Debian release 0.1.4-2+deb7u2

[libyaml.git] / debian / changelog

diff --git a/debian/changelog b/debian/changelog
index bd7d0d7b837004658d3fa6dd4fcb1b8e360bbcde..0a7065d25fe511c54e06e79477cdac7d165b2d58 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,8 +1,24 @@
-libyaml (0.1.4-2) UNRELEASED; urgency=low
+libyaml (0.1.4-2+deb7u2) stable-security; urgency=high
+
+  * Improved fix for CVE-2013-6393: heap-based buffer overflow when
+    parsing YAML tags.  (Closes: #737076)
+
+ -- Anders Kaseorg <andersk@mit.edu>  Thu, 30 Jan 2014 04:07:40 -0500
+
+libyaml (0.1.4-2+deb7u1) stable-security; urgency=low
+
+  * CVE-2013-6393
+
+ -- Moritz Muehlenhoff <jmm@debian.org>  Thu, 23 Jan 2014 21:03:55 +0000
+
+libyaml (0.1.4-2) unstable; urgency=low
 
   * Remove extra libyaml-0.so symlink from libyaml-dev.
+  * Bump Debhelper compat level to 9.
+  * Support multiarch.  (Closes: #653748) (LP: #905630)
+  * Use 3.0 (quilt) source format.
 
- -- Anders Kaseorg <andersk@mit.edu>  Fri, 23 Dec 2011 20:35:55 -0500
+ -- Anders Kaseorg <andersk@mit.edu>  Fri, 30 Dec 2011 17:14:52 -0500
 
 libyaml (0.1.4-1) unstable; urgency=low