Change logs for zlib source package in Kinetic

zlib (1:1.2.11.dfsg-4.1ubuntu1) kinetic; urgency=low

  * Merge from Debian unstable. Remaining changes:
    - Build x32 packages
    - debian/zlib-core.symbols: Drop dfsg suffix from version
    - Add watch file, with GPG tarball checking, and version mangling
    - Cherry-pick Permit-a-deflateParams-parameter-change-asap.patch:
    - Cherrypick PR#410 to enable hardware-accelerated deflate.
    - Copmile with DFLTCC enabled on s390x.
    - Improve crc32 performance on P8, proposed upstream patch.
    - Enable hardware compression on s390x at level 6.
    - Cherrypick update of s390x hw acceleration #410 pull request patch,
      which corrects inflateSyncPoint() return value to always gracefully
      fail when hw acceleration is in use.
    - d/rules: use configure options for dfltcc instead of hardcoding
       the CFLAGS
    - d/p/lp1932010-ibm-z-add-vectorized-crc32-implementation.patch
      ported from zlib-ng #912, adding a vectorized implementation
      of CRC32 on s390x architectures based on kernel code.
    - d/p/lp1932010-ibm-z-add-vectorized-crc32-implementation.patch: adjust
      to not make a PLT call in an ifunc on s390/s390x.
    - debian/patches/CVE-2018-25032-2.patch: assure that the number of bits
      for deflatePrime() is valid in deflate.c.
    - d/p/410-lp1961427.patch ported from zlib #410, fixing
      compressBound() with hw acceleration.
  * Dropped changes, included in Debian:
    - debian/patches/CVE-2018-25032-1.patch: fix a bug that can crash
      deflate on some input when using Z_FIXED in deflate.c, deflate.h.
  * Refresh 410.patch for upstream changes.

zlib (1:1.2.11.dfsg-4.1) unstable; urgency=medium

  * Non-maintainer upload.
  * Fix a bug when getting a gzip header extra field with inflate()
    (CVE-2022-37434) (Closes: #1016710)
  * Fix extra field processing bug that dereferences NULL state->head

zlib (1:1.2.11.dfsg-4) unstable; urgency=medium

  * Pick upstream patch for CVE-2018-25032 (closes: #1008265).

zlib (1:1.2.11.dfsg-3) unstable; urgency=low

  * Add build-arch and build-indep (#999292).
  * Bump debhelper requirement to current.
  * Add win32 to the list of files excluded from the DFSG
    tarball (closes: #919598).
  * Tighten matching for 32 bit architectures using patch from
    Helmut Grohne (closes: #1006799).
  * Policy 4.0.0 (no changes).

 -- Steve Langasek <email address hidden>  Thu, 18 Aug 2022 09:09:22 -0700

zlib (1:1.2.11.dfsg-2ubuntu10) kinetic; urgency=medium

  * d/p/410-lp1961427.patch ported from zlib #410, fixing
    compressBound() with hw acceleration. LP: #1961427
    Thanks to Ilya Leoshkevich <email address hidden>.
    In addition a patch is needed for bedtools.

 -- Frank Heimes <email address hidden>  Thu, 21 Jul 2022 09:30:05 +0100

zlib (1:1.2.11.dfsg-2ubuntu9) jammy; urgency=medium

  * SECURITY UPDATE: memory corruption when deflating
    - debian/patches/CVE-2018-25032-1.patch: fix a bug that can crash
      deflate on some input when using Z_FIXED in deflate.c, deflate.h.
    - debian/patches/CVE-2018-25032-2.patch: assure that the number of bits
      for deflatePrime() is valid in deflate.c.
    - CVE-2018-25032

 -- Marc Deslauriers <email address hidden>  Fri, 25 Mar 2022 08:06:31 -0400