yajl (2.1.0-3ubuntu0.22.04.1) jammy-security; urgency=medium
* SECURITY UPDATE: buffer overread in yajl_string_decode function
- debian/patches/CVE-2017-16516.patch: don't advance our end pointer until
we've checked we have enough buffer left and that the unicode escape is
approaching.
- CVE-2017-16516
* SECURITY UPDATE: integer overflow leading to heap memory corruption when
processing large (~2GB) inputs
- debian/patches/CVE-2022-24795.patch: catch integer overflow and
terminate the process with abort().
- CVE-2022-24795
* SECURITY UPDATE: memory leak in yajl_tree_parse function
- debian/patches/CVE-2023-33460.patch: fix memory leak problems by
releasing requested memory in time.
- CVE-2023-33460
-- Fabian Toepfer <fabian.toepfer@canonical.com> Thu, 14 Dec 2023 14:06:32 +0100
yajl (2.1.0-3build2) jammy; urgency=high
* No change rebuild for ppc64el baseline bump.
-- Julian Andres Klode <juliank@ubuntu.com> Fri, 25 Mar 2022 11:01:17 +0100
yajl (2.1.0-3build1) impish; urgency=medium
* No-change rebuild to build packages with zstd compression.
-- Matthias Klose <doko@ubuntu.com> Thu, 07 Oct 2021 12:27:21 +0200
yajl (2.1.0-3) unstable; urgency=medium
[ Jelmer Vernooij ]
* Use secure URI in Vcs control header.
* Use secure copyright file specification URI.
[ John Stamp ]
* Bump debhelper compat to 11.
- Remove unneeded --parallel argument in debian/rules.
* Transition to automatic debug packages.
* Bump Standards-Version to 4.2.1
- Add Rules-Requires-Root field, and set it to "no".
-- John Stamp <jstamp@users.sourceforge.net> Tue, 02 Oct 2018 15:51:58 -0700
yajl (2.1.0-2) unstable; urgency=medium
* Change priority to optional (Closes: #758958)
-- John Stamp <jstamp@users.sourceforge.net> Sat, 23 Aug 2014 21:09:50 -0700
yajl (2.1.0-1) unstable; urgency=medium
* New upstream release.
* Refresh patches.
* Update symbols file.
* Update manpages for json_reformat, json_verify.
* Minor updates to debian/copyright.
* Clean up debian/rules
- Fix up variable assignments
- Add -fvisibility=hidden to DEB_CFLAGS_MAINT_APPEND so clang doesn't
export extraneous symbols.
* Bump Standards-Version to 3.9.5. No changes needed.
* Mark libyajl-dev as Multi-Arch: same
-- John Stamp <jstamp@users.sourceforge.net> Tue, 29 Apr 2014 17:06:00 -0700
yajl (2.0.4-4) unstable; urgency=low
* Fix cmake configuration to install the lib in the right path
(Closes: #712082)
* Update debian/watch file. Thanks to Bart Martens.
-- John Stamp <jstamp@users.sourceforge.net> Wed, 12 Jun 2013 14:05:18 -0700
yajl (2.0.4-3) unstable; urgency=low
* Add missing Multi-Arch field for libyajl2 and libyajl2-dbg
(Closes: #697380)
* Use versioned copyright format uri in debian/copyright
* Bump debhelper compat to version 9
* Rewrite debian/rules using tiny dh style.
* Bump Standards-Version to 3.9.4. No further changes needed.
* Support for cross-compilation (Closes: #702357)
- Adapt Ian Campbell's patch to use CMakeCross toolchain file when cross
compiling.
-- John Stamp <jstamp@users.sourceforge.net> Tue, 04 Jun 2013 09:51:24 -0700
yajl (2.0.4-2) unstable; urgency=low
* Upload to unstable.
-- John Stamp <jstamp@users.sourceforge.net> Thu, 26 Jan 2012 17:47:08 -0800
yajl (2.0.4-1) experimental; urgency=low
* New upstream (Closes: #634176)
- Relicenced under ISC license terms
* Bump package name with soname change
* Update symbols file
* Update man page for json_reformat
-- John Stamp <jstamp@users.sourceforge.net> Wed, 21 Dec 2011 17:07:23 -0800
# For older changelog entries, run 'apt-get changelog libyajl-doc'
Generated by dwww version 1.14 on Tue Jan 21 16:05:09 CET 2025.