Change log for advancecomp package in Ubuntu

advancecomp (2.5-1build1) noble; urgency=high

  * No change rebuild for 64-bit time_t and frame pointers.

 -- Julian Andres Klode <email address hidden>  Mon, 08 Apr 2024 17:54:09 +0200

Available diffs

• diff from 2.5-1 (in Debian) to 2.5-1build1 (569 bytes)

advancecomp (2.1-1ubuntu0.18.04.3) bionic-security; urgency=medium

  * SECURITY UPDATE: out-of-bound read and heap overflow vulnerabilities
    - debian/patches/CVE-2022-35014-35015-35016-35017-35018-35019-35020-*.patch:
      Fix memory issues
    - CVE-2022-35014
    - CVE-2022-35015
    - CVE-2022-35016
    - CVE-2022-35017
    - CVE-2022-35018
    - CVE-2022-35019
    - CVE-2022-35020

 -- Nishit Majithia <email address hidden>  Wed, 01 Feb 2023 14:38:54 +0530

Available diffs

• diff from 2.1-1ubuntu0.18.04.2 to 2.1-1ubuntu0.18.04.3 (2.4 KiB)

advancecomp (2.1-2.1ubuntu0.20.04.1) focal-security; urgency=medium

  * SECURITY UPDATE: out-of-bound read and heap overflow vulnerabilities
    - debian/patches/CVE-2022-35014-35015-35016-35017-35018-35019-35020-*.patch:
      Fix memory issues
    - CVE-2022-35014
    - CVE-2022-35015
    - CVE-2022-35016
    - CVE-2022-35017
    - CVE-2022-35018
    - CVE-2022-35019
    - CVE-2022-35020

 -- Nishit Majithia <email address hidden>  Wed, 01 Feb 2023 14:37:05 +0530

Available diffs

• diff from 2.1-2.1build1 (in Ubuntu) to 2.1-2.1ubuntu0.20.04.1 (2.7 KiB)

advancecomp (2.1-2.1ubuntu2.1) jammy-security; urgency=medium

  * SECURITY UPDATE: out-of-bound read and heap overflow vulnerabilities
    - debian/patches/CVE-2022-35014-35015-35016-35017-35018-35019-35020-*.patch:
      Fix memory issues
    - CVE-2022-35014
    - CVE-2022-35015
    - CVE-2022-35016
    - CVE-2022-35017
    - CVE-2022-35018
    - CVE-2022-35019
    - CVE-2022-35020

 -- Nishit Majithia <email address hidden>  Wed, 01 Feb 2023 14:30:26 +0530

Available diffs

• diff from 2.1-2.1ubuntu2 (in ~ci-train-ppa-service/ubuntu/4810-deletedppa) to 2.1-2.1ubuntu2.1 (2.4 KiB)

advancecomp (2.3-1ubuntu0.22.10.1) kinetic-security; urgency=medium

  * SECURITY UPDATE: out-of-bound read and heap overflow vulnerabilities
    - debian/patches/CVE-2022-35014-35015-35016-35017-35018-35019-35020-*.patch:
      Fix memory issues
    - CVE-2022-35014
    - CVE-2022-35015
    - CVE-2022-35016
    - CVE-2022-35017
    - CVE-2022-35018
    - CVE-2022-35019
    - CVE-2022-35020

 -- Nishit Majithia <email address hidden>  Wed, 01 Feb 2023 13:57:20 +0530

Available diffs

• diff from 2.3-1 (in Debian) to 2.3-1ubuntu0.22.10.1 (2.6 KiB)

advancecomp (2.5-1) unstable; urgency=medium

  * New upstream release.

 -- Piotr Ożarowski <email address hidden>  Wed, 25 Jan 2023 15:12:36 +0100

Available diffs

• diff from 2.4-1 to 2.5-1 (1.0 KiB)

advancecomp (2.4-1) unstable; urgency=high

  * New upstream release.
    Fixes CVE-2022-35014, CVE-2022-35015, CVE-2022-35016, CVE-2022-35017,
    CVE-2022-35018, CVE-2022-35019, CVE-2022-35020 (closes: 1019592)

 -- Piotr Ożarowski <email address hidden>  Fri, 25 Nov 2022 22:01:13 +0100

Available diffs

• diff from 2.3-1 to 2.4-1 (140.8 KiB)

advancecomp (2.1-1ubuntu0.18.04.2) bionic-security; urgency=medium

  * SECURITY UPDATE: Buffer overflow in be_uint32_read()
    - debian/patches/CVE-2019-8379.patch: Fix a buffer overflow caused by
      invalid chunks
    - CVE-2019-8379
  * SECURITY UPDATE: Buffer overflow in adv_png_unfilter_8()
    - debian/patches/CVE-2019-8383.patch: Fix a buffer overflow caused by
      invalid images
    - CVE-2019-8383

 -- Nishit Majithia <email address hidden>  Thu, 06 Oct 2022 14:03:04 +0530

Available diffs

• diff from 2.1-1ubuntu0.18.04.1 to 2.1-1ubuntu0.18.04.2 (1.7 KiB)

advancecomp (2.3-1) unstable; urgency=medium

  * New upstream release.
    - builds with GCC-11 (closes: 983961)
  * Remove no longer needed patches

 -- Piotr Ożarowski <email address hidden>  Sun, 17 Apr 2022 10:36:20 +0200

Available diffs

• diff from 2.1-2.1ubuntu2 (in ~ci-train-ppa-service/ubuntu/4810-deletedppa) to 2.3-1 (4.8 KiB)

advancecomp (2.1-2.1ubuntu2) jammy; urgency=medium

  * No-change rebuild for ppc64el baseline bump.

 -- Łukasz 'sil2100' Zemczak <email address hidden>  Wed, 23 Mar 2022 10:40:02 +0100

Available diffs

• diff from 2.1-2.1ubuntu1 (in Ubuntu) to 2.1-2.1ubuntu2 (375 bytes)

advancecomp (2.1-2.1ubuntu1) impish; urgency=medium

  * Remove dynamic exception specification to fix build with GCC 11
    (Closes: #983961)

 -- Graham Inggs <email address hidden>  Tue, 10 Aug 2021 13:47:52 +0000

Available diffs

• diff from 2.1-2.1build1 to 2.1-2.1ubuntu1 (1.8 KiB)

advancecomp (2.1-2.1build1) focal; urgency=medium

  * No-change rebuild for libgcc-s1 package name change.

 -- Matthias Klose <email address hidden>  Sat, 21 Mar 2020 13:26:27 +0100

Available diffs

• diff from 2.1-2.1 (in Debian) to 2.1-2.1build1 (323 bytes)

advancecomp (2.1-2.1) unstable; urgency=medium

  * Non-maintainer upload.
  * Fix a buffer overflow caused by invalid images (CVE-2019-8383)
    (Closes: #928730)
  * Fix a buffer overflow caused by invalid chunks (CVE-2019-8379)
    (Closes: #928729)

 -- Salvatore Bonaccorso <email address hidden>  Sat, 18 May 2019 22:50:20 +0200

Available diffs

• diff from 2.1-2 to 2.1-2.1 (1.8 KiB)

advancecomp (2.1-1ubuntu0.19.04.1) disco-security; urgency=medium

  * SECURITY UPDATE: Integer overflow
    - debian/patches/CVE-2019-9210.patch: fix in lib/png.c.
    - CVE-2019-9210

 -- <email address hidden> (Leonidas S. Barbosa)  Tue, 23 Apr 2019 11:58:59 -0300

Available diffs

• diff from 2.1-1 (in Debian) to 2.1-1ubuntu0.19.04.1 (1.3 KiB)

advancecomp (2.1-1ubuntu0.18.10.1) cosmic-security; urgency=medium

  * SECURITY UPDATE: Integer overflow
    - debian/patches/CVE-2019-9210.patch: fix in lib/png.c.
    - CVE-2019-9210

 -- <email address hidden> (Leonidas S. Barbosa)  Thu, 04 Apr 2019 08:54:49 -0300

Available diffs

• diff from 2.1-1 (in Debian) to 2.1-1ubuntu0.18.10.1 (1.3 KiB)

advancecomp (2.1-1ubuntu0.18.04.1) bionic-security; urgency=medium

  * SECURITY UPDATE: Integer overflow
    - debian/patches/CVE-2019-9210.patch: fix in lib/png.c.
    - CVE-2019-9210

 -- <email address hidden> (Leonidas S. Barbosa)  Thu, 04 Apr 2019 08:54:30 -0300

Available diffs

• diff from 2.1-1 (in Debian) to 2.1-1ubuntu0.18.04.1 (1.3 KiB)

advancecomp (1.20-1ubuntu0.2) xenial-security; urgency=medium

  * SECURITY UPDATE: Integer overflow
    - debian/patches/CVE-2019-9210.patch: fix in lib/png.c.
    - CVE-2019-9210

 -- <email address hidden> (Leonidas S. Barbosa)  Thu, 04 Apr 2019 08:54:13 -0300

Available diffs

• diff from 1.20-1ubuntu0.1 to 1.20-1ubuntu0.2 (1.1 KiB)

advancecomp (1.18-1ubuntu0.2) trusty-security; urgency=medium

  * SECURITY UPDATE: Integer overflow
    - debian/patches/CVE-2019-9210.patch: fix in lib/png.c.
    - CVE-2019-9210

 -- <email address hidden> (Leonidas S. Barbosa)  Wed, 03 Apr 2019 10:51:54 -0300

Available diffs

• diff from 1.18-1ubuntu0.1 to 1.18-1ubuntu0.2 (1.1 KiB)

advancecomp (2.1-2) unstable; urgency=high

  [ Salvatore Bonaccorso ]
  * Fix a buffer overflow with image of invalid size (CVE-2019-9210)
    (Closes: #923416)

 -- Piotr Ożarowski <email address hidden>  Sun, 17 Mar 2019 22:28:03 +0100

Available diffs

• diff from 2.1-1 to 2.1-2 (913 bytes)

advancecomp (2.1-1) unstable; urgency=high

  * New upstream release
    - fixes CVE-2018-1056 (heap buffer overflow while running advzip)
      closes: 889270
  * Standards-version bumped to 4.1.3 (no other changes needed)

 -- Piotr Ożarowski <email address hidden>  Tue, 13 Feb 2018 09:40:50 +0100

Available diffs

• diff from 2.0-1 to 2.1-1 (2.6 KiB)

advancecomp (1.18-1ubuntu0.1) trusty-security; urgency=medium

  * SECURITY UPDATE: heap buffer overflow while running advzip
    - debian/patches/CVE-2018-1056.patch: check sizes in zip.cc, zip.h.
    - CVE-2018-1056

 -- Marc Deslauriers <email address hidden>  Tue, 13 Feb 2018 07:38:31 -0500

Available diffs

• diff from 1.18-1 (in Debian) to 1.18-1ubuntu0.1 (1.8 KiB)

advancecomp (1.20-1ubuntu0.1) xenial-security; urgency=medium

  * SECURITY UPDATE: heap buffer overflow while running advzip
    - debian/patches/CVE-2018-1056.patch: check sizes in zip.cc, zip.h.
    - CVE-2018-1056

 -- Marc Deslauriers <email address hidden>  Tue, 13 Feb 2018 07:26:43 -0500

Available diffs

• diff from 1.20-1 (in Debian) to 1.20-1ubuntu0.1 (1.8 KiB)

advancecomp (2.0-1ubuntu0.1) artful-security; urgency=medium

  * SECURITY UPDATE: heap buffer overflow while running advzip
    - debian/patches/CVE-2018-1056.patch: check sizes in zip.cc, zip.h.
    - CVE-2018-1056

 -- Marc Deslauriers <email address hidden>  Tue, 13 Feb 2018 07:24:54 -0500

Available diffs

• diff from 2.0-1 (in Debian) to 2.0-1ubuntu0.1 (1.8 KiB)

advancecomp (2.0-1) unstable; urgency=medium

  * New upstream release
    - builds on big endian again (closes: 851385)
  * Bump minimum required debhelper version to 10
  * Standards-version bumped to 4.0.0 (no other changes needed)

 -- Piotr Ożarowski <email address hidden>  Tue, 20 Jun 2017 15:46:47 +0200

Available diffs

• diff from 1.20-1 to 2.0-1 (251.5 KiB)
• diff from 1.23-1 to 2.0-1 (13.5 KiB)

advancecomp (1.23-1) unstable; urgency=medium

  * New upstream release
  * debian/copyright mentions new libdeflate files
  * Change debian/compat to 10
  * Standards-Version bumped to 3.9.8

 -- Piotr Ożarowski <email address hidden>  Wed, 21 Dec 2016 13:12:30 +0100

advancecomp (1.20-1) unstable; urgency=medium

  * New upstream release
  * debian/watch now checks https://github.com/amadvance/advancecomp releases
  * Homepage updated

 -- Piotr Ożarowski <email address hidden>  Tue, 22 Sep 2015 23:19:38 +0200

Available diffs

• diff from 1.19-1 to 1.20-1 (12.5 KiB)

advancecomp (1.19-1) unstable; urgency=medium


  * New upstream release

 -- Piotr Ożarowski <email address hidden>  Thu, 13 Mar 2014 08:57:09 +0100

Available diffs

• diff from 1.18-1 to 1.19-1 (10.7 KiB)

advancecomp (1.18-1) unstable; urgency=low


  * New upstream release

 -- Piotr Ożarowski <email address hidden>  Tue, 19 Nov 2013 19:33:03 +0100

Available diffs

• diff from 1.17-1 to 1.18-1 (42.0 KiB)

advancecomp (1.17-1) unstable; urgency=low


  * New upstream release
    - license changed to GPL3
  * debian/copyright mentions new zopfil files
  * Add tofrodos to Build-Depends (used in tests)

 -- Piotr Ożarowski <email address hidden>  Mon, 08 Jul 2013 23:34:07 +0200

Available diffs

• diff from 1.16-1 to 1.17-1 (80.8 KiB)

advancecomp (1.16-1) unstable; urgency=low


  * New upstream release
  * CDBS replaced with dh sequencer
    - debian/compat bumped to 9
  * Install HISTORY file as upstream changelog
  * Standards-Version bumped to 3.9.4
    - Homepage field moved from long description to new field (closes: #615182)
  * Source format changed to 3.0 (quilt)
  * Changed my address to <email address hidden>

 -- Piotr Ożarowski <email address hidden>  Wed, 06 Mar 2013 23:34:47 +0100

Available diffs

• diff from 1.15-1build1 (in Ubuntu) to 1.16-1 (104.6 KiB)

advancecomp (1.15-1build1) quantal; urgency=low

  * Rebuild for new armel compiler default of ARMv5t.
 -- Colin Watson <email address hidden>   Mon, 01 Oct 2012 16:42:47 +0100

Available diffs

• diff from 1.15-1 to 1.15-1build1 (315 bytes)

advancecomp (1.15-1) unstable; urgency=low

  * Initial release (closes: #367112)

 -- Scott James Remnant <email address hidden>   Fri,  16 Jun 2006 14:10:36 +0100