X-Git-Url: http://andersk.mit.edu/gitweb/libyaml.git/blobdiff_plain/9d74d117edc7c78ffb5ce31a8029064720fecc78..4690e8e8a49c190b1a3eef9dfc8fff226c3f9bef:/debian/changelog

diff --git a/debian/changelog b/debian/changelog
index 0dbfe67..f8c4e47 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,10 @@
+libyaml (0.1.4-3) UNRELEASED; urgency=high
+
+  * Fix CVE-2013-6393: heap-based buffer overflow when parsing YAML tags.
+    (Closes: #737076)
+
+ -- Anders Kaseorg <andersk@mit.edu>  Wed, 29 Jan 2014 20:04:53 -0500
+
 libyaml (0.1.4-2) unstable; urgency=low
 
   * Remove extra libyaml-0.so symlink from libyaml-dev.