Change log for audiofile package in Debian
| 1 → 23 of 23 results | First • Previous • Next • Last |
audiofile (0.3.6-6) unstable; urgency=high
* Team upload
[ Debian Janitor ]
* Trim trailing whitespace.
* Use secure URI in Homepage field.
* Bump debhelper from old 9 to 10.
* Set upstream metadata fields: Bug-Database, Repository, Repository-
Browse.
* Drop unnecessary dependency on dh-autoreconf.
* Drop unnecessary dh arguments: --parallel
* Fix day-of-week for changelog entry 0.1.5-3.
* Drop transition for old debug package migration.
[ Bastien Roucariès ]
* Fix CVE-2019-13147: Fix a DOS due integer overflow.
Bail out early if NeXT audiofile.
support allocate more than INT_MAX/8 channels.
(Closes: #931343).
* Fix CVE-2022-24599: Fix a memory leak by reading not null
terminated copyright field (Closes: #1008017).
-- Bastien Roucariès <email address hidden> Sun, 12 Nov 2023 10:40:24 +0000
Available diffs
| Published in stretch-release |
audiofile (0.3.6-4+deb9u1) stretch; urgency=medium * CVE-2018-13440 (Closes: #903499) * CVE-2018-17095 (Closes: #913166) -- Moritz Mühlenhoff <email address hidden> Thu, 11 Apr 2019 00:28:31 +0200
| Published in bookworm-release |
| Published in bullseye-release |
| Published in buster-release |
| Superseded in sid-release |
audiofile (0.3.6-5) unstable; urgency=medium
* Team upload.
[ Ondřej Nový ]
* d/control: Set Vcs-* to salsa.debian.org
* d/copyright: Use https protocol in Format field
[ Felipe Sateler ]
* Change maintainer address to <email address hidden>
[ Moritz Mühlenhoff ]
* Two security fixes from the https://github.com/wtay/audiofile fork:
CVE-2018-13440 (Closes: #903499)
CVE-2018-17095 (Closes: #913166)
-- Sebastian Ramacher <email address hidden> Fri, 05 Apr 2019 16:13:16 +0200
Available diffs
- diff from 0.3.6-4 to 0.3.6-5 (2.1 KiB)
| Published in jessie-release |
audiofile (0.3.6-2+deb8u2) jessie-security; urgency=high
* Non-maintainer upload by the Security Team.
* Address several vulnerabilities (Closes: #857651)
- Always check the number of coefficients (CVE-2017-6827 CVE-2017-6828
CVE-2017-6832 CVE-2017-6833 CVE-2017-6835 CVE-2017-6837)
- clamp index values to fix index overflow in IMA.cpp (CVE-2017-6829)
- Check for multiplication overflow in sfconvert (CVE-2017-6830
CVE-2017-6834 CVE-2017-6836 CVE-2017-6838)
- Actually fail when error occurs in parseFormat (CVE-2017-6831)
- Check for multiplication overflow in MSADPCM decodeSample
(CVE-2017-6839)
* Fix signature of multiplyCheckOverflow. It returns a bool, not an int
* Check for division by zero in BlockCodec::runPull
-- Salvatore Bonaccorso <email address hidden> Sat, 18 Mar 2017 19:28:56 +0100
audiofile (0.3.6-4) unstable; urgency=high
* Team upload.
* debian/patches: Apply patches to fix CVE-2017-6829, CVE-2017-6831,
CVE-2017-6832, CVE-2017-6833, CVE-2017-6834, CVE-2017-6835, CVE-2017-6836,
CVE-2017-6837, CVE-2017-6838, CVE-2017-6839, CVE-2017-6827, CVE-2017-6828.
(Closes: #857651)
-- Sebastian Ramacher <email address hidden> Thu, 16 Mar 2017 21:43:45 +0100
Available diffs
- diff from 0.3.6-3 to 0.3.6-4 (3.9 KiB)
| Superseded in jessie-release |
audiofile (0.3.6-2+deb8u1) jessie; urgency=high
* Team upload.
* Fix CVE-2015-7747: buffer overflow when changing both sample format and
number of channels. (Closes: #801102)
-- James Cowgill <email address hidden> Tue, 14 Jun 2016 16:39:49 +0100
audiofile (0.3.6-3) unstable; urgency=high
* Team upload.
* Add patches to:
- Fix CVE-2015-7747: buffer overflow when changing both sample format and
number of channels. (Closes: #801102)
- Fix FTBFS with GCC 6. (Closes: #812055)
- Remove usage of PATH_MAX to fix FTBFS on Hurd. (Closes: #762595)
* Drop -dbg package in favour of the automatic dbgsym package.
* Bump standards version to 3.9.8.
* Use secure Vcs URLs.
-- James Cowgill <email address hidden> Tue, 14 Jun 2016 15:05:46 +0100
Available diffs
audiofile (0.3.6-2) unstable; urgency=low * Upload to unstable. -- Alessio Treglia <email address hidden> Tue, 07 May 2013 09:19:52 +0200
Available diffs
- diff from 0.3.5-1 to 0.3.6-2 (82.2 KiB)
| Deleted in experimental-release (Reason: None provided.) |
audiofile (0.3.6-1) experimental; urgency=low
* New upstream release:
- Implement FLAC and ALAC encoding and decoding.
- Update license to LGPL 2.1
* Build-depend on libflac-dev and pkg-config.
* Install library manpages into the proper path /usr/share/man/man3.
* Update debian/copyright.
-- Alessio Treglia <email address hidden> Fri, 08 Mar 2013 14:28:14 +0000
| Superseded in experimental-release |
audiofile (0.3.5-1) experimental; urgency=low
* New upstream release:
- Implement IMA ADPCM encoding and decoding for AIFF-C, CAF,
and WAVE files.
- Implement Microsoft ADPCM encoding for WAVE files.
- Fix calculation of IRCAM frame size.
- Record marker comments in WAVE files.
- Improve validation of compressed audio formats.
- Add support for building without documentation.
* Re-enable build of static libs.
* Adjust debian/gbp.conf according to "experimental" setup.
* Remove 0001-ftbfs_tmp_unique_fnames.patch, applied upstream.
* Refresh debian/copyright.
* Bump Standards.
-- Alessio Treglia <email address hidden> Sun, 10 Feb 2013 19:45:59 +0000
Available diffs
- diff from 0.3.4-2 to 0.3.5-1 (564.7 KiB)
audiofile (0.3.4-2) unstable; urgency=low
* Under certain conditions tests would fail as /tmp/test might
not be writeable. Thanks to Giovanni Mascellani for the great
work. (Closes: #687405)
-- Alessio Treglia <email address hidden> Sun, 14 Oct 2012 12:23:50 +0100
Available diffs
- diff from 0.3.4-1 to 0.3.4-2 (3.7 KiB)
audiofile (0.3.4-1) unstable; urgency=low * New upstream release. * Bump requirement on DH 9. * Update debian/copyright to the machine-readable format. * Bump Standards. -- Alessio Treglia <email address hidden> Tue, 01 May 2012 10:41:40 +0200
Available diffs
- diff from 0.3.3-3 to 0.3.4-1 (166.1 KiB)
audiofile (0.3.3-3) unstable; urgency=low
[ Paul Wise ]
* Fix typo noticed by wald0:
- debian/rules: override_dh_makehslibs -> override_dh_makeshlibs
-- Alessio Treglia <email address hidden> Mon, 20 Feb 2012 11:34:17 +0100
Available diffs
- diff from 0.3.3-2 to 0.3.3-3 (486 bytes)
audiofile (0.3.3-2) unstable; urgency=low
* Move sfinfo and sfconvert tools into a new audiofile-tools package;
thanks to Jakub Wilk for having reported this (Closes: #656883).
- The utilities provided by audiofile-tools are not needed
by the shared library to work properly, so there's no
need to set a Multi-Arch: foreign field.
-- Alessio Treglia <email address hidden> Sun, 22 Jan 2012 20:50:31 +0100
Available diffs
audiofile (0.3.3-1) unstable; urgency=low * Upload to unstable. * Remove debian/README.* files, which contain outdate information. * Remove audiofile-config's manpage, it is no longer provided. * Don't install TODO as -dev's doc file. -- Alessio Treglia <email address hidden> Fri, 20 Jan 2012 21:43:29 +0100
audiofile (0.2.7-1) unstable; urgency=low
* New maintainer.
Thanks to Daniel Kobras <email address hidden> for the great work done!
* ACK NMU.
* debian/*: wrap-and-sort
* Update debian/watch.
* Introduce Multi-Arch support.
* Add shlibs:Depends to -DEV's Build-Depends field.
-- Alessio Treglia <email address hidden> Sun, 15 Jan 2012 00:07:07 +0100
| Deleted in experimental-release (Reason: None provided.) |
audiofile (0.3.3-1~exp1) experimental; urgency=low
* New upstream release.
* SONAME bump.
* Add pkg-config to libaudiofile-dev's Recommends field.
* Move debugging symbols from libaudiofile0-dbg to unversioned
libaudiofile-dbg.
* Remove obsolete Conflicts/Replaces on libaudiofile0 (<= 0.2.3-4)
from libaudiofile-dev's stanza.
-- Alessio Treglia <email address hidden> Thu, 12 Jan 2012 10:26:34 +0100
| Superseded in experimental-release |
audiofile (0.3.2-1) experimental; urgency=low * New maintainer, thanks to Daniel Kobras for the great work. * New upstream stable release. * Update debian/watch. * Remove debian/patches, all patches are obsolete or adopted upstream. * Drop libaudiofile0.symbols, use dh_makeshlibs -V for now. * Drop audiofile.m4 as it's no longer provided. * Build-Depends on libasound2-dev to build the example program. * Don't provide static library anymore. * Add MultiArch support. (Closes: #651029) (LP: #900153) * Add ${shlibs:Depends} to the -DEV's Depends field. * Pass --enable-static=no to configure. * Update debian/copyright. * Enable parallel builds. -- Alessio Treglia <email address hidden> Thu, 05 Jan 2012 13:03:34 +0100
audiofile (0.2.7-0.1) unstable; urgency=low
* Non-maintainer upload.
* New upstream release (Closes: #586686):
- Fix decoding of multi-channel ADPCM WAVE files.
- Reduce unshared data in library.
- Fix handling of audio files with more than 2^24 frames.
- Add support for writing double-precision floating-point WAVE files.
- Add support for reading certain uncompressed AIFF-C files created by
Mac OS X.
- Write fact chunk in floating-point WAVE files.
A big 'thank you!' goes to the upstream author Michael Pruett for
the great help.
* Switch packaging to source format 3.0 (quilt).
* Switch to DH 7 short-form:
- Add ${misc:Depends} to packages' Depends fields.
* Convert patches to the quilt format and then:
- 10_update_docs: adopted upstream.
- 10_update_libtool: not needed anymore as DH's autotools_dev add-on is
used now
- 10_export_vfs: applied upstream.
- 10_pack_real_char3: refresh'd.
- 10_incorrect_wav_size: applied upstream.
- 10_au_length_unspecified: refresh'd.
- 10_support_nonstandard_aiffc: adopted upstream.
- 10_sfinfo_no_options: refresh'd.
- 10_sfconvert_add_nist_support: applied upstream.
- 10_warning_fixes: applied upstream.
- 10_m4_quoting_fix: applied upstream.
- 10_include_audiofile_in_af_vfs: refresh'd.
- 10_pkgconfig_privlibs: dropped to avoid FTBFS with new toolchain.
- 10_float_size_calculation_fix: refresh'd.
- 20_exports_vpath_fix{,up}: applied upstream.
- 22_CVE-2008-5824: superseded upstream.
* Strip unneeded *.la files from -DEV package.
* Add symbols file.
* Add watch file.
* Add Homepage.
* Improve libaudiofile0-dbg's short description, fix Lintian's
duplicate-short-description warning.
* Fix Lintian's "binary-control-field-duplicates-source field" warning.
* Update debian/copyright.
* Bump Standards.
-- Alessio Treglia <email address hidden> Thu, 25 Aug 2011 13:28:27 +0200
| Published in lenny-release |
audiofile (0.2.6-7+lenny1) stable-security; urgency=high
* Non-maintainer upload by the Security Team.
* CVE-2008-5824: Fix buffer overflow when decompressing MS ADPCM .wav
files (closes: #510205).
-- Stefan Fritsch <email address hidden> Sat, 19 Dec 2009 14:45:38 +0100
audiofile (0.2.6-8) unstable; urgency=low
* Added patches:
+ [10_float_size_calculation_fix] New.
Fix incorrect calculation of WAV sizes due to rounding errors.
Patch thanks to Thomas Eschenbacher. Closes: #443888
* debian/compat, debian/rules: No longer set debhelper compat level from
rules file.
* debian/control: Move dbg package to section debug, priority extra.
* debian/control: Replace Source-Version substitutions with
binary:Version.
* debian/control: Complies with version 3.8.3 of Debian policy.
* debian/README.source: Refer to dpatch documentation.
-- Daniel Kobras <email address hidden> Sun, 06 Dec 2009 20:15:09 +0100
audiofile (0.2.6-7.1) unstable; urgency=medium
* Non-maintainer upload by the Security Team.
* CVE-2008-5824: Fix buffer overflow when decompressing MS ADPCM .wav files
(closes: #510205).
-- Stefan Fritsch <email address hidden> Sat, 28 Nov 2009 15:41:28 +0100
audiofile (0.2.6-7) unstable; urgency=low
* Added patches:
+ [20_exports_vpath_fix]
+ [21_exports_vpath_fixup]
Add full path to symbol exports file to failure during VPATH builds.
+ [10_pkgconfig_privlibs]
In pkgconfig file, strip libs section to minimal content and declare
additional libraries as private. Closes: #374014
* debian/audiofile-config.1: Add note to man page that audiofile-config
is deprecated in favour of pkg-config.
* debian/control: Add new package libaudiofile0-dbg, containing
debugging symbols.
* debian/control: Raise minimum version of debhelper build dependency
to 5.
* debian/control: Complies with version 3.7.2 of Debian policy.
* debian/rules: Build binaries in separate obj directory rather than
in-tree. Fixes errors when rebuilding. Closes: #424108
* debian/rules: Raise debhelper compatibility level to 5 to enable
proper support for debug packages.
* debian/rules: Place stripped debugging symbols of libaudiofile0 in
separate debug package.
* debian/sfconvert.1, debian/sfinfo.1: Update list of supported
file formats in man pages. Closes: #408847
-- Daniel Kobras <email address hidden> Mon, 18 Jun 2007 22:49:46 +0200
| 1 → 23 of 23 results | First • Previous • Next • Last |
