer overflow in | |
48 | yaml_parser_scan_uri_escapes. | |
49 | * Drop upstreamed patches. | |
50 | * Run tests at build time. | |
51 | * Bump Standards-Version to 3.9.5 (no changes needed). | |
52 | * Use dh-autoreconf. (Closes: #745078) | |
53 | * Use dh-buildinfo. | |
54 | * Add libyaml-doc package for Doxygen-generated API documentation and | |
55 | examples. (Closes: #696821) | |
56 | * Acknowledge NMUs. | |
57 | ||
58 | -- Anders Kaseorg <andersk@mit.edu> Tue, 19 Aug 2014 00:03:53 -0400 | |
59 | ||
60 | libyaml (0.1.4-3.2) unstable; urgency=high | |
61 | ||
62 | * Non-maintainer upload by the Security Team. | |
63 | * Add CVE-2014-2525.patch patch. | |
64 | CVE-2014-2525: Fixes heap overflow in yaml_parser_scan_uri_escapes. | |
65 | The heap overflow is caused by not properly expanding a string before | |
66 | writing to it in function yaml_parser_scan_uri_escapes in scanner.c. | |
67 | (Closes: #742732) | |
68 | ||
69 | -- Salvatore Bonaccorso <carnil@debian.org> Thu, 27 Mar 2014 06:22:25 +0100 | |
70 | ||
71 | libyaml (0.1.4-3.1) unstable; urgency=medium | |
72 | ||
73 | * Non-maintainer upload. | |
74 | * Drop libyaml-indent-column-overflow-v2.patch patch. | |
75 | This patch causes additional regressions on simple YAML files. | |
76 | * Add libyaml-guard-against-overflows-in-indent-and-flow_level.patch patch. | |
77 | Add upstream's patch to guard against overflows in indent and | |
78 | flow_level. (Closes: #738587) | |
79 | ||
80 | -- Salvatore Bonaccorso <carnil@debian.org> Thu, 13 Feb 2014 07:51:58 +0100 | |
81 | ||
82 | libyaml (0.1.4-3) unstable; urgency=high | |
83 | ||
84 | * Fix CVE-2013-6393: heap-based buffer overflow when parsing YAML tags. | |
85 | (Closes: #737076) | |
86 | ||
87 | -- Anders Kaseorg <andersk@mit.edu> Wed, 29 Jan 2014 20:11:48 -0500 | |
88 | ||
89 | libyaml (0.1.4-2) unstable; urgency=low | |
90 | ||
91 | * Remove extra libyaml-0.so symlink from libyaml-dev. | |
92 | * Bump Debhelper compat level to 9. | |
93 | * Support multiarch. (Closes: #653748) (LP: #905630) | |
94 | * Use 3.0 (quilt) source format. | |
95 | ||
96 | -- Anders Kaseorg <andersk@mit.edu> Fri, 30 Dec 2011 17:14:52 -0500 | |
97 | ||
98 | libyaml (0.1.4-1) unstable; urgency=low | |
99 | ||
100 | * New upstream version 0.1.4. | |
101 | + Fixed a bug that prevented an empty mapping being used as a simple | |
102 | key. | |
103 | + Fixed pointer overflow when calculating the position of a potential | |
104 | simple key. | |
105 | + Added pkg-config support. (Closes: #537834) | |
106 | * Remove unneded libyaml.la file. (Closes: #622452) | |
107 | * Add libyaml-0-2-dbg package with debugging symbols. | |
108 | (Closes: #592747) | |
109 | * Bumped standards version to 3.9.2 without further change | |
110 | ||
111 | -- Anders Kaseorg <andersk@mit.edu> Mon, 30 May 2011 22:27:27 -0400 | |
112 | ||
113 | libyaml (0.1.3-1) unstable; urgency=low | |
114 | ||
115 | * New upstream version 0.1.3. | |
116 | + This release fixes non-standard structure initialization and a | |
117 | streaming-related issue. | |
118 | * Bump priority from extra to optional. | |
119 | ||
120 | -- Anders Kaseorg <andersk@mit.edu> Sun, 04 Oct 2009 14:07:18 -0400 | |
121 | ||
122 | libyaml (0.1.2-1) unstable; urgency=low | |
123 | ||
124 | * New upstream version 0.1.2. | |
125 | + Fixed grammar in error messages (from YAML::XS::LibYAML). | |
126 | + Rewritten whitespace detection in the scalar analyzer and block | |
127 | scalar writers (ported from PyYAML). | |
128 | + Fixed emitting folded scalars with trailing breaks; Forced emitting | |
129 | of a document end indicator when there is a possibility of ambiguous | |
130 | parsing. | |
131 | ||
132 | -- Anders Kaseorg <andersk@mit.edu> Mon, 29 Dec 2008 21:10:48 -0500 | |
133 | ||
134 | libyaml (0.1.1-1) unstable; urgency=low | |
135 | ||
136 | * Initial release (Closes: #484381). | |
137 | ||
138 | -- Anders Kaseorg <andersk@mit.edu> Tue, 10 Jun 2008 02:37:34 -0400 |