1 libyaml (0.2.1-1) UNRELEASED; urgency=medium
3 * New upstream version 0.2.1.
4 + Moved canonical repo to GitHub. (Closes: #865709)
5 * Bump Standards-Version to 4.1.4 and debian/compat to 11.
6 + Moved documentation in libyaml-doc from /usr/share/doc/libyaml-doc
7 to /usr/share/doc/libyaml-dev.
9 -- Anders Kaseorg <andersk@mit.edu> Fri, 21 Oct 2016 02:54:31 -0400
11 libyaml (0.1.7-2) unstable; urgency=medium
13 * Clean doxygen-generated documentation with dh_doxygen.
14 * Mark libyaml-doc Multi-Arch: foreign.
15 * Add libyaml-0-2.symbols file.
17 -- Anders Kaseorg <andersk@mit.edu> Fri, 30 Sep 2016 22:06:09 -0400
19 libyaml (0.1.7-1) unstable; urgency=medium
21 * New upstream version 0.1.7.
22 + Fix segfault in yaml_string_write_handler.
23 + Fix invalid simple key assertion.
24 * Drop upstreamed patches.
25 * Migrate packaging from CDBS to dh.
26 * Drop libyaml-0-2-dbg in favor of automatically generated
27 libyaml-0-2-dbgsym package.
29 -- Anders Kaseorg <andersk@mit.edu> Sat, 03 Sep 2016 06:48:38 -0400
31 libyaml (0.1.6-3) unstable; urgency=high
33 * debian/patches/CVE-2014-9130.patch: Fix CVE-2014-9130 assertion
34 failure caused by wrapped strings. (Closes: #771366)
35 * Bump Standards-Version to 3.9.6 (no changes needed).
37 -- Anders Kaseorg <andersk@mit.edu> Fri, 28 Nov 2014 22:05:10 -0500
39 libyaml (0.1.6-2) unstable; urgency=medium
41 * Move doxygen from Build-Depends to Build-Depends-Indep.
43 -- Anders Kaseorg <andersk@mit.edu> Tue, 19 Aug 2014 21:56:25 -0400
45 libyaml (0.1.6-1) unstable; urgency=medium
47 * New upstream version 0.1.6.
48 + Fix CVE-2013-6393: heap-based buffer overflow when parsing YAML
50 + Fix CVE-2014-2525: heap-based buffer overflow in
51 yaml_parser_scan_uri_escapes.
52 * Drop upstreamed patches.
53 * Run tests at build time.
54 * Bump Standards-Version to 3.9.5 (no changes needed).
55 * Use dh-autoreconf. (Closes: #745078)
57 * Add libyaml-doc package for Doxygen-generated API documentation and
58 examples. (Closes: #696821)
61 -- Anders Kaseorg <andersk@mit.edu> Tue, 19 Aug 2014 00:03:53 -0400
63 libyaml (0.1.4-3.2) unstable; urgency=high
65 * Non-maintainer upload by the Security Team.
66 * Add CVE-2014-2525.patch patch.
67 CVE-2014-2525: Fixes heap overflow in yaml_parser_scan_uri_escapes.
68 The heap overflow is caused by not properly expanding a string before
69 writing to it in function yaml_parser_scan_uri_escapes in scanner.c.
72 -- Salvatore Bonaccorso <carnil@debian.org> Thu, 27 Mar 2014 06:22:25 +0100
74 libyaml (0.1.4-3.1) unstable; urgency=medium
76 * Non-maintainer upload.
77 * Drop libyaml-indent-column-overflow-v2.patch patch.
78 This patch causes additional regressions on simple YAML files.
79 * Add libyaml-guard-against-overflows-in-indent-and-flow_level.patch patch.
80 Add upstream's patch to guard against overflows in indent and
81 flow_level. (Closes: #738587)
83 -- Salvatore Bonaccorso <carnil@debian.org> Thu, 13 Feb 2014 07:51:58 +0100
85 libyaml (0.1.4-3) unstable; urgency=high
87 * Fix CVE-2013-6393: heap-based buffer overflow when parsing YAML tags.
90 -- Anders Kaseorg <andersk@mit.edu> Wed, 29 Jan 2014 20:11:48 -0500
92 libyaml (0.1.4-2) unstable; urgency=low
94 * Remove extra libyaml-0.so symlink from libyaml-dev.
95 * Bump Debhelper compat level to 9.
96 * Support multiarch. (Closes: #653748) (LP: #905630)
97 * Use 3.0 (quilt) source format.
99 -- Anders Kaseorg <andersk@mit.edu> Fri, 30 Dec 2011 17:14:52 -0500
101 libyaml (0.1.4-1) unstable; urgency=low
103 * New upstream version 0.1.4.
104 + Fixed a bug that prevented an empty mapping being used as a simple
106 + Fixed pointer overflow when calculating the position of a potential
108 + Added pkg-config support. (Closes: #537834)
109 * Remove unneded libyaml.la file. (Closes: #622452)
110 * Add libyaml-0-2-dbg package with debugging symbols.
112 * Bumped standards version to 3.9.2 without further change
114 -- Anders Kaseorg <andersk@mit.edu> Mon, 30 May 2011 22:27:27 -0400
116 libyaml (0.1.3-1) unstable; urgency=low
118 * New upstream version 0.1.3.
119 + This release fixes non-standard structure initialization and a
120 streaming-related issue.
121 * Bump priority from extra to optional.
123 -- Anders Kaseorg <andersk@mit.edu> Sun, 04 Oct 2009 14:07:18 -0400
125 libyaml (0.1.2-1) unstable; urgency=low
127 * New upstream version 0.1.2.
128 + Fixed grammar in error messages (from YAML::XS::LibYAML).
129 + Rewritten whitespace detection in the scalar analyzer and block
130 scalar writers (ported from PyYAML).
131 + Fixed emitting folded scalars with trailing breaks; Forced emitting
132 of a document end indicator when there is a possibility of ambiguous
135 -- Anders Kaseorg <andersk@mit.edu> Mon, 29 Dec 2008 21:10:48 -0500
137 libyaml (0.1.1-1) unstable; urgency=low
139 * Initial release (Closes: #484381).
141 -- Anders Kaseorg <andersk@mit.edu> Tue, 10 Jun 2008 02:37:34 -0400